database/mariadb
1
0
Fork 0
mirror of https://github.com/MariaDB/server.git synced 2025-07-21 21:22:27 +03:00
Code Activity

MDEV-16238 root/localhost authn prioritizes authentication_string over Password

Browse Source 
Don't let SET PASSWORD to set the password, if auth_string is set.

Now SET PASSWORD always sets the plugin/auth_string fields and clears
the password field (on pre-plugin mysql.user table it works as before).
This commit is contained in:
Sergei Golubchik
2018-06-18 21:00:25 +02:00
parent b4db59ba47
commit 5f0510225a
12 changed files with 138 additions and 104 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
mysql-test/r/grant2.result
View File

@ -372,8 +372,8 @@ mysqltest_1@127.0.0.1
set password = password('changed'); set password = password('changed');
disconnect b12302; disconnect b12302;
connection default; connection default;
select host, length(password) from mysql.user where user like 'mysqltest\_1'; select host, length(authentication_string) from mysql.user where user like 'mysqltest\_1';
host length(password) host length(authentication_string)
127.0.0.1 41 127.0.0.1 41
revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.1'; revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.1';
delete from mysql.user where user like 'mysqltest\_1'; delete from mysql.user where user like 'mysqltest\_1';
@ -387,8 +387,8 @@ mysqltest_1@127.0.0.0/255.0.0.0
set password = password('changed'); set password = password('changed');
disconnect b12302_2; disconnect b12302_2;
connection default; connection default;
select host, length(password) from mysql.user where user like 'mysqltest\_1'; select host, length(authentication_string) from mysql.user where user like 'mysqltest\_1';
host length(password) host length(authentication_string)
127.0.0.0/255.0.0.0 41 127.0.0.0/255.0.0.0 41
revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.0/255.0.0.0'; revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.0/255.0.0.0';
delete from mysql.user where user like 'mysqltest\_1'; delete from mysql.user where user like 'mysqltest\_1';

33
mysql-test/r/set_password_plugin-9835.result → mysql-test/r/set_password.result
View File

@ -11,10 +11,10 @@ select user, host, password, plugin, authentication_string from mysql.user where
user host password plugin authentication_string user host password plugin authentication_string
natauth localhost *94BDCEBE19083CE2A1F959FD02F964C7AF4CFC29 natauth localhost *94BDCEBE19083CE2A1F959FD02F964C7AF4CFC29
newpass localhost *94BDCEBE19083CE2A1F959FD02F964C7AF4CFC29 newpass localhost *94BDCEBE19083CE2A1F959FD02F964C7AF4CFC29
newpassnat localhost *94BDCEBE19083CE2A1F959FD02F964C7AF4CFC29 newpassnat localhost mysql_native_password *94BDCEBE19083CE2A1F959FD02F964C7AF4CFC29
oldauth localhost 378b243e220ca493 oldauth localhost 378b243e220ca493
oldpass localhost 378b243e220ca493 oldpass localhost 378b243e220ca493
oldpassold localhost 378b243e220ca493 oldpassold localhost mysql_old_password 378b243e220ca493
connect con,localhost,natauth,test,; connect con,localhost,natauth,test,;
select current_user(); select current_user();
current_user() current_user()
@ -86,12 +86,12 @@ set password for oldpass@localhost = PASSWORD('test2');
set password for oldpassold@localhost = PASSWORD('test2'); set password for oldpassold@localhost = PASSWORD('test2');
select user, host, password, plugin, authentication_string from mysql.user where user != 'root'; select user, host, password, plugin, authentication_string from mysql.user where user != 'root';
user host password plugin authentication_string user host password plugin authentication_string
natauth localhost *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E natauth localhost mysql_native_password *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E
newpass localhost *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E newpass localhost mysql_native_password *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E
newpassnat localhost *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E newpassnat localhost mysql_native_password *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E
oldauth localhost *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E oldauth localhost mysql_native_password *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E
oldpass localhost *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E oldpass localhost mysql_native_password *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E
oldpassold localhost *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E oldpassold localhost mysql_native_password *7CEB3FDE5F7A9C4CE5FBE610D7D8EDA62EBE5F4E
connect con,localhost,natauth,test2,; connect con,localhost,natauth,test2,;
select current_user(); select current_user();
current_user() current_user()
@ -158,3 +158,20 @@ connection default;
drop user natauth@localhost, newpass@localhost, newpassnat@localhost; drop user natauth@localhost, newpass@localhost, newpassnat@localhost;
drop user oldauth@localhost, oldpass@localhost, oldpassold@localhost; drop user oldauth@localhost, oldpass@localhost, oldpassold@localhost;
set global secure_auth=default; set global secure_auth=default;
create user foo@localhost identified with mysql_native_password;
update mysql.user set authentication_string=password('foo'), plugin='mysql_native_password' where user='foo' and host='localhost';
set password for 'foo'@'localhost' = password('bar');
flush privileges;
connect foo, localhost, foo, bar;
select user(), current_user();
user() current_user()
foo@localhost foo@localhost
show grants;
Grants for foo@localhost
GRANT USAGE ON *.* TO 'foo'@'localhost' IDENTIFIED BY PASSWORD '*E8D46CE25265E545D225A8A6F1BAF642FEBEE5CB'
disconnect foo;
connection default;
select user,host,password,plugin,authentication_string from mysql.user where user='foo';
user host password plugin authentication_string
foo localhost mysql_native_password *E8D46CE25265E545D225A8A6F1BAF642FEBEE5CB
drop user foo@localhost;

