mariadb/mysql-test/suite/roles/set_role-table-simple.result

create user test_user@localhost;
create role test_role1;
create role test_role2;
grant test_role1 to test_user@localhost;
grant test_role2 to test_role1;
select user, host from mysql.user where user not like 'root';
user	host
test_role1	
test_role2	
test_user	localhost
select * from mysql.roles_mapping;
Host	User	Role	Admin_option
	test_role1	test_role2	N
localhost	root	test_role1	Y
localhost	root	test_role2	Y
localhost	test_user	test_role1	N
grant select on mysql.roles_mapping to test_role2;
select * from mysql.roles_mapping;
ERROR 42000: SELECT command denied to user 'test_user'@'localhost' for table 'roles_mapping'
show grants;
Grants for test_user@localhost
GRANT USAGE ON *.* TO 'test_user'@'localhost'
GRANT test_role1 TO 'test_user'@'localhost'
select current_user(), current_role();
current_user()	current_role()
test_user@localhost	NULL
set role test_role1;
select current_user(), current_role();
current_user()	current_role()
test_user@localhost	test_role1
show grants;
Grants for test_user@localhost
GRANT SELECT ON `mysql`.`roles_mapping` TO 'test_role2'
GRANT USAGE ON *.* TO 'test_role1'
GRANT USAGE ON *.* TO 'test_role2'
GRANT USAGE ON *.* TO 'test_user'@'localhost'
GRANT test_role1 TO 'test_user'@'localhost'
GRANT test_role2 TO 'test_role1'
select * from mysql.roles_mapping;
Host	User	Role	Admin_option
	test_role1	test_role2	N
localhost	root	test_role1	Y
localhost	root	test_role2	Y
localhost	test_user	test_role1	N
show grants;
Grants for test_user@localhost
GRANT SELECT ON `mysql`.`roles_mapping` TO 'test_role2'
GRANT USAGE ON *.* TO 'test_role1'
GRANT USAGE ON *.* TO 'test_role2'
GRANT USAGE ON *.* TO 'test_user'@'localhost'
GRANT test_role1 TO 'test_user'@'localhost'
GRANT test_role2 TO 'test_role1'
use mysql;
set role none;
select current_user(), current_role();
current_user()	current_role()
test_user@localhost	NULL
select * from mysql.roles_mapping;
ERROR 42000: SELECT command denied to user 'test_user'@'localhost' for table 'roles_mapping'
drop user 'test_user'@'localhost';
select * from mysql.tables_priv;
Host	Db	User	Table_name	Grantor	Timestamp	Table_priv	Column_priv
	mysql	test_role2	roles_mapping	root@localhost	0000-00-00 00:00:00	Select	
revoke select on mysql.roles_mapping from test_role2;
delete from mysql.user where user like'test_%';
delete from mysql.roles_mapping where Role like 'test%';
flush privileges;
add Admin_option column to mysql.roles_mapping. update tests/results 2013-10-18 21:21:10 +02:00			`create user test_user@localhost;`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`create role test_role1;`
			`create role test_role2;`
add Admin_option column to mysql.roles_mapping. update tests/results 2013-10-18 21:21:10 +02:00			`grant test_role1 to test_user@localhost;`
cleanup. mainly to avoid the pattern of * get username/hostname/rolename * optionally find the corresponding ACL_USER and ACL_ROLE * allocate memory, concatenate username/hostname/rolename * call a function passing only this memory as an argument use concatenated username/etc to find ACL_USER and ACL_ROLE again do something * free the object Also to undo push_dynamic we use pop_dynamic now, not a linear search/scan through the dynamic array. as a bonus, role@ is now an invalid way to refer to a role. 2013-10-18 21:34:44 +02:00			`grant test_role2 to test_role1;`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`select user, host from mysql.user where user not like 'root';`
			`user host`
			`test_role1`
			`test_role2`
			`test_user localhost`
			`select * from mysql.roles_mapping;`
add Admin_option column to mysql.roles_mapping. update tests/results 2013-10-18 21:21:10 +02:00			`Host User Role Admin_option`
			`test_role1 test_role2 N`
