#!/usr/bin/env bash working_dir="$(dirname $(realpath $0))" log_dir="${working_dir}/log" conf_file="${working_dir}/conf/mysql_credetials.conf" tmp_log_file="$(mktemp)" # ------------- # - Variable settings # ------------- MYSQL_CREDENTIALS_GIVEN=false DATABASE_NAME="" DATABASE_USER="" DATABASE_PASSWD="" DATABASE_NAME_NEEDED=true DATABASE_USER_NEEDED=true DATABASE_PASSWD_NEEDED=true QUIET_MODE=false NON_INTERACTIVE_MODE=false DATABASE_CHARACTER_SET=utf8mb4 # ------------- # --- Some functions # ------------- usage() { echo [ -n "$1" ] && echo -e "Error: $1\n" cat< The name of the domain, which is requested for deletion. If not set, script will ask for the database name. -I Non-interactive mode. Script will act in non-interactice mode. At least the database name must be given using parameter '-d'. Default is acting in interactive mode -p Password for the given user. If not set, script looks for a file named 'databases/'. If found, script reads database password from that file. If not running in quiet mode, you will be asked to confirm or set the db-user. -q Be quiet. Setting this parameter implies non-interactive mode (parameter -I). So if '-q' is set, at least the database name must be given using parameter '-d'. -u The name of the database user who will be granted full access to the given database. If not set, script looks for a file 'databases/'. If found, script reads database settings (user/password) from that file. If not running in quiet mode, you will be asked to confirm or set the db-user. EOF clean_up 1 } clean_up() { # Perform program exit housekeeping rm -f $tmp_log_file exit $1 } fatal(){ echo "" if $terminal ; then if [[ -n "$*" ]] ; then echo -e " [ \033[31m\033[1mFatal\033[m ]: $*" else echo " \033[31m\033[1mFatal error\033[m:" fi echo "" echo -e " \033[31m\033[1mScript will be interrupted.\033[m\033[m" else if [[ -n "$*" ]] ; then echo " [ Fatal ]: $*" else echo " Fatal error:" fi echo "" echo " Script was terminated...." fi echo "" clean_up 1 } echononl(){ if $terminal && ! $QUIET_MODE ; then echo X\\c > /tmp/shprompt$$ if [ `wc -c /tmp/shprompt$$ | awk '{print $1}'` -eq 1 ]; then echo -e -n "$*\\c" 1>&2 else echo -e -n "$*" 1>&2 fi rm /tmp/shprompt$$ fi } error(){ echo "" if $terminal ; then echo -e " [ \033[31m\033[1mError\033[m ]: $*" else echo "Error: $*" fi echo "" } warn (){ if $terminal && ! $QUIET_MODE ; then echo "" echo -e " [ \033[33m\033[1mWarning\033[m ]: $*" echo "" fi } info (){ if $terminal && ! $QUIET_MODE ; then echo "" echo -e " [ \033[32m\033[1mInfo\033[m ]: $*" echo "" fi } echo_ok() { if $terminal && ! $QUIET_MODE ; then echo -e "\033[80G[ \033[32mok\033[m ]" fi } echo_failed(){ if $terminal && ! $QUIET_MODE ; then echo -e "\033[80G[ \033[1;31mfailed\033[m ]" fi } echo_skipped() { if $terminal && ! $QUIET_MODE ; then echo -e "\033[80G[ \033[37mskipped\033[m ]" fi } is_number() { return $(test ! -z "${1##*[!0-9]*}" > /dev/null 2>&1); # - also possible # - #[[ ! -z "${1##*[!0-9]*}" ]] && return 0 || return 1 #return $([[ ! -z "${1##*[!0-9]*}" ]]) } detect_mysql_version () { _MYSQLD_VERSION="$(mysqld -V 2>/dev/null)" if [[ -z "$_MYSQLD_VERSION" ]]; then fatal "No installed MySQL server or distribution found!" elif [[ -d "/usr/local/mysql" ]] && [[ "$(basename "$(realpath "/usr/local/mysql")")" =~ percona- ]]; then MYSQL_CUR_DISTRIBUTION="Percona" elif [[ "$_MYSQLD_VERSION" =~ MariaDB ]]; then MYSQL_CUR_DISTRIBUTION="MariaDB" elif [[ "$_MYSQLD_VERSION" =~ MySQL ]]; then MYSQL_CUR_DISTRIBUTION="MySQL" elif [[ -d "/usr/local/mysql" ]] && [[ "$(basename "$(realpath "/usr/local/mysql")")" =~ mysql- ]]; then MYSQL_CUR_DISTRIBUTION="MySQL" elif [[ -d "/usr/local/mysql" ]] && [[ "$(basename "$(realpath "/usr/local/mysql")")" =~ mariadb- ]]; then MYSQL_CUR_DISTRIBUTION="MariaDB" else error "MySQL Instalation found, but cannot determin the distribution!" MYSQL_CUR_DISTRIBUTION= echo "" echo " Select the MySQL distribution to install." echo "" echo " [1] MySQL (the original community edition)" echo " [2] Percona Server for MySQL" echo " [3] MariaDB" echo "" echononl " Eingabe [1/2/3]: " while [ "$MYSQL_CUR_DISTRIBUTION" != "MySQL" -a "$MYSQL_CUR_DISTRIBUTION" != "MariaDB" -a "$MYSQL_CUR_DISTRIBUTION" != "Percona" ];do read OPTION case $OPTION in 1) MYSQL_CUR_DISTRIBUTION="MySQL" ;; 2) MYSQL_CUR_DISTRIBUTION="Percona" ;; 3) MYSQL_CUR_DISTRIBUTION="MariaDB" ;; *) echo "" echo -e "\tFalsche Eingabe ! [ 1 = MySQL ; 2 = Percona ; 3 = MariaDB ]" echo "" echononl " Eingabe:" ;; esac done fi MYSQL_VERSION="$(echo $_MYSQLD_VERSION | grep -o -E "[0-9]+\.[0-9]+\.[0-9]+(-[0-9]+)?" | head -n 1)" MYSQL_MAJOR_VERSION="$(echo $MYSQL_VERSION | cut -d '.' -f1)" MYSQL_MINOR_VERSION="$(echo $MYSQL_VERSION | cut -d '.' -f2)" MYSQL_PATCH_LEVEL="$(echo $MYSQL_VERSION | cut -d '.' -f3)" MYSQL_MAIN_VERSION="$(echo $MYSQL_VERSION | cut -d '.' -f1,2)" } trap clean_up SIGHUP SIGINT SIGTERM # ------------- # - Read Commandline Parameters # ------------- while getopts d:hIp:qu: opt ; do case $opt in d) DATABASE_NAME="$OPTARG" DATABASE_NAME_NEEDED=false ;; I) NON_INTERACTIVE_MODE=true ;; p) DATABASE_PASSWD="$OPTARG" DATABASE_PASSWD_NEEDED=false ;; q) QUIET_MODE=true NON_INTERACTIVE_MODE=true ;; u) DATABASE_USER="$OPTARG" DATABASE_USER_NEEDED=false ;; h) usage ;; *) usage esac done shift $(expr $OPTIND - 1) [[ "$#" -gt 0 ]] && usage "Wrong number of arguments given!" # - If not running in a terminal, be silent and non-interactive # - if [[ -t 1 ]] ; then terminal=true else terminal=false QUIET_MODE=true NON_INTERACTIVE_MODE=true fi if [[ -z "$DATABASE_NAME" ]] ; then DATABASE_USER_NEEDED=true DATABASE_PASSWD_NEEDED=true fi if $NON_INTERACTIVE_MODE && [[ -z "$DATABASE_NAME" ]]; then fatal "In quiet mode at least the database name must ibe given on th command line!" fi echononl " Get MySQL command.." mysql_command="$(which mysql)" if [[ $? -eq 0 ]]; then echo_ok else if [[ -x "/usr/local/mysql/bin/mysql" ]]; then mysql_command="/usr/local/mysql/bin/mysql" echo_ok else echo_failed fatal "$(cat $tmp_log_file)" fi fi if [[ -n "$DATABASE_NAME" ]] ; then if [[ -z "$DATABASE_USER" || -z "$DATABASE_PASSWD" ]] ; then read_file="" if [[ -f "${working_dir}/databases/DELETED/$DATABASE_NAME" ]]; then read_file="${working_dir}/databases/DELETED/$DATABASE_NAME" elif [[ -f "${working_dir}/databases/$DATABASE_NAME" ]]; then read_file="${working_dir}/databases/$DATABASE_NAME" fi if [[ -n "$read_file" ]]; then