Curso de SQL y MySQL
Curso de SQL y MySQL

Consultas y Transformaci贸n Avanzada de Datos

1

Dise帽o y Optimizaci贸n Avanzada de Bases de Datos con SQL y MySQL

2

Construcci贸n de Base de Datos en MySQL: Terminal, Tablas y Datos Simulados

3

Transformaci贸n de Datos con SQL: De Consultas Simples a Superqueries

4

Columnas Generadas en SQL

5

Expresiones Regulares y Slugs en SQL y MySQL: Casos de Uso Reales

Automatizaci贸n, Reutilizaci贸n y Eficiencia en Consultas

6

Vistas y Tablas Virtuales en SQL

7

Consultas Anidadas y Vistas Materializadas

8

Triggers y Vistas Materializadas en MySQL (Kinda)

9

Automatizaci贸n de Bases de Datos con Triggers en MySQL

10

Llaves Primarias e 脥ndices

Trabajo con Datos Avanzados (JSON)

11

Uso de JSON en MySQL: Almacenamiento Eficiente de Datos Estructurados

12

B煤squedas Avanzadas con JSON en MySQL: Indexaci贸n y Optimizaci贸n

13

Joins en SQL: Conecta Tablas y Mejora tus Consultas

14

Motores de Almacenamiento y Encodings

15

Gesti贸n de Usuarios y Permisos en SQL

Gesti贸n Avanzada y An谩lisis de Bases de Datos

16

Information Schema en MySQL: An谩lisis Interno de tu Base de Datos

17

Mysqldump

18

Domina las Migrations: Evoluciona y Gestiona tu Base de Datos con Eficiencia

19

Optimiza tus Decisiones con Metabase

You don't have access to this class

Keep learning! Join and start boosting your career

If you already have an account,

Aprovecha el precio especial y haz tu profesi贸n a prueba de IA

Antes: $249

Currency
$209
Suscr铆bete

Termina en:

0 D铆as
12 Hrs
49 Min
28 Seg
Curso de SQL y MySQL

Curso de SQL y MySQL

Alberto Alcocer (Beco)

Alberto Alcocer (Beco)

Gesti贸n de Usuarios y Permisos en SQL

15/19
Resources

Managing users and permissions in MySQL is a fundamental aspect of maintaining the security and integrity of our databases. Many security and data loss problems can be avoided simply by implementing a proper granular permissions strategy, rather than sharing administrator credentials. Let's see how we can effectively and securely create and manage users in MySQL.

How to create users in MySQL and why is it important?

One of the biggest problems in development and production environments is the sharing of administrative credentials. This practice, although common, represents a serious security risk. When an administrator shares their username and password, they lose the ability to track who made what changes to the database.

MySQL provides a robust system for creating users with specific permissions. This allows:

  • Granular control of actions: determining exactly what each user can and cannot do.
  • Restriction of connections: limiting from which locations a user can connect
  • Traceability: identify who performed each operation

To create a new user in MySQL, we use the following syntax:

CREATE USER 'username'@'host' IDENTIFIED BY 'password';

For example:

CREATE USER 'becoplatzi'@'%' IDENTIFIED BY 'beco123';

In this command:

  • becoplatzi is the user's name
  • % is a wildcard that allows connection from any host
  • beco123 is the password

How to restrict access by location?

We can limit where a user can connect from:

  • To allow connections only from the local server: 'username'@'localhost'.
  • To allow connections from anywhere: 'username'@'%'.
  • To allow connections from a specific IP address: 'username'@'192.168.0.101'.

This ability to restrict by location adds an additional layer of security to our databases.

What permissions can we assign to users in MySQL?

Once the user has been created, we must assign specific permissions to the user. The most common permissions are:

  1. CREATE: allows you to create new tables or databases.
  2. ALTER: allows you to modify the structure of existing tables.
  3. DROP: allows you to delete tables or databases
  4. INSERT: allows you to insert data into tables
  5. UPDATE: allows you to modify existing data
  6. DELETE: allows you to delete records
  7. SELECT: allows you to query data
  8. REFERENCES: allows you to create relationships between tables
  9. INDEX: allows you to create and delete indexes

To assign these permissions, we use the GRANT command:

GRANT permission1, permission2, ... ON database_name.table_name TO 'username'@'host' [WITH GRANT OPTION];

For example:

GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES, INDEX ON platzisql.* TO 'becoplatzi'@'%' WITH GRANT OPTION;

The WITH GRANT OPTION option allows the user to grant his own permissions to other users.

How to assign permissions according to the user's role?

For a DBA (Database Administrator):

GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES, INDEX ON database.* TO 'dba_user'@'host';

For an application:

GRANT INSERT, UPDATE, SELECT ON database.* TO 'app_user'@'host';

For a data analyst:

GRANT SELECT, INDEX ON database.* TO 'analyst_user'@'host';

For a developer:

GRANT CREATE, ALTER, INSERT, SELECT, REFERENCES, INDEX ON database.* TO 'dev_user'@'host';

How to check and use the created users?

To see the existing users in MySQL:

SELECT host, user FROM mysql.user;

To connect to a specific user:

mysql -u username -p

Once logged in, we can check which databases we have access to:

SHOW DATABASES;

And to use a specific database:

USE database_name;SHOW TABLES;

Important note: MySQL uses its own tables to manage users and permissions. These tables are located in the mysql database, which makes the system transparent and robust.

Proper management of users and permissions is critical to maintaining the security and integrity of our databases. Implementing a clear strategy for assigning permissions according to specific roles will help us prevent problems and maintain effective control over who can do what in our system. What user management strategies do you use in your projects? Share your experience in the comments.

Contributions 0

Questions 0

Sort by:

Want to see more contributions, questions and answers from the community?