51 lines
1.8 KiB
YAML
51 lines
1.8 KiB
YAML
apiVersion: batch/v1
|
|
kind: Job
|
|
metadata:
|
|
name: openproject-db-init
|
|
labels:
|
|
component: db-init
|
|
spec:
|
|
template:
|
|
metadata:
|
|
labels:
|
|
component: db-init
|
|
spec:
|
|
containers:
|
|
- name: db-init
|
|
image: {{ .apps.postgres.image }}
|
|
command: ["/bin/bash", "-c"]
|
|
args:
|
|
- |
|
|
PGPASSWORD=${POSTGRES_ADMIN_PASSWORD} psql -h ${DB_HOSTNAME} -U postgres <<EOF
|
|
DO \$\$
|
|
BEGIN
|
|
IF NOT EXISTS (SELECT FROM pg_catalog.pg_roles WHERE rolname = '${DB_USERNAME}') THEN
|
|
CREATE USER ${DB_USERNAME} WITH ENCRYPTED PASSWORD '${DB_PASSWORD}';
|
|
ELSE
|
|
ALTER USER ${DB_USERNAME} WITH ENCRYPTED PASSWORD '${DB_PASSWORD}';
|
|
END IF;
|
|
END
|
|
\$\$;
|
|
|
|
SELECT 'CREATE DATABASE ${DB_DATABASE_NAME}' WHERE NOT EXISTS (SELECT FROM pg_database WHERE datname = '${DB_DATABASE_NAME}')\gexec
|
|
ALTER DATABASE ${DB_DATABASE_NAME} OWNER TO ${DB_USERNAME};
|
|
GRANT ALL PRIVILEGES ON DATABASE ${DB_DATABASE_NAME} TO ${DB_USERNAME};
|
|
EOF
|
|
env:
|
|
- name: POSTGRES_ADMIN_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: postgres-secrets
|
|
key: apps.postgres.password
|
|
- name: DB_HOSTNAME
|
|
value: "{{ .apps.openproject.dbHostname }}"
|
|
- name: DB_DATABASE_NAME
|
|
value: "{{ .apps.openproject.dbName }}"
|
|
- name: DB_USERNAME
|
|
value: "{{ .apps.openproject.dbUsername }}"
|
|
- name: DB_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: openproject-secrets
|
|
key: apps.openproject.dbPassword
|
|
restartPolicy: OnFailure |