From 1380c20b20cd1d16cebc8e0844efa96e86d35761 Mon Sep 17 00:00:00 2001
From: "E.S. Rosenberg a.k.a. Keeper of the Keys"
 <es.rosenberg+github@gmail.com>
Date: Mon, 3 Mar 2025 16:09:15 +0200
Subject: [PATCH] function to check if a user is locked already

Signed-off-by: E.S. Rosenberg a.k.a. Keeper of the Keys <es.rosenberg+github@gmail.com>
---
 plugins/module_utils/user.py | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/plugins/module_utils/user.py b/plugins/module_utils/user.py
index 307ef6e..44ac96f 100644
--- a/plugins/module_utils/user.py
+++ b/plugins/module_utils/user.py
@@ -52,6 +52,22 @@ def user_exists(cursor, user, host, host_all):
     return count[0] > 0
 
 
+def user_is_locked(cursor, user, host, host_all):
+    if host_all:
+        cursor.execute("SHOW CREATE USER %s", (user,))
+    else:
+        cursor.execute("SHOW CREATE USER %s@%s", (user, host))
+
+    # Unless I am very much mistaken there should only be 1 answer to this query ever.
+    result = cursor.fetchone()
+
+    for res in result.values():
+        if res.endswith('ACCOUNT LOCK'):
+            return True
+
+    return False
+
+
 def sanitize_requires(tls_requires):
     sanitized_requires = {}
     if tls_requires: