By default, Ansible automation portal uses an embedded PostgreSQL database. For production deployments, you can configure Ansible automation portal to use an external PostgreSQL database managed by your organization's database team.
Before you begin
- You have administrator access to your OpenShift Container Platform cluster.
- You have access to an external PostgreSQL database server (version 13 or later).
- You have database administrator privileges to create databases and users.
- Ansible automation portal is installed or you are preparing to install it.
Procedure
- Create a database and user on your external PostgreSQL server.
Connect to your PostgreSQL server as a database administrator and run the following commands:
CREATE DATABASE rhdh_production;
CREATE USER rhdh_user WITH ENCRYPTED PASSWORD 'your_secure_password';
GRANT ALL PRIVILEGES ON DATABASE rhdh_production TO rhdh_user;
ALTER DATABASE rhdh_production OWNER TO rhdh_user;
Replace your_secure_password with a strong password.
- Verify that you can connect to the database from your OpenShift Container Platform cluster.
Test the connection using a temporary pod:
oc run -it --rm postgres-test --image=postgres:13 --restart=Never -- \
psql -h <database-host> -U rhdh_user -d rhdh_production
Replace <database-host> with your PostgreSQL server hostname or IP address.
If the connection succeeds, you can proceed. If it fails, verify network connectivity and firewall rules.
- Create a secret in OpenShift Container Platform with your database credentials.
oc create secret generic rhdh-postgresql-secrets \
--from-literal=POSTGRES_USER=rhdh_user \
--from-literal=POSTGRES_PASSWORD=your_secure_password \
--from-literal=postgres-password=your_secure_password \
--from-literal=POSTGRES_HOST=<database-host> \
--from-literal=POSTGRES_PORT=5432 \
--from-literal=POSTGRES_DB=rhdh_production \
-n <namespace>
Replace <namespace> with the namespace where Ansible automation portal is installed.
Note
The postgres-password key is required by the Helm chart's internal wiring. Its value must match POSTGRES_PASSWORD. Alternatively, you can set postgresql.auth.secretKeys.adminPasswordKey in your Helm values to match your preferred key name.
- Update your Ansible automation portal Helm chart values to use the external database.
Add or modify the following configuration in your values.yaml file:
upstream:
postgresql:
enabled: false # Disable embedded PostgreSQL
backstage:
appConfig:
backend:
database:
client: pg
connection:
host: ${POSTGRES_HOST}
port: ${POSTGRES_PORT}
user: ${POSTGRES_USER}
password: ${POSTGRES_PASSWORD}
database: ${POSTGRES_DB}
ssl:
rejectUnauthorized: false # Set to true if using verified SSL certificates
extraEnvVarsSecrets:
- rhdh-postgresql-secrets
- Apply the configuration by upgrading your Ansible automation portal Helm release.
helm upgrade <release-name> <chart-name> \
-f values.yaml \
-n <namespace>
Replace <release-name> with your Helm release name and <chart-name> with the Ansible automation portal chart name.
- Wait for Ansible automation portal pods to restart and initialize the database schema.
Monitor the pod status:
oc get pods -n <namespace> -w
Results
- Verify that the Ansible automation portal pods are running:
oc get pods -n <namespace>
All Ansible automation portal pods should show a status of Running.
- Check the Ansible automation portal logs to confirm the database connection:
oc logs -n <namespace> <backstage-pod-name> | grep -i "database\|postgres"
You should see log entries indicating a successful database connection without errors.
- Connect to your external PostgreSQL database and verify that Ansible automation portal created the required schema:
You should see multiple tables created by Ansible automation portal.
- Access the Ansible automation portal web interface and verify that your data persists across pod restarts.
Red Hat Summit
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}