__mysql_*: initial rewrite
This commit is contained in:
parent
df05abd15b
commit
c32e4040b1
19 changed files with 221 additions and 98 deletions
15
cdist/conf/type/__mysql_database/explorer/state
Executable file
15
cdist/conf/type/__mysql_database/explorer/state
Executable file
|
@ -0,0 +1,15 @@
|
||||||
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/name" ]
|
||||||
|
then
|
||||||
|
name="$( cat "$__object/parameter/name" )"
|
||||||
|
else
|
||||||
|
name="$__object_id"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -n "$( mysql -B -N -e "show databases like '$name'" )" ]
|
||||||
|
then
|
||||||
|
echo 'present'
|
||||||
|
else
|
||||||
|
echo 'absent'
|
||||||
|
fi
|
|
@ -1,54 +1,28 @@
|
||||||
#!/bin/sh -e
|
#!/bin/sh -e
|
||||||
#
|
|
||||||
# 2012 Benedikt Koeppel (code@benediktkoeppel.ch)
|
|
||||||
#
|
|
||||||
# This file is part of cdist.
|
|
||||||
#
|
|
||||||
# cdist is free software: you can redistribute it and/or modify
|
|
||||||
# it under the terms of the GNU General Public License as published by
|
|
||||||
# the Free Software Foundation, either version 3 of the License, or
|
|
||||||
# (at your option) any later version.
|
|
||||||
#
|
|
||||||
# cdist is distributed in the hope that it will be useful,
|
|
||||||
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
||||||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
||||||
# GNU General Public License for more details.
|
|
||||||
#
|
|
||||||
# You should have received a copy of the GNU General Public License
|
|
||||||
# along with cdist. If not, see <http://www.gnu.org/licenses/>.
|
|
||||||
#
|
|
||||||
#
|
|
||||||
|
|
||||||
# if --database was specified
|
state_is="$( cat "$__object/explorer/state" )"
|
||||||
if [ -f "$__object/parameter/name" ]; then
|
|
||||||
database="$(cat "$__object/parameter/name")"
|
state_should="$( cat "$__object/parameter/state" )"
|
||||||
else # otherwise use the object id as database name
|
|
||||||
database="$__object_id"
|
if [ "$state_is" = "$state_should" ]
|
||||||
|
then
|
||||||
|
exit 0
|
||||||
fi
|
fi
|
||||||
|
|
||||||
cat <<-EOFF
|
if [ -f "$__object/parameter/name" ]
|
||||||
mysql -u root <<-EOF
|
then
|
||||||
CREATE DATABASE IF NOT EXISTS $database
|
name="$( cat "$__object/parameter/name" )"
|
||||||
EOF
|
else
|
||||||
EOFF
|
name="$__object_id"
|
||||||
|
|
||||||
# if --user was specified
|
|
||||||
if [ -f "$__object/parameter/user" ]; then
|
|
||||||
user="$(cat "$__object/parameter/user")"
|
|
||||||
|
|
||||||
# if --password was specified
|
|
||||||
if [ -f "$__object/parameter/password" ]; then
|
|
||||||
password="$(cat "$__object/parameter/password")"
|
|
||||||
cat <<-EOFF
|
|
||||||
mysql -u root <<-EOF
|
|
||||||
GRANT ALL PRIVILEGES ON $database.* to '$user'@'localhost' IDENTIFIED BY '$password';
|
|
||||||
EOF
|
|
||||||
EOFF
|
|
||||||
else
|
|
||||||
cat <<-EOFF
|
|
||||||
mysql -u root <<-EOF
|
|
||||||
GRANT ALL PRIVILEGES ON $database.* to '$user'@'localhost';
|
|
||||||
EOF
|
|
||||||
EOFF
|
|
||||||
fi
|
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
case "$state_should" in
|
||||||
|
present)
|
||||||
|
echo "mysql -e 'create database \`$name\`'"
|
||||||
|
echo "create database $name" >> "$__messages_out"
|
||||||
|
;;
|
||||||
|
absent)
|
||||||
|
echo "mysql -e 'drop database \`$name\`'"
|
||||||
|
echo "drop database $name" >> "$__messages_out"
|
||||||
|
;;
|
||||||
|
esac
|
||||||
|
|
|
@ -1,49 +0,0 @@
|
||||||
cdist-type__mysql_database(7)
|
|
||||||
=============================
|
|
||||||
|
|
||||||
NAME
|
|
||||||
----
|
|
||||||
cdist-type__mysql_database - Manage a MySQL database
|
|
||||||
|
|
||||||
|
|
||||||
DESCRIPTION
|
|
||||||
-----------
|
|
||||||
This cdist type allows you to install a MySQL database.
