#!/usr/bin/env bash # Per-node entrypoint for the pg_replica + ParadeDB integration cluster. # Node 1 seeds (initdb + roles + extensions); nodes 2/3 pg_basebackup from it. # All inter-node + client auth is SCRAM (no trust). pg_replica drives failover. set -euo pipefail PGDATA="${PGDATA:-/var/lib/postgresql/data}" PGBIN="$(pg_config --bindir)" PASSFILE=/var/lib/postgresql/.pgpass : "${NODE_ID:?NODE_ID required}" : "${RAFT_PORT:=7400}" : "${PEERS:?PEERS required}" : "${PG_ADDRS:?PG_ADDRS required}" : "${SEED_HOST:=node1}" : "${SU_PASSWORD:?SU_PASSWORD required}" : "${REPL_PASSWORD:?REPL_PASSWORD required}" : "${APP_USER:=weido}" : "${APP_PASSWORD:=weido_pw}" : "${APP_DB:=weido}" : "${SYNCHRONOUS:=off}" # Running as root (image default): fix ownership, then drop to the postgres user. if [ "$(id -u)" = '0' ]; then mkdir -p "$PGDATA" chown -R postgres:postgres "$(dirname "$PGDATA")" /opt/pg_replica exec gosu postgres "$0" "$@" fi write_passfile() { { printf '*:*:*:replicator:%s\n' "$REPL_PASSWORD" printf '*:*:*:postgres:%s\n' "$SU_PASSWORD" } > "$PASSFILE" chmod 600 "$PASSFILE" } node_conf() { cat >> "$PGDATA/postgresql.conf" < /tmp/su.pw "$PGBIN/initdb" -D "$PGDATA" -U postgres -A scram-sha-256 --pwfile=/tmp/su.pw --locale=C.UTF-8 >/dev/null rm -f /tmp/su.pw { echo "host all all all scram-sha-256" echo "host replication all all scram-sha-256" } >> "$PGDATA/pg_hba.conf" node_conf "$PGBIN/pg_ctl" -D "$PGDATA" -o "-c listen_addresses=127.0.0.1" -w start >/dev/null "$PGBIN/psql" -h 127.0.0.1 -U postgres -d postgres -v ON_ERROR_STOP=1 >/dev/null </dev/null "$PGBIN/pg_ctl" -D "$PGDATA" -w stop >/dev/null echo "[node1] seed complete" else echo "[node$NODE_ID] waiting for seed $SEED_HOST, then pg_basebackup" until "$PGBIN/pg_isready" -h "$SEED_HOST" -p 5432 -U postgres -d postgres >/dev/null 2>&1; do sleep 2; done until "$PGBIN/pg_basebackup" -h "$SEED_HOST" -p 5432 -U replicator -D "$PGDATA" -X stream >/dev/null 2>&1; do echo "[node$NODE_ID] basebackup not ready (seed still seeding); retrying"; sleep 3 done # basebackup cloned node1's config; override only the per-node identity. cat >> "$PGDATA/postgresql.conf" <> "$PGDATA/postgresql.auto.conf" touch "$PGDATA/standby.signal" echo "[node$NODE_ID] standby ready" fi fi chmod 0700 "$PGDATA" exec "$PGBIN/postgres" -D "$PGDATA"