Skip to content

Commit

Permalink
AMMOSGH-41: Update user permissions example script to limit sadb_user…
Browse files Browse the repository at this point in the history 
… access
  • Loading branch information
@IbraheemYSaleh
IbraheemYSaleh committed Apr 14, 2022
1 parent 7561de6 commit de7cec4
Showing 1 changed file with 8 additions and 1 deletion.
9 changes: 8 additions & 1 deletion src/crypto_sadb/sadb_mariadb_sql/create_sadb_user_grant_permissions.sql
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,11 @@
DROP USER IF EXISTS 'sadb_admin';
DROP USER IF EXISTS 'sadb_user';

CREATE USER IF NOT EXISTS sadb_admin IDENTIFIED BY 'sadb_admin_password';
CREATE USER IF NOT EXISTS sadb_user IDENTIFIED BY 'sadb_password';

GRANT ALL PRIVILEGES ON sadb.* TO 'sadb_user'@'%';
GRANT ALL PRIVILEGES ON sadb.* TO 'sadb_admin'@'%';

GRANT UPDATE (arsn) ON sadb.security_associations TO 'sadb_user'@'%';
GRANT UPDATE (iv) ON sadb.security_associations TO 'sadb_user'@'%';
GRANT SELECT ON sadb.security_associations TO 'sadb_user'@'%';

0 comments on commit de7cec4

Please sign in to comment.