This resource generate pg_ident.conf configuration file to manage user mapping between system and PostgreSQL users.
:create- Creates a mapping line inside ofpg_ident.conf:update- Update a mapping line inside ofpg_ident.conf:delete- Delete a mapping line inside ofpg_ident.conf
| Name | Name? | Type | Default | Description | Allowed Values |
|---|---|---|---|---|---|
config_file |
String | ||||
source |
String | ||||
map_name |
✓ | String | Arbitrary name that will be used to refer to this mapping in pg_hba.conf | ||
system_username |
String | Operating system user name | |||
database_username |
String | Database user name | |||
comment |
String | Ident mapping record comment |
PostgreSQL::Cookbook::IdentHelpers::PgIdentTemplate
Creates a mymapping mapping that map john system user to user1 PostgreSQL user:
postgresql_ident 'Map john to user1' do
comment 'John Mapping'
map_name 'mymapping'
system_username 'john'
database_username 'user1'
endThis generates the following line in the pg_ident.conf:
# MAPNAME SYSTEM-USERNAME PG-USERNAME
# John Mapping
mymapping john user1 # John Mapping
To grant access to the foo user with password authentication:
postgresql_access 'local_foo_user' do
comment 'Foo user access'
type 'host'
database 'all'
user 'foo'
address '127.0.0.1/32'
auth_method 'md5'
endThis generates the following line in the pg_hba.conf:
# Local postgres superuser access
host all foo 127.0.0.1/32 ident # Foo user access