File: set_role-routine-simple.test

package info (click to toggle)
mariadb-10.0 10.0.32-0%2Bdeb8u1
  • links: PTS, VCS
  • area: main
  • in suites: jessie
  • size: 476,064 kB
  • sloc: cpp: 1,400,131; ansic: 832,140; perl: 54,391; sh: 41,304; pascal: 32,365; yacc: 14,921; xml: 5,257; sql: 4,667; cs: 4,647; makefile: 4,555; ruby: 4,465; python: 2,292; lex: 1,427; java: 941; asm: 295; awk: 54; php: 22; sed: 16
file content (81 lines) | stat: -rw-r--r-- 1,867 bytes parent folder | download | duplicates (11) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
 
source include/not_embedded.inc;

create user 'test_user'@'localhost';
create role test_role1;
create role test_role2;
create role test_role3;

grant test_role1 to test_user@localhost;
grant test_role3 to test_user@localhost;
grant test_role2 to test_role1;

--sorted_result
select user, host from mysql.user where user not like 'root';
--sorted_result
select * from mysql.roles_mapping;

create function mysql.test_func (s CHAR(20))
returns CHAR(50) DETERMINISTIC
return concat('Test string: ',s);


delimiter |;
create procedure mysql.test_proc (OUT param1 INT)
begin
  select COUNT(*) into param1 from mysql.roles_mapping;
end|
delimiter ;|

grant execute on function mysql.test_func to test_role2;
grant execute on procedure mysql.test_proc to test_role2;

grant execute on mysql.* to test_role3;

change_user 'test_user';
--sorted_result
show grants;

--error ER_DBACCESS_DENIED_ERROR
use mysql;
select current_user(), current_role();
set role test_role1;
select current_user(), current_role();
use mysql;

call test_proc(@a);
SELECT @a;

SELECT test_func('AABBCCDD');

--sorted_result
show grants;
set role none;
select current_user(), current_role();
--sorted_result
show grants;

--error ER_PROCACCESS_DENIED_ERROR
call test_proc(@a);

--error ER_PROCACCESS_DENIED_ERROR
SELECT test_func('AABBCCDD');

set role test_role3;
select current_user(), current_role();
--sorted_result
show grants;
call test_proc(@a);
SELECT @a;

SELECT test_func('AABBCCDD');

change_user 'root';
drop user 'test_user'@'localhost';
revoke execute on function mysql.test_func from test_role2;
revoke execute on procedure mysql.test_proc from test_role2;
revoke execute on mysql.* from test_role3;
delete from mysql.user where user like'test_%';
delete from mysql.roles_mapping where Role like 'test%';
drop function mysql.test_func;
drop procedure mysql.test_proc;
flush privileges;