2022-10-28 10:28:41 +00:00
|
|
|
- hosts: postgresql
|
|
|
|
|
gather_facts: no
|
|
|
|
|
vars:
|
2023-11-13 10:09:09 +00:00
|
|
|
ansible_python_interpreter: /opt/py3/bin/python
|
2024-09-10 09:42:59 +00:00
|
|
|
check_ssl: "{{ jms_asset.spec_info.use_ssl }}"
|
|
|
|
|
check_ca: "{{ check_ssl and not jms_asset.spec_info.allow_invalid_cert }}"
|
|
|
|
|
ca_cert: "{{ jms_asset.secret_info.ca_cert | default('') }}"
|
|
|
|
|
ssl_cert: "{{ jms_asset.secret_info.client_cert | default('') }}"
|
|
|
|
|
ssl_key: "{{ jms_asset.secret_info.client_cert | default('') }}"
|
2022-10-28 10:28:41 +00:00
|
|
|
|
|
|
|
|
tasks:
|
|
|
|
|
- name: Verify account
|
|
|
|
|
community.postgresql.postgresql_ping:
|
|
|
|
|
login_user: "{{ account.username }}"
|
|
|
|
|
login_password: "{{ account.secret }}"
|
|
|
|
|
login_host: "{{ jms_asset.address }}"
|
|
|
|
|
login_port: "{{ jms_asset.port }}"
|
2023-01-31 09:57:06 +00:00
|
|
|
db: "{{ jms_asset.spec_info.db_name }}"
|
2024-09-10 09:42:59 +00:00
|
|
|
ca_cert: "{{ ca_cert if check_ca and ca_cert | length > 0 else omit }}"
|
|
|
|
|
ssl_cert: "{{ ssl_cert if check_ssl and ssl_cert | length > 0 else omit }}"
|
|
|
|
|
ssl_key: "{{ ssl_key if check_ssl and ssl_key | length > 0 else omit }}"
|
|
|
|
|
ssl_mode: "{{ 'verify-full' if check_ca else 'require' if check_ssl else 'prefer' }}"
|
2023-02-08 10:13:05 +00:00
|
|
|
register: result
|
|
|
|
|
failed_when: not result.is_available
|
