mathias/hyperguild
1
0
Fork 0
Code Issues 7 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
153ef6ccac97206a2b880a54dffca7ba832cfa2e
hyperguild/scripts/brain-embeddings-init.sql
Mathias 7a13c75655
All checks were successful
CI / Lint / Test / Vet (push) Successful in 24s
Details
CI / Mirror to GitHub (push) Successful in 3s
Details
fix(scripts): brain-embeddings-init.sql psql-level conditionals 
CREATE DATABASE doesn't work inside a DO $$ ... $$ block (transactional
restriction). And psql `:'var'` substitutions resolve client-side, so
they can't reach inside a DO block either.

Replace both DO blocks with psql-native idioms:
- `\gexec` for the conditional CREATE DATABASE
- `\if` + `\gset` for the create-or-rotate-password branch on the
  brain_app role

Verified end-to-end on koala postgres18: brain DB created, vector
0.8.1 extension installed, brain_app role login works.
2026-05-18 23:28:56 +02:00

47 lines
1.6 KiB
SQL
Raw Blame History

-- One-time DBA setup for the brain vector store on postgres18.
--
-- Creates the `brain` database, the `brain_app` role, and the pgvector
-- extension. The ingestion service connects as brain_app and creates
-- the table + HNSW index idempotently at startup (see
-- internal/vectorstore.PGStore.Init).
--
-- Run from koala as the postgres superuser:
--
-- kubectl exec -n databases postgres18-0 -- \
-- psql -U postgres -f /tmp/brain-embeddings-init.sql
--
-- Or apply with:
--
-- PASSWORD='<sops-generated>' \
-- kubectl exec -i -n databases postgres18-0 -- \
-- psql -U postgres -v password="'$PASSWORD'" \
-- < scripts/brain-embeddings-init.sql
--
-- Idempotent: rerunning is safe.
\set ON_ERROR_STOP on
-- CREATE DATABASE cannot run inside a DO block (transactional limitation).
-- Use \gexec to emit the statement conditionally instead.
SELECT 'CREATE DATABASE brain'
WHERE NOT EXISTS (SELECT FROM pg_database WHERE datname = 'brain')
\gexec
-- DO blocks can't see psql `:'password'` substitutions (those resolve
-- client-side). Use \if to branch at psql level instead.
SELECT EXISTS (SELECT FROM pg_roles WHERE rolname = 'brain_app') AS role_exists \gset
\if :role_exists
ALTER ROLE brain_app WITH PASSWORD :'password';
\else
CREATE ROLE brain_app LOGIN PASSWORD :'password';
\endif
GRANT ALL PRIVILEGES ON DATABASE brain TO brain_app;
\c brain
CREATE EXTENSION IF NOT EXISTS vector;
GRANT ALL ON SCHEMA public TO brain_app;
ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT ALL ON TABLES TO brain_app;
ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT ALL ON SEQUENCES TO brain_app;
Reference in New Issue View Git Blame Copy Permalink