view schema/std_login_roles.sql @ 474:11d80120ed3d

Renamed published services to internal services to be more symmetrical to external services.
author Sascha L. Teichmann <>
date Thu, 23 Aug 2018 13:32:16 +0200
parents 638371a0e557
children 3af7ca761f6a
line wrap: on
line source


-- Standard users for the GEMMA database

-- NOTE: Passwords for these roles must be set during initial setup of
--       the database.

-- Admin User
-- This initial Admin account is used to bootstrap the personalized
-- accounts.
CREATE ROLE sysadmin IN ROLE sys_admin LOGIN PASSWORD :'adminpw';

-- We need an empty dummy country for the default admin, as the user is
-- not supposed to work on data, it should be only used to create
-- personalized accounts.
INSERT INTO countries (country_code) VALUES ('--');
INSERT INTO users.responsibility_areas (country, area)
  VALUES ('--', ST_GeomFromText('MULTIPOLYGON(((0 0, 0 0, 0 0, 0 0)))', 4326));
-- Add user profile data for sysadmin
INSERT INTO internal.user_profiles
            (username, country, email_address, map_extent)
  VALUES ('sysadmin','--','',
          'BOX(9.52115482500011 46.3786430870001,17.1483378500001 49.0097744750001)');

-- Functional Users

-- Used by the back end (gemma)
CREATE ROLE gemma_service IN ROLE pw_reset LOGIN PASSWORD :'servicepw';

-- Used by GeoServer and backend
CREATE ROLE meta_login IN ROLE metamorph LOGIN PASSWORD :'metapw';

-- Emit messages to the client if everything went ok
SELECT 'Default admin user ''sysadmin'' created with password ' || :'adminpw';
SELECT 'Backend user ''gemma_service'' created with password ' || :'servicepw';
SELECT 'Backend user ''meta_login'' created with password ' || :'metapw';