Hi @community
we are trying to implement revokation statement for MySQL secret engine
vault read secret_engine/roles/test_revoke_role
vault version: 1.9.2 from docker container official
Key Value
--- -----
creation_statements [CREATE USER '{{name}}'@'%' IDENTIFIED BY '{{password}}'; GRANT SELECT,INSERT,UPDATE,DELETE,CREATE,DROP,RELOAD,PROCESS,REFERENCES,INDEX,ALTER,SHOW DATABASES,CREATE TEMPORARY TABLES]
db_name dbmysqltest-mysql
default_ttl 10s
max_ttl 1h
renew_statements []
revocation_statements [SELECT concat('KILL ',id,';') INTO @kill_query FROM information_schema.processlist WHERE user='{{name}}'; PREPARE stmt FROM @kill_query; EXECUTE stmt; DEALLOCATE PREPARE stmt; DROP USER '{{name}}';]
rollback_statements []
doing the same queries on mysql works fine, but from vault logs out
[ERROR] expiration: failed to revoke lease: lease_id=... error="failed to revoke entry: resp: (*logical.Response)(nil) err: Error 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1"