Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-21743

Split up SUPER privilege to smaller privileges

    XMLWordPrintable

Details

    Description

      The SUPER privilege should be split up to multiple admin privileges so that more fine grained tuning of what each user can do could be applied.

      The SUPER privilege as such should still remain as an alias for all these smaller privileges

      Attachments

        Issue Links

          blocks

          New Feature - A new feature of the product, which has yet to be developed. MDEV-20299 "sudo" feature in the server

          • Major - Major loss of function.
          • Open
          causes

          Bug - A problem which impairs or prevents the functions of the product. MDEV-23610 Slave user can't run "SHOW SLAVE STATUS" anymore after upgrade to 10.5, mysql_upgrade should take of that

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-24344 BINLOG REPLAY privilege is missing from SHOW PRIVILEGES

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-24362 Privilege aliases are missing from SHOW PRIVILEGES

          • Major - Major loss of function.
          • Open

          Bug - A problem which impairs or prevents the functions of the product. MDEV-27611 CLONE - Slave user can't run "SHOW SLAVE STATUS" anymore after upgrade to 10.5, mysql_upgrade should take of that

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          is blocked by

          Task - A task that needs to be done. MDEV-21689 Add Sql_cmd for GRANT/REVOKE statements

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21702 Add a data type for privileges

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21704 Add a new JSON field "version_id" into mysql.global_priv.priv

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          is duplicated by

          Task - A task that needs to be done. MDEV-18766 Add REPLICATION_SLAVE_ADMIN privilege so that MaxScale doesn't need SUPER privilege to STOP SLAVE or CHANGE MASTER

          • Major - Major loss of function.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. MDEV-21706 CLIENT_NO_SCHEMA: `GRANT..ON db.table..` changes the explicit database to the current

          • Major - Major loss of function.
          • Open

          Task - A task that needs to be done. MDEV-21960 Bind READ_ONLY ADMIN to @@read_only

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21961 Bind CONNECTION ADMIN to a number of global system variables

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21963 Bind BINLOG ADMIN to a number of global system variables

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21966 Bind REPLICATION SLAVE ADMIN to a number of global system variables

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21967 Bind REPLICATION {MASTER|SLAVE} ADMIN to rpl_semi_sync_* variables

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21969 Bind REPLICATION SLAVE ADMIN to relay_log_*, sync_master_info, sync_relay_log, sync_relay_log_info

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21972 Bind REPLICATION MASTER ADMIN to master_verify_checksum

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21973 Bind REPLICATION {MASTER|SLAVE} ADMIN to gtid_* GLOBAL-only system variables

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-22012 Allow SET TIMESTAMP for users with GRANT BINLOG REPLAY when --secure-timestamp=replication

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-22030 Don't grant REPLICATION MASTER ADMIN automatically on upgrade from an older JSON user table

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-22057 REPLICATION MASTER ADMIN is missing in root account after upgrade

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-22152 REPLICATION MASTER ADMIN privilege not given to former SUPER users upon upgrade

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-29668 SUPER should not allow actions that have fine-grained dedicated privileges

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Task - A task that needs to be done. MDEV-20577 Require lower privilege than SUPER to set rocksdb_create_checkpoint

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Open

          Task - A task that needs to be done. MDEV-21956 Add class Sys_var_charptr_fscs

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21957 Bind BINLOG ADMIN to @@binlog_format, @@binlog_direct_.., @@sql_log_bin

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21971 Bind BINLOG ADMIN to binlog_annotate_row_events and binlog_row_image global and session variables

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-21975 Add BINLOG REPLAY privilege and bind new privileges to gtid_seq_no, preudo_thread_id, server_id, gtid_domain_id

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. MDEV-22026 Document 10.5 privilege changes

          • Major - Major loss of function.
          • Closed

          Activity

            People

              bar Alexander Barkov
              maxmether Max Mether
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.