]> git.openstreetmap.org Git - chef.git/blob - cookbooks/postgresql/providers/user.rb
Update piwik to 3.1.0
[chef.git] / cookbooks / postgresql / providers / user.rb
1 #
2 # Cookbook Name:: postgresql
3 # Provider:: postgresql_user
4 #
5 # Copyright 2012, OpenStreetMap Foundation
6 #
7 # Licensed under the Apache License, Version 2.0 (the "License");
8 # you may not use this file except in compliance with the License.
9 # You may obtain a copy of the License at
10 #
11 #     http://www.apache.org/licenses/LICENSE-2.0
12 #
13 # Unless required by applicable law or agreed to in writing, software
14 # distributed under the License is distributed on an "AS IS" BASIS,
15 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 # See the License for the specific language governing permissions and
17 # limitations under the License.
18 #
19
20 require "shellwords"
21
22 use_inline_resources
23
24 def load_current_resource
25   @pg = Chef::PostgreSQL.new(new_resource.cluster)
26
27   @current_resource = Chef::Resource::PostgresqlUser.new(new_resource.name)
28   @current_resource.user(new_resource.user)
29   @current_resource.cluster(new_resource.cluster)
30   if (pg_user = @pg.users[@current_resource.user])
31     @current_resource.superuser(pg_user[:superuser])
32     @current_resource.createdb(pg_user[:createdb])
33     @current_resource.createrole(pg_user[:createrole])
34     @current_resource.replication(pg_user[:replication])
35   end
36   @current_resource
37 end
38
39 action :create do
40   password = new_resource.password ? "ENCRYPTED PASSWORD '#{new_resource.password.shellescape}'" : ""
41   superuser = new_resource.superuser ? "SUPERUSER" : "NOSUPERUSER"
42   createdb = new_resource.createdb ? "CREATEDB" : "NOCREATEDB"
43   createrole = new_resource.createrole ? "CREATEROLE" : "NOCREATEROLE"
44   replication = new_resource.replication ? "REPLICATION" : "NOREPLICATION"
45
46   if !@pg.users.include?(new_resource.user)
47     converge_by "create role #{new_resource.user}" do
48       @pg.execute(:command => "CREATE ROLE \"#{new_resource.user}\" LOGIN #{password} #{superuser} #{createdb} #{createrole}")
49     end
50   else
51     if new_resource.superuser != @current_resource.superuser
52       converge_by "alter role #{new_resource.user}" do
53         @pg.execute(:command => "ALTER ROLE \"#{new_resource.user}\" #{superuser}")
54       end
55     end
56
57     unless new_resource.superuser
58       if new_resource.createdb != @current_resource.createdb
59         converge_by "alter role #{new_resource.user}" do
60           @pg.execute(:command => "ALTER ROLE \"#{new_resource.user}\" #{createdb}")
61         end
62       end
63
64       if new_resource.createrole != @current_resource.createrole
65         converge_by "alter role #{new_resource.user}" do
66           @pg.execute(:command => "ALTER ROLE \"#{new_resource.user}\" #{createrole}")
67         end
68       end
69
70       if new_resource.replication != @current_resource.replication
71         converge_by "alter role #{new_resource.user}" do
72           @pg.execute(:command => "ALTER ROLE \"#{new_resource.user}\" #{replication}")
73         end
74       end
75     end
76   end
77 end
78
79 action :drop do
80   if @pg.users.include?(new_resource.user)
81     converge_by "drop role #{new_resource.user}" do
82       @pg.execute(:command => "DROP ROLE \"#{new_resource.user}\"")
83     end
84   end
85 end