6
mysql-test/r/show_grants_with_plugin-7985.result
View File

@ -71,7 +71,7 @@ connection default;
set password for u1 = PASSWORD('SOMETHINGELSE'); set password for u1 = PASSWORD('SOMETHINGELSE');
select user, host, password, plugin, authentication_string from mysql.user where user = 'u1'; select user, host, password, plugin, authentication_string from mysql.user where user = 'u1';
user host password plugin authentication_string user host password plugin authentication_string
u1 % *054B7BBD2B9A553DA560520DCD3F76DA2D81B7C6 u1 % mysql_native_password *054B7BBD2B9A553DA560520DCD3F76DA2D81B7C6
# #
# Here we should use the password field, as that primes over # Here we should use the password field, as that primes over
# the authentication_string field. # the authentication_string field.
@ -112,7 +112,7 @@ connection default;
# Now we remove the authentication plugin password, flush privileges and # Now we remove the authentication plugin password, flush privileges and
# try again. # try again.
# #
update mysql.user set authentication_string = '' where user='u1'; update mysql.user set password=authentication_string, plugin='', authentication_string='' where user='u1';
select user, host, password, plugin, authentication_string from mysql.user where user = 'u1'; select user, host, password, plugin, authentication_string from mysql.user where user = 'u1';
user host password plugin authentication_string user host password plugin authentication_string
u1 % *054B7BBD2B9A553DA560520DCD3F76DA2D81B7C6 u1 % *054B7BBD2B9A553DA560520DCD3F76DA2D81B7C6
@ -172,7 +172,7 @@ connection default;
set password for u1 = ''; set password for u1 = '';
select user, host, password, plugin, authentication_string from mysql.user where user = 'u1'; select user, host, password, plugin, authentication_string from mysql.user where user = 'u1';
user host password plugin authentication_string user host password plugin authentication_string
u1 % u1 % mysql_native_password
# #
# Test no password connect. # Test no password connect.
# #

4
mysql-test/suite/rpl/include/rpl_mixed_check_user.inc
View File

@ -5,9 +5,9 @@
# Requirements: # Requirements:
######################################### #########################################
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
sync_slave_with_master; sync_slave_with_master;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
connection master; connection master;

14
mysql-test/suite/rpl/r/rpl_do_grant.result
View File

@ -20,21 +20,21 @@ GRANT DROP ON `test`.* TO 'rpl_do_grant'@'localhost'
connection master; connection master;
set password for rpl_do_grant@localhost=password("does it work?"); set password for rpl_do_grant@localhost=password("does it work?");
connection slave; connection slave;
select password<>_binary'' from mysql.user where user=_binary'rpl_do_grant'; select authentication_string<>_binary'' from mysql.user where user=_binary'rpl_do_grant';
password<>_binary'' authentication_string<>_binary''
1 1
connection master; connection master;
update mysql.user set password='' where user='rpl_do_grant'; update mysql.user set authentication_string='' where user='rpl_do_grant';
flush privileges; flush privileges;
select password<>'' from mysql.user where user='rpl_do_grant'; select authentication_string<>'' from mysql.user where user='rpl_do_grant';
password<>'' authentication_string<>''
0 0
set sql_mode='ANSI_QUOTES'; set sql_mode='ANSI_QUOTES';
set password for rpl_do_grant@localhost=password('does it work?'); set password for rpl_do_grant@localhost=password('does it work?');
set sql_mode=''; set sql_mode='';
connection slave; connection slave;
select password<>'' from mysql.user where user='rpl_do_grant'; select authentication_string<>'' from mysql.user where user='rpl_do_grant';
password<>'' authentication_string<>''
1 1
connection master; connection master;
delete from mysql.user where user=_binary'rpl_do_grant'; delete from mysql.user where user=_binary'rpl_do_grant';

56
mysql-test/suite/rpl/r/rpl_innodb_mixed_dml.result
View File

@ -480,72 +480,72 @@ SET TRANSACTION ISOLATION LEVEL SERIALIZABLE;
******************** CREATE USER ******************** ******************** CREATE USER ********************
CREATE USER 'user_test_rpl'@'localhost' IDENTIFIED BY PASSWORD '*1111111111111111111111111111111111111111'; CREATE USER 'user_test_rpl'@'localhost' IDENTIFIED BY PASSWORD '*1111111111111111111111111111111111111111';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection master; connection master;
******************** GRANT ******************** ******************** GRANT ********************
GRANT SELECT ON *.* TO 'user_test_rpl'@'localhost'; GRANT SELECT ON *.* TO 'user_test_rpl'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 Y localhost user_test_rpl *1111111111111111111111111111111111111111 Y
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 Y localhost user_test_rpl *1111111111111111111111111111111111111111 Y
connection master; connection master;
******************** REVOKE ******************** ******************** REVOKE ********************
REVOKE SELECT ON *.* FROM 'user_test_rpl'@'localhost'; REVOKE SELECT ON *.* FROM 'user_test_rpl'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection master; connection master;
******************** SET PASSWORD ******************** ******************** SET PASSWORD ********************
SET PASSWORD FOR 'user_test_rpl'@'localhost' = '*0000000000000000000000000000000000000000'; SET PASSWORD FOR 'user_test_rpl'@'localhost' = '*0000000000000000000000000000000000000000';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *0000000000000000000000000000000000000000 N localhost user_test_rpl mysql_native_password *0000000000000000000000000000000000000000 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *0000000000000000000000000000000000000000 N localhost user_test_rpl mysql_native_password *0000000000000000000000000000000000000000 N
connection master; connection master;
******************** RENAME USER ******************** ******************** RENAME USER ********************
RENAME USER 'user_test_rpl'@'localhost' TO 'user_test_rpl_2'@'localhost'; RENAME USER 'user_test_rpl'@'localhost' TO 'user_test_rpl_2'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl_2 *0000000000000000000000000000000000000000 N localhost user_test_rpl_2 mysql_native_password *0000000000000000000000000000000000000000 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl_2 *0000000000000000000000000000000000000000 N localhost user_test_rpl_2 mysql_native_password *0000000000000000000000000000000000000000 N
connection master; connection master;
******************** DROP USER ******************** ******************** DROP USER ********************
DROP USER 'user_test_rpl_2'@'localhost'; DROP USER 'user_test_rpl_2'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
connection master; connection master;
INSERT INTO t1 VALUES(100, 'test'); INSERT INTO t1 VALUES(100, 'test');