|
|
||||||
|
|
||||||
|
|
||||||
REQUIRED PARAMETERS
|
|
||||||
-------------------
|
|
||||||
None.
|
|
||||||
|
|
||||||
OPTIONAL PARAMETERS
|
|
||||||
-------------------
|
|
||||||
name
|
|
||||||
The name of the database to install
|
|
||||||
defaults to the object id
|
|
||||||
|
|
||||||
user
|
|
||||||
A user that should have access to the database
|
|
||||||
|
|
||||||
password
|
|
||||||
The password for the user who manages the database
|
|
||||||
|
|
||||||
|
|
||||||
EXAMPLES
|
|
||||||
--------
|
|
||||||
|
|
||||||
.. code-block:: sh
|
|
||||||
|
|
||||||
__mysql_database "cdist" --name "cdist" --user "myuser" --password "mypwd"
|
|
||||||
|
|
||||||
|
|
||||||
AUTHORS
|
|
||||||
-------
|
|
||||||
Benedikt Koeppel <code@benediktkoeppel.ch>
|
|
||||||
|
|
||||||
|
|
||||||
COPYING
|
|
||||||
-------
|
|
||||||
Copyright \(C) 2012 Benedikt Koeppel. You can redistribute it
|
|
||||||
and/or modify it under the terms of the GNU General Public License as
|
|
||||||
published by the Free Software Foundation, either version 3 of the
|
|
||||||
License, or (at your option) any later version.
|
|
26
cdist/conf/type/__mysql_database/manifest
Executable file
26
cdist/conf/type/__mysql_database/manifest
Executable file
|
@ -0,0 +1,26 @@
|
||||||
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/user" ]
|
||||||
|
then
|
||||||
|
user="$( cat "$__object/parameter/user" )"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/password" ]
|
||||||
|
then
|
||||||
|
password="$( cat "$__object/parameter/password" )"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -n "$user" ] && [ -n "$password" ]
|
||||||
|
then
|
||||||
|
if [ -f "$__object/parameter/name" ]
|
||||||
|
then
|
||||||
|
database="$( cat "$__object/parameter/name" )"
|
||||||
|
else
|
||||||
|
database="$__object_id"
|
||||||
|
fi
|
||||||
|
|
||||||
|
__mysql_user "$user" --password "$password"
|
||||||
|
|
||||||
|
require="__mysql_user/$user" \
|
||||||
|
__mysql_privileges "$database/$user" --database "$database" --user "$user"
|
||||||
|
fi
|
1
cdist/conf/type/__mysql_database/parameter/default/state
Normal file
1
cdist/conf/type/__mysql_database/parameter/default/state
Normal file
|
@ -0,0 +1 @@
|
||||||
|
present
|
|
@ -1,3 +1,4 @@
|
||||||
name
|
name
|
||||||
user
|
user
|
||||||
password
|
password
|
||||||
|
state
|
||||||
|
|
22
cdist/conf/type/__mysql_privileges/explorer/state
Executable file
22
cdist/conf/type/__mysql_privileges/explorer/state
Executable file
|
@ -0,0 +1,22 @@
|
||||||
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
privileges="$( cat "$__object/parameter/privileges" )"
|
||||||
|
|
||||||
|
database="$( cat "$__object/parameter/database" )"
|
||||||
|
|
||||||
|
table="$( cat "$__object/parameter/table" )"
|
||||||
|
|
||||||
|
user="$( cat "$__object/parameter/user" )"
|
||||||
|
|
||||||
|
host="$( cat "$__object/parameter/host" )"
|
||||||
|
|
||||||
|
check_privileges="$(
|
