wubloader/postgres/setup.sh

#! /bin/bash

set -e

sql() {
	local user
	user="$1"
	shift
	psql -v ON_ERROR_STOP=1 -U "$user" "$@"
}

# only allow the $WUBLOADER_USER to connect remotely rather than all users
sed -i "/host all all all/d" "$PGDATA/pg_hba.conf"
echo "host all $WUBLOADER_USER all md5" >> "$PGDATA/pg_hba.conf"

echo "Creating $WUBLOADER_USER"
sql "$POSTGRES_USER" <<-EOSQL

CREATE USER $WUBLOADER_USER LOGIN PASSWORD '$WUBLOADER_PASSWORD';

EOSQL


if [ -n "$REPLICATION_USER" ]; then
	echo "Creating $REPLICATION_USER"
	# allow the $REPLICATION user to replicate remotely
	echo "host replication $REPLICATION_USER all md5" >> "$PGDATA/pg_hba.conf"
	sql "$POSTGRES_USER" <<-EOSQL

	CREATE USER $REPLICATION_USER LOGIN REPLICATION PASSWORD '$REPLICATION_PASSWORD';

	EOSQL

	cat >> ${PGDATA}/postgresql.conf <<-EOF
	wal_level = replica
	archive_mode = on
	archive_command = 'cd .'
	max_wal_senders = 8
	wal_keep_segments = 8
	EOF

fi

echo "Applying schema for $POSTGRES_DB"
sql "$WUBLOADER_USER" -d "$POSTGRES_DB" < /schema.sql

if [ -a /mnt/wubloader/nodes.csv ]; then
	echo "Loading nodes from nodes.csv"
	sql "$POSTGRES_USER" -d "$POSTGRES_DB" <<-EOF
	COPY nodes FROM '/mnt/wubloader/nodes.csv' DELIMITER ',' CSV HEADER;
	EOF
fi

if [ -a /mnt/wubloader/roles.csv ]; then
	echo "Loading roles from roles.csv"
	sql "$POSTGRES_USER" -d "$POSTGRES_DB" <<-EOF
	COPY roles FROM '/mnt/wubloader/roles.csv' DELIMITER ',' CSV HEADER;
	EOF
fi

if [ -n "$READONLY_USER" ]; then
	echo "Creating $READONLY_USER"
	# allow $READONLY_USER to connect remotely
	echo "host all $READONLY_USER all md5" >> "$PGDATA/pg_hba.conf"
	sql "$POSTGRES_USER" -d "$POSTGRES_DB" <<-EOSQL

	CREATE USER $READONLY_USER WITH CONNECTION LIMIT 50 LOGIN PASSWORD '$READONLY_PASSWORD';
	GRANT CONNECT ON DATABASE $POSTGRES_DB TO $READONLY_USER;
	GRANT USAGE ON SCHEMA public TO $READONLY_USER;
	GRANT SELECT ON ALL TABLES IN SCHEMA public TO $READONLY_USER;

	EOSQL
fi

if [ -n "$BUSCRIBE_USER" ]; then
	echo "Creating $BUSCRIBE_USER"
	echo "host all $BUSCRIBE_USER all md5" >> "$PGDATA/pg_hba.conf"
	sql "$POSTGRES_USER" <<-EOSQL
		CREATE USER $BUSCRIBE_USER LOGIN PASSWORD '$BUSCRIBE_PASSWORD';
		CREATE DATABASE $BUSCRIBE_DB WITH OWNER $BUSCRIBE_USER;
	EOSQL

	echo "Applying schema for $BUSCRIBE_DB"
	sql "$BUSCRIBE_USER" -d "$BUSCRIBE_DB" < /buscribe.sql
fi
postgres now needs building 5 years ago			`#! /bin/bash`

			`set -e`

buscribe: Do database schema and user setup 3 weeks ago			`sql() {`
			`local user`
			`user="$1"`
			`shift`
			`psql -v ON_ERROR_STOP=1 -U "$user" "$@"`
			`}`

fixes in response to ekim's comments 5 years ago			`# only allow the $WUBLOADER_USER to connect remotely rather than all users`
postgres now needs building 5 years ago			`sed -i "/host all all all/d" "$PGDATA/pg_hba.conf"`
			`echo "host all $WUBLOADER_USER all md5" >> "$PGDATA/pg_hba.conf"`

docker compose updates; option not to replicate 5 years ago			`echo "Creating $WUBLOADER_USER"`
buscribe: Do database schema and user setup 3 weeks ago			`sql "$POSTGRES_USER" <<-EOSQL`
postgres now needs building 5 years ago
			`CREATE USER $WUBLOADER_USER LOGIN PASSWORD '$WUBLOADER_PASSWORD';`
docker compose updates; option not to replicate 5 years ago
			`EOSQL`


