角色管理

MySQL8新增的功能

– 创建角色 role
create role ‘dev_read’,‘dev_write’

– 给角色分配权限
grant select on mydb.* to ‘dev_read’
grant insert,update,delete on mydb.* to ‘dev_write’

– 创建用户
create user ‘user1’@‘localhost’ identified by ‘user1’;
create user ‘user2’@‘localhost’ identified by ‘user2’;
create user ‘user3’@‘localhost’ identified by ‘user3’;

– 给用户分配角色
grant ‘dev_read’ to ‘user1’@‘localhost’;
grant ‘dev_write’ to ‘user2’@‘localhost’;
grant ‘dev_write’ to ‘user3’@‘localhost’ with admin option ;

– 激活角色 !!!
set default role all to ‘user1’@‘localhost’,‘user2’@‘localhost’,‘user3’@‘localhost’

– 给用户撤销角色
revoke ‘dev_read’ from ‘user1’@‘localhost’;
revoke ‘dev_write’ from ‘user2’@‘localhost’;
revoke ‘dev_write’ from ‘user3’@‘localhost’;

– 删除角色
drop role ‘dev_read’,‘dev_write’

– 删除用户
drop user ‘user1’@‘localhost’,‘user2’@‘localhost’,‘user3’@‘localhost’