Table of Contents
Advertisement
MySQL stores column privileges in the
Stored Routine Privileges
The
ALTER ROUTINE
privileges apply to stored routines (procedures and functions). They can be granted at the global and
database levels. Except for
level for individual routines.
GRANT CREATE ROUTINE ON mydb.* TO 'someuser'@'somehost';
GRANT EXECUTE ON PROCEDURE mydb.myproc TO 'someuser'@'somehost';
The permissible
and
GRANT OPTION
have this privilege to create a routine in the first place.
MySQL stores routine-level privileges in the
For the global, database, table, and routine levels,
the level you are granting. For example,
so it does not grant any global-only privileges such as
The
object_type
FUNCTION, or
procedure.
The privileges for a database, table, column, or routine are formed additively as the logical
the privileges at each of the privilege levels. For example, if a user has a global
the privilege cannot be denied by an absence of the privilege at the database, table, or column level.
Details of the privilege-checking procedure are presented in
Request
Verification".
MySQL enables you to grant privileges on databases or tables that do not exist. For tables, the
privileges to be granted must include the
intended to enable the database administrator to prepare user accounts and privileges for databases or
tables that are to be created at a later time.
Account Names and Passwords
The
value indicates the MySQL account to which the
user
granting rights to users from arbitrary hosts, MySQL supports specifying the
user_name@host_name. If a
need not quote it. However, quotation marks are necessary to specify a
special characters (such as "-"), or a
characters (such as "%"); for example, 'test-user'@'%.com'. Quote the user name and host name
separately.
You can specify wildcards in the host name. For example,
user_name
user_name
The simple form
MySQL does not support wildcards in user names. To refer to an anonymous user, specify an account
with an empty user name with the
Account Management Statements
[576],
CREATE ROUTINE
CREATE ROUTINE
values at the routine level are
priv_type
[577].
CREATE ROUTINE
clause was added in MySQL 5.0.6. If present, it should be specified as TABLE,
when the following object is a table, a stored function, or a stored
PROCEDURE
Important
MySQL does not automatically revoke any privileges when you drop a database
or table. However, if you drop a routine, any routine-level privileges granted for
that routine are revoked.
user_name
for any host in the
example.com
for any host in the
192.168.1
is a synonym for user_name@'%'.
user_name
GRANT
mysql.columns_priv
[576],
EXECUTE
[576], these privileges can be granted at the routine
ALTER ROUTINE
[576]
is not a routine-level privilege because you must
mysql.procs_priv
GRANT ALL
GRANT ALL ON db_name.*
FILE
Section 6.2.5, "Access Control, Stage 2:
[576]
privilege. This behavior is by design, and is
CREATE
GRANT
or
value is legal as an unquoted identifier, you
host_name
string containing special characters or wildcard
host_name
user_name@'%.example.com'
domain, and
user_name@'192.168.1.%'
class C subnet.
statement:
1155
table.
[577], and
GRANT OPTION
[576],
table.
assigns only the privileges that exist at
is a database-level statement,
[577].
SELECT
statement applies. To accommodate
value in the form
user
user_name
[577]
[577],
EXECUTE
[881]
of
OR
[578]
privilege,
string containing
applies to
applies to
Advertisement
Chapters
Table of Contents
Troubleshooting
