Search Results
https://dev.mysql.com/doc/refman/8.4/en/roles.html
Like user accounts, roles can have privileges granted to and revoked from them. A user account can be granted roles, which grants to the account the privileges associated with each role. GRANT and REVOKE assign privileges to revoke privileges from ...This enables assignment of sets of privileges to accounts and provides a convenient alternative to granting individual privileges, both for conceptualizing desired privilege assignments and implementing ...
https://dev.mysql.com/doc/refman/8.4/en/create-user.html
To perform the user-creation operation without either of these, drop the orphan objects, create the account and grant its privileges, and then re-create the dropped objects. You should be aware that, while MySQL 8.4 treats grants made to such a user ... CREATE USER [IF NOT EXISTS] user [auth_option] [, user [auth_option]] ...[REQUIRE {NONE | tls_option [[AND] tls_option] ...}] ...
https://dev.mysql.com/doc/refman/8.4/en/information-schema-role-column-grants-table.html
The ROLE_COLUMN_GRANTS table has these columns: GRANTOR The user name part of the account that granted the role. GRANTEE The user name part of the account to which the role is granted. The ROLE_COLUMN_GRANTS table provides information about the ...
https://dev.mysql.com/doc/refman/8.4/en/information-schema-role-routine-grants-table.html
The ROLE_ROUTINE_GRANTS table has these columns: GRANTOR The user name part of the account that granted the role. GRANTEE The user name part of the account to which the role is granted. The ROLE_ROUTINE_GRANTS table provides information about the ...SPECIFIC_CATALOG The name of the catalog to which the routine ...
https://dev.mysql.com/doc/refman/8.4/en/information-schema-role-table-grants-table.html
The ROLE_TABLE_GRANTS table has these columns: GRANTOR The user name part of the account that granted the role. GRANTEE The user name part of the account to which the role is granted. The ROLE_TABLE_GRANTS table provides information about the table ...TABLE_CATALOG The name of the catalog to which the role ...
https://dev.mysql.com/doc/refman/8.4/en/server-system-variables.html
Granted roles include those granted explicitly to the user and those named in the mandatory_roles system variable value. Of these, some can request that the MySQL server itself map proxy users according to granted proxy privileges: ...Setting a ...
https://dev.mysql.com/doc/refman/8.4/en/pam-pluggable-authentication.html
PAM pluggable authentication provides these capabilities: External authentication: PAM authentication enables MySQL Server to accept connections from users defined outside the MySQL grant tables and that authenticate using methods supported by PAM.
https://dev.mysql.com/doc/refman/8.4/en/partial-revokes.html
Using Partial Revokes Partial Revokes Versus Explicit Schema Grants Disabling Partial Revokes Partial Revokes and Replication Note For brevity, CREATE USER statements shown here do not include passwords. When partial_revokes is enabled, an extended ... It is possible to grant privileges that apply globally if the partial_revokes system variable is ...Privilege restrictions thus imposed may be useful for ...
https://dev.mysql.com/doc/refman/8.4/en/password-management.html
If an account is to be permitted to manipulate secondary passwords for all accounts, it should be granted the CREATE USER privilege rather than APPLICATION_PASSWORD_ADMIN. In that case, the server writes messages similar to these to the error log ...
https://dev.mysql.com/doc/refman/8.4/en/kerberos-pluggable-authentication.html
Kerberos pluggable authentication provides these capabilities: External authentication: Kerberos authentication enables MySQL Server to accept connections from users defined outside the MySQL grant tables who have obtained the proper Kerberos ...