From 065b47b9a0d1293fbce1041379249d7963fb3f4e Mon Sep 17 00:00:00 2001
From: Daniel Berteaud <daniel@firewall-services.com>
Date: Fri, 17 Apr 2020 18:00:07 +0200
Subject: [PATCH] Update to 2020-04-17 18:00

---
 roles/postgresql_server/defaults/main.yml | 10 ++++++++++
 roles/postgresql_server/tasks/main.yml    |  6 ++++++
 2 files changed, 16 insertions(+)

diff --git a/roles/postgresql_server/defaults/main.yml b/roles/postgresql_server/defaults/main.yml
index 368c743..db2f2a8 100644
--- a/roles/postgresql_server/defaults/main.yml
+++ b/roles/postgresql_server/defaults/main.yml
@@ -53,9 +53,19 @@ pg_conf: "{{ pg_base_conf | combine(pg_extra_conf, recursive=True) }}"
 #       - SUPERUSER
 #       - CREATEDB
 #       - CREATEROLE
+# pg_privs:
+#   - database: dbname
+#     state: present
+#     privs: SELECT,INSERT,DELETE,UPDATE
+#     objs: ALL_IN_SCHEMA
+#     type: table
+#     schema: public
+#     role: reportuser
+
 #
 pg_databases: []
 pg_roles: []
+pg_privs: []
 
 # Databases and roles to remove
 pg_databases_to_remove: []
diff --git a/roles/postgresql_server/tasks/main.yml b/roles/postgresql_server/tasks/main.yml
index 9fcf6bd..7aeb8af 100644
--- a/roles/postgresql_server/tasks/main.yml
+++ b/roles/postgresql_server/tasks/main.yml
@@ -125,6 +125,12 @@
   with_items: "{{ pg_databases }}"
   tags: pg
 
+- name: Apply privileges
+  postgresql_privs: "{{ item }}"
+  become_user: postgres
+  loop: "{{ pg_privs }}"
+  tags: pg
+
 - name: Remove databases
   postgresql_db:
     name: "{{ item }}"