while read -r _db_name _db_user _db_pass ; do # - if var '_db_name' begins with '#', that means the readed line # - is a comment line, then empty this variable # - # - _db_name="$(echo $_db_name | grep -vE "^\s*#")" # - Do not consider empty lines or commented lines # - [[ -z "$_db_name" ]] && continue if [[ "$_db_name" = "$DATABASE_NAME" ]]; then [[ -z "$DATABASE_USER" ]] && DATABASE_USER="$_db_user" [[ -z "$DATABASE_PASSWD" ]] && DATABASE_PASSWD="$_db_pass" break fi done < "$read_file" fi fi fi if $NON_INTERACTIVE_MODE ; then if [[ -z "$DATABASE_USER" ]]; then fatal "Database user not given. Maybe missing or wrong file '${working_dir}/databases/$DATABASE_NAME'." fi if [[ -z "$DATABASE_PASSWD" ]]; then fatal "Database user's password nit given. Maybe missing or wrong file '${working_dir}/databases/$DATABASE_NAME'." fi fi # - Clear Screen # - clear # ------------- # - Load Settings from configuration file mysql_credetials.conf # ------------- if ! $QUIET_MODE ; then echo "" fi echononl " Loading configuration settings from $(basename ${conf_file}).." if [[ -f "$conf_file" ]]; then source "$conf_file" > $tmp_log_file 2>&1 if [[ $? -eq 0 ]]; then echo_ok else echo_failed fatal "$(cat $tmp_log_file)" fi else echo_skipped warn "No Configuration File found. Loading defaults.." fi if [[ -n "$mysql_credential_args" ]]; then MYSQL_CREDENTIAL_ARGS="$mysql_credential_args" MYSQL_CREDENTIALS_GIVEN=true fi if ! $NON_INTERACTIVE_MODE ; then declare -i index_arr=0 # - Get MySQL Version # - if [[ ${#mysql_credential_args_arr[@]} -gt 0 ]] ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Which Installation should be used for database creation?" echo "" echo "" declare -a _tmp_arr=() #for _val in ${mysql_credential_args_arr[@]} ; do while [[ $index_arr -lt ${#mysql_credential_args_arr[@]} ]] ; do #IFS=':' read -a _val_arr <<< "${_val}" IFS=':' read -a _val_arr <<< "${mysql_credential_args_arr[$index_arr]}" mysql_version="${_val_arr[0]}" mysql_credential_args="${_val_arr[1]}" mysql_dist_string="$(${mysql_command} $mysql_credential_args -N -s -e "SELECT VERSION()" 2> ${tmp_log_file})" if [[ $? -ne 0 ]] ; then if [[ "$(cat $tmp_log_file)" =~ "unknown variable 'login-path" ]] ; then if [[ -x "/usr/local/mysql/bin/mysql" ]] ; then mysql_dist_string="$(/usr/local/mysql/bin/mysql $mysql_credential_args -N -s -e "SELECT VERSION()" 2> /dev/null)" fi fi fi if [[ "$mysql_dist_string" =~ MariaDB ]]; then mysql_dist="MariaDB $mysql_version" else mysql_dist="MySQL/Percona $mysql_version" fi echo " [$index_arr] $mysql_dist" _temp_arr[${index_arr}]="$mysql_credential_args" #_temp_arr+=("$mysql_credential_args") (( index_arr++ )) done _OK=false echo "" echononl "Eingabe: " while ! $_OK ; do read _IN if is_number "$_IN" && [[ -n ${_temp_arr[$_IN]} ]]; then MYSQL_CREDENTIAL_ARGS="${_temp_arr[$_IN]}" _OK=true else echo "" echo -e "\tFalsche Eingabe !" echo "" echononl "Eingabe: " fi done MYSQL_CREDENTIALS_GIVEN=true fi if $DATABASE_NAME_NEEDED ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert Database name which should be created.." echo "" echo "" echononl "Database name: " read DATABASE_NAME while [ "X$DATABASE_NAME" = "X" ] ; do echo -e "\n\t\033[33m\033[1mEingabe erforderlich.