[add] role:postgresql-for-gitea

roles/postgresql-for-gitea/defaults/main.json

@@ -0,0 +1,5 @@
+{
+	"var_postgresql_for_gitea_username": "gitea_user",
+	"var_postgresql_for_gitea_password": "REPLACE_ME",
+	"var_postgresql_for_gitea_schema": "gitea"
+}

roles/postgresql-for-gitea/tasks/main.json

@@ -0,0 +1,49 @@
+[
+	{
+		"name": "packages",
+		"become": true,
+		"ansible.builtin.apt": {
+			"update_cache": true,
+			"pkg": [
+				"acl",
+				"python3-psycopg2"
+			]
+		}
+	},
+	{
+		"name": "user",
+		"become": true,
+		"become_user": "postgres",
+		"community.postgresql.postgresql_user": {
+			"state": "present",
+			"name": "{{var_postgresql_for_gitea_username}}",
+			"password": "{{var_postgresql_for_gitea_password}}"
+		},
+		"environment": {
+			"PGOPTIONS": "-c password_encryption=scram-sha-256"
+		}
+	},
+	{
+		"name": "schema",
+		"become": true,
+		"become_user": "postgres",
+		"community.postgresql.postgresql_db": {
+			"state": "present",
+			"name": "{{var_postgresql_for_gitea_schema}}",
+			"owner": "{{var_postgresql_for_gitea_username}}"
+		}
+	},
+	{
+		"name": "rights",
+		"become": true,
+		"become_user": "postgres",
+		"community.postgresql.postgresql_privs": {
+			"state": "present",
+			"db": "{{var_postgresql_for_gitea_schema}}",
+			"objs": "ALL_IN_SCHEMA",
+			"roles": "{{var_postgresql_for_gitea_username}}",
+			"privs": "ALL",
+			"grant_option": true
+		}
+	}
+]