Details
-
Task
-
Status: Closed (View Workflow)
-
Critical
-
Resolution: Fixed
Description
Implement the standard behavior for
GRANT xxx TO PUBLIC; |
REVOKE xxx FROM PUBLIC; |
Also, this statement is supposed to work:
SHOW GRANTS FOR PUBLIC; |
And these should not
CREATE ROLE PUBLIC; |
DROP ROLE PUBLIC; |
SET ROLE PUBLIC; |
GRANT PUBLIC TO xxx; |
REVOKE PUBLIC FROM xxx; |
Note that
SHOW GRANTS FOR xxx; |
should not list roles and privileges granted to PUBLIC (unless granted to xxx too), but
SHOW GRANTS;
|
should, arguably, list them.
Attachments
Issue Links
- blocks
-
MDEV-20947 Use GRANT ... TO PUBLIC for default test database privileges
- Closed
- causes
-
MDEV-30085 ER_DBACCESS_DENIED_ERROR for Spider and Federated tables on test db
- Closed
-
MDEV-30154 Assertion `strcasecmp(rolename, public_name.str) || acl_public == role' failed in acl_update_role on GRANT ... TO PUBLIC
- Closed
- includes
-
MDEV-29752 SHOW GRANTS for PUBLIC should work for all users
- Closed
- is part of
-
MDEV-29547 prepare 10.11.0 preview releases
- Closed
- relates to
-
MDEV-4397 Roles
- Closed
No, PUBLIC role isn't sufficient. It can allow everyone to access test db, but it won't allow just anyone to connect. If you want an anonymous user, you need to it with CREATE USER ''@'%'