mirror of
https://github.com/opentofu/opentofu.git
synced 2025-02-20 11:48:24 -06:00
220d73f32c
According to the libpq documentation, "prefer" is the default in the underlying library and so setting a different default in the Terraform layer would be a breaking change for existing users of this provider whose servers do not have TLS correctly configured. The docs now link to the libpq manual's discussion of the security implications of each of the ssl_mode options, so the user can understand the limitations of the "prefer" default and can make an informed decision about which setting is appropriate for their situation.
71 lines
1.9 KiB
Go
71 lines
1.9 KiB
Go
package postgresql
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/hashicorp/terraform/helper/schema"
|
|
"github.com/hashicorp/terraform/terraform"
|
|
)
|
|
|
|
// Provider returns a terraform.ResourceProvider.
|
|
func Provider() terraform.ResourceProvider {
|
|
return &schema.Provider{
|
|
Schema: map[string]*schema.Schema{
|
|
"host": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Required: true,
|
|
DefaultFunc: schema.EnvDefaultFunc("POSTGRESQL_HOST", nil),
|
|
Description: "The postgresql server address",
|
|
},
|
|
"port": &schema.Schema{
|
|
Type: schema.TypeInt,
|
|
Optional: true,
|
|
Default: 5432,
|
|
Description: "The postgresql server port",
|
|
},
|
|
"username": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Required: true,
|
|
DefaultFunc: schema.EnvDefaultFunc("POSTGRESQL_USERNAME", nil),
|
|
Description: "Username for postgresql server connection",
|
|
},
|
|
"password": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Required: true,
|
|
DefaultFunc: schema.EnvDefaultFunc("POSTGRESQL_PASSWORD", nil),
|
|
Description: "Password for postgresql server connection",
|
|
},
|
|
"ssl_mode": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
Default: "prefer",
|
|
Description: "Connection mode for postgresql server",
|
|
},
|
|
},
|
|
|
|
ResourcesMap: map[string]*schema.Resource{
|
|
"postgresql_database": resourcePostgresqlDatabase(),
|
|
"postgresql_role": resourcePostgresqlRole(),
|
|
},
|
|
|
|
ConfigureFunc: providerConfigure,
|
|
}
|
|
}
|
|
|
|
func providerConfigure(d *schema.ResourceData) (interface{}, error) {
|
|
config := Config{
|
|
Host: d.Get("host").(string),
|
|
Port: d.Get("port").(int),
|
|
Username: d.Get("username").(string),
|
|
Password: d.Get("password").(string),
|
|
SslMode: d.Get("ssl_mode").(string),
|
|
}
|
|
|
|
client, err := config.NewClient()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("Error initializing Postgresql client: %s", err)
|
|
}
|
|
|
|
return client, nil
|
|
}
|