Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-14444

Support Role based access control for MariaDB privilege system

    XMLWordPrintable

    Details

      Description

      MariaDB privilege system grants all privilges directly to super user, which will cause unrecoverable issues by accident. For example:
      1. User with super privilege can revoke super from himself. This can cause no user to perform operations like "set global variables", etc. Such issue also applies for other privileges.
      2. If a user with cooresponding privileges happens to delete mysql database by accident, the server will fail to start up after restart.

      A proper solution is to introduce role based access control for MariaDB privilege system. Only users assigned with certain roles can perform corresponding operation which super user can do the assignment.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              hanzhi Hanzhi
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: