From: Peter Palfrader <peter@palfrader.org>
Date: Sun, 29 Sep 2019 14:14:46 +0000 (+0200)
Subject: Create an empty pg-nnn chain in case nobody else puts anything there
X-Git-Url: https://git.adam-barratt.org.uk/?a=commitdiff_plain;h=961cef0eaa20ab1fc2bf6f770432d1e8a31be274;p=mirror%2Fdsa-puppet.git

Create an empty pg-nnn chain in case nobody else puts anything there
---

diff --git a/modules/postgres/manifests/cluster.pp b/modules/postgres/manifests/cluster.pp
index 424d35458..92f87d160 100644
--- a/modules/postgres/manifests/cluster.pp
+++ b/modules/postgres/manifests/cluster.pp
@@ -50,6 +50,10 @@ define postgres::cluster(
     command     => "systemctl reload postgresql@${real_version}-${real_cluster}.service",
     refreshonly => true,
   }
+  ferm::rule::chain { "postgres::cluster::hba_entry::chain::pg-${real_port}":
+    description => "chain for pg${real_version}/${real_cluster}",
+    chain       => "pg-${real_port}",
+  }
   ferm::rule::simple { "postgres::cluster::hba_entry::${real_version}::${real_cluster}":
     description => "check access to pg${real_version}/${real_cluster}",
     port        => $real_port,