			`if [ -n "$REPLICATION_USER" ]; then`
			`echo "Creating $REPLICATION_USER"`
fixes in response to ekim's comments 5 years ago			`# allow the $REPLICATION user to replicate remotely`
docker compose updates; option not to replicate 5 years ago			`echo "host replication $REPLICATION_USER all md5" >> "$PGDATA/pg_hba.conf"`
buscribe: Do database schema and user setup 3 weeks ago			`sql "$POSTGRES_USER" <<-EOSQL`
docker compose updates; option not to replicate 5 years ago
allow nodes and editors to be read from csv files on start up 5 years ago			`CREATE USER $REPLICATION_USER LOGIN REPLICATION PASSWORD '$REPLICATION_PASSWORD';`
postgres now needs building 5 years ago
allow nodes and editors to be read from csv files on start up 5 years ago			`EOSQL`
postgres now needs building 5 years ago
allow nodes and editors to be read from csv files on start up 5 years ago			`cat >> ${PGDATA}/postgresql.conf <<-EOF`
			`wal_level = replica`
			`archive_mode = on`
			`archive_command = 'cd .'`
			`max_wal_senders = 8`
			`wal_keep_segments = 8`
			`EOF`
postgres now needs building 5 years ago
allow nodes and editors to be read from csv files on start up 5 years ago			`fi`
postgres now needs building 5 years ago
Removed schema from common/database.py 5 years ago			`echo "Applying schema for $POSTGRES_DB"`
buscribe: Do database schema and user setup 3 weeks ago			`sql "$WUBLOADER_USER" -d "$POSTGRES_DB" < /schema.sql`
moved schema into database startup script 5 years ago
allow nodes and editors to be read from csv files on start up 5 years ago			`if [ -a /mnt/wubloader/nodes.csv ]; then`
			`echo "Loading nodes from nodes.csv"`
buscribe: Do database schema and user setup 3 weeks ago			`sql "$POSTGRES_USER" -d "$POSTGRES_DB" <<-EOF`
allow nodes and editors to be read from csv files on start up 5 years ago			`COPY nodes FROM '/mnt/wubloader/nodes.csv' DELIMITER ',' CSV HEADER;`
			`EOF`
			`fi`
docker compose updates; option not to replicate 5 years ago
Changed from editors to roles in the setup script 1 week ago			`if [ -a /mnt/wubloader/roles.csv ]; then`
			`echo "Loading roles from roles.csv"`
buscribe: Do database schema and user setup 3 weeks ago			`sql "$POSTGRES_USER" -d "$POSTGRES_DB" <<-EOF`
Changed from editors to roles in the setup script 1 week ago			`COPY roles FROM '/mnt/wubloader/roles.csv' DELIMITER ',' CSV HEADER;`
allow nodes and editors to be read from csv files on start up 5 years ago			`EOF`
docker compose updates; option not to replicate 5 years ago			`fi`
allow nodes and editors to be read from csv files on start up 5 years ago
buscribe: Do database schema and user setup 3 weeks ago			`if [ -n "$READONLY_USER" ]; then`
added a read only user to database setup script 5 years ago			`echo "Creating $READONLY_USER"`
			`# allow $READONLY_USER to connect remotely`
			`echo "host all $READONLY_USER all md5" >> "$PGDATA/pg_hba.conf"`
buscribe: Do database schema and user setup 3 weeks ago			`sql "$POSTGRES_USER" -d "$POSTGRES_DB" <<-EOSQL`
added a read only user to database setup script 5 years ago
			`CREATE USER $READONLY_USER WITH CONNECTION LIMIT 50 LOGIN PASSWORD '$READONLY_PASSWORD';`
			`GRANT CONNECT ON DATABASE $POSTGRES_DB TO $READONLY_USER;`
			`GRANT USAGE ON SCHEMA public TO $READONLY_USER;`
			`GRANT SELECT ON ALL TABLES IN SCHEMA public TO $READONLY_USER;`

			`EOSQL`
			`fi`
buscribe: Do database schema and user setup 3 weeks ago
			`if [ -n "$BUSCRIBE_USER" ]; then`
			`echo "Creating $BUSCRIBE_USER"`
			`echo "host all $BUSCRIBE_USER all md5" >> "$PGDATA/pg_hba.conf"`
			`sql "$POSTGRES_USER" <<-EOSQL`
			`CREATE USER $BUSCRIBE_USER LOGIN PASSWORD '$BUSCRIBE_PASSWORD';`
Create buscribe database during setup 3 weeks ago			`CREATE DATABASE $BUSCRIBE_DB WITH OWNER $BUSCRIBE_USER;`
buscribe: Do database schema and user setup 3 weeks ago			`EOSQL`

			`echo "Applying schema for $BUSCRIBE_DB"`
			`sql "$BUSCRIBE_USER" -d "$BUSCRIBE_DB" < /buscribe.sql`
			`fi`