mysql_user: Match both single quotes and backticks when checking curr… (#40092)

* mysql_user: Match quotes, double quotes and backticks when checking current privileges * Add changelog fragment for PR #40092
2019-02-06 15:20:43 +01:00 · 2019-02-06 15:20:43 +01:00 · 4d93c440b9
commit 4d93c440b9
parent 945ee39a89
2 changed files with 5 additions and 3 deletions
--- a/changelogs/fragments/40092-mysql_user-match-backticks.yml
+++ b/changelogs/fragments/40092-mysql_user-match-backticks.yml
@ -0,0 +1,2 @@
+bugfixes:
+  - "mysql_user: match backticks, single and double quotes when checking user privileges."
--- a/lib/ansible/modules/database/mysql/mysql_user.py
+++ b/lib/ansible/modules/database/mysql/mysql_user.py
@ -427,14 +427,14 @@ def privileges_get(cursor, user, host):
            return x

    for grant in grants:
-        res = re.match("GRANT (.+) ON (.+) TO '.*'@'.*'( IDENTIFIED BY PASSWORD '.+')? ?(.*)", grant[0])
+        res = re.match("""GRANT (.+) ON (.+) TO (['`"]).*\\3@(['`"]).*\\4( IDENTIFIED BY PASSWORD (['`"]).+\5)? ?(.*)""", grant[0])
        if res is None:
            raise InvalidPrivsError('unable to parse the MySQL grant string: %s' % grant[0])
        privileges = res.group(1).split(", ")
        privileges = [pick(x) for x in privileges]
-        if "WITH GRANT OPTION" in res.group(4):
+        if "WITH GRANT OPTION" in res.group(7):
            privileges.append('GRANT')
-        if "REQUIRE SSL" in res.group(4):
+        if "REQUIRE SSL" in res.group(7):
            privileges.append('REQUIRESSL')
        db = res.group(2)
        output[db] = privileges