Validate user paswwords per run

Author: Jarl Stefansson

lib/puppet/provider/rabbitmq_user/rabbitmqctl.rb

@@ -32,6 +32,24 @@ def create
     end
   end
 
+  def change_password
+    rabbitmqctl('change_password', resource[:name], resource[:password])
+  end
+
+  def password
+    nil
+  end
+
+
+  def check_password
+    responce = rabbitmqctl('eval', 'rabbit_auth_backend_internal:check_user_login(<<"' + resource[:name] + '">>, [{password, <<"' + resource[:password] +'">>}]).')
+    if responce.include? 'invalid credentials'
+        false
+    else
+        true
+    end
+  end
+
   def destroy
     rabbitmqctl('delete_user', resource[:name])
   end

lib/puppet/type/rabbitmq_user.rb

@@ -18,9 +18,14 @@
     newvalues(/^\S+$/)
   end
 
-  # newproperty(:password) do
-  newparam(:password) do
-    desc 'User password to be set *on creation*'
+  newproperty(:password) do
+    desc 'User password to be set *on creation* and validated each run'
+    def insync?(is)
+      provider.check_password
+    end
+    def set(value)
+      provider.change_password
+    end
   end
 
   newproperty(:admin) do