mirror of
https://github.com/saltstack-formulas/mysql-formula.git
synced 2025-04-10 14:51:46 +00:00
d09728e04f
The indentation in servers.sls was unclear and made following the
control flow much harder.
Fix that by correctly indenting.
Drive-By: Change {% to {%- no-line-break opening tags for variable logic
252 lines
9 KiB
Text
252 lines
9 KiB
Text
include:
|
|
- .config
|
|
- .python
|
|
|
|
{% from tpldir ~ "/map.jinja" import mysql with context %}
|
|
|
|
{%- set os = salt['grains.get']('os', None) %}
|
|
{%- set os_family = salt['grains.get']('os_family', None) %}
|
|
{%- set mysql_root_user = salt['pillar.get']('mysql:server:root_user', 'root') %}
|
|
{%- set mysql_root_password = salt['pillar.get']('mysql:server:root_password', salt['grains.get']('server_id')) %}
|
|
{%- set mysql_host = salt['pillar.get']('mysql:server:host', 'localhost') %}
|
|
{%- set mysql_salt_user = salt['pillar.get']('mysql:salt_user:salt_user_name', mysql_root_user) %}
|
|
{%- set mysql_salt_password = salt['pillar.get']('mysql:salt_user:salt_user_password', mysql_root_password) %}
|
|
{%- set mysql_datadir = salt['pillar.get']('mysql:server:mysqld:datadir', '/var/lib/mysql') %}
|
|
{%- set mysql_unix_socket = salt['pillar.get']('mysql:server:unix_socket', '') %}
|
|
{%- set lsb_distrib_codename = salt['grains.get']('lsb_distrib_codename', None) %}
|
|
|
|
{%- if mysql_root_password %}
|
|
{%- if os_family == 'Debian' %}
|
|
|
|
{%- if 'debconf_root_password' in mysql %}
|
|
{%- set debconf_root_password = mysql.debconf_root_password %}
|
|
{%- set debconf_root_password_again = mysql.debconf_root_password_again %}
|
|
{%- elif mysql.serverpkg.startswith('percona-server-server') %}
|
|
{%- if mysql.serverpkg < 'percona-server-server-5.7' %}{# 5.5 and 5.6 uses the same name... #}
|
|
{%- set debconf_root_password = 'percona-server-server/root_password' %}
|
|
{%- set debconf_root_password_again = 'percona-server-server/root_password_again' %}
|
|
{%- elif '5.7' in mysql.serverpkg %}{# 5.7 changed option name... #}
|
|
{%- set debconf_root_password = 'percona-server-server-5.7/root-pass' %}
|
|
{%- set debconf_root_password_again = 'percona-server-server-5.7/re-root-pass' %}
|
|
{%- else %}{# attempt to support future version? #}
|
|
{%- set debconf_root_password = mysql.serverpkg + '/root-pass' %}
|
|
{%- set debconf_root_password_again = mysql.serverpkg + '/re-root-pass' %}
|
|
{%- endif %}
|
|
{%- else %}
|
|
{%- if salt['grains.get']('osmajorrelease')|int < 9 or not salt['grains.get']('os')|lower == 'debian' %}
|
|
{%- set debconf_root_password = 'mysql-server/root_password' %}
|
|
{%- set debconf_root_password_again = 'mysql-server/root_password_again' %}
|
|
{%- else %}
|
|
{%- set debconf_root_password = False %}
|
|
{%- endif %}
|
|
{%- endif %}
|
|
|
|
{% if mysql.serverpkg == 'mysql-community-server' %}
|
|
mysql-community-server_repo:
|
|
pkgrepo.managed:
|
|
- humanname: "Mysql official repo"
|
|
- name: deb http://repo.mysql.com/apt/ubuntu/ {{ lsb_distrib_codename }} mysql-8.0
|
|
- file: /etc/apt/sources.list.d/mysql.list
|
|
- refresh: True
|
|
- require_in:
|
|
- pkg: mysql-community-server
|
|
{% endif %}
|
|
|
|
mysql_debconf_utils:
|
|
pkg.installed:
|
|
- name: {{ mysql.debconf_utils }}
|
|
|
|
mysql_debconf:
|
|
debconf.set:
|
|
- name: {{ mysql.serverpkg }}
|
|
- data:
|
|
'{{ mysql.serverpkg }}/start_on_boot': {'type': 'boolean', 'value': 'true'}
|
|
