From 3ae3e30ed68ed9ea1849a69110d54448c6408803 Mon Sep 17 00:00:00 2001
From: "R. Sicart" <roger.sicart@gmail.com>
Date: Mon, 29 Aug 2022 19:47:31 +0200
Subject: [PATCH] Add tests to verify that GRANT permission is present after
 user modification

---
 .../test_mysql_user/tasks/test_privs.yml      | 50 +++++++++++++++++++
 1 file changed, 50 insertions(+)

diff --git a/tests/integration/targets/test_mysql_user/tasks/test_privs.yml b/tests/integration/targets/test_mysql_user/tasks/test_privs.yml
index b612882..e2a55dc 100644
--- a/tests/integration/targets/test_mysql_user/tasks/test_privs.yml
+++ b/tests/integration/targets/test_mysql_user/tasks/test_privs.yml
@@ -180,6 +180,56 @@
           - result is not changed
       when: (install_type == 'mysql' and mysql_version is version('8', '<')) or (install_type == 'mariadb' and mariadb_version is version('10.2', '=='))
 
+    # ============================================================
+    - name: grant all privileges with grant option
+      mysql_user:
+        <<: *mysql_params
+        name: '{{ user_name_2 }}'
+        password: '{{ user_password_2 }}'
+        priv: '*.*:ALL,GRANT'
+        state: present
+      register: result
+
+    - name: Assert that priv changed
+      assert:
+        that:
+          - "\"granted ['ALL', 'GRANT']\" in result.msg"
+
+    - name: Assert that 'GRANT' permission is present
+      assert:
+        that:
+          - "\"granted ['ALL', 'GRANT']\" in result.msg"
+
+    - name: Test idempotency (expect ok)
+      mysql_user:
+        <<: *mysql_params
+        name: '{{ user_name_2 }}'
+        password: '{{ user_password_2 }}'
+        priv: '*.*:ALL,GRANT'
+        state: present
+      register: result
+
+    # FIXME: on mysql >=8 and mariadb >=10.5.2 there's always a change because the REPLICATION CLIENT privilege was renamed to BINLOG MONITOR
+    - name: Assert that priv did not change
+      assert:
+        that:
+          - result is not changed
+      when: (install_type == 'mysql' and mysql_version is version('8', '<')) or (install_type == 'mariadb' and mariadb_version is version('10.2', '=='))
+
+    - name: Assert that 'GRANT' permission is present
+      assert:
+        that:
+          - "\"granted ['ALL', 'GRANT']\" in result.msg"
+
+    - name: drop database using user
+      mysql_db:
+        login_user: '{{ user_name_2 }}'
+        login_password: '{{ user_password_2 }}'
+        login_host: '{{ mysql_host }}'
+        login_port: '{{ mysql_primary_port }}'
+        name: '{{ db_name }}'
+        state: absent
+
     # ============================================================
     - name: update user with invalid privileges
       mysql_user: