Puppet Function: mysql::password

Defined in:
lib/puppet/functions/mysql/password.rb
Function type:
Ruby 4.x API

Overview

mysql::password(Variant[String, Sensitive[String]] $password, Optional[Boolean] $sensitive)Variant[String, Sensitive[String]]

Hash a string as mysql’s “PASSWORD()” function would do it

Parameters:

  • password (Variant[String, Sensitive[String]])

    Plain text password.

  • sensitive (Optional[Boolean])

    If the Postgresql-Passwordhash should be of Datatype Sensitive

Returns:

  • (Variant[String, Sensitive[String]])

    hash The mysql password hash from the clear text password.



7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
 
# File 'lib/puppet/functions/mysql/password.rb', line 7

Puppet::Functions.create_function(:'mysql::password') do
  # @param password
  #   Plain text password.
  # @param sensitive
  #   If the Postgresql-Passwordhash should be of Datatype Sensitive[String]
  #
  # @return hash
  #   The mysql password hash from the clear text password.
  #
  dispatch :password do
    required_param 'Variant[String, Sensitive[String]]', :password
    optional_param 'Boolean', :sensitive
    return_type 'Variant[String, Sensitive[String]]'
  end

  def password(password, sensitive = false)
    if password.is_a?(Puppet::Pops::Types::PSensitiveType::Sensitive)
      password = password.unwrap
    end

    result_string = if %r{\*[A-F0-9]{40}$}.match?(password)
                      password
                    elsif password.empty?
                      ''
                    else
                      '*' + Digest::SHA1.hexdigest(Digest::SHA1.digest(password)).upcase
                    end

    if sensitive
      Puppet::Pops::Types::PSensitiveType::Sensitive.new(result_string)
    else
      result_string
    end
  end
end