From a58edb45ebbd6a817247baf41d2f0976c370e78b Mon Sep 17 00:00:00 2001
From: Someone <someone@somenet.org>
Date: Thu, 21 Aug 2025 00:45:37 +0200
Subject: [PATCH] roles/util/postgres-db-usr/tasks

---
 roles/util/postgres-db-usr/tasks/main.yml | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

diff --git a/roles/util/postgres-db-usr/tasks/main.yml b/roles/util/postgres-db-usr/tasks/main.yml
index 5f57c2a..451550d 100644
--- a/roles/util/postgres-db-usr/tasks/main.yml
+++ b/roles/util/postgres-db-usr/tasks/main.yml
@@ -34,7 +34,6 @@
   postgresql_privs:
     db: "{{pg_name}}"
     state: absent
-    privs: ALL
     type: database
     role: public
 
@@ -50,10 +49,9 @@
     role: public
 
 
-- name: ensure group grp_spectator exists and grant necessary privs on db "{{pg_name}}"
+- name: ensure group grp_spectator has necessary privs on db "{{pg_name}}"
   become_user: postgres
-  postgresql_user:
-    name: "grp_spectator"
-    role_attr_flags: "NOLOGIN,NOSUPERUSER,INHERIT,NOCREATEDB,NOCREATEROLE,NOREPLICATION"
+  postgresql_privs:
     db: "{{pg_name}}"
-    priv: CONNECT,TEMPORARY
+    privs: CONNECT,TEMPORARY
+    role: "grp_spectator"
-- 
2.47.2