\033[m\n" echononl "Database name: " read DATABASE_NAME done fi if $DATABASE_USER_NEEDED ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert Database user who will grant full access to database '${DATABASE_NAME}'.." echo "" echo "" if [ -z "$DATABASE_USER" ]; then _DATABASE_USER="$DATABASE_NAME" else _DATABASE_USER="$DATABASE_USER" fi echononl "Database user for database '${DATABASE_NAME}' [${_DATABASE_USER}]: " read DATABASE_USER if [[ "X$DATABASE_USER" = "X" ]]; then DATABASE_USER=$_DATABASE_USER fi fi if $DATABASE_PASSWD_NEEDED ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert password for Database user '${DATABASE_USER}'.." echo "" echo "" if [ -z "$DATABASE_PASSWD" ]; then echononl "Password for Database user '${DATABASE_USER}': " read DATABASE_PASSWD while [ "X$DATABASE_PASSWD" = "X" ] ; do echo -e "\n\t\033[33m\033[1mEingabe erforderlich.\033[m\n" echononl "Password for Database user '${DATABASE_USER}': " read DATABASE_PASSWD done else _DATABASE_PASSWD="$DATABASE_PASSWD" echononl "Password for Database user '${DATABASE_USER}' [${_DATABASE_PASSWD}]: " read DATABASE_PASSWD if [[ "X$DATABASE_PASSWD" = "X" ]]; then DATABASE_PASSWD=$_DATABASE_PASSWD fi fi fi # - Set character-set for database # - echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert character_set for Database '${DATABASE_NAME}'.." echo "" echo " possible values are" echo " utf8mb4" echo " utf8" echo "" if [ -z "$DATABASE_CHARACTER_SET" ]; then echononl "Insert character_set for database '${DATABASE_NAME}': " read DATABASE_CHARACTER_SET while [ "X$DATABASE_CHARACTER_SET" = "X" ] ; do echo -e "\n\t\033[33m\033[1mEingabe erforderlich.\033[m\n" echononl "insert character_set for database '${DATABASE_NAME}': " read DATABASE_CHARACTER_SET done else _DATABASE_CHARACTER_SET="$DATABASE_CHARACTER_SET" echononl "Insert character_set for database '${DATABASE_NAME}' [${_DATABASE_CHARACTER_SET}]: " read DATABASE_CHARACTER_SET if [[ "X$DATABASE_CHARACTER_SET" = "X" ]]; then DATABASE_CHARACTER_SET=$_DATABASE_CHARACTER_SET fi fi if [[ "${DATABASE_CHARACTER_SET}" = "utf8mb4" ]]; then DATABASE_COLLATION="utf8mb4_unicode_ci" else DATABASE_COLLATION="utf8_bin" fi # - Set collation for databae # - echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert collation for Database '${DATABASE_NAME}'.." echo "" echo " possible values are" echo " utf8mb4_unicode_ci" echo " utf8mb4_bin" echo " utf8_bin" echo "" if [ -z "$DATABASE_COLLATION" ]; then echononl "Insert collation for database '${DATABASE_NAME}': " read DATABASE_COLLATION while [ "X$DATABASE_COLLATION" = "X" ] ; do echo -e "\n\t\033[33m\033[1mEingabe erforderlich.\033[m\n" echononl "Insert collation for database '${DATABASE_NAME}': " read DATABASE_COLLATION done else _DATABASE_COLLATION="$DATABASE_COLLATION" echononl "Insert collation for database '${DATABASE_NAME}' [${_DATABASE_COLLATION}]: " read DATABASE_COLLATION if [[ "X$DATABASE_COLLATION" = "X" ]]; then DATABASE_COLLATION=$_DATABASE_COLLATION fi fi echo "" echo -e "\033[32m--\033[m" echo "" echo " Access from outside?" echo "" echo " Give a blank seoarated list of IP-Addresses." echo "" echo " Leave empty to deny access from outside." echo "" echo " Example:" echo "" echo -e " \e[90m# A single IP Address\033[m" echo -e " \033[1m192.168.52.44\033[m" echo "" echo -e " \e[90m# Class C Network\033[m" echo -e " \033[1m192.168.52.