mysql.rb
No OneTemporary
Actions

Size

6 KB

Subscribers

None

mysql.rb
View Options

	require File.expand_path(File.join(File.dirname(__FILE__), '..', 'mysql'))
	Puppet::Type.type(:mysql_user).provide(:mysql, :parent => Puppet::Provider::Mysql) do

	desc 'manage users for a mysql database.'
	commands :mysql => 'mysql'

	# Build a property_hash containing all the discovered information about MySQL
	# users.
	def self.instances
	users = mysql([defaults_file, '-NBe',
	"SELECT CONCAT(User, '@',Host) AS User FROM mysql.user"].compact).split("\n")
	# To reduce the number of calls to MySQL we collect all the properties in
	# one big swoop.
	users.collect do \|name\|
	if mysqld_version.nil?
	## Default ...
	query = "SELECT MAX_USER_CONNECTIONS, MAX_CONNECTIONS, MAX_QUESTIONS, MAX_UPDATES, PASSWORD /!50508 , PLUGIN / FROM mysql.user WHERE CONCAT(user, '@', host) = '#{name}'"
	else
	if mysqld_type == "mysql" and Puppet::Util::Package.versioncmp(mysqld_version, '5.7.6') >= 0
	query = "SELECT MAX_USER_CONNECTIONS, MAX_CONNECTIONS, MAX_QUESTIONS, MAX_UPDATES, AUTHENTICATION_STRING, PLUGIN FROM mysql.user WHERE CONCAT(user, '@', host) = '#{name}'"
	else
	query = "SELECT MAX_USER_CONNECTIONS, MAX_CONNECTIONS, MAX_QUESTIONS, MAX_UPDATES, PASSWORD /!50508 , PLUGIN / FROM mysql.user WHERE CONCAT(user, '@', host) = '#{name}'"
	end
	end
	@max_user_connections, @max_connections_per_hour, @max_queries_per_hour,
	@max_updates_per_hour, @password, @plugin = mysql([defaults_file, "-NBe", query].compact).split(/\s/)

	new(:name => name,
	:ensure => :present,
	:password_hash => @password,
	:plugin => @plugin,
	:max_user_connections => @max_user_connections,
	:max_connections_per_hour => @max_connections_per_hour,
	:max_queries_per_hour => @max_queries_per_hour,
	:max_updates_per_hour => @max_updates_per_hour
	)
	end
	end

	# We iterate over each mysql_user entry in the catalog and compare it against
	# the contents of the property_hash generated by self.instances
	def self.prefetch(resources)
	users = instances
	resources.keys.each do \|name\|
	if provider = users.find { \|user\| user.name == name }
	resources[name].provider = provider
	end
	end
	end

	def create
	merged_name = @resource[:name].sub('@', "'@'")
	password_hash = @resource.value(:password_hash)
	plugin = @resource.value(:plugin)
	max_user_connections = @resource.value(:max_user_connections) \|\| 0
	max_connections_per_hour = @resource.value(:max_connections_per_hour) \|\| 0
	max_queries_per_hour = @resource.value(:max_queries_per_hour) \|\| 0
	max_updates_per_hour = @resource.value(:max_updates_per_hour) \|\| 0

