您现在的位置是：首页 > 其他

当前栏目

MySQL 8.0角色与授权

2023-03-14 22:47:54 时间

1、用户

已经存在了employees、employees_read用户，新建一个写用户

mysql>  CREATE USER 'employees_write'@'%' IDENTIFIED BY '123' ;
Query OK, 0 rows affected (0.00 sec)

2、新建角色

（1）admin角色

mysql> grant all on employees.* to employees_admin;
Query OK, 0 rows affected (0.01 sec)

（2）只读角色

mysql> grant select on employees.* to employees_r;
Query OK, 0 rows affected (0.00 sec)

（3）读写角色

mysql> grant select,insert,update,delete on employees.* to employees_rw;
Query OK, 0 rows affected (0.00 sec)

3、用于赋予角色

mysql> grant employees_admin to employees@'%';
Query OK, 0 rows affected (0.00 sec)

mysql> grant employees_r to employees_read@'%';
Query OK, 0 rows affected (0.01 sec)

mysql> grant employees_rw to 'employees_write'@'%';
Query OK, 0 rows affected (0.01 sec)

mysql> flush privileges;
Query OK, 0 rows affected (0.00 sec)

4、角色相关查询

（1）查看角色与用户的关系

mysql> select * from mysql.role_edges;
+-----------+-----------------+---------+-----------------+-------------------+
| FROM_HOST | FROM_USER       | TO_HOST | TO_USER         | WITH_ADMIN_OPTION |
+-----------+-----------------+---------+-----------------+-------------------+
| %         | employees_admin | %       | employees       | N                 |
| %         | employees_r     | %       | employees_read  | N                 |
| %         | employees_rw    | %       | employees_write | N                 |
+-----------+-----------------+---------+-----------------+-------------------+
3 rows in set (0.00 sec)

mysql>

（2）查看用户权限

mysql> show grants for 'employees_write'@'%';
+---------------------------------------------------+
| Grants for employees_write@%                      |
+---------------------------------------------------+
| GRANT USAGE ON *.* TO `employees_write`@`%`       |
| GRANT `employees_rw`@`%` TO `employees_write`@`%` |
+---------------------------------------------------+
2 rows in set (0.00 sec)

mysql> show grants for 'employees_read'@'%';
+---------------------------------------------------------------------------------------------+
| Grants for employees_read@%                                                                 |
+---------------------------------------------------------------------------------------------+
| GRANT USAGE ON *.* TO `employees_read`@`%`                                                  |
| GRANT SELECT (`first_name`, `last_name`) ON `employees`.`employees` TO `employees_read`@`%` |
| GRANT `employees_r`@`%` TO `employees_read`@`%`                                             |
+---------------------------------------------------------------------------------------------+
3 rows in set (0.00 sec)

mysql> show grants for 'employees'@'%';
+--------------------------------------------------------------------------+
| Grants for employees@%                                                   |
+--------------------------------------------------------------------------+
| GRANT USAGE ON *.* TO `employees`@`%`                                    |
| GRANT SELECT, INSERT, UPDATE, DELETE ON `employees`.* TO `employees`@`%` |
| GRANT `employees_admin`@`%` TO `employees`@`%`                           |
+--------------------------------------------------------------------------+
3 rows in set (0.00 sec)

mysql>

（3）查看角色对应的权限

mysql> show grants for employees_admin;
+----------------------------------------------------------------+
| Grants for employees_admin@%                                   |
+----------------------------------------------------------------+
| GRANT USAGE ON *.* TO `employees_admin`@`%`                    |
| GRANT ALL PRIVILEGES ON `employees`.* TO `employees_admin`@`%` |
+----------------------------------------------------------------+
2 rows in set (0.00 sec)

mysql> show grants for employees_r;
+----------------------------------------------------+
| Grants for employees_r@%                           |
+----------------------------------------------------+
| GRANT USAGE ON *.* TO `employees_r`@`%`            |
| GRANT SELECT ON `employees`.* TO `employees_r`@`%` |
+----------------------------------------------------+
2 rows in set (0.00 sec)

mysql> show grants for employees_rw;
+-----------------------------------------------------------------------------+
| Grants for employees_rw@%                                                   |
+-----------------------------------------------------------------------------+
| GRANT USAGE ON *.* TO `employees_rw`@`%`                                    |
| GRANT SELECT, INSERT, UPDATE, DELETE ON `employees`.* TO `employees_rw`@`%` |
+-----------------------------------------------------------------------------+
2 rows in set (0.00 sec)

mysql>

猜你喜欢

3行Python代码完成人脸识别
泥瓦匠 5 年 Java 的成长感悟（下）
大数据和物联网都是什么的情况
从变量到封装：一文带你为机器学习打下坚实的Python基础
程序员老司机都要错的Python陷阱与缺陷列表
jvm系列(六):Java服务GC参数调优案例
常见数据结构和Javascript实现总结
数据科学和分析的热门市场
Java注解是怎么成功上位的？
Hadoop是什么，能干什么，怎么使用
大数据时代的终结：HPE收购MapR
十张图读懂PHP、Python、 Ruby三大语言的差异
你公司所拥有的数据，真正被使用的有多少？
如何在GPU上加速数据科学
编程语言之争，谁将会杀死Java？
比Spark快100倍的GPU加速SQL引擎！BlazingSQL开源了
用C语言对Gtk+应用进行功能测试
学Hadoop你必须要知道的
简述Hadoop之后大数据的未来在谁的身上
如何实现PHP长网址与短网址

zl程序教程