Feat: Add postgres-10

professormahi · professormahi · commit 2e8c6380687b · 2023-12-08T13:57:49.000+03:30
Signed-off-by: Mahdi Fooladgar (professormahi) &lt;professormahi_f@yahoo.com&gt;
diff --git a/roles/postgres_hardening/tasks/hardening.yml b/roles/postgres_hardening/tasks/hardening.yml
@@ -67,3 +67,31 @@
   ansible.builtin.fail:
     msg: "Postgres Version is not secure or supported!"
   when: not postgres_version or 'RC' in postgres_version_raw or 'DEVEL' in postgres_version_raw or 'BETA' in postgres_version_raw
+
+
+#################################
+# POSTGRES-10 ###################
+#################################
+- name: Manage permissions on /etc/postgresql/14/main
+  ansible.builtin.file:
+    path: /etc/postgresql/14/main
+    state: directory
+    owner: postgres
+    group: postgres
+    mode: u=rwx,g=,o=
+
+- name: Manage permissions on /etc/postgresql/14/main/postgresql.conf
+  ansible.builtin.file:
+    path: /etc/postgresql/14/main/postgresql.conf
+    state: file
+    owner: postgres
+    group: postgres
+    mode: u=rw,g=r,o=
+
+- name: Manage permissions on /etc/postgresql/14/main/pg_hba.conf
+  ansible.builtin.file:
+    path: /etc/postgresql/14/main/pg_hba.conf
+    state: file
+    owner: postgres
+    group: postgres
+    mode: u=rw,g=,o=
