docs: playbook for AWS RDS to Timescale (timescale#2840)

* docs: add playbooks for RDS to Timescale migration with pg_dump & live migration

Signed-off-by: Harkishen-Singh <[email protected]>

Author: harkishen

_partials/_migrate_dump_source_schema.md

@@ -0,0 +1,23 @@
+import ExplainPgDumpFlags from "versionContent/_partials/_migrate_explain_pg_dump_flags.mdx";
+
+```sh
+pg_dump -d "$SOURCE" \
+  --format=plain \
+  --quote-all-identifiers \
+  --no-tablespaces \
+  --no-owner \
+  --no-privileges \
+  --schema-only \
+  --file=dump.sql \
+  --snapshot=$(cat /tmp/pgcopydb/snapshot)
+```
+
+- `--schema-only` is used to dump only the object definitions (schema), not
+  data.
+
+- `--snapshot` is used to specified the synchronized [snapshot][snapshot] when
+  making a dump of the database.
+
+<ExplainPgDumpFlags />
+
+[snapshot]: https://www.postgresql.org/docs/current/functions-admin.html#FUNCTIONS-SNAPSHOT-SYNCHRONIZATION

_partials/_migrate_live_migration_rds_roles.md

@@ -0,0 +1,68 @@
+```bash
+pg_dumpall -d "$SOURCE" \
+  --quote-all-identifiers \
+  --roles-only \
+  --no-role-passwords \
+  --file=roles.sql
+```
+
+<Highlight type="important">
+AWS RDS does not permit dumping of roles with passwords, which
+is why the above command is executed with the `--no-role-passwords`. However,
+when the migration of roles to your Timescale instance is complete, you
+need to manually assign passwords to the necessary roles using the following
+command: `ALTER ROLE name WITH PASSWORD 'password';`
+</Highlight>
+
+Timescale services do not support roles with superuser access. If your SQL
+dump includes roles that have such permissions, you'll need to modify the file
+to be compliant with the security model.
+
+You can use the following `sed` command to remove unsupported statements and
+permissions from your roles.sql file:
+
+```bash
+sed -i -E \
+-e '/CREATE ROLE "postgres";/d' \
+-e '/ALTER ROLE "postgres"/d' \
+-e '/CREATE ROLE "rds/d' \
+-e '/ALTER ROLE "rds/d' \
+-e '/TO "rds/d' \
+-e '/GRANT "rds/d' \
+-e 's/(NO)*SUPERUSER//g' \
+-e 's/(NO)*REPLICATION//g' \
+-e 's/(NO)*BYPASSRLS//g' \
+-e 's/GRANTED BY "[^"]*"//g' \
+roles.sql
+```
+
+<Highlight type="note">
+This command works only with the GNU implementation of sed (sometimes referred
+to as gsed). For the BSD implementation (the default on macOS), you need to
+add an extra argument to change the `-i` flag to `-i ''`.
+
+To check the sed version, you can use the command `sed --version`. While the
+GNU version explicitly identifies itself as GNU, the BSD version of sed
+generally doesn't provide a straightforward --version flag and simply outputs
+an "illegal option" error.
+</Highlight>
+
+A brief explanation of this script is:
+
+- `CREATE ROLE "postgres"`; and `ALTER ROLE "postgres"`: These statements are
+  removed because they require superuser access, which is not supported
+  by Timescale.
+
+- `(NO)SUPERUSER` | `(NO)REPLICATION` | `(NO)BYPASSRLS`: These are permissions
+  that require superuser access.
+
+- `CREATE ROLE "rds`, `ALTER ROLE “rds`, `TO "rds`, `GRANT "rds`: Any creation
+  or alteration of rds prefixed roles are removed because of their lack of any use
+  in a Timescale instance. Similarly, any grants to or from "rds" prefixed roles
+  are ignored as well.
+
+- `GRANTED BY role_specification`: The GRANTED BY clause can also have permissions that
+  require superuser access and should therefore be removed. Note: Per the
+  TimescaleDB documentation, the GRANTOR in the GRANTED BY clause must be the
+  current user, and this clause mainly serves the purpose of SQL compatibility.
+  Therefore, it's safe to remove it.

migrate/index.md

@@ -75,6 +75,8 @@ and importing it with [timescaledb-parallel-copy][parallel-copy].
 
