Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-39028

DROP PARTITION, CONVERT OUT require both ALTER and DROP privileges

    XMLWordPrintable

Details

    • Notable changes
    • Q2/2026 Server Maintenance

    Description

      Precise user management requires fine privilege separation. Now DROP PARTITION requires both ALTER and DROP which allows users that do DROP PARTITION to do also any other DDL changes.

      TRUNCATE PARTITION requires only DROP privilege and that makes sense. Users allowed to drop the table also should be allowed to drop the data by parts, either by the partition or by the data inside the partition.

      Now DROP PARTITION should be allowed only be DROP privilege. The same with CONVERT OUT as it drops partition and creates a table, it must not require ALTER privilege.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. MDEV-37948 ALTER TABLE ... TRUNCATE PARTITION does not check for ALTER privilege

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            People

              midenok Aleksey Midenkov
              midenok Aleksey Midenkov
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.