diff options
author | Andrew Klychkov <aaklychkov@mail.ru> | 2021-02-03 19:22:28 +0300 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-02-03 10:22:28 -0600 |
commit | 2d89114535161d316222faa97976c20400f1b745 (patch) | |
tree | 0bfa9283556996acc0e8d59354925488045dd6e2 | |
parent | d8ab39fbaa36411e0613175627aafe6f4660f9ae (diff) | |
download | ansible-2d89114535161d316222faa97976c20400f1b745.tar.gz |
postgresql_user: add clarification about no_password_changes option (#73287)
Co-authored-by: Andrew Klychkov <andrew.klychkov@gmail.com>
-rw-r--r-- | lib/ansible/modules/database/postgresql/postgresql_user.py | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/lib/ansible/modules/database/postgresql/postgresql_user.py b/lib/ansible/modules/database/postgresql/postgresql_user.py index ec02077a32..45c3225a5e 100644 --- a/lib/ansible/modules/database/postgresql/postgresql_user.py +++ b/lib/ansible/modules/database/postgresql/postgresql_user.py @@ -119,7 +119,8 @@ options: version_added: '1.4' no_password_changes: description: - - If C(yes), don't inspect database for password changes. Effective when + - If C(yes), don't inspect database for password changes. + If the user already exists, skips all password related checks. Effective when C(pg_authid) is not accessible (such as AWS RDS). Otherwise, make password changes as necessary. default: 'no' @@ -157,6 +158,10 @@ notes: Use NOLOGIN role_attr_flags to change this behaviour. - If you specify PUBLIC as the user (role), then the privilege changes will apply to all users (roles). You may not specify password or role_attr_flags when the PUBLIC user is specified. +- On some systems (such as AWS RDS), C(pg_authid) is not accessible, thus, the module cannot compare + the current and desired C(password). In this case, the module assumes that the passwords are + different and changes it reporting that the state has been changed. + To skip all password related checks for existing users, use I(no_password_changes=yes). seealso: - module: postgresql_privs - module: postgresql_membership |