 For other ingestion methods, see the [data ingest section][data-ingest].
 
+For a detailed, step-by-step guide on migrating from various databases to Timescale, please refer to the migration [playbooks].
+
 If you encounter any difficulties while migrating, consult the
 [troubleshooting] documentation, open a support requestl, or take
 your issue to the `#migration` channel in the [community slack](https://slack.timescale.com/),
@@ -89,3 +91,4 @@ where the developers of this migration method are there to help.
 [troubleshooting]: /migrate/:currentVersion:/troubleshooting/
 [live-migration]: /migrate/:currentVersion:/live-migration/
 [pgcopydb]: https://github.com/dimitri/pgcopydb
+[playbooks]: /migrate/:currentVersion:/playbooks/

migrate/live-migration/live-migration-from-postgres.md

@@ -10,7 +10,7 @@ import GettingHelp from "versionContent/_partials/_migrate_dual_write_backfill_g
 import SourceTargetNote from "versionContent/_partials/_migrate_source_target_note.mdx";
 import StepOne from "versionContent/_partials/_migrate_dual_write_step1.mdx";
 import DumpDatabaseRoles from "versionContent/_partials/_migrate_dual_write_dump_database_roles.mdx";
-import ExplainPgDumpFlags from "versionContent/_partials/_migrate_explain_pg_dump_flags.mdx";
+import DumpSourceSchema from "versionContent/_partials/_migrate_dump_source_schema.mdx";
 
 # Live migration from PostgreSQL database with pgcopydb
 
@@ -208,25 +208,7 @@ longer the buffered files need to be stored.
 
 ### 4b. Dump the database schema from the source database
 
-```sh
-pg_dump -d "$SOURCE" \
-  --format=plain \
-  --quote-all-identifiers \
-  --no-tablespaces \
-  --no-owner \
-  --no-privileges \
-  --schema-only \
-  --file=dump.sql \
-  --snapshot=$(cat /tmp/pgcopydb/snapshot)
-```
-
-- `--schema-only` is used to dump only the object definitions (schema), not
-  data.
-
-- `--snapshot` is used to specified the synchronized [snapshot][snapshot] when
-  making a dump of the database.
-
-<ExplainPgDumpFlags />
+<DumpSourceSchema />
 
 ### 4c. Load the roles and schema into the target database
 

migrate/page-index/page-index.js

@@ -74,6 +74,25 @@ module.exports = [
           },
         ],
       },
+      {
+        title: "Playbooks",
+        href: "playbooks",
+        excerpt: "Step-by-step migration playbook to Timescale",
+        children: [
+          {
+            title: "From AWS RDS using pg_dump",
+            href: "rds-timescale-pg-dump",
+            excerpt:
+                "Migrate from RDS to Timescale using pg_dump",
+          },
+          {
+            title: "From AWS RDS using live migration",
+            href: "rds-timescale-live-migration",
+            excerpt:
+                "Migrate from RDS to Timescale using live migration",
+          },
+        ],
+      },
       {
         title: "Troubleshooting",
         href: "troubleshooting",

migrate/playbooks/index.md

@@ -0,0 +1,17 @@
+---
+title: Playbooks
+excerpt: Step-by-step playbooks on migrating your database to Timescale
+products: [cloud]
+keywords: [migration, low-downtime, pg_dump, tutorial]
+tags: [recovery, logical backup, replication]
+---
+
+# Playbooks
+
+Migration playbooks serve as comprehensive tutorials, providing step-by-step instructions on how to migrate your database to Timescale. The available migration guides are as follows:
+
+1. [With downtime: AWS RDS PostgreSQL database to Timescale using pg_dump/pg_restore][rds-timescale-downtime]
+1. [With low-downtime: AWS RDS PostgreSQL database to Timescale using live migration][rds-timescale-low-downtime]
+
+[rds-timescale-downtime]: /migrate/:currentVersion:/playbooks/rds-timescale-pg-dump/
+[rds-timescale-low-downtime]: /migrate/:currentVersion:/playbooks/rds-timescale-live-migration/