Create new MySQL user with command line October 4, 2010Posted by Tournas Dimitrios in Mysql.
Nowadays security is more and more important even in case of smaller websites. As a lot of site uses some database so this is one point where we can make some improvements.
In this article we will work with MySQL on our goal is to create a new user in the database.
There are more ways how you can do this.
- Using CREATE USER and/or GRANT commands .Caution: Privileges assigned with this method must be enabled with the “flush privileges ” statement ;
- Inserting a new record into the mysql.user table . With this method Mysql enables the new records automaticaly .
First let’s see how to use the CREATE USER command. Here I have to mention that thi s command is available only in MySQL 5 (5.0.2) and newer releases. The syntax is the following:
CREATE USER user [IDENTIFIED BY [PASSWORD] ‘password’]
Here is an example:
. CREATE USER 'user1'@'localhost' IDENTIFIED BY 'pass1'; .
Now if you check the mysql.user table you can find a new record in it. Notice that all priviliges are set to No so this user can do nothing in the DB. To add some preiviliges we can use the GRANT command as follows:
. GRANT SELECT,INSERT,UPDATE,DELETE ON *.* TO 'user1'@'localhost'; .
Here we have added only the most important priviliges to the user. With the setting above this user is good to run a CMS or a blog, however with such settings this user is not able to install them as it can not create tables.
To add all priviliges to the user you don’t have to list all of them but you can use the ALL shortcut as follows:
. GRANT ALL ON *.* TO 'user1'@'localhost'; .
You can create a new MySQL user in one step as well using again the GRANT command with a small extension as here:
. GRANT ALL ON *.* TO 'user2'@'localhost' IDENTIFIED BY 'pass1'; .
The above examples used dedicated commands, but sumtimes you maybe want to add a new MySQL user via directly editing the mysql.user table. In this case you just inserts a new record into the table with a normal INSERT command:
. INSERT INTO user (Host,User,Password) VALUES('localhost','user3',PASSWORD('pass3')); .
Or you can add some priviliges as well in a form like this:
. INSERT INTO user (Host,User,Password,Select_priv,Insert_priv) VALUES('localhost','user4',PASSWORD('pass3'),'Y','Y'); .
To see the privileges of user/users in mysql :
show grants for username@localhost // To show all privileges for all users in your database select * from mysql.user \G ;