8
mysql-test/suite/rpl/t/rpl_do_grant.test
View File

@ -27,20 +27,20 @@ show grants for rpl_do_grant@localhost;
connection master; connection master;
set password for rpl_do_grant@localhost=password("does it work?"); set password for rpl_do_grant@localhost=password("does it work?");
sync_slave_with_master; sync_slave_with_master;
select password<>_binary'' from mysql.user where user=_binary'rpl_do_grant'; select authentication_string<>_binary'' from mysql.user where user=_binary'rpl_do_grant';
# #
# Bug#24158 SET PASSWORD in binary log fails under ANSI_QUOTES # Bug#24158 SET PASSWORD in binary log fails under ANSI_QUOTES
# #
connection master; connection master;
update mysql.user set password='' where user='rpl_do_grant'; update mysql.user set authentication_string='' where user='rpl_do_grant';
flush privileges; flush privileges;
select password<>'' from mysql.user where user='rpl_do_grant'; select authentication_string<>'' from mysql.user where user='rpl_do_grant';
set sql_mode='ANSI_QUOTES'; set sql_mode='ANSI_QUOTES';
set password for rpl_do_grant@localhost=password('does it work?'); set password for rpl_do_grant@localhost=password('does it work?');
set sql_mode=''; set sql_mode='';
sync_slave_with_master; sync_slave_with_master;
select password<>'' from mysql.user where user='rpl_do_grant'; select authentication_string<>'' from mysql.user where user='rpl_do_grant';
# clear what we have done, to not influence other tests. # clear what we have done, to not influence other tests.

4
mysql-test/t/grant2.test
View File

@ -385,7 +385,7 @@ select current_user();
set password = password('changed'); set password = password('changed');
disconnect b12302; disconnect b12302;
connection default; connection default;
select host, length(password) from mysql.user where user like 'mysqltest\_1'; select host, length(authentication_string) from mysql.user where user like 'mysqltest\_1';
revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.1'; revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.1';
delete from mysql.user where user like 'mysqltest\_1'; delete from mysql.user where user like 'mysqltest\_1';
flush privileges; flush privileges;
@ -396,7 +396,7 @@ select current_user();
set password = password('changed'); set password = password('changed');
disconnect b12302_2; disconnect b12302_2;
connection default; connection default;
select host, length(password) from mysql.user where user like 'mysqltest\_1'; select host, length(authentication_string) from mysql.user where user like 'mysqltest\_1';
revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.0/255.0.0.0'; revoke all on mysqltest_1.* from mysqltest_1@'127.0.0.0/255.0.0.0';
delete from mysql.user where user like 'mysqltest\_1'; delete from mysql.user where user like 'mysqltest\_1';
flush privileges; flush privileges;

14
mysql-test/t/set_password_plugin-9835.test → mysql-test/t/set_password.test
View File

@ -129,3 +129,17 @@ drop user natauth@localhost, newpass@localhost, newpassnat@localhost;
drop user oldauth@localhost, oldpass@localhost, oldpassold@localhost; drop user oldauth@localhost, oldpass@localhost, oldpassold@localhost;
set global secure_auth=default; set global secure_auth=default;
#
# MDEV-16238 root/localhost authn prioritizes authentication_string over Password
#
create user foo@localhost identified with mysql_native_password;
update mysql.user set authentication_string=password('foo'), plugin='mysql_native_password' where user='foo' and host='localhost';
set password for 'foo'@'localhost' = password('bar');
flush privileges;
--connect foo, localhost, foo, bar
select user(), current_user();
show grants;
--disconnect foo
--connection default
select user,host,password,plugin,authentication_string from mysql.user where user='foo';
drop user foo@localhost;

2
mysql-test/t/show_grants_with_plugin-7985.test
View File

@ -91,7 +91,7 @@ show grants;
--echo # Now we remove the authentication plugin password, flush privileges and --echo # Now we remove the authentication plugin password, flush privileges and
--echo # try again. --echo # try again.
--echo # --echo #
update mysql.user set authentication_string = '' where user='u1'; update mysql.user set password=authentication_string, plugin='', authentication_string='' where user='u1';
select user, host, password, plugin, authentication_string from mysql.user where user = 'u1'; select user, host, password, plugin, authentication_string from mysql.user where user = 'u1';
flush privileges; flush privileges;
show grants for u1; show grants for u1;

13
sql/sql_acl.cc
View File

@ -3919,13 +3919,16 @@ static bool update_user_table(THD *thd, const User_table& user_table,
DBUG_RETURN(1); /* purecov: deadcode */ DBUG_RETURN(1); /* purecov: deadcode */
} }
store_record(table,record[1]); store_record(table,record[1]);
/* If the password column is missing, we use the
authentication_string column. */ if (user_table.plugin())
if (user_table.password()) {
user_table.password()->store(new_password, new_password_len, system_charset_info);
else
set_authentication_plugin_from_password(user_table, new_password, set_authentication_plugin_from_password(user_table, new_password,
new_password_len); new_password_len);
new_password_len= 0;
}
if (user_table.password())
user_table.password()->store(new_password, new_password_len, system_charset_info);
if ((error=table->file->ha_update_row(table->record[1],table->record[0])) && if ((error=table->file->ha_update_row(table->record[1],table->record[0])) &&

56
storage/tokudb/mysql-test/rpl/r/rpl_tokudb_mixed_dml.result
View File

@ -483,72 +483,72 @@ SET TRANSACTION ISOLATION LEVEL SERIALIZABLE;
******************** CREATE USER ******************** ******************** CREATE USER ********************
CREATE USER 'user_test_rpl'@'localhost' IDENTIFIED BY PASSWORD '*1111111111111111111111111111111111111111'; CREATE USER 'user_test_rpl'@'localhost' IDENTIFIED BY PASSWORD '*1111111111111111111111111111111111111111';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection master; connection master;
******************** GRANT ******************** ******************** GRANT ********************
GRANT SELECT ON *.* TO 'user_test_rpl'@'localhost'; GRANT SELECT ON *.* TO 'user_test_rpl'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 Y localhost user_test_rpl *1111111111111111111111111111111111111111 Y
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 Y localhost user_test_rpl *1111111111111111111111111111111111111111 Y
connection master; connection master;
******************** REVOKE ******************** ******************** REVOKE ********************
REVOKE SELECT ON *.* FROM 'user_test_rpl'@'localhost'; REVOKE SELECT ON *.* FROM 'user_test_rpl'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *1111111111111111111111111111111111111111 N localhost user_test_rpl *1111111111111111111111111111111111111111 N
connection master; connection master;
******************** SET PASSWORD ******************** ******************** SET PASSWORD ********************
SET PASSWORD FOR 'user_test_rpl'@'localhost' = '*0000000000000000000000000000000000000000'; SET PASSWORD FOR 'user_test_rpl'@'localhost' = '*0000000000000000000000000000000000000000';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *0000000000000000000000000000000000000000 N localhost user_test_rpl mysql_native_password *0000000000000000000000000000000000000000 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl *0000000000000000000000000000000000000000 N localhost user_test_rpl mysql_native_password *0000000000000000000000000000000000000000 N
connection master; connection master;
******************** RENAME USER ******************** ******************** RENAME USER ********************
RENAME USER 'user_test_rpl'@'localhost' TO 'user_test_rpl_2'@'localhost'; RENAME USER 'user_test_rpl'@'localhost' TO 'user_test_rpl_2'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl_2 *0000000000000000000000000000000000000000 N localhost user_test_rpl_2 mysql_native_password *0000000000000000000000000000000000000000 N
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
localhost user_test_rpl_2 *0000000000000000000000000000000000000000 N localhost user_test_rpl_2 mysql_native_password *0000000000000000000000000000000000000000 N
connection master; connection master;
******************** DROP USER ******************** ******************** DROP USER ********************
DROP USER 'user_test_rpl_2'@'localhost'; DROP USER 'user_test_rpl_2'@'localhost';
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
connection slave; connection slave;
USE test_rpl; USE test_rpl;
SELECT host, user, password, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%'; SELECT host, user, password, plugin, authentication_string, select_priv FROM mysql.user WHERE user LIKE 'user_test_rpl%';
host user password select_priv host user password plugin authentication_string select_priv
connection master; connection master;
INSERT INTO t1 VALUES(100, 'test'); INSERT INTO t1 VALUES(100, 'test');