common/templates/vault.mkpgrole.sh

vault write [[ .vault.root ]]database/roles/[[ .vault.database.role ]] \
    db_name="postgres" \
    creation_statements="CREATE ROLE \"{{name}}\" WITH LOGIN PASSWORD '{{password}}' VALID UNTIL '{{expiration}}'; \
        GRANT \"[[ .vault.database.pgrole ]]\" TO \"{{name}}\"; \
        ALTER ROLE \"{{name}}\" SET role = \"[[ .vault.database.pgrole ]]\"" \
    default_ttl="[[ .vault.database.ttl ]]" \
    max_ttl="[[ .vault.database.max_ttl ]]"
Allow custom role and pgrole 2024-01-31 14:49:46 +01:00			`vault write [[ .vault.root ]]database/roles/[[ .vault.database.role ]] \`
More cleanup on vault stuff 2024-01-31 11:14:00 +01:00			`db_name="postgres" \`
Remove .tpl extension, and add links for compatibility 2023-12-13 23:17:21 +01:00			`creation_statements="CREATE ROLE \"{{name}}\" WITH LOGIN PASSWORD '{{password}}' VALID UNTIL '{{expiration}}'; \`
Allow custom role and pgrole 2024-01-31 14:49:46 +01:00			`GRANT \"[[ .vault.database.pgrole ]]\" TO \"{{name}}\"; \`
			`ALTER ROLE \"{{name}}\" SET role = \"[[ .vault.database.pgrole ]]\"" \`
More cleanup on vault stuff 2024-01-31 11:14:00 +01:00			`default_ttl="[[ .vault.database.ttl ]]" \`
			`max_ttl="[[ .vault.database.max_ttl ]]"`