Add PostgreSQL server role

ansible.cfg

@@ -1,3 +1,6 @@
 [defaults]
 inventory = ./environments/development
 interpreter_python = /usr/bin/python3
+
+[connection]
+pipelining = true

dev/proxy.yml

@@ -5,7 +5,8 @@
     - host_vars/proxy.yml
   roles:
     - base
+    - postgresql
     - proxy
     - docker
-    - bitwarden
     - gitea
+    - bitwarden

roles/.gitignore

@@ -10,6 +10,7 @@
 !minecraft*/
 !nextcloud*/
 !nginx*/
+!postgresql*/
 !prometheus*/
 !proxy*/
 !rsnapshot*/

roles/base/tasks/ansible.yml

@@ -13,3 +13,10 @@
   loop:
     - aptitude
     - python3-docker
+    - python3-psycopg2
+
+- name: Create Ansible's temporary remote directory
+  file:
+    path: "~/.ansible/tmp"
+    state: directory
+    mode: 0700

roles/postgresql/defaults/main.yml

@@ -0,0 +1,2 @@
+postgresql_config: /etc/postgresql/13/main/pg_hba.conf
+postgresql_listen: "*"

roles/postgresql/tasks/main.yml

@@ -0,0 +1,34 @@
+- name: Install PostgreSQL
+  apt:
+    name: postgresql
+    state: present
+
+- name: Trust connections to PostgreSQL from Docker
+  postgresql_pg_hba:
+    dest: "{{ postgresql_config }}"
+    contype: host
+    databases: all
+    users: all
+    address: "172.16.0.0/12"
+    method: trust
+  register: postgresql_hba
+
+- name: Change PostgreSQL listen addresses
+  postgresql_set:
+    name: listen_addresses
+    value: "{{ postgresql_listen }}"
+  become: true
+  become_user: postgres
+  register: postgresql_config
+
+- name: Reload PostgreSQL
+  service:
+    name: postgresql
+    state: reloaded
+  when: postgresql_hba.changed and not postgresql_config.changed
+
+- name: Restart PostgreSQL
+  service:
+    name: postgresql
+    state: restarted
+  when: postgresql_config.changed