package mysql import ( "fmt" "log" "strings" "testing" mysqlc "github.com/ziutek/mymysql/mysql" "github.com/hashicorp/terraform/helper/resource" "github.com/hashicorp/terraform/terraform" ) func TestAccGrant(t *testing.T) { resource.Test(t, resource.TestCase{ PreCheck: func() { testAccPreCheck(t) }, Providers: testAccProviders, CheckDestroy: testAccGrantCheckDestroy, Steps: []resource.TestStep{ resource.TestStep{ Config: testAccGrantConfig_basic, Check: resource.ComposeTestCheckFunc( testAccPrivilegeExists("mysql_grant.test", "SELECT"), resource.TestCheckResourceAttr("mysql_grant.test", "user", "jdoe"), resource.TestCheckResourceAttr("mysql_grant.test", "host", "example.com"), resource.TestCheckResourceAttr("mysql_grant.test", "database", "foo"), ), }, }, }) } func testAccPrivilegeExists(rn string, privilege string) resource.TestCheckFunc { return func(s *terraform.State) error { rs, ok := s.RootModule().Resources[rn] if !ok { return fmt.Errorf("resource not found: %s", rn) } if rs.Primary.ID == "" { return fmt.Errorf("grant id not set") } id := strings.Split(rs.Primary.ID, ":") userhost := strings.Split(id[0], "@") user := userhost[0] host := userhost[1] conn := testAccProvider.Meta().(mysqlc.Conn) stmtSQL := fmt.Sprintf("SHOW GRANTS for '%s'@'%s'", user, host) log.Println("Executing statement:", stmtSQL) rows, _, err := conn.Query(stmtSQL) if err != nil { return fmt.Errorf("error reading grant: %s", err) } if len(rows) == 0 { return fmt.Errorf("grant not found for '%s'@'%s'", user, host) } privilegeFound := false for _, row := range rows { log.Printf("Result Row: %s", row[0]) privIndex := strings.Index(string(row[0].([]byte)), privilege) if privIndex != -1 { privilegeFound = true } } if !privilegeFound { return fmt.Errorf("grant no found for '%s'@'%s'", user, host) } return nil } } func testAccGrantCheckDestroy(s *terraform.State) error { conn := testAccProvider.Meta().(mysqlc.Conn) for _, rs := range s.RootModule().Resources { if rs.Type != "mysql_grant" { continue } id := strings.Split(rs.Primary.ID, ":") userhost := strings.Split(id[0], "@") user := userhost[0] host := userhost[1] stmtSQL := fmt.Sprintf("SHOW GRANTS for '%s'@'%s'", user, host) log.Println("Executing statement:", stmtSQL) rows, _, err := conn.Query(stmtSQL) if err != nil { if mysqlErr, ok := err.(*mysqlc.Error); ok { if mysqlErr.Code == mysqlc.ER_NONEXISTING_GRANT { return nil } } return fmt.Errorf("error reading grant: %s", err) } if len(rows) != 0 { return fmt.Errorf("grant still exists for'%s'@'%s'", user, host) } } return nil } const testAccGrantConfig_basic = ` resource "mysql_user" "test" { user = "jdoe" host = "example.com" password = "password" } resource "mysql_grant" "test" { user = "${mysql_user.test.user}" host = "${mysql_user.test.host}" database = "foo" privileges = ["UPDATE", "SELECT"] } `