Minimal SQL database privileges #8432
Comments
|
@baldurmen, you make a good point -- I'll document the required minimum privileges and get the details back to you. |
|
@lieut-data Thanks! That's really appreciated. |
|
We're not using much by way of advanced database features (intentionally), and so far I've been running (and upgrading) successfully on MySQL using just: Let's give this a while to soak while I continue to investigate and I'll confirm by closing out this issue and filing a docs update, including the requisite changes for PostgreSQL. |
|
I tested those privileges and did not have any problems either. |
|
Thanks @baldurmen @lieut-data ok to close off this issue now? |
|
@lindy65: I've got a pending set of documentation changes that I'll get around to pushing to docs.mattermost.com, but I think we can resolve this issue as such for now. |
Hi!
The installation documentation says that you should grant all SQL privileges to the mattermost user:
I was wondering what are the true minimal SQL privileges Mattermost needs to run normally.
I don't normally like to grant all privileges for security reasons and would really appreciate it if you could publish a minimal SQL database privileges list.
I guess I'm expecting something like Drupal does.
At the database level, MySQL/MariaDB supports:
ALTERCREATECREATE ROUTINECREATE TEMPORARY TABLESCREATE VIEWDELETEDELETE HISTORYDROPEVENTINDEXINSERTLOCK TABLESREFERENCESSELECTSHOW VIEWTRIGGERUPDATEDoes Mattermost really need database level privileges like
EVENTorCREATE ROUTINE? If not, why should I grant them?Thanks for the great work on Mattermost!
The text was updated successfully, but these errors were encountered: