MySQL Forums
Forum List  »  Security

Re: reset user passwords
Posted by: Peter Brawley
Date: December 16, 2020 09:36PM

If each user has her own MySQL logon, each user has direct access to the MySQL server. Not secure, to put it mildly.

The more careful approach for an app is to define sets of privileges ("roles"), create MySQL user roles for those privilege sets, never publish those passwords to users, instead assign roles in your app and manage their access to your app in that app.



Edited 1 time(s). Last edit at 12/17/2020 10:39AM by Peter Brawley.

Options: ReplyQuote


Subject
Views
Written By
Posted
1189
December 16, 2020 01:19PM
512
December 16, 2020 02:32PM
502
December 16, 2020 03:02PM
Re: reset user passwords
527
December 16, 2020 09:36PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.