- require_in:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
- require:
|
|
- pkg: mysql_debconf_utils
|
|
|
|
{%- if debconf_root_password %}
|
|
{% if mysql.serverpkg == 'mysql-community-server' %}
|
|
mysql_password_debconf:
|
|
debconf.set:
|
|
- name: 'mysql-community-server'
|
|
- data:
|
|
'mysql-community-server/root-pass': {'type': 'password', 'value': '{{ mysql_root_password }}'}
|
|
'mysql-community-server/re-root-pass': {'type': 'password', 'value': '{{ mysql_root_password }}'}
|
|
'mysql-server/default-auth-override': {'type': 'string', 'value':'Use Legacy Authentication Method (Retain MySQL 5.x Compatibility)'}
|
|
- require_in:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
- require:
|
|
- pkg: mysql_debconf_utils
|
|
{% else %}
|
|
mysql_password_debconf:
|
|
debconf.set:
|
|
- name: mysql-server
|
|
- data:
|
|
{{ debconf_root_password }}: {'type': 'password', 'value': '{{ mysql_root_password }}'}
|
|
{{ debconf_root_password_again }}: {'type': 'password', 'value': '{{ mysql_root_password }}'}
|
|
- prereq:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
- require:
|
|
- pkg: mysql_debconf_utils
|
|
|
|
{% endif %}
|
|
{% endif %}
|
|
|
|
{%- elif os_family in ['RedHat', 'Suse', 'FreeBSD'] %}
|
|
mysql_root_password:
|
|
cmd.run:
|
|
- name: mysqladmin --host "{{ mysql_host }}" --user {{ mysql_root_user }} password '{{ mysql_root_password|replace("'", "'\"'\"'") }}'
|
|
- unless: mysql --host "{{ mysql_host }}" --user {{ mysql_root_user }} --password='{{ mysql_root_password|replace("'", "'\"'\"'") }}' --execute="SELECT 1;"
|
|
- require:
|
|
- service: mysqld-service-running
|
|
|
|
{%- for host in {'localhost': '', 'localhost.localdomain': '', salt['grains.get']('fqdn'): ''}.keys() %}
|
|
mysql_delete_anonymous_user_{{ host }}:
|
|
mysql_user:
|
|
- absent
|
|
- host: {{ host or "''" }}
|
|
- name: ''
|
|
- connection_host: '{{ mysql_host }}'
|
|
- connection_user: '{{ mysql_salt_user }}'
|
|
{%- if mysql_salt_password %}
|
|
- connection_pass: '{{ mysql_salt_password }}'
|
|
{%- endif %}
|
|
{%- if mysql_unix_socket %}
|
|
- connection_unix_socket: '{{ mysql_unix_socket }}'
|
|
{%- endif %}
|
|
- connection_charset: utf8
|
|
- require:
|
|
- service: mysqld-service-running
|
|
- pkg: mysql_python
|
|
{%- if (mysql_salt_user == mysql_root_user) and mysql_root_password %}
|
|
- cmd: mysql_root_password
|
|
{%- endif %}
|
|
{%- if (mysql_salt_user != mysql_root_user) %}
|
|
- sls: mysql.salt-user
|
|
{%- endif %}
|
|
{%- endfor %}
|
|
{%- endif %}
|
|
{%- endif %}
|
|
|
|
{%- if os_family == 'Arch' %}
|
|
# on arch linux: inital mysql datadirectory is not created
|
|
mysql_install_datadir:
|
|
cmd.run:
|
|
{%- if mysql.version is defined and mysql.version >= 5.7 %}
|
|
- name: mysqld --initialize-insecure --user=mysql --basedir=/usr --datadir={{ mysql_datadir }}
|
|
{%- else %}
|
|
- name: mysql_install_db --user=mysql --basedir=/usr --datadir={{ mysql_datadir }}
|
|
{%- endif %}
|
|
- runas: root
|
|
- creates: {{ mysql_datadir }}/mysql/user.frm
|
|
- env:
|
|
- TMPDIR: '/tmp'
|
|
- require:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
- file: mysql_config
|
|
- require_in:
|
|
- service: mysqld-service-running
|
|
{%- endif %}
|
|
|
|
mysqld-packages:
|
|
pkg.installed:
|
|
- name: {{ mysql.serverpkg }}
|
|
{%- if os_family == 'Debian' and mysql_root_password %}
|
|
- require:
|
|
- debconf: mysql_debconf
|
|
{%- endif %}
|
|
- require_in:
