Privileges for MariaDB Xpand
MariaDB Xpand supports privileges for user accounts that are different than MariaDB Enterprise Server. When using the Xpand Storage Engine topology, the privileges described here only apply when you connect to the Xpand nodes.
MariaDB Xpand supports the following privileges:
ALL [PRIVILEGES]: All Privileges with the exception of GRANT OPTION
ALTER ROUTINE: Allow ALTER or DROP of stored routines (procedures and functions)
CREATE TEMPORARY TABLES
REFERENCES: The creation of a Foreign Key constraint requires the
REFERENCESprivilege for the parent table
RELOAD: Enable use of FLUSH operations
REPLICATION SLAVE: Allow reading binary logs
SHOW VIEW: Enables use of the SHOW CREATE VIEW statement
SHUTDOWN: MariaDB recommends using
clx dbstopto shutdown instead of relying on this privilege.
SUPER: Allow administrative commands and grants all privileges associated with the
Xpand ignores the following privileges:
CREATE TABLESPACE: Not applicable for MariaDB Xpand
EVENT: Not applicable for MariaDB Xpand
LOCK TABLES: Enables the use of explicit
LOCK TABLESstatements to lock tables for which you have the
PROXY: Not applicable for MariaDB Xpand.
Xpand service implement an
OSAUTH privilege that allows users with this privilege to be authenticated by the OS. This allows a SQL user to log in without a password as long as they have been authenticated as the corresponding OS user.
GRANT OSAUTH ON *.* to 'xpand'@'localhost';
OSAUTH privilege is granted to the database management user (
xpandm) for use with clx, and the database daemon user (
xpand) for use by statd and Xpand GUI.
%wildcards are not supported in database name specifications.
The GRANT statement ignores
REQUIRE, if included.
SQL SECURITYarguments for views are ignored.
GRANT WITHoptions are not supported and generate a syntax error:
SESSION_USER()are not supported.