From 961cef0eaa20ab1fc2bf6f770432d1e8a31be274 Mon Sep 17 00:00:00 2001 From: Peter Palfrader Date: Sun, 29 Sep 2019 16:14:46 +0200 Subject: [PATCH] Create an empty pg-nnn chain in case nobody else puts anything there --- modules/postgres/manifests/cluster.pp | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/modules/postgres/manifests/cluster.pp b/modules/postgres/manifests/cluster.pp index 424d35458..92f87d160 100644 --- a/modules/postgres/manifests/cluster.pp +++ b/modules/postgres/manifests/cluster.pp @@ -50,6 +50,10 @@ define postgres::cluster( command => "systemctl reload postgresql@${real_version}-${real_cluster}.service", refreshonly => true, } + ferm::rule::chain { "postgres::cluster::hba_entry::chain::pg-${real_port}": + description => "chain for pg${real_version}/${real_cluster}", + chain => "pg-${real_port}", + } ferm::rule::simple { "postgres::cluster::hba_entry::${real_version}::${real_cluster}": description => "check access to pg${real_version}/${real_cluster}", port => $real_port, -- 2.20.1