MENU
Privileges
| GRANT priv_type [(column_list)] [, priv_type [(column_list)]] ... ON [object_type] priv_level TO user_specification [, user_specification] ... [REQUIRE {NONE | ssl_option [[AND] ssl_option] ...}] [WITH with_option ...] GRANT PROXY ON user_specification TO user_specification [, user_specification] ... [WITH GRANT OPTION] object_type: TABLE | FUNCTION | PROCEDURE priv_level: * | *.* | db_name.* | db_name.tbl_name | tbl_name | db_name.routine_name user_specification: user [ | IDENTIFIED WITH auth_plugin [AS 'auth_string'] IDENTIFIED BY [PASSWORD] 'password' ] ssl_option: SSL | X509 | CIPHER 'cipher' | ISSUER 'issuer' | SUBJECT 'subject' with_option: GRANT OPTION | MAX_QUERIES_PER_HOUR count | MAX_UPDATES_PER_HOUR count | MAX_CONNECTIONS_PER_HOUR count | MAX_USER_CONNECTIONS count |
| This grants prvileges to one or more user accounts. |
| GRANT SELECT (col1), INSERT (col1,col2) ON mydb.mytbl TO 'someuser'@'somehost'; |
| GRANT EXECUTE ON PROCEDURE mydb.myproc TO 'someuser'@'somehost'; |
| GRANT ALL PRIVILEGES ON test.* TO 'root'@'localhost' IDENTIFIED BY 'goodsecret' REQUIRE SUBJECT '/C=EE/ST=Some-State/L=Tallinn/ O=MySQL demo client certificate/ CN=Tonu Samuel/emailAddress=tonu@example.com' AND ISSUER '/C=FI/ST=Some-State/L=Helsinki/ O=MySQL Finland AB/CN=Tonu Samuel/emailAddress=tonu@example.com' AND CIPHER 'EDH-RSA-DES-CBC3-SHA'; |
Privileges |
|
| ALL [PRIVILEGES] |
grants all privileges except GRANT OPTION. |
| ALTER (global, database, table) |
enables the use of ALTER TABLE. |
| ALTER ROUTINE (global, database, table) |
enables stored routines to be altered or dropped. |
| CREATE (global, database, table) |
enables database and table creation. |
| CREATE ROUTINE (global, database, table) |
enables stored routine creation. |
| CREATE TABLESPACE (global) |
enables tablespaces and log file groups to be created, altered or dropped. |
| CREATE TEMPORARY TABLES (global, database) |
enables the use of CREATE TEMPORARY TABLE. |
| CREATE USER (global) |
enables thes use of CREATE USER, DROP USER, RENAME USER, and REVOKE ALL PRIVILEGES. |
| CREATE VIEW (global, database, table) |
enables views to be created and altered. |
| DELETE (global, database, table) |
enables the use of DELETE. |
| DROP (global, database, table) |
enables databases, tables, and views to be dropped. |
| EVENT (global, database) |
enables the use of events for the Event Scheduler. |
| EXECUTE (global, database, table) |
enables the user to execute stored routines. |
| FILE (global) |
enables the user to cause the server to read or write files. |
| GRANT_OPTION (global, database, table, procedure, proxy) |
enables privileges to be granted to or removed from other accounts. |
| INDEX (global, database, table) |
enables indexes to be created or dropped. |
| INSERT (global, database, table, column) |
enables the use of INSERT. |
| LOCK TABLES (global, database) |
enables the use of LOCK TABLES on tables for which you have the SELECT privilege. |
| PROCESS (global) |
enables the user to see all processes with SHOW PROCESSLIST. |
| PROXY (from user to user) |
enables user proxying. |
| REFERENCES (implemented) | |
| RELOAD (global) |
enables the use of FLUSH operations. |
| REPLICATION CLIENT (global) |
enables the user to ask where the the master or slave servers are. |
| REPLICATION SLAVE (global) |
enables replication slaves to read binary log events from the master. |
| SELECT (global, database, table, column) |
enables the use of SELECT. |
| SHOW DATABASES (global) |
enables the use of SHOW DATABASES to show all databases. |
| SHOW VIEW (global, database, table) |
enables the use of SHOW CREATE VIEW. |
| SHUTDOWN (global) |
enables the use of mysqladmin shutdown. |
| SUPER (global) |
enables the use of other administrative operations such as CHANGE MASTER TO, KILL, PURGE BINARY LOGS, SET GLOBAL, and mysqladmin debug command. |
| TRIGGER (global, database, table) |
enables trigger operations. |
| UPDATE (global, database, table, column) |
enables the use of UPDATE. |
| USAGE (no privileges) | |
| REVOKE priv_type [(column_list)] [, priv_type [(column_list)]] ... ON [object_type] priv_level FROM user [, user] ... REVOKE ALL PRIVILEGES, GRANT OPTION FROM user [, user] ... REVOKE PROXY ON user FROM user [, user] ... |