||||||
|
mysql -B -N -e "show grants for '$user'@'$host'" \
|
||||||
|
| grep -Ei "^grant $privileges on .$database.\..$table. to " || true )"
|
||||||
|
|
||||||
|
if [ -n "$check_privileges" ]
|
||||||
|
then
|
||||||
|
echo 'present'
|
||||||
|
else
|
||||||
|
echo 'absent'
|
||||||
|
fi
|
31
cdist/conf/type/__mysql_privileges/gencode-remote
Executable file
31
cdist/conf/type/__mysql_privileges/gencode-remote
Executable file
|
@ -0,0 +1,31 @@
|
||||||
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
state_is="$( cat "$__object/explorer/state" )"
|
||||||
|
|
||||||
|
state_should="$( cat "$__object/parameter/state" )"
|
||||||
|
|
||||||
|
if [ "$state_is" = "$state_should" ]
|
||||||
|
then
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
|
||||||
|
privileges="$( cat "$__object/parameter/privileges" )"
|
||||||
|
|
||||||
|
database="$( cat "$__object/parameter/database" )"
|
||||||
|
|
||||||
|
table="$( cat "$__object/parameter/table" )"
|
||||||
|
|
||||||
|
user="$( cat "$__object/parameter/user" )"
|
||||||
|
|
||||||
|
host="$( cat "$__object/parameter/host" )"
|
||||||
|
|
||||||
|
case "$state_should" in
|
||||||
|
present)
|
||||||
|
echo "mysql -e 'grant $privileges on \`$database\`.\`$table\` to \`$user\`@\`$host\`'"
|
||||||
|
echo "grant $privileges on $database.$table to $user@$host" >> "$__messages_out"
|
||||||
|
;;
|
||||||
|
absent)
|
||||||
|
echo "mysql -e 'revoke $privileges on \`$database\`.\`$table\` from \`$user\`@\`$host\`'"
|
||||||
|
echo "revoke $privileges on $database.$table from $user@$host" >> "$__messages_out"
|
||||||
|
;;
|
||||||
|
esac
|
|
@ -0,0 +1 @@
|
||||||
|
localhost
|
|
@ -0,0 +1 @@
|
||||||
|
all privileges
|
|
@ -0,0 +1 @@
|
||||||
|
present
|
|
@ -0,0 +1 @@
|
||||||
|
*
|
4
cdist/conf/type/__mysql_privileges/parameter/optional
Normal file
4
cdist/conf/type/__mysql_privileges/parameter/optional
Normal file
|
@ -0,0 +1,4 @@
|
||||||
|
privileges
|
||||||
|
table
|
||||||
|
host
|
||||||
|
state
|
2
cdist/conf/type/__mysql_privileges/parameter/required
Normal file
2
cdist/conf/type/__mysql_privileges/parameter/required
Normal file
|
@ -0,0 +1,2 @@
|
||||||
|
database
|
||||||
|
user
|
36
cdist/conf/type/__mysql_user/explorer/state
Executable file
36
cdist/conf/type/__mysql_user/explorer/state
Executable file
|
@ -0,0 +1,36 @@
|
||||||
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/name" ]
|
||||||
|
then
|
||||||
|
name="$( cat "$__object/parameter/name" )"
|
||||||
|
else
|
||||||
|
name="$__object_id"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/password" ]
|
||||||
|
then
|
||||||
|
password="$( cat "$__object/parameter/password" )"
|
||||||
|
else
|
||||||
|
password=''
|
||||||
|
fi
|
||||||
|
|
||||||
|
host="$( cat "$__object/parameter/host" )"
|
||||||
|
|
||||||
|
check_user="$( mysql -B -N -e "select user from mysql.user where user = '$name' and host = '$host'" )"
|
||||||
|
|
||||||
|
if [ -n "$check_user" ]
|
