Home » Categories » Multiple Categories

How To Create a New User and Grant Permissions in MySQL

About MySQL

MySQL is an open source database management software that helps users store, organize, and later retrieve data. It has a variety of options to grant specific users nuanced permissions within the tables and databases—this tutorial will give a short overview of a few of the many options.

How to Create a New User

In Part 1 of the MySQL Tutorial, we did all of the editing in MySQL as the root user, with full access to all of the databases. However, in the cases where more restrictions may be required, there are ways to create users with custom permissions.

Let’s start by making a new user within the MySQL shell:
CREATE USER 'newuser'@'localhost' IDENTIFIED BY 'password';

Sadly, at this point newuser has no permissions to do anything with the databases. In fact, if newuser even tries to login (with the password, password), they will not be able to reach the MySQL shell.

Therefore, the first thing to do is to provide the user with access to the information they will need.
GRANT ALL PRIVILEGES ON * . * TO 'newuser'@'localhost';
The asterisks in this command refer to the database and table (respectively) that they can access—this specific command allows to the user to read, edit, execute and perform all tasks across all the databases and tables.

Once you have finalized the permissions that you want to set up for your new users, always be sure to reload all the privileges.
FLUSH PRIVILEGES;
Your changes will now be in effect.

How To Grant Different User Permissions

Here is a short list of other common possible permissions that users can enjoy.
  • ALL PRIVILEGES- as we saw previously, this would allow a MySQL user all access to a designated database (or if no database is selected, across the system)

  • CREATE- allows them to create new tables or databases

  • DROP- allows them to them to delete tables or databases

  • DELETE- allows them to delete rows from tables

  • INSERT- allows them to insert rows into tables

  • SELECT- allows them to use the Select command to read through databases

  • UPDATE- allow them to update table rows

  • GRANT OPTION- allows them to grant or remove other users' privileges

To provide a specific user with a permission, you can use this framework:
 GRANT [type of permission] ON [database name].[table name] TO ‘[username]’@'localhost’;
If you want to give them access to any database or to any table, make sure to put an asterisk (*) in the place of the database name or table name.

Each time you update or change a permission be sure to use the Flush Privileges command.

If you need to revoke a permission, the structure is almost identical to granting it:
 REVOKE [type of permission] ON [database name].[table name] FROM ‘[username]’@‘localhost’;
Just as you can delete databases with DROP, you can use DROP to delete a user altogether:
 DROP USER ‘demo’@‘localhost’;
To test out your new user, log out by typing
 quit 
and log back in with this command in terminal:
mysql -u [username]-p
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
An Introduction to Linux Basics
Viewed 1358 times since Fri, Dec 27, 2013
How To Install and Use PostgreSQL on Ubuntu 12.04
Viewed 1180 times since Mon, Dec 30, 2013
How To Launch Your Site on a New Ubuntu 12.04 Server with LAMP, SFTP, and DNS
Viewed 1292 times since Thu, Dec 26, 2013
How To Migrate a MySQL Database Between Two Servers
Viewed 1287 times since Thu, Dec 26, 2013
How To Use Dokku Plugins to Access Additional Functionality
Viewed 3133 times since Sun, Dec 29, 2013
How To Manage Packages In Ubuntu and Debian With Apt-Get & Apt-Cache
Viewed 1246 times since Fri, Dec 27, 2013
How To Install And Run A Node.js App On Centos 6.4 64bit
Viewed 4184 times since Sun, Dec 29, 2013
How To Setup ownCloud 5 On Ubuntu 12.10
Viewed 1856 times since Sat, Jan 4, 2014
How To Set Up Apache Virtual Hosts on Debian 7
Viewed 1566 times since Fri, Dec 27, 2013