fix installer, CREATE instead of ALL for public schema (Postgres 15) #9903
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this PR does / why we need it:
Unfortunately, the installer we shipped in Dataverse 6.0 is broken. As of this writing, here is the expected error:
(Jenkins is also failing.)
This pull request fixes the installer for Postgres 13 and 15 by restoring this statement we've always had:
(In the 6.0 installer it changed to
GRANT CREATE
.)This pull request also adjusts permissions for Postgres 15, granting only CREATE instead of ALL to the public schema (which was the intention of the change in 6.0):
This should be sufficient permission to handle the change in Postgres 15. See our docs for details about the change:
I wrote "old permissions" but to be specific, we want to GRANT CREATE (rather than ALL) for Postgres 15.
Note that for the Jenkins test of Postgres 15 below, the GRANT is made by Ansible prior to the installer running. This is because while the installer assumes it can be a Postgres admin, this is not the case in a dataverse-ansible environment (where we do our automated testing). That is, in the dataverse-ansible environment, rather than
trust
being granted, more granular permissions are set by Ansible, like this:Per Tuesday standup, we need to fix dvninstall.zip for 6.0... something like this:
Which issue(s) this PR closes:
Closes NONE
Special notes for your reviewer:
Suggestions on how to test this:
Is there a release notes update needed for this change?:
No, and I don't think it's worth updating the 6.0 release notes or announcing we re-uploaded dvinstall.zip. If anyone runs into this, we can link them here.
Additional documentation:
No.