From 7b49309803308f3b56f1030d06bd87186e32462e Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sat, 29 Aug 2020 14:02:12 -0500
Subject: [PATCH] hassdb: Fix playbook

* Need to apply the *postgresql-server* role to ensure PostgreSQL is
  properly configured
* Need to supply a PostgreSQL certificate (use Let's Encrypt so we don't
  have to manage a CA)
* Missing Ansible Vault file that includes the DB user password
---
 certs/postgresql/hassdb0.pyrocufflink.blue/server.crt | 1 +
 certs/postgresql/hassdb0.pyrocufflink.blue/server.key | 1 +
 hassdb.yml                                            | 1 +
 vault/hassdb/hassdb0.pyrocufflink.blue                | 8 ++++++++
 4 files changed, 11 insertions(+)
 create mode 120000 certs/postgresql/hassdb0.pyrocufflink.blue/server.crt
 create mode 120000 certs/postgresql/hassdb0.pyrocufflink.blue/server.key
 create mode 100644 vault/hassdb/hassdb0.pyrocufflink.blue

diff --git a/certs/postgresql/hassdb0.pyrocufflink.blue/server.crt b/certs/postgresql/hassdb0.pyrocufflink.blue/server.crt
new file mode 120000
index 0000000..c42aef2
--- /dev/null
+++ b/certs/postgresql/hassdb0.pyrocufflink.blue/server.crt
@@ -0,0 +1 @@
+../../lego/_.pyrocufflink.net.crt
\ No newline at end of file
diff --git a/certs/postgresql/hassdb0.pyrocufflink.blue/server.key b/certs/postgresql/hassdb0.pyrocufflink.blue/server.key
new file mode 120000
index 0000000..534b743
--- /dev/null
+++ b/certs/postgresql/hassdb0.pyrocufflink.blue/server.key
@@ -0,0 +1 @@
+../../lego/_.pyrocufflink.net.key
\ No newline at end of file
diff --git a/hassdb.yml b/hassdb.yml
index 4fa906b..2420552 100644
--- a/hassdb.yml
+++ b/hassdb.yml
@@ -2,4 +2,5 @@
   vars_files:
   - vault/hassdb/{{ inventory_hostname }}
   roles:
+  - postgresql-server
   - hassdb
diff --git a/vault/hassdb/hassdb0.pyrocufflink.blue b/vault/hassdb/hassdb0.pyrocufflink.blue
new file mode 100644
index 0000000..68fbd79
--- /dev/null
+++ b/vault/hassdb/hassdb0.pyrocufflink.blue
@@ -0,0 +1,8 @@
+$ANSIBLE_VAULT;1.1;AES256
+63336666383231336433316534373138373966393233643139393931666337316165393136663865
+3935663562663662646535306233396131616639623735390a313130303439316265346639386363
+64343664653736316338363738393637346361393831393431653639633732386630366664386632
+6634643034303563340a616564353632363739633534363364623830376564346237303835383538
+34383931336538633636653734633864343032663231613364643162333265316636393932643661
+61326138656439386562646364313738323037383538336664633533643839333236353239616331
+356433653030343134373834613831613439