PostgreSQL
Installing the connector
Based on the nature of your deployment, follow the procedures below to deploy the connector.
Docker swarm
To start this connector in a Docker Swarm deployment, follow the steps described below:
- Uncommment the following line in
setup.sh
file
setup.sh - #docker pull "openiamdocker/postgresql-connector-rabbitmq:debian-${OPENIAM_VERSION_NUMBER}-${BUILD_ENVIRONMENT}
- Uncomment the following line in
startup.sh
file
#docker stack deploy --compose-file connectors/postgresql/docker-compose.yaml --with-registry-auth postgresql-connector
For the changes to take effect you will need to stop your OpenIAM containers and then run:
./setup.sh./startup.sh
General information
PostgreSQL connector allows to synchronize users, groups and group memberships from PostgreSQL DB to OpenIAM.
Configuring connector
For first usage connector should be configured as described below:
- Go to Webconsole -> Provisioning -> Connectors -> PostgreSQL Connector
- Check rows "Connection string" and "Search Filter for User"
- Press "Save" button
Configuring managed system
PostgreSQL managed system should be configured as described below:
- Go to Webconsole -> Provisioning -> Managed System -> PostgreSQL Managed system
- Configure fields according to your environment:
- Host,
- Port,
- Connection string - format is:
"jdbc:postgresql://database_host:database_port/database_name"- LoginId and Password - credentials for admin user of database
- Search filter for user - put 'rolname=?'
PostgreSQL user privileges
PostgreSQL Connector allows to add or revoke standard PostgreSQL privileges: CREATEDB, INHERIT, LOGIN, REPLICATION, CREATEROLE and SUPERUSER. For this purpose you should:
- Create a custom field (Webconsole -> Administration -> Custom Fields -> Create New Custom Field) called "PostgreSQL privilege"
- Create a role for PostgreSQL Mangaed system and put any privilege you want to "PostgreSQL privilege" field: