catch errors based on missing authentication to allow creation of admin user on replicaset setup

lib/puppet/provider/mongodb.rb

@@ -132,9 +132,14 @@ def self.conn_string
 
   def self.db_ismaster
     cmd_ismaster = 'db.isMaster().ismaster'
-    cmd_ismaster = mongorc_file + cmd_ismaster if mongorc_file
     db = 'admin'
-    res = mongo_cmd(db, conn_string, cmd_ismaster).to_s.chomp
+
+    if mongorc_file
+      res = mongo_cmd(db, conn_string, mongorc_file + cmd_ismaster).to_s.chomp
+    end
+    if res.match(/Authentication failed/) or not mongorc_file
+      res = mongo_cmd(db, conn_string, cmd_ismaster).to_s.chomp
+    end
     res.eql?('true') ? true : false
   end
 

lib/puppet/provider/mongodb_database/mongodb.rb

@@ -6,19 +6,23 @@
 
   def self.instances
     require 'json'
-    dbs = JSON.parse mongo_eval('printjson(db.getMongo().getDBs())')
+    begin
+      dbs = JSON.parse mongo_eval('printjson(db.getMongo().getDBs())')
 
-    dbs['databases'].map do |db|
-      new(name: db['name'],
-          ensure: :present)
+      dbs['databases'].map do |db|
+        new(name: db['name'],
+            ensure: :present)
+      end
+    rescue
+      {}
     end
   end
 
   # Assign prefetched dbs based on name.
   def self.prefetch(resources)
     dbs = instances
     resources.keys.each do |name|
-      provider = dbs.find { |db| db.name == name }
+      provider = dbs.find {|db| db.name == name}
       resources[name].provider = provider if provider
     end
   end

lib/puppet/provider/mongodb_user/mongodb.rb

@@ -27,16 +27,20 @@ def self.instances
         end
         return allusers
       else
-        users = JSON.parse mongo_eval('printjson(db.system.users.find().toArray())')
-
-        users.map do |user|
-          new(name: user['_id'],
-              ensure: :present,
-              username: user['user'],
-              database: user['db'],
-              roles: from_roles(user['roles'], user['db']),
-              password_hash: user['credentials']['MONGODB-CR'],
-              scram_credentials: user['credentials']['SCRAM-SHA-1'])
+        begin
+          users = JSON.parse mongo_eval('printjson(db.system.users.find().toArray())')
+
+          users.map do |user|
+            new(name: user['_id'],
+                ensure: :present,
+                username: user['user'],
+                database: user['db'],
+                roles: from_roles(user['roles'], user['db']),
+                password_hash: user['credentials']['MONGODB-CR'],
+                scram_credentials: user['credentials']['SCRAM-SHA-1'])
+          end
+        rescue
+          {}
         end
       end
     else
@@ -49,7 +53,7 @@ def self.instances
   def self.prefetch(resources)
     users = instances
     resources.each do |name, resource|
-      provider = users.find { |user| user.username == (resource[:username]) && user.database == (resource[:database]) }
+      provider = users.find {|user| user.username == (resource[:username]) && user.database == (resource[:database])}
       resources[name].provider = provider if provider
     end
   end
@@ -63,9 +67,9 @@ def create
           raise Puppet::Error, "password_hash can't be set on MongoDB older than 3.0; use password instead"
         end
         user = {
-          user: @resource[:username],
-          pwd: @resource[:password],
-          roles: @resource[:roles]
+            user: @resource[:username],
+            pwd: @resource[:password],
+            roles: @resource[:roles]
         }
 
         mongo_eval("db.addUser(#{user.to_json})", @resource[:database])
@@ -84,7 +88,7 @@ def create
 	  "roles": #{@resource[:roles].to_json},
 	  "digestPassword": false
 	}
-	EOS
+        EOS
 
         mongo_eval("db.runCommand(#{cmd_json})", @resource[:database])
       end
@@ -155,7 +159,7 @@ def roles=(roles)
       else
         grant = roles - @property_hash[:roles]
         unless grant.empty?
-          mongo_eval("db.getSiblingDB('#{@resource[:database]}').grantRolesToUser('#{@resource[:username]}', #{grant. to_json})")
+          mongo_eval("db.getSiblingDB('#{@resource[:database]}').grantRolesToUser('#{@resource[:username]}', #{grant.to_json})")
         end
 
         revoke = @property_hash[:roles] - roles