MySql用户创办、授权以及删除

MySql用户创建、授权以及删除综合网上知识及解决方案,总结如下:一, 创建用户:???????命令:CREATE USER?use

MySql用户创建、授权以及删除

综合网上知识及解决方案,总结如下:

一, 创建用户:

???????命令:CREATE USER?'username'@'host' IDENTIFIED BY 'password';

???????说明:username - 你将创建的用户名, host - 指定该用户在哪个主机上可以登陆,如果是本地用户可用localhost, 如果想让该用户可以从任意远程主机登陆,可以使用通配符%. password - 该用户的登陆密码,密码可以为空,如果为空则该用户可以不需要密码登陆服务器.

??????例子: CREATE USER?'dog'@'localhost' IDENTIFIED BY '123456';
???????????????CREATE USER?'pig'@'192.168.1.101_' IDENDIFIED BY '123456';
???????????????CREATE USER?'pig'@'%' IDENTIFIED BY '123456';
???????????????CREATE USER?'pig'@'%'?IDENTIFIED BY '';
???????????????CREATE USER?'pig'@'%';

二,授权:

??????命令:GRANT privileges?ON databasename.tablename?TO?'username'@'host'

?????说明: privileges - 用户的操作权限,如SELECT , INSERT , UPDATE?等(详细列表见该文最后面).如果要授予所的权限则使用ALL.;databasename - 数据库名,tablename-表名,如果要授予该用户对所有数据库和表的相应操作权限则可用*表示, 如*.*.

??????例子: GRANT SELECT, INSERT ON test.user TO?'pig'@'%';
???????????????GRANT ALL ON *.* TO?'pig'@'%';

??????注意:用以上命令授权的用户不能给其它用户授权,如果想让该用户可以授权,用以下命令:
???????????GRANT privileges?ON databasename.tablename?TO?'username'@'host'?WITH GRANT OPTION;

三.设置与更改用户密码

?????命令:SET PASSWORD FOR?'username'@'host'?= PASSWORD('newpassword');如果是当前登陆用户用SET PASSWORD = PASSWORD("newpassword");

??????例子: SET PASSWORD FOR?'pig'@'%'?= PASSWORD("123456");

四.撤销用户权限

??????命令: REVOKE privilege ON databasename.tablename FROM?'username'@'host';

?????说明: privilege, databasename, tablename - 同授权部分.

??????例子: REVOKE SELECT ON *.* FROM?'pig'@'%';

??????注意: 假如你在给用户'pig'@'%'授权的时候是这样的(或类似的):GRANT SELECT ON?test.user?TO?'pig'@'%', 则在使用REVOKE SELECT ON*.*?FROM?'pig'@'%';命令并不能撤销该用户对test数据库中user表的SELECT 操作.相反,如果授权使用的是GRANT SELECT ON *.* TO?'pig'@'%';则REVOKE SELECT ON test.user FROM?'pig'@'%';命令也不能撤销该用户对test数据库中user表的Select 权限.

??????具体信息可以用命令SHOW GRANTS FOR?'pig'@'%'; 查看.

五.删除用户

??????命令:?DROP USER?'username'@'host';

附表:在MySQL中的操作权限

?

ALTER

Allows use of?ALTER TABLE.

ALTER ROUTINE

Alters or drops stored routines.

CREATE

Allows use of?CREATE TABLE.

CREATE ROUTINE

Creates stored routines.

CREATE TEMPORARY TABLE

Allows use of?CREATE TEMPORARY TABLE.

CREATE USER

Allows use of?CREATE USER,?DROP USER,?RENAME USER, and?REVOKE ALL PRIVILEGES.

CREATE VIEW

Allows use of?CREATE VIEW.

DELETE

Allows use of?DELETE.

DROP

Allows use of?DROP TABLE.

EXECUTE

Allows the user to run stored routines.

FILE

Allows use of?SELECT...?INTO OUTFILE?and?LOAD DATA INFILE.

INDEX

Allows use of?CREATE INDEX?and?DROP INDEX.

INSERT

Allows use of?INSERT.

LOCK TABLES

Allows use of?LOCK TABLES?on tables for which the user also has?SELECT?privileges.

PROCESS

Allows use of?SHOW FULL PROCESSLIST.

RELOAD

Allows use of?FLUSH.

REPLICATION

Allows the user to ask where slave or master

CLIENT

servers are.

REPLICATION SLAVE

Needed for replication slaves.

SELECT

Allows use of?SELECT.

SHOW DATABASES

Allows use of?SHOW DATABASES.

SHOW VIEW

Allows use of?SHOW CREATE VIEW.

SHUTDOWN

Allows use of?mysqladmin shutdown.

SUPER

Allows use of?CHANGE MASTER,?KILL,?PURGE MASTER LOGS, and?SET GLOBAL?SQL statements. Allows?mysqladmin debug?command. Allows one extra connection to be made if maximum connections are reached.

UPDATE

Allows use of?UPDATE.

USAGE

Allows connection without any specific privileges.


http://hi.baidu.com/fwso/blog/item/658c00555bdd1cc5b645aee0.html
mysql新建用户 本地无法登录:其中两个账户有相同的用户名monty和密码some_pass。两个账户均为超级用户账户,具有完全的权限可以做任何事情。一个账户 ('monty'@'localhost')只用于从本机连接时。另一个账户('monty'@'%')可用于从其它主机连接。请注意monty的两个账户必须能从任何主机以monty连接。没有localhost账户,当monty从本机连接时,mysql_install_db创建的localhost的匿名用户账户将占先。结果是,monty将被视为匿名用户。原因是匿名用户账户的Host列值比'monty'@'%'账户更具体,这样在user表排序顺序中排在前面。?
这段话说的很清楚,因此执行 grant select,insert,update,delete on test.* to appadmin@"localhost" identified by "password";?参考:http://anonymity.iteye.com/blog/347737http://seawavecau.iteye.com/blog/282345
自己的脚本:-------------------------------------创建用户名为admin 密码admin 该用户可以从任意远程主机登陆,使用通配符%create user 'admin'@'%' identified by 'admin';
创建admin用户为localhost本地登录(与上面权限一样)create user 'admin'@'localhost' identified by 'admin';
授予所有的权限ALL 数据库名为bhcmis 给admin用户注意:用以上命令授权的用户不能给其它用户授权,如果想让该用户可以授权,用以下命令:GRANT privileges ON databasename.tablename TO 'username'@'host' WITH GRANT OPTION;
grant ALL privileges on bhcmis.* to 'admin'@'%';?
防止本机localhost登录不了,原因mysql.user表中 先读取localhost数据grant ALL privileges on bhcmis.* to 'admin'@'localhost';