Uploaded image for project: 'MariaDB MaxScale'
  1. MariaDB MaxScale
  2. MXS-4248

Improve logging for enable_root_user not enabled instead of "Authentication failed for user

    XMLWordPrintable

Details

    • Task
    • Status: Closed (View Workflow)
    • Major
    • Resolution: Not a Bug
    • None
    • N/A
    • N/A
    • None
    • MXS-SPRINT-165

    Description

      When a user is considered a fully privileges user (not sure how the matching is done) and enable_root_user is disabled, the error message returned is a plain:

      warning: (9) [MariaDBProtocol] Authentication failed for user 'claudio'@[192.168.1.135] to service 'Read-Write-Service'. Originating listener: 'Read-Write-Listener'. MariaDB error: 'Access denied for user 'claudio'@'192.168.1.135' (using password: YES)'.

      The user of course was perfectly able to login directly to the backends.

      It took me some time to find out that 'claudio'@'%' had too many privileges and was considered as 'root' and so denied login.

      I think it would be useful to log a more meaningful message like:

      Fully privileges users are not allowed to login set enable_root_user=1 if needed.

      Attachments

        Activity

          People

            markus makela markus makela
            claudio.nanni Claudio Nanni
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.