bugfix: missing restore_record when modifying roles_mapping() table. (and an assert in myisam to catch these bugs easier in the future) update tests/results 2013-10-18 21:27:07 +02:00			`localhost root test_role1 Y`
			`localhost root test_role2 Y`
add Admin_option column to mysql.roles_mapping. update tests/results 2013-10-18 21:21:10 +02:00			`localhost test_user test_role1 N`
GRANT/REVOKE should specify role name as 'role' not as 'role'@'%' 2013-10-18 18:08:42 +02:00			`grant select on mysql.roles_mapping to test_role2;`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`select * from mysql.roles_mapping;`
			`ERROR 42000: SELECT command denied to user 'test_user'@'localhost' for table 'roles_mapping'`
			`show grants;`
			`Grants for test_user@localhost`
			`GRANT USAGE ON . TO 'test_user'@'localhost'`
			`GRANT test_role1 TO 'test_user'@'localhost'`
CURRENT_ROLE() function 2013-10-18 15:55:26 +02:00			`select current_user(), current_role();`
			`current_user() current_role()`
CURRENT_ROLE() should return NULL, not "NONE" 2013-10-18 18:09:08 +02:00			`test_user@localhost NULL`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`set role test_role1;`
CURRENT_ROLE() function 2013-10-18 15:55:26 +02:00			`select current_user(), current_role();`
			`current_user() current_role()`
			`test_user@localhost test_role1`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`show grants;`
			`Grants for test_user@localhost`
			GRANT SELECT ON `mysql`.`roles_mapping` TO 'test_role2'
			`GRANT USAGE ON . TO 'test_role1'`
			`GRANT USAGE ON . TO 'test_role2'`
			`GRANT USAGE ON . TO 'test_user'@'localhost'`
			`GRANT test_role1 TO 'test_user'@'localhost'`
			`GRANT test_role2 TO 'test_role1'`
			`select * from mysql.roles_mapping;`
add Admin_option column to mysql.roles_mapping. update tests/results 2013-10-18 21:21:10 +02:00			`Host User Role Admin_option`
			`test_role1 test_role2 N`
bugfix: missing restore_record when modifying roles_mapping() table. (and an assert in myisam to catch these bugs easier in the future) update tests/results 2013-10-18 21:27:07 +02:00			`localhost root test_role1 Y`
			`localhost root test_role2 Y`
add Admin_option column to mysql.roles_mapping. update tests/results 2013-10-18 21:21:10 +02:00			`localhost test_user test_role1 N`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`show grants;`
			`Grants for test_user@localhost`
			GRANT SELECT ON `mysql`.`roles_mapping` TO 'test_role2'
			`GRANT USAGE ON . TO 'test_role1'`
			`GRANT USAGE ON . TO 'test_role2'`
			`GRANT USAGE ON . TO 'test_user'@'localhost'`
			`GRANT test_role1 TO 'test_user'@'localhost'`
			`GRANT test_role2 TO 'test_role1'`
			`use mysql;`
			`set role none;`
CURRENT_ROLE() function 2013-10-18 15:55:26 +02:00			`select current_user(), current_role();`
			`current_user() current_role()`
CURRENT_ROLE() should return NULL, not "NONE" 2013-10-18 18:09:08 +02:00			`test_user@localhost NULL`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`select * from mysql.roles_mapping;`
			`ERROR 42000: SELECT command denied to user 'test_user'@'localhost' for table 'roles_mapping'`
			`drop user 'test_user'@'localhost';`
			`select * from mysql.tables_priv;`
			`Host Db User Table_name Grantor Timestamp Table_priv Column_priv`
			`mysql test_role2 roles_mapping root@localhost 0000-00-00 00:00:00 Select`
GRANT/REVOKE should specify role name as 'role' not as 'role'@'%' 2013-10-18 18:08:42 +02:00			`revoke select on mysql.roles_mapping from test_role2;`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`delete from mysql.user where user like'test_%';`
rename columns in mysql.roles_mapping to be consistent with other privilege tables 2013-10-18 21:19:37 +02:00			`delete from mysql.roles_mapping where Role like 'test%';`
SET ROLE now works recursively for table and column level privileges 2013-10-18 15:47:49 +02:00			`flush privileges;`