postgresql/rougail/risotto/postgresql.yml

%YAML 1.2
---
version: 1.1

tls:

  certificates:

    postgresql:
      leadership: true

      authority:
        type: unix_filename
        default:
          jinja: '{{ ___.ca_directory }}.PostgreSQL.crt'
        provider: TLS-certificate:authority

      domain:
        type: domainname
        default:
          jinja: >-
            {%- if ____.network.interfaces.domain_name -%}
            {{- ____.network.interfaces.domain_name[0] -}}
            {%- endif -%}
        provider: TLS-certificate:domain

      certificate:
        type: unix_filename
        default:
          jinja: '{{ ___.cert_directory }}.postgresql.crt'
        provider: TLS-certificate:certificate

      private:
        type: unix_filename
        default:
          jinja: '{{ ___.key_directory }}.postgresql.key'
        provider: TLS-certificate:private_key

      owner:
        type: unix_user
        default: postgres
...
feat: first commit 2026-04-14 07:40:42 +02:00			`%YAML 1.2`
			`---`
			`version: 1.1`

			`tls:`

			`certificates:`

			`postgresql:`
			`leadership: true`

			`authority:`
			`type: unix_filename`
			`default:`
			`jinja: '{{ ___.ca_directory }}.PostgreSQL.crt'`
			`provider: TLS-certificate:authority`

			`domain:`
			`type: domainname`
			`default:`
			`jinja: >-`
			`{%- if ____.network.interfaces.domain_name -%}`
			`{{- ____.network.interfaces.domain_name[0] -}}`
			`{%- endif -%}`
			`provider: TLS-certificate:domain`

			`certificate:`
			`type: unix_filename`
			`default:`
			`jinja: '{{ ___.cert_directory }}.postgresql.crt'`
			`provider: TLS-certificate:certificate`

			`private:`
			`type: unix_filename`
			`default:`
			`jinja: '{{ ___.key_directory }}.postgresql.key'`
			`provider: TLS-certificate:private_key`

			`owner:`
			`type: unix_user`
			`default: postgres`
			`...`