|
|
- file: mysql_config
|
|
{%- if "config_directory" in mysql %}
|
|
- file: mysql_config_directory
|
|
{%- endif %}
|
|
|
|
{%- if os_family in ['RedHat', 'Suse'] and mysql.version is defined
|
|
and mysql.version >= 5.7 and mysql.serverpkg.lower() != 'mariadb-server' %}
|
|
# Initialize mysql database with --initialize-insecure option before starting service so we don't get locked out.
|
|
mysql_initialize:
|
|
cmd.run:
|
|
- name: mysqld --initialize-insecure --user=mysql --basedir=/usr --datadir={{ mysql_datadir }}
|
|
- runas: root
|
|
- creates: {{ mysql_datadir }}/mysql/
|
|
- require:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
{%- endif %}
|
|
|
|
{%- if os_family in ['RedHat', 'Suse'] and mysql.serverpkg.lower() == 'mariadb-server' %}
|
|
# For MariaDB it's enough to only create the datadir
|
|
mysql_initialize:
|
|
file.directory:
|
|
- name: {{ mysql_datadir }}
|
|
- user: mysql
|
|
- group: mysql
|
|
- makedirs: True
|
|
- require:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
{%- endif %}
|
|
|
|
{%- if os_family in ['Gentoo'] %}
|
|
mysql_initialize:
|
|
cmd.run:
|
|
- name: emerge --config {{ mysql.serverpkg }}
|
|
- runas: root
|
|
- creates: {{ mysql_datadir }}/mysql/
|
|
- require:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
{%- endif %}
|
|
|
|
{%- if os_family in ['FreeBSD'] and mysql.serverpkg.lower() != 'mariadb-server' %}
|
|
mysql_initialize:
|
|
file.directory:
|
|
- name: /var/log/mysql
|
|
- user: mysql
|
|
- group: mysql
|
|
- mode: '0750'
|
|
cmd.run:
|
|
- name: /usr/local/libexec/mysqld --initialize-insecure --user=mysql --basedir=/usr/local --datadir={{ mysql_datadir }}
|
|
- runas: root
|
|
- creates: {{ mysql_datadir }}/mysql/
|
|
- require:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
- file: /var/log/mysql
|
|
{%- endif %}
|
|
|
|
mysqld-service-running:
|
|
service.running:
|
|
- name: {{ mysql.service }}
|
|
- enable: True
|
|
- require:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
{%- if (os_family in ['RedHat', 'Suse'] and mysql.version is defined
|
|
and mysql.version >= 5.7 and mysql.serverpkg.lower() != 'mariadb-server')
|
|
or (os_family in ['Gentoo', 'FreeBSD']) %}
|
|
- cmd: mysql_initialize
|
|
{%- elif os_family in ['RedHat', 'Suse'] and mysql.serverpkg.lower() == 'mariadb-server' %}
|
|
- file: {{ mysql_datadir }}
|
|
{%- endif %}
|
|
- watch:
|
|
- pkg: {{ mysql.serverpkg }}
|
|
- file: mysql_config
|
|
{%- if "config_directory" in mysql and "server_config" in mysql %}
|
|
- file: mysql_server_config
|
|
{%- endif %}
|
|
|
|
mysql_what_is_status_of_{{ mysql.service }}:
|
|
cmd.run:
|
|
- names:
|
|
- service {{ mysql.service }} status
|
|
- onfail:
|
|
- service: mysqld-service-running
|
|
|
|
# official oracle mysql repo
|
|
# creates this file, that rewrites /etc/mysql/my.cnf setting
|
|
# so, make it empty
|
|
mysql_additional_config:
|
|
file.managed:
|
|
- name: /usr/my.cnf
|
|
- source: salt://{{ tpldir }}/files/usr-my.cnf
|
|
- create: False
|
|
- watch_in:
|
|
- service: mysqld-service-running
|