mysql_role: add argument "members_must_exist" (#369)

* mysql_role: add argument "members_must_exist" (boolean, default true) The assertion that the users supplied in the "members" argument exist is only executed when the new argument "members_must_exist" is true, to allow opt-out. * mysql_role: add integration tests for argument members_must_exist * add changelog fragment * mysql_role: fix behavior of members_must_exist argument * Update plugins/modules/mysql_role.py Co-authored-by: Andrew Klychkov <aaklychkov@mail.ru> * Update changelogs/fragments/369_mysql_role-add-members_must_exist.yml Co-authored-by: Andrew Klychkov <aaklychkov@mail.ru> Co-authored-by: Felix Hamme <felix.hamme@ionos.com> Co-authored-by: Andrew Klychkov <aaklychkov@mail.ru>
2025-04-18 16:31:26 -07:00 · 2022-05-27 12:11:17 +02:00 · 2022-05-27 12:11:17 +02:00 · bf5086d19d
commit bf5086d19d
parent 647461010d
3 changed files with 87 additions and 1 deletions
--- a/plugins/modules/mysql_role.py
+++ b/plugins/modules/mysql_role.py
@ -114,6 +114,13 @@ options:
    type: bool
    default: no

+  members_must_exist:
+    description:
+      - When C(yes), the module fails if any user in I(members) does not exist.
+      - When C(no), users in I(members) which don't exist are simply skipped.
+    type: bool
+    default: yes
+
 notes:
  - Pay attention that the module runs C(SET DEFAULT ROLE ALL TO)
    all the I(members) passed by default when the state has changed.
@ -382,6 +389,11 @@ class DbServer():
                msg = 'User / role `%s` with host `%s` does not exist' % (user[0], user[1])
                self.module.fail_json(msg=msg)

+    def filter_existing_users(self, users):
+        for user in users:
+            if user in self.users:
+                yield user
+
    def __get_users(self):
        """Get users.

@ -918,6 +930,7 @@ def main():
        detach_members=dict(type='bool', default=False),
        check_implicit_admin=dict(type='bool', default=False),
        set_default_role_all=dict(type='bool', default=True),
+        members_must_exist=dict(type='bool', default=True)
    )
    module = AnsibleModule(
        argument_spec=argument_spec,
@ -951,6 +964,7 @@ def main():
    check_hostname = module.params['check_hostname']
    db = ''
    set_default_role_all = module.params['set_default_role_all']
+    members_must_exist = module.params['members_must_exist']

    if priv and not isinstance(priv, (str, dict)):
        msg = ('The "priv" parameter must be str or dict '
@ -1019,7 +1033,10 @@ def main():

    if members:
        members = normalize_users(module, members, server.is_mariadb())
-        server.check_users_in_db(members)
+        if members_must_exist:
+            server.check_users_in_db(members)
+        else:
+            members = list(server.filter_existing_users(members))

    # Main job starts here
    role = Role(module, cursor, name, server)