From 2410f56221020d4c1c4896cfa81f777e9ebb9b6f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Torma=20Krist=C3=B3f?= <tormakristof@tormakristof.eu>
Date: Thu, 14 Apr 2022 15:52:51 +0200
Subject: [PATCH] expand inventory

---
 inventory.yaml                   |  8 ++++++++
 roles/postgresql/tasks/main.yaml | 18 ++++++++++++++++++
 2 files changed, 26 insertions(+)

diff --git a/inventory.yaml b/inventory.yaml
index 68a51a7..856b822 100644
--- a/inventory.yaml
+++ b/inventory.yaml
@@ -20,3 +20,11 @@ all:
           ansible_host: drone-runner.stargate.internal
         smtp:
           ansible_host: smtp.stargate.internal
+        guacamole:
+          ansible_host: guacamole.stargate.internal
+        bitwarden:
+          ansible_host: bitwarden.stargate.internal
+        webgateway:
+          ansible_host: apache.stargate.internal
+        openvpn:
+          ansible_host: openvpn.stargate.internal
diff --git a/roles/postgresql/tasks/main.yaml b/roles/postgresql/tasks/main.yaml
index 1d722ec..53aab92 100644
--- a/roles/postgresql/tasks/main.yaml
+++ b/roles/postgresql/tasks/main.yaml
@@ -6,6 +6,24 @@
     name:
      - postgresql
 
+- name: Add access to every host on local network
+  postgresql_pg_hba:
+    dest: /var/lib/postgres/data/pg_hba.conf
+    contype: host
+    users: all
+    databases: all
+    address: samenet
+    state: present
+
+- name: Add access to every host via tls on local network
+  postgresql_pg_hba:
+    dest: /var/lib/postgres/data/pg_hba.conf
+    contype: hostssl
+    users: all
+    databases: all
+    address: samenet
+    state: present
+
 - name: Enable and restart PostgreSQL daemon
   service:
     name: postgresql