	# Use CREATE USER to be compatible with NO_AUTO_CREATE_USER sql_mode
	# This is also required if you want to specify a authentication plugin
	if !plugin.nil?
	if plugin == 'sha256_password' and !password_hash.nil?
	mysql([defaults_file, '-e', "CREATE USER '#{merged_name}' IDENTIFIED WITH '#{plugin}' AS '#{password_hash}'"].compact)
	else
	mysql([defaults_file, '-e', "CREATE USER '#{merged_name}' IDENTIFIED WITH '#{plugin}'"].compact)
	end
	@property_hash[:ensure] = :present
	@property_hash[:plugin] = plugin
	else
	mysql([defaults_file, '-e', "CREATE USER '#{merged_name}' IDENTIFIED BY PASSWORD '#{password_hash}'"].compact)
	@property_hash[:ensure] = :present
	@property_hash[:password_hash] = password_hash
	end
	mysql([defaults_file, '-e', "GRANT USAGE ON . TO '#{merged_name}' WITH MAX_USER_CONNECTIONS #{max_user_connections} MAX_CONNECTIONS_PER_HOUR #{max_connections_per_hour} MAX_QUERIES_PER_HOUR #{max_queries_per_hour} MAX_UPDATES_PER_HOUR #{max_updates_per_hour}"].compact)
	@property_hash[:max_user_connections] = max_user_connections
	@property_hash[:max_connections_per_hour] = max_connections_per_hour
	@property_hash[:max_queries_per_hour] = max_queries_per_hour
	@property_hash[:max_updates_per_hour] = max_updates_per_hour

	exists? ? (return true) : (return false)
	end

	def destroy
	merged_name = @resource[:name].sub('@', "'@'")
	mysql([defaults_file, '-e', "DROP USER '#{merged_name}'"].compact)

	@property_hash.clear
	exists? ? (return false) : (return true)
	end

	def exists?
	@property_hash[:ensure] == :present \|\| false
	end

	##
	## MySQL user properties
	##

	# Generates method for all properties of the property_hash
	mk_resource_methods

	def password_hash=(string)
	merged_name = self.class.cmd_user(@resource[:name])

	# We have a fact for the mysql version ...
	if mysqld_version.nil?
	# default ... if mysqld_version does not work
	mysql([defaults_file, '-e', "SET PASSWORD FOR #{merged_name} = '#{string}'"].compact)
	else
	# Version >= 5.7.6 (many password related changes)
	if mysqld_type == "mysql" and Puppet::Util::Package.versioncmp(mysqld_version, '5.7.6') >= 0
	if string.match(/^\*/)
	mysql([defaults_file, '-e', "ALTER USER #{merged_name} IDENTIFIED WITH mysql_native_password AS '#{string}'"].compact)
	else
	raise ArgumentError, "Only mysql_native_password (*ABCD...XXX) hashes are supported"
	end
	else
	# older versions
	mysql([defaults_file, '-e', "SET PASSWORD FOR #{merged_name} = '#{string}'"].compact)
	end
	end

	password_hash == string ? (return true) : (return false)
	end

	def max_user_connections=(int)
	merged_name = self.class.cmd_user(@resource[:name])
	mysql([defaults_file, '-e', "GRANT USAGE ON . TO #{merged_name} WITH MAX_USER_CONNECTIONS #{int}"].compact).chomp

	max_user_connections == int ? (return true) : (return false)
	end

	def max_connections_per_hour=(int)
	merged_name = self.class.cmd_user(@resource[:name])
	mysql([defaults_file, '-e', "GRANT USAGE ON . TO #{merged_name} WITH MAX_CONNECTIONS_PER_HOUR #{int}"].compact).chomp

	max_connections_per_hour == int ? (return true) : (return false)
	end

	def max_queries_per_hour=(int)
	merged_name = self.class.cmd_user(@resource[:name])
	mysql([defaults_file, '-e', "GRANT USAGE ON . TO #{merged_name} WITH MAX_QUERIES_PER_HOUR #{int}"].compact).chomp

	max_queries_per_hour == int ? (return true) : (return false)
	end

	def max_updates_per_hour=(int)
	merged_name = self.class.cmd_user(@resource[:name])
	mysql([defaults_file, '-e', "GRANT USAGE ON . TO #{merged_name} WITH MAX_UPDATES_PER_HOUR #{int}"].compact).chomp

	max_updates_per_hour == int ? (return true) : (return false)
	end

	end

File Metadata

Mime Type: text/x-ruby
Expires: Jun 4 2025, 7:10 PM (9 w, 5 d ago)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 3398958

mysql.rbNo OneTemporaryActions

mysql.rbView Options

File Metadata

Event Timeline

mysql.rb
No OneTemporary
Actions

mysql.rb
View Options