mysql create user authorization

Internet 2023-09-05 17:57:14 views: null

Article Directory

foreword

In the use of mysql, it is unavoidable to use our own database for others. In order to use it safely, we do not want the other party to see too many databases, or reduce the damage it may cause to our database, and give him some permissions. How to ensure the security of our database?

1. Determine whether it is a local connection or a remote connection

Relatively speaking, this kind of situation is generally a remote link, for others to use~

  • local connection localhost
  • Remote connection % or specific ip for others

2. Create steps

Need to log in as an advanced user (can assign permissions, create users, etc.)

1. Create it natively

Create user
Assign permissions
Refresh permissions
View created users and permissions

-- 创建一个用户名密码为 test test 的用户
CREATE USER 'test'@'localhost' IDENTIFIED BY 'test';
-- 赋予这个用户 的数据库为ry (ry)所有表(.*),所有权限(ALL PRIVILEGES)
GRANT ALL ON ry.* TO 'test'@'localhost';
-- 刷新权限
FLUSH PRIVILEGES;
-- 查看用户 test 的信息以及权限
show grants for 'test'@'localhost';

local use

2. Create users for other hosts

You can still use test with the same name, or create a new user name

-- 创建一个用户名密码为 test test 的用户
CREATE USER 'test'@'%' IDENTIFIED BY 'test';
-- 赋予这个用户 的数据库为ry (ry)所有表(.*),所有权限(ALL PRIVILEGES)
GRANT ALL ON ry.* TO 'test'@'%';
-- 刷新权限
FLUSH PRIVILEGES;
-- 查看用户 test 的信息以及权限
show grants for 'test'@'%';

3. Delete user

In the above operation, we actually created two users, although the user names are the same

  • Local user test ('test'@'localhost')
  • remote user test ('test'@'%')
-- 删除本地用户test
DROP USER 'test'@'localhost'; 
-- 删除远程用户test
DROP USER 'test'@'%';

Summarize

Replenish:

  • Grant means authorization:
    GRANT privileges ON databasename.tablename TO 'username'@'host'

    Explanation: privileges: the user's operation authority, such as SELECT, INSERT, UPDATE, etc., if you want to grant all the permissions, use ALL
    databasename: database name tablename: table name, if you want to grant the user the corresponding operation authority on all databases and tables then Available representation, such as .*
    'username' username
    'host' ip address, optional value: localhost, specific ip, no limit%

  • User password modification
    SET PASSWORD FOR 'username'@'host' = PASSWORD('newpassword');

    Description: 'host' The specific user attribution to be changed, which is consistent with the optional value of authorization.
    username newpassword are the user name to be changed and the new password respectively

Guess you like

Origin blog.csdn.net/qq_32419139/article/details/131720385
Recommended
Rushing to the GitHub hot list——How can open source programming languages and frameworks be so cute?
Beijing Humanoid Robot Innovation Center launches Tiangong, the world's first full-size humanoid robot with purely electric drive for anthropomorphic running
Ranking
8个无需编写代码即可使用 Python 内置库的方法
Java collections interview knowledge Lite
Machine learning algorithms foundation - Introduction a (watermelon materials for the book)
(Easy) Ransom Note - LeetCode
[Five days] Qt from entry to actual combat: the second day
Remember once extremely pit father can not download Maven Jar package of issues: IDEA question
The minimum cost Shortest
OSPF study map (the most complete version)
Network Takeaways
GnuPG
Daily
More
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)
2024-04-21(0)
2024-04-20(6)
2024-04-19(5)
2024-04-18(0)

Code World

© 2018 codetd.com