| Environment Variable Name | Local Development | AWS Defined | API Config Required | API Config Default | AWS Value |
|---|---|---|---|---|---|
| AWS_ACCESS_KEY_ID | X | ||||
| AWS_SECRET_ACCESS_KEY | X | ||||
| AWS_DEFAULT_REGION | X | X | defined in IaC | ||
| AWS_DISABLE_SSL | X | ||||
| AWS_S3_FORCE_PATH_STYLE | X | ||||
| AUTH_ENVIRONMENT | X | X | defined in IaC | ||
| APPLICATION_KEY | X | X | defined in IaC | ||
| MINIO_ENDPOINT_URL | X | ||||
| PGUSER | X | X | X | hhc_shared_user | |
| PGPASSWORD | X | X | X | defined in IaC | |
| PGDATABASE | X | X | X | postgres | |
| PGHOST | X | X | X | defined in IaC | |
| PGSSLMODE | X | X | X | require | require |
| PGX_POOL_MAXCONNS | X | 10 | |||
| PGX_POOL_MINCONNS | X | 5 | |||
| PGX_POOL_MAXCONN_IDLETIME | X | 30m | |||
| S3_BUCKET | X | X | X | hhc-shared-ENVIRONMENT | |
| S3_DEFAULT_INDEX | X | index.html | |||
| S3_PREFIX_STATIC | X | X | / | /shared/ui | |
| API_PORT | X | 8080 | |||
| API_LOG | X | false |
The following setup steps for the PostGIS extension is not available through automation processes. PostGIS extension setup requires rds_superuser privileges. Amazon RDS documentation here is a guide to help with initial setup in addition to the following.
-
Make a connection to the database
- Connection to the database needs to be a user with elevated privileges
- The typical user is
postgres - Acquire this user's password from the
AWS Secrets Manager
-
Create a
ROLEto manage the PostGIS extension andGRANTrds_superusertogis_adminCREATE ROLE gis_admin; GRANT rds_superuser TO gis_admin; -
Set role to
gis_adminand create extension(s)- This will add three additional schemas, tiger, tiger_data, and topology
- The
publicschema will have the tablespatial_ref_syscreated
SET ROLE gis_admin; CREATE EXTENSION postgis; CREATE EXTENSION fuzzystrmatch; CREATE EXTENSION postgis_tiger_geocoder; CREATE EXTENSION postgis_topology; CREATE EXTENSION address_standardizer_data_us; -- optional
-
Verify the extensions and their owners
SELECT n.nspname AS "Name" , pg_catalog.pg_get_userbyid(n.nspowner) AS "Owner" FROM pg_catalog.pg_namespace n WHERE n.nspname !~ '^pg_' AND n.nspname <> 'information_schema' ORDER BY 1;
Expected Result
Name Owner public postgres tiger rdsadmin tiger_data rdsadmin topology rdsadmin -
Transfer ownership of the extension schemas to the
gis_adminroleALTER SCHEMA tiger OWNER TO gis_admin; ALTER SCHEMA tiger_data OWNER TO gis_admin; ALTER SCHEMA topology OWNER TO gis_admin;
-
Verify the extensions and their owners once again
SELECT n.nspname AS "Name" , pg_catalog.pg_get_userbyid(n.nspowner) AS "Owner" FROM pg_catalog.pg_namespace n WHERE n.nspname !~ '^pg_' AND n.nspname <> 'information_schema' ORDER BY 1;
Expected Result
Name Owner public postgres tiger gis_admin tiger_data gis_admin topology gis_admin -
Transfer ownership of the PostGIS tables
- Create a function to alter permissions
CREATE FUNCTION exec(text) returns text language plpgsql volatile AS $f$ BEGIN EXECUTE $1; RETURN $1; END; $f$;
- Run the query that runs the function that alters permissions
SELECT exec ('ALTER TABLE ' || quote_ident(s.nspname) || '.' || quote_ident(s.relname) || ' OWNER TO gis_admin;') FROM ( SELECT nspname , relname FROM pg_class c JOIN pg_namespace n ON (c.relnamespace = n.oid) WHERE nspname IN ('tiger' , 'topology') AND relkind IN ('r' , 'S' , 'v') ORDER BY relkind = 'S') s;
-
Testing the extension
- Set the search path to avoid needing to specify the schema name
SET search_path=public,tiger;
-
Test the
tigerschema with the followingSELECT address, streetname, streettypeabbrev, zip FROM normalize_address('1 Devonshire Place, Boston, MA 02109') AS na;
Expected Result
address streetname streettypeabbrev zip 1 Devonshire Pl 02109
To get a list of versions use the following command
SELECT * FROM pg_available_extension_versions WHERE name='postgis';Check for available PostGIS extension version updates by running the following
SELECT postGIS_extensions_upgrade();In addition to the PostGIS extensions, there is a requirement for the uuid-ossp extension. Many schema tables use the uuid_generate_v4() function as a data type. This extension needs to associated with the public schema to automatically be available to all other schemas.
Create the extension for uuid-ossp
CREATE EXTENSION "uuid-ossp" WITH SCHEMA public;Flyway comes with support for placeholder replacement in:
- SQL migrations
- Script migrations
Due to file size limitations (>100MB) for GitHub repositories, large geometry files supporting the Flyway migration are offloaded to the repository's release assets. Assets are collected in a tar.gz file and associated with a tagged release. Developing locally with needs for large files supporting new migrations will require a download of the asset making sure you have the most up-to-date set of files. Make sure to include any new files and update the asset in the release.
Tar gzip all the zip files into geometry.tar.gz. These are the supporting files for migration that are too large (>100MB) for the repository. Building the tar gzip and uploading to the repository as taged release asset has no size limitation.
The tar gzip file is a collection of all the zip files used in the migration. Typically, a migration file uses a single zip file. The following command is an example how the tar gzip file could be created:
> tar -czvf geometry.tar.gz /path/to/*.zipThe Python script master_data_geom.py reads geojson from ARC GIS services, defining District boundaries, and generates a SQL file that can be used to INSERT that data into a Postgres database. There are four URLs defining different missions:
- Civil Works
- Regulatory
- FUDS
- Military
Not every District has these boundaries defined. SQL files are generated if that District has geojson defined for a particular mission, and that file is written to a zip file. The result of running this script is a collection of SQL files, one for each District, each having their respective boundaries defined in the mission_geom.zip file.