Refer to AWS CloudShell
-
Get an AWS CloudFormation stack template body
wget https://github.com/t2yijaeho/Amazon-RDS-PostgreSQL-with-AWS-CloudFormation/raw/matia/Template/RDS-PostgreSQL.yaml
-
Create an AWS CloudFormation stack
aws cloudformation create-stack \ --stack-name RDS-PostgreSQL \ --template-body file://./RDS-PostgreSQL.yaml
-
AWS CloudFormation returns following output
{ "StackId": "arn:aws:cloudformation:us-abcd-x:123456789012:stack/RDS-PostgreSQL/b4d0f5e0-d4c2-11ec-9529-06edcc65f112" } -
Monitor the progress by the stack's events in AWS management console
-
List the available PostgreSQL toics from the Extras Library
sudo amazon-linux-extras | grep postgresql -
Enable the desired latest PostgreSQL topic
sudo amazon-linux-extras enable postgresql13 | grep postgresql
-
Install PostgreSQL topic
sudo yum clean metadata && sudo yum install -y postgresql -
Verify the installation and confirm the PostgreSQL Client version:
sudo yum list installed postgresql
psql --version
-
Add inboud rule to Amazon RDS PostgreSQL Security Group
Find CloudShell IP address
CLOUDSHELL_IP_ADDRESS=$(curl https://checkip.amazonaws.com) echo $CLOUDSHELL_IP_ADDRESS
Find Amazon RDS PostgreSQL Security Group ID
RDS_SECURITY_GROUP_ID=$(aws rds describe-db-instances \ --db-instance-identifier targetdb \ --query "DBInstances[0].VpcSecurityGroups[0].[VpcSecurityGroupId]" \ --output text) echo $RDS_SECURITY_GROUP_ID
Add CloudShell IP address to Security Group inboud rule
aws ec2 authorize-security-group-ingress \ --group-id $RDS_SECURITY_GROUP_ID \ --protocol tcp --port 45432 \ --cidr "${CLOUDSHELL_IP_ADDRESS}/32"
-
Find Amazon RDS PostgreSQL connection info
Describe Amazon RDS PostgreSQL instance
aws rds describe-db-instances \ --db-instance-identifier targetdbFind Endpoint, Port, Username, Database Name
aws rds describe-db-instances \ --db-instance-identifier targetdb \ | jq --raw-output \ "(\"Endpoint : \" + .DBInstances[0].Endpoint.Address), (\"Port : \" + (.DBInstances[0].Endpoint.Port | tostring)), (\"Master Username : \" + .DBInstances[0].MasterUsername), (\"DB Name : \" + .DBInstances[0].DBName)"Put DB instance endpoint address to a variable
DB_INSTANCE_ENDPOINT=$( \ aws rds describe-db-instances \ --db-instance-identifier targetdb \ | jq --raw-output \ '.DBInstances[0].Endpoint.Address') echo $DB_INSTANCE_ENDPOINT
-
Connect to Amazon RDS PostgreSQL instance using PostgreSQL Client
Save Password to .pgpass file
(umask 177 ; \ echo $DB_INSTANCE_ENDPOINT:45432:postgres:postgres:target1234 > .pgpass) cat .pgpass
Connect to instance
psql \ --host=$DB_INSTANCE_ENDPOINT \ --port=45432 \ --username=postgres \ --no-password \ --dbname=postgresPostgreSQL Client provides a prompt with the name of the database
psql (13.3, server 13.4) SSL connection (protocol: TLSv1.2, cipher: ECDHE-RSA-AES256-GCM-SHA384, bits: 256, compression: off) Type "help" for help. postgres=>
-
Create a user with a password
CREATE USER addrdba WITH PASSWORD '1234';
List User
SELECT usename, usecreatedb FROM pg_catalog.pg_user;
List Roles
\du
-
Create a target database
CREATE DATABASE addr_target TEMPLATE = template0 ENCODING = 'UTF8' LC_COLLATE = 'C' LC_CTYPE = 'C';
Change database owner to created user
ALTER DATABASE addr_target OWNER TO addrdba;
List Databases
\list
-
Create a schema on a database
Connect as a user created
\connect addr_target addrdba
User Password
1234postgres=> \connect addr_target addrdba Password for user addrdba: psql (13.3, server 13.4) SSL connection (protocol: TLSv1.2, cipher: ECDHE-RSA-AES256-GCM-SHA384, bits: 256, compression: off) You are now connected to database "addr_target" as user "addrdba". addr_target=>
Create a schema on a newly created database
CREATE SCHEMA addr AUTHORIZATION addrdba;
List schemas
\dn
addr_target=> \dn List of schemas Name | Owner --------+---------- addr | addrdba public | rdsadmin (2 rows)
