diff --git a/lib/ansible/modules/database/mysql/mysql_db.py b/lib/ansible/modules/database/mysql/mysql_db.py index 4a7a71db51..f3bf10611a 100644 --- a/lib/ansible/modules/database/mysql/mysql_db.py +++ b/lib/ansible/modules/database/mysql/mysql_db.py @@ -128,15 +128,18 @@ else: # MySQL module specific support methods. # + def db_exists(cursor, db): - res = cursor.execute("SHOW DATABASES LIKE %s", (db.replace("_","\_"),)) + res = cursor.execute("SHOW DATABASES LIKE %s", (db.replace("_", "\_"),)) return bool(res) + def db_delete(cursor, db): query = "DROP DATABASE %s" % mysql_quote_identifier(db, 'database') cursor.execute(query) return True + def db_dump(module, host, user, password, db_name, target, all_databases, port, config_file, socket=None, ssl_cert=None, ssl_key=None, ssl_ca=None, single_transaction=None, quick=None): cmd = module.get_bin_path('mysqldump', True) @@ -182,6 +185,7 @@ def db_dump(module, host, user, password, db_name, target, all_databases, port, rc, stdout, stderr = module.run_command(cmd, use_unsafe_shell=True) return rc, stdout, stderr + def db_import(module, host, user, password, db_name, target, all_databases, port, config_file, socket=None, ssl_cert=None, ssl_key=None, ssl_ca=None): if not os.path.exists(target): return module.fail_json(msg="target %s does not exist on the host" % target) @@ -234,6 +238,7 @@ def db_import(module, host, user, password, db_name, target, all_databases, port rc, stdout, stderr = module.run_command(cmd, use_unsafe_shell=True) return rc, stdout, stderr + def db_create(cursor, db, encoding, collation): query_params = dict(enc=encoding, collate=collation) query = ['CREATE DATABASE %s' % mysql_quote_identifier(db, 'database')] @@ -242,16 +247,17 @@ def db_create(cursor, db, encoding, collation): if collation: query.append("COLLATE %(collate)s") query = ' '.join(query) - res = cursor.execute(query, query_params) + cursor.execute(query, query_params) return True # =========================================== # Module execution. # + def main(): module = AnsibleModule( - argument_spec = dict( + argument_spec=dict( login_user=dict(default=None), login_password=dict(default=None, no_log=True), login_host=dict(default="localhost"), @@ -261,7 +267,7 @@ def main(): encoding=dict(default=""), collation=dict(default=""), target=dict(default=None, type='path'), - state=dict(default="present", choices=["absent", "present","dump", "import"]), + state=dict(default="present", choices=["absent", "present", "dump", "import"]), ssl_cert=dict(default=None, type='path'), ssl_key=dict(default=None, type='path'), ssl_ca=dict(default=None, type='path'), @@ -296,9 +302,9 @@ def main(): single_transaction = module.params["single_transaction"] quick = module.params["quick"] - if state in ['dump','import']: + if state in ['dump', 'import']: if target is None: - module.fail_json(msg="with state=%s target is required" % (state)) + module.fail_json(msg="with state=%s target is required" % state) if db == 'all': db = 'mysql' all_databases = True @@ -338,8 +344,9 @@ def main(): module.exit_json(changed=True, db=db) else: rc, stdout, stderr = db_dump(module, login_host, login_user, - login_password, db, target, all_databases, - login_port, config_file, socket, ssl_cert, ssl_key, ssl_ca, single_transaction, quick) + login_password, db, target, all_databases, + login_port, config_file, socket, ssl_cert, ssl_key, + ssl_ca, single_transaction, quick) if rc != 0: module.fail_json(msg="%s" % stderr) else: @@ -350,8 +357,10 @@ def main(): module.exit_json(changed=True, db=db) else: rc, stdout, stderr = db_import(module, login_host, login_user, - login_password, db, target, all_databases, - login_port, config_file, socket, ssl_cert, ssl_key, ssl_ca) + login_password, db, target, + all_databases, + login_port, config_file, + socket, ssl_cert, ssl_key, ssl_ca) if rc != 0: module.fail_json(msg="%s" % stderr) else: @@ -382,8 +391,8 @@ def main(): changed = db_create(cursor, db, encoding, collation) if changed: rc, stdout, stderr = db_import(module, login_host, login_user, - login_password, db, target, all_databases, - login_port, config_file, socket, ssl_cert, ssl_key, ssl_ca) + login_password, db, target, all_databases, + login_port, config_file, socket, ssl_cert, ssl_key, ssl_ca) if rc != 0: module.fail_json(msg="%s" % stderr) else: diff --git a/lib/ansible/modules/database/mysql/mysql_replication.py b/lib/ansible/modules/database/mysql/mysql_replication.py index 07106c698b..24c8e1bc8a 100644 --- a/lib/ansible/modules/database/mysql/mysql_replication.py +++ b/lib/ansible/modules/database/mysql/mysql_replication.py @@ -201,7 +201,7 @@ def changemaster(cursor, chm, chm_params): def main(): module = AnsibleModule( - argument_spec = dict( + argument_spec=dict( login_user=dict(default=None), login_password=dict(default=None, no_log=True), login_host=dict(default="localhost"), @@ -290,7 +290,7 @@ def main(): module.exit_json(**status) elif mode in "changemaster": - chm=[] + chm = [] chm_params = {} result = {} if master_host: @@ -347,7 +347,7 @@ def main(): except Exception: e = get_exception() module.fail_json(msg='%s. Query == CHANGE MASTER TO %s' % (e, chm)) - result['changed']=True + result['changed'] = True module.exit_json(**result) elif mode in "startslave": started = start_slave(cursor) diff --git a/lib/ansible/modules/database/mysql/mysql_user.py b/lib/ansible/modules/database/mysql/mysql_user.py index 1f27861238..49c7a17326 100644 --- a/lib/ansible/modules/database/mysql/mysql_user.py +++ b/lib/ansible/modules/database/mysql/mysql_user.py @@ -214,8 +214,7 @@ EXAMPLES = """ # password=n<_665{vS43y """ -import getpass -import tempfile + import re import string try: @@ -236,6 +235,7 @@ VALID_PRIVS = frozenset(('CREATE', 'DROP', 'GRANT', 'GRANT OPTION', 'REPLICATION SLAVE', 'SHOW DATABASES', 'SHUTDOWN', 'SUPER', 'ALL', 'ALL PRIVILEGES', 'USAGE', 'REQUIRESSL')) + class InvalidPrivsError(Exception): pass @@ -243,6 +243,7 @@ class InvalidPrivsError(Exception): # MySQL module specific support methods. # + # User Authentication Management was change in MySQL 5.7 # This is a generic check for if the server version is less than version 5.7 def server_version_check(cursor): @@ -255,11 +256,12 @@ def server_version_check(cursor): # mariadb and the old-style update continues to work if 'mariadb' in version_str.lower(): return True - if (int(version[0]) <= 5 and int(version[1]) < 7): + if int(version[0]) <= 5 and int(version[1]) < 7: return True else: return False + def get_mode(cursor): cursor.execute('SELECT @@GLOBAL.sql_mode') result = cursor.fetchone() @@ -270,15 +272,17 @@ def get_mode(cursor): mode = 'NOTANSI' return mode + def user_exists(cursor, user, host, host_all): if host_all: cursor.execute("SELECT count(*) FROM user WHERE user = %s", ([user])) else: - cursor.execute("SELECT count(*) FROM user WHERE user = %s AND host = %s", (user,host)) + cursor.execute("SELECT count(*) FROM user WHERE user = %s AND host = %s", (user, host)) count = cursor.fetchone() return count[0] > 0 + def user_add(cursor, user, host, host_all, password, encrypted, new_priv, check_mode): # we cannot create users without a proper hostname if host_all: @@ -288,16 +292,17 @@ def user_add(cursor, user, host, host_all, password, encrypted, new_priv, check_ return True if password and encrypted: - cursor.execute("CREATE USER %s@%s IDENTIFIED BY PASSWORD %s", (user,host,password)) + cursor.execute("CREATE USER %s@%s IDENTIFIED BY PASSWORD %s", (user, host, password)) elif password and not encrypted: - cursor.execute("CREATE USER %s@%s IDENTIFIED BY %s", (user,host,password)) + cursor.execute("CREATE USER %s@%s IDENTIFIED BY %s", (user, host, password)) else: - cursor.execute("CREATE USER %s@%s", (user,host)) + cursor.execute("CREATE USER %s@%s", (user, host)) if new_priv is not None: for db_table, priv in iteritems(new_priv): - privileges_grant(cursor, user,host,db_table,priv) + privileges_grant(cursor, user, host, db_table, priv) return True + def is_hash(password): ishash = False if len(password) == 41 and password[0] == '*': @@ -305,6 +310,7 @@ def is_hash(password): ishash = True return ishash + def user_mod(cursor, user, host, host_all, password, encrypted, new_priv, append_privs, module): changed = False grant_option = False @@ -321,9 +327,9 @@ def user_mod(cursor, user, host, host_all, password, encrypted, new_priv, append old_user_mgmt = server_version_check(cursor) if old_user_mgmt: - cursor.execute("SELECT password FROM user WHERE user = %s AND host = %s", (user,host)) + cursor.execute("SELECT password FROM user WHERE user = %s AND host = %s", (user, host)) else: - cursor.execute("SELECT authentication_string FROM user WHERE user = %s AND host = %s", (user,host)) + cursor.execute("SELECT authentication_string FROM user WHERE user = %s AND host = %s", (user, host)) current_pass_hash = cursor.fetchone() if encrypted: @@ -356,7 +362,7 @@ def user_mod(cursor, user, host, host_all, password, encrypted, new_priv, append # Handle privileges if new_priv is not None: - curr_priv = privileges_get(cursor, user,host) + curr_priv = privileges_get(cursor, user, host) # If the user has privileges on a db.table that doesn't appear at all in # the new specification, then revoke all privileges on it. @@ -368,7 +374,7 @@ def user_mod(cursor, user, host, host_all, password, encrypted, new_priv, append if user != "root" and "PROXY" not in priv and not append_privs: if module.check_mode: return True - privileges_revoke(cursor, user,host,db_table,priv,grant_option) + privileges_revoke(cursor, user, host, db_table, priv, grant_option) changed = True # If the user doesn't currently have any privileges on a db.table, then @@ -377,7 +383,7 @@ def user_mod(cursor, user, host, host_all, password, encrypted, new_priv, append if db_table not in curr_priv: if module.check_mode: return True - privileges_grant(cursor, user,host,db_table,priv) + privileges_grant(cursor, user, host, db_table, priv) changed = True # If the db.table specification exists in both the user's current privileges @@ -385,16 +391,17 @@ def user_mod(cursor, user, host, host_all, password, encrypted, new_priv, append db_table_intersect = set(new_priv.keys()) & set(curr_priv.keys()) for db_table in db_table_intersect: priv_diff = set(new_priv[db_table]) ^ set(curr_priv[db_table]) - if (len(priv_diff) > 0): + if len(priv_diff) > 0: if module.check_mode: return True if not append_privs: - privileges_revoke(cursor, user,host,db_table,curr_priv[db_table],grant_option) - privileges_grant(cursor, user,host,db_table,new_priv[db_table]) + privileges_revoke(cursor, user, host, db_table, curr_priv[db_table], grant_option) + privileges_grant(cursor, user, host, db_table, new_priv[db_table]) changed = True return changed + def user_delete(cursor, user, host, host_all, check_mode): if check_mode: return True @@ -409,6 +416,7 @@ def user_delete(cursor, user, host, host_all, check_mode): return True + def user_get_hostnames(cursor, user): cursor.execute("SELECT Host FROM mysql.user WHERE user = %s", user) hostnames_raw = cursor.fetchall() @@ -419,7 +427,8 @@ def user_get_hostnames(cursor, user): return hostnames -def privileges_get(cursor, user,host): + +def privileges_get(cursor, user, host): """ MySQL doesn't have a better method of getting privileges aside from the SHOW GRANTS query syntax, which requires us to then parse the returned string. Here's an example of the string that is returned from MySQL: @@ -444,7 +453,7 @@ def privileges_get(cursor, user,host): if res is None: raise InvalidPrivsError('unable to parse the MySQL grant string: %s' % grant[0]) privileges = res.group(1).split(", ") - privileges = [ pick(x) for x in privileges] + privileges = [pick(x) for x in privileges] if "WITH GRANT OPTION" in res.group(4): privileges.append('GRANT') if "REQUIRE SSL" in res.group(4): @@ -453,6 +462,7 @@ def privileges_get(cursor, user,host): output[db] = privileges return output + def privileges_unpack(priv, mode): """ Take a privileges string, typically passed as a parameter, and unserialize it into a dictionary, the same format as privileges_get() above. We have this @@ -483,7 +493,7 @@ def privileges_unpack(priv, mode): if '(' in pieces[1]: output[pieces[0]] = re.split(r',\s*(?=[^)]*(?:\(|$))', pieces[1].upper()) for i in output[pieces[0]]: - privs.append(re.sub(r'\s*\(.*\)','',i)) + privs.append(re.sub(r'\s*\(.*\)', '', i)) else: output[pieces[0]] = pieces[1].upper().split(',') privs = output[pieces[0]] @@ -501,7 +511,8 @@ def privileges_unpack(priv, mode): return output -def privileges_revoke(cursor, user,host,db_table,priv,grant_option): + +def privileges_revoke(cursor, user, host, db_table, priv, grant_option): # Escape '%' since mysql db.execute() uses a format string db_table = db_table.replace('%', '%%') if grant_option: @@ -515,7 +526,8 @@ def privileges_revoke(cursor, user,host,db_table,priv,grant_option): query = ' '.join(query) cursor.execute(query, (user, host)) -def privileges_grant(cursor, user,host,db_table,priv): + +def privileges_grant(cursor, user, host, db_table, priv): # Escape '%' since mysql db.execute uses a format string and the # specification of db and table often use a % (SQL wildcard) db_table = db_table.replace('%', '%%') @@ -533,9 +545,10 @@ def privileges_grant(cursor, user,host,db_table,priv): # Module execution. # + def main(): module = AnsibleModule( - argument_spec = dict( + argument_spec=dict( login_user=dict(default=None), login_password=dict(default=None, no_log=True), login_host=dict(default="localhost"), @@ -645,5 +658,6 @@ def main(): from ansible.module_utils.basic import * from ansible.module_utils.database import * from ansible.module_utils.mysql import * + if __name__ == '__main__': main() diff --git a/lib/ansible/modules/database/mysql/mysql_variables.py b/lib/ansible/modules/database/mysql/mysql_variables.py index d0b6fe3e6b..0f6950c7b5 100644 --- a/lib/ansible/modules/database/mysql/mysql_variables.py +++ b/lib/ansible/modules/database/mysql/mysql_variables.py @@ -104,6 +104,7 @@ def getvariable(cursor, mysqlvar): else: return None + def setvariable(cursor, mysqlvar, value): """ Set a global mysql variable to a given value @@ -122,9 +123,10 @@ def setvariable(cursor, mysqlvar, value): result = str(e) return result + def main(): module = AnsibleModule( - argument_spec = dict( + argument_spec=dict( login_user=dict(default=None), login_password=dict(default=None, no_log=True), login_host=dict(default="localhost"), diff --git a/test/sanity/pep8/legacy-files.txt b/test/sanity/pep8/legacy-files.txt index a9446fa47d..07ed468082 100644 --- a/test/sanity/pep8/legacy-files.txt +++ b/test/sanity/pep8/legacy-files.txt @@ -394,10 +394,6 @@ lib/ansible/modules/database/misc/riak.py lib/ansible/modules/database/mongodb/mongodb_parameter.py lib/ansible/modules/database/mongodb/mongodb_user.py lib/ansible/modules/database/mssql/mssql_db.py -lib/ansible/modules/database/mysql/mysql_db.py -lib/ansible/modules/database/mysql/mysql_replication.py -lib/ansible/modules/database/mysql/mysql_user.py -lib/ansible/modules/database/mysql/mysql_variables.py lib/ansible/modules/database/postgresql/postgresql_db.py lib/ansible/modules/database/postgresql/postgresql_ext.py lib/ansible/modules/database/postgresql/postgresql_lang.py