Skip to main content

MySQL 8 role based privlileges

MySQL 8 implement role based privileges:

If you are wondering about how to implement new features of MySQL 8 about role based privileges. Then here is my 2 cents.
It doesn't work like Oracle in which we create role, grant privileges to role, grant role to the user, and you are all set.

There are two options available:

    01. Activate role at session level, using set role
    02. Activate all roles on login globally

Role at session level:

    SET ROLE is used to modify user's effective privileges in the current session.    

    SET ROLE DEFAULT;
    SET ROLE 'role1', 'role2';
    SET ROLE ALL;
    SET ROLE ALL EXCEPT 'role1', 'role2';
   
Activate role globally:
 
By default activate_all_roles_on_login is OFF, check it by using SELECT VARIABLES LIKE '%activate%';
 
Execute statement SET GLOBAL activate_all_roles_on_login = ON;
    
If you are logged in then log out and log in back and user will have the privileges.
   
In MySQL 8, you have to activate_all_roles_on_login and re-login in to the session if you are already login.

Ref.: https://dev.mysql.com/doc/refman/8.0/en/set-role.html
Labels:

Comments

Post a Comment

Popular posts from this blog

MySQL InnoDB cluster troubleshooting | commands

Cluster Validation: select * from performance_schema.replication_group_members; All members should be online. select instance_name, mysql_server_uuid, addresses from  mysql_innodb_cluster_metadata.instances; All instances should return same value for mysql_server_uuid SELECT @@GTID_EXECUTED; All nodes should return same value Frequently use commands: mysql> SET SQL_LOG_BIN = 0;  mysql> stop group_replication; mysql> set global super_read_only=0; mysql> drop database mysql_innodb_cluster_metadata; mysql> RESET MASTER; mysql> RESET SLAVE ALL; JS > var cluster = dba.getCluster() JS > var cluster = dba.getCluster("<Cluster_name>") JS > var cluster = dba.createCluster('name') JS > cluster.removeInstance('root@<IP_Address>:<Port_No>',{force: true}) JS > cluster.addInstance('root@<IP add>,:<port>') JS > cluster.addInstance('root@ <IP add>,:<port> ') JS > dba.getC
Post a Comment
Read more

MySQL slave Error_code: 1032 | MySQL slave drift | HA_ERR_KEY_NOT_FOUND

MySQL slave Error_code: 1032 | MySQL slave drift: With several MySQL, instance with master slave replication, I have one analytics MySQL, environment which is larger in terabytes, compared to other MySQL instances in the environment. Other MySQL instances with terabytes of data are running fine master, slave replication. But this analytics environment get started generating slave Error_code :1032. mysql> show slave status; Near relay log: Error_code: 1032; Can't find record in '<table_name>', Error_code: 1032; handler error HA_ERR_KEY_NOT_FOUND; the event's master log <name>-bin.000047, end_log_pos 5255306 Near master section: Could not execute Update_rows event on table <db_name>.<table_name>; Can't find record in '<table_name>', Error_code: 1032; Can't find record in '<table_name>', Error_code: 1032; handler error HA_ERR_KEY_NOT_FOUND; the event's master log <name>-bin.000047, end_l
1 comment
Read more

Create MySQL database with hyphen

Create MySQL database with hyphen: If you are trying to create MySQL database with hyphen " - " in the name such as test-db and get error  " your MySQL server version for the right syntax to use near '-db' at line" then you might be wondering how to get it done as your business require MySQL database name with hyphen " - "  Here is the fix, use escape character " ` " before and after database name such as `test-db` and you will be able to create database with hyphen. CREATE DATABASE `test-db`; 
Post a Comment
Read more