File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change @@ -102,8 +102,8 @@ services:
102102 - --password=${POSTGRES_PASSWORD}
103103 - --log-level=1
104104 - --classpath=postgresql-42.7.8.jar
105- - -Dusers_app_role=${POSTGRES_USER}
106105 - update
106+ - -Dusers_app_role=${POSTGRES_USER}
107107 depends_on :
108108 postgres :
109109 condition : service_healthy
@@ -122,8 +122,8 @@ services:
122122 - --password=${POSTGRES_PASSWORD}
123123 - --log-level=1
124124 - --classpath=postgresql-42.7.8.jar
125- - -Dusers_app_role=${POSTGRES_USER}
126125 - update
126+ - -Dusers_app_role=${POSTGRES_USER}
127127 depends_on :
128128 postgres-test :
129129 condition : service_healthy
Original file line number Diff line number Diff line change 1+ -- liquibase formatted sql
2+ -- changeset liquibase:feat-1694-grants-app-role
13-- Grant the application role access to all existing tables in the users DB
24-- and configure default privileges so any future tables are automatically accessible.
3- -- The role name is injected at migration time via the Liquibase property ${users_app_role} .
5+ -- The role name is injected at migration time via the Liquibase -D property flag .
46-- Locally: users_app_role=postgres (same as the Liquibase user — grant is a no-op).
57-- Production: users_app_role is sourced from the environment secret.
68
You can’t perform that action at this time.
0 commit comments