-
Notifications
You must be signed in to change notification settings - Fork 51
/
edb-ssl.yml
24 lines (22 loc) · 1.02 KB
/
edb-ssl.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
---
cert_common_name: "PEM"
cert_country: "US"
cert_state: "MA"
cert_city: "Bedford"
cert_org_unit: "EDB Postgres Enterprise Manager"
cert_email: "[email protected]"
pg_ssl_postgres_conf_params:
- {name: "ssl", value: "on"}
- {name: "ssl_ca_file", value: "{{ pg_data }}/root.crt"}
- {name: "ssl_key_file", value: "{{ pg_data }}/server.key"}
- {name: "ssl_cert_file", value: "{{ pg_data }}/server.crt"}
- {name: "ssl_crl_file", value: "{{ pg_data }}/root.crl"}
# pg_ssl_ip_addresses:
# - { contype: "host", source: "127.0.0.1/32", state: absent }
# - { contype: "host", source: "::1/128", state: absent }
# - { contype: "host", source: "127.0.0.1/32", databases: "replication", state: absent }
# - { contype: "host", source: "::1/128", database: "replication", state: absent }
# - { contype: "hostssl", source: "127.0.0.1/32"}
# - { contype: "hostssl", source: "::1/128"}
# - { contype: "hostssl", source: "127.0.0.1/32", databases: "replication" }
# - { contype: "hostssl", source: "::1/128", database: "replication" }