community.postgresql.postgresql_privs - allow list of schemas #842
Description
SUMMARY
Allow the schema parameter to accept a list of schemas
ISSUE TYPE
- Feature Idea
COMPONENT NAME
community.postgresql.postgresql_privs - schema
ADDITIONAL INFORMATION
My organization has about 100 databases on an instance of postgres, each with 1 to 3 schemas. We setup 6 group roles, each with a different set of permissions, universally on all databases and schemas. To execute GRANT SELECT,UPDATE ON ALL TABLES IN SCHEMA public TO role1;, this requires 100 to 300 iterations of the community.postgresql.postgresql_privs module to cover the 1 to 3 schemas in each database for 1 of the 6 roles. And of course we are granting more than table permissions, so the playbook to configure these 6 roles on all databases takes nearly two hours. Perhaps the loop that would be required in code would take the same amount of time, but we were thinking that if we could shave the number of iterations down by giving a list of schemas, this might reduce the overall time it takes to handle permission configuration.