pg-access-apply

Idempotent postgres database and role management

Docs

Loosely, this manages resources that are configured and then handed over to an application to use. Eg: you create a database and a role, then pass this configuration over to an application which creates and manages tables etc within that database. The goal of this library is to manage things like databases and roles.

Getting started

import { Client } from 'pg';
import { pg_applier } from 'pg-access-apply';

// Create a database client and connect
const client = new Client({ ... });
client.connect();
try {
    // Pass a 'query' function to pg_applier
    const applier = pg_applier({
        query: client.query.bind(client),
    });

    // Ensure database 'mydatabase' exists
    await applier.database({
        name: 'mydatabase',
    });

    // Ensure role 'myrole' exists and has password 'mypassword'
    await applier.role({
        name: 'myrole',
        properties: {
            password: 'mypassword',
            login: true,
        },
    });

    // Ensure role 'myrole' has all privileges on database 'mydatabase'
    await applierDb.grantOnDatabase({
        roles: ['myrole'],
        properties: {
            allPrivileges: true,
            databases: ['mydatabase'],
        },
    });
} finally {
    client.end();
}

Supported Postgres resources

• Database
• Role (aka User, aka Group)
• Tablespace (TODO: #11)
• Schema (TODO: #12)
• Role privileges on:
  • Tables
  • Table columns (TODO: #13)
  • Sequences (TODO: #14)
  • Foreign data wrappers (TODO: #15)
  • Foreign servers (TODO: #16)
  • Functions (TODO: #17)
  • Languages (TODO: #18)
  • Large objects (TODO: #19)
  • Schemas (TODO: #20)
  • Tablespaces (TODO: #21)
  • Other roles (TODO: #22)