ministryofjustice · Sandhya1874 · Jul 17, 2024 · Jul 17, 2024 · Jul 17, 2024 · Jul 18, 2024
@@ -48,3 +48,28 @@ housekeeping_cron:
 db_configs:
   RCVCAT:
     rcvcat_db_name: PRCVCAT
+  PDBISYS:
+    db_name: PDBISYS
+    db_unique_name: PDBISYS
+    instance_name: PDBISYS
+    host_name: pd-ncr-db-1-a
+    port: 1521
+    tns_name: PDBISYS
+    asm_disk_groups: DATA,FLASH
+    service:
+      - { name: BISYS_TAF, role: PRIMARY }
+  PDBIAUD:
+    db_name: PDBIAUD
+    db_unique_name: PDBIAUD
+    instance_name: PDBIAUD
+    host_name: pd-ncr-db-1-a
+    port: 1521
+    tns_name: PDBIAUD
+    asm_disk_groups: DATA,FLASH
+    service:
+      - { name: BIAUD_TAF, role: PRIMARY }
+
+audit_db_sid: PDBIAUD
+system_db_sid: PDBISYS
+audit_service_name: BIAUD_TAF
+system_service_name: BISYS_TAF
@@ -0,0 +1,29 @@
+# Overview
+
+Use this role to create new databases for NART reporting and adds users. Used both for nomis and oasys. 
+
+# Pre-requisites
+
+All database Passwords are stored in SecretsManager. Secrets are stored in /oracle/database/{{ db_sid }}/passwords"
+For NOMIS BISYS database passwords for below users need to be saved in aws secrets 
+    - sys
+    - system
+    - bip_system_owner
+    - bods_ips_system_owne
+    - bods_repo_owner
+    - dbsnmp (This will be used for OEM)
+
+For NOMIS BIAUD database passwords for below users need to be saved in aws secrets 
+    - sys
+    - system
+    - bip_audit_owner 
+    - bods_ips_audit_owner
+    - dbsnmp (This will be used for OEM)
+
+# Example
+
+To create database and users - 
+
+```
+no_proxy="*" ansible-playbook site.yml --limit $limit_db -e force_role=ncr-db"
+```
@@ -16,6 +16,15 @@
     mode: "0700"
   loop:
     - create_bip_db.sh
+
+- name: Copy BIP database creation scripts
+  template:
+    src: "{{ item }}.j2"
+    dest: "{{ stage }}/setup_{{ ORACLE_SID }}.sql"
+    owner: oracle
+    group: oinstall
+    mode: "0700"
+  loop:
     - "{{ SQL_FILE }}"
 
 - name: Create BIP database

@@ -11,11 +11,13 @@
     bip_aud_system_password: "{{ secretsmanager_passwords_dict['audit'].passwords['system'] }}"
     bip_audit_owner_password: "{{ secretsmanager_passwords_dict['audit'].passwords['bip_audit_owner'] }}"
     bods_ips_audit_password: "{{ secretsmanager_passwords_dict['audit'].passwords['bods_ips_audit_owner'] }}"
+    bip_aud_dbsnmp_password: "{{ secretsmanager_passwords_dict['audit'].passwords['dbsnmp'] }}"
     bip_sys_sys_password: "{{ secretsmanager_passwords_dict['system'].passwords['sys'] }}"
     bip_sys_system_password: "{{ secretsmanager_passwords_dict['system'].passwords['system'] }}"
     bip_system_owner_password: "{{ secretsmanager_passwords_dict['system'].passwords['bip_system_owner'] }}"
     bods_ips_system_owner_password: "{{ secretsmanager_passwords_dict['system'].passwords['bods_ips_system_owner'] }}"
     bods_repo_owner_password: "{{ secretsmanager_passwords_dict['system'].passwords['bods_repo_owner'] }}"
+    bip_sys_dbsnmp_password: "{{ secretsmanager_passwords_dict['system'].passwords['dbsnmp'] }}"
 
 - name: Fail if missing parameters
   fail:
@@ -35,11 +37,13 @@
     - bip_aud_system_password| length > 0
     - bip_audit_owner_password| length > 0
     - bods_ips_audit_password| length > 0
+    - bip_aud_dbsnmp_password| length > 0
     - bip_sys_sys_password| length > 0
     - bip_sys_system_password| length > 0
     - bip_system_owner_password| length> 0
     - bods_ips_system_owner_password| length> 0
     - bods_repo_owner_password| length>0
+    - bip_sys_dbsnmp_password| length>0
 
 - name: Fail if missing parameters
   fail:

@@ -17,5 +17,7 @@ default tablespace MISAUD_TS
 profile NART;
 grant CONNECT, CREATE JOB, CREATE PROCEDURE, CREATE SEQUENCE, CREATE TABLE, UNLIMITED TABLESPACE to BODS_IPS_AUDIT_OWNER;
 
+alter user dbsnmp identified by "{{ bip_aud_dbsnmp_password }}" account unlock;
+
 spool off 
 exit
@@ -23,5 +23,7 @@ default tablespace BODIREP_TS
 profile NART;
 grant CONNECT, CREATE SEQUENCE, CREATE TABLE, CREATE VIEW, UNLIMITED TABLESPACE to BODS_REPO_OWNER;
 
+alter user dbsnmp identified by "{{ bip_sys_dbsnmp_password }}" account unlock;
+
 spool off 
 exit