||||||
|
then
|
||||||
|
if [ -n "$password" ]
|
||||||
|
then
|
||||||
|
check_password="$( mysql -B -N -e "select user from mysql.user where user = '$name' and host = '$host' and password = password( '$password' )" )"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -n "$password" ] && [ -z "$check_password" ]
|
||||||
|
then
|
||||||
|
echo 'change-password'
|
||||||
|
else
|
||||||
|
echo 'present'
|
||||||
|
fi
|
||||||
|
else
|
||||||
|
echo 'absent'
|
||||||
|
fi
|
50
cdist/conf/type/__mysql_user/gencode-remote
Executable file
50
cdist/conf/type/__mysql_user/gencode-remote
Executable file
|
@ -0,0 +1,50 @@
|
||||||
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
state_is="$( cat "$__object/explorer/state" )"
|
||||||
|
|
||||||
|
state_should="$( cat "$__object/parameter/state" )"
|
||||||
|
|
||||||
|
if [ "$state_is" = "$state_should" ]
|
||||||
|
then
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/name" ]
|
||||||
|
then
|
||||||
|
name="$( cat "$__object/parameter/name" )"
|
||||||
|
else
|
||||||
|
name="$__object_id"
|
||||||
|
fi
|
||||||
|
|
||||||
|
host="$( cat "$__object/parameter/host" )"
|
||||||
|
|
||||||
|
if [ -f "$__object/parameter/password" ]
|
||||||
|
then
|
||||||
|
password="$( cat "$__object/parameter/password" )"
|
||||||
|
else
|
||||||
|
if [ "$state_should" = 'present' ]
|
||||||
|
then
|
||||||
|
echo '--password needed' >&2
|
||||||
|
exit 1
|
||||||
|
else
|
||||||
|
password=''
|
||||||
|
fi
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ "$state_is" = 'absent' ] && [ "$state_should" = 'present' ]
|
||||||
|
then
|
||||||
|
echo "mysql -e 'create user \`$name\`@\`$host\` identified by \"$password\"'"
|
||||||
|
echo "create user $name@$host" >> "$__messages_out"
|
||||||
|
|
||||||
|
elif [ "$state_is" != 'absent' ] && [ "$state_should" = 'absent' ]
|
||||||
|
then
|
||||||
|
echo "mysql -e 'drop user \`$name\`@\`$host\`'"
|
||||||
|
echo "drop user $name@$host" >> "$__messages_out"
|
||||||
|
|
||||||
|
elif [ "$state_is" = 'change-password' ]
|
||||||
|
then
|
||||||
|
# this only works with MySQL 5.7.6 and later or MariaDB 10.1.20 and later
|
||||||
|
echo "mysql -e 'alter user \`$name\`@\`$host\` identified by \"$password\"'"
|
||||||
|
echo "mysql -e 'flush privileges'"
|
||||||
|
echo "change password $name@$host" >> "$__messages_out"
|
||||||
|
fi
|
1
cdist/conf/type/__mysql_user/parameter/default/host
Normal file
1
cdist/conf/type/__mysql_user/parameter/default/host
Normal file
|
@ -0,0 +1 @@
|
||||||
|
localhost
|
1
cdist/conf/type/__mysql_user/parameter/default/state
Normal file
1
cdist/conf/type/__mysql_user/parameter/default/state
Normal file
|
@ -0,0 +1 @@
|
||||||
|
present
|
4
cdist/conf/type/__mysql_user/parameter/optional
Normal file
4
cdist/conf/type/__mysql_user/parameter/optional
Normal file
|
@ -0,0 +1,4 @@
|
||||||
|
name
|
||||||
|
host
|
||||||
|
password
|
||||||
|
state
|
Loading…
Reference in a new issue