Perform privilege grants/revokes only when required

Use `has_table_privileges` and `has_database_privileges` to test whether a user already has a privilege before granting it, or whether a user doesn't have a privilege before revoking it.
2015-04-08 12:44:01 +10:00 · 2015-04-08 12:44:01 +10:00 · 34e0e17090
commit 34e0e17090
parent 67d8ff197e
1 changed files with 4 additions and 0 deletions
--- a/lib/ansible/modules/database/postgresql/postgresql_user.py
+++ b/lib/ansible/modules/database/postgresql/postgresql_user.py
@ -419,6 +419,8 @@ def revoke_privileges(cursor, user, privs):
        return False

    changed = False
+    revoke_funcs = dict(table=revoke_table_privilege, database=revoke_database_privilege)
+    check_funcs = dict(table=has_table_privilege, database=has_database_privilege)
    for type_ in privs:
        revoke_func = {
            'table':revoke_table_privilege,
@ -434,6 +436,8 @@ def revoke_privileges(cursor, user, privs):
 def grant_privileges(cursor, user, privs):
    if privs is None:
        return False
+    grant_funcs = dict(table=grant_table_privilege, database=grant_database_privilege)
+    check_funcs = dict(table=has_table_privilege, database=has_database_privilege)

    changed = False
    for type_ in privs: