From 45949c76437355f0d9115ed8db5cf1f77dfd4abc Mon Sep 17 00:00:00 2001
From: Mark Theunissen <mark.theunissen@gmail.com>
Date: Thu, 28 Feb 2013 10:25:09 -0600
Subject: [PATCH] Add mysql user documentation

---
 library/mysql_user | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/library/mysql_user b/library/mysql_user
index 4330c35338b..86a7badbca1 100644
--- a/library/mysql_user
+++ b/library/mysql_user
@@ -81,6 +81,12 @@ notes:
      passing credentials. If none are present, the module will attempt to read
      the credentials from C(~/.my.cnf), and finally fall back to using the MySQL
      default login of 'root' with no password.
+   - MySQL server installs with default login_user of 'root' and no password. To secure this user
+     as part of an idempotent playbook, you must create at least two tasks: the first must change the root user's password,
+     without providing any login_user/login_password details. The second must drop a ~/.my.cnf file containing
+     the new root credentials. Subsequent runs of the playbook will then succeed by reading the new credentials from
+     the file.
+
 requirements: [ "ConfigParser", "MySQLdb" ]
 author: Mark Theunissen
 '''