%\033[m" echo "" echo -e " \e[90m# A Class C and a Class A Network\033[m" echo -e " \033[1m192.168.52.% 10.%\033[m" echo "" echononl "List of IP Addresses: " read IP_ADDRESSES if [[ -n "$IP_ADDRESSES" ]] ; then ACCESS_FROM_OUTSIDE=true else ACCESS_FROM_OUTSIDE=false fi fi if $MYSQL_CREDENTIALS_GIVEN ; then # - Get MySQL Version # - echo "" echo -e "\033[32m--\033[m" echo "" echononl " Get MySQL Version" _version="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "SELECT VERSION()" 2> $tmp_log_file)" if [[ $? -ne 0 ]] ; then if [[ "$(cat $tmp_log_file)" =~ "unknown variable 'login-path" ]] ; then if [[ -x "/usr/local/mysql/bin/mysql" ]] ; then mysql_command="/usr/local/mysql/bin/mysql" else echo_failed fatal "$(cat $tmp_log_file)" fi _version="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "SELECT VERSION()" 2> $tmp_log_file)" if [[ $? -ne 0 ]] ; then echo_failed fatal "$(cat $tmp_log_file)" else echo_ok fi else echo_failed fatal "$(cat $tmp_log_file)" fi else echo_ok fi IFS='.' read -r -a version_arr <<< "$_version" declare -i MAJOR_VERSION="${version_arr[0]}" declare -i MINOR_VERSION="${version_arr[1]}" _path_level="${version_arr[2]}" declare -i PATCH_LEVEL="${_path_level%%-*}" ## - Get current MySQL Distribution ## - echononl " Get current MySQL distribution .." if [[ -z "$_version" ]]; then echo_failed fatal "No installed MySQL server or distribution found!" elif [[ "$_version" =~ MariaDB ]]; then MYSQL_CUR_DISTRIBUTION="MariaDB" else MYSQL_CUR_DISTRIBUTION="MySQL" fi echo_ok echo "" echo -e "\033[32m--\033[m" echo "" else detect_mysql_version MAJOR_VERSION="$MYSQL_MAJOR_VERSION" MINOR_VERSION="$MYSQL_MINOR_VERSION" PATCH_LEVEL="$MYSQL_PATCH_LEVEL" if [[ "$MYSQL_CUR_DISTRIBUTION" = "MariaDB" ]] && ([[ $MAJOR_VERSION -gt 10 ]] \ || ( [[ $MAJOR_VERSION -eq 10 ]] && [[ $MINOR_VERSION -gt 3 ]] )) ; then if [[ -S "/tmp/mysql.sock" ]]; then MYSQL_CREDENTIAL_ARGS="-u root -S /tmp/mysql.sock" elif [[ -S "/run/mysqld/mysqld.sock" ]]; then MYSQL_CREDENTIAL_ARGS="-u root -S /run/mysqld/mysqld.sock" elif [[ -S "/var/run/mysqld/mysqld.sock" ]]; then MYSQL_CREDENTIAL_ARGS="-u root -S /var/run/mysqld/mysqld.sock" else fatal "Parameter 'MYSQL_CREDENTIAL_ARGS' cannot be determined automated. Use configuration file "$conf_file" to set parameter manually." fi else if $(${mysql_command} --login-path=local -e ";" > /dev/null 2>&1) ; then MYSQL_CREDENTIAL_ARGS="--login-path=local" elif [[ -f "/usr/local/mysql/sys-maint.cnf" ]] ; then MYSQL_CREDENTIAL_ARGS="--defaults-file=/usr/local/mysql/sys-maint.cnf" elif [[ -f "/etc/mysql/debian.cnf" ]] ; then MYSQL_CREDENTIAL_ARGS="--defaults-file=/etc/mysql/debian.cnf" else fatal "Parameter 'MYSQL_CREDENTIAL_ARGS' cannot be determined automated. Use configuration file "$conf_file" to set parameter manually." fi fi fi if ! $QUIET_MODE ; then echo "" echo "" echo -e "\033[32m\033[1m====================\033[m" echo "Create MySQL Database settings" echo -e "\033[32m\033[1m====================\033[m" echo "" echo " MySQL Distribution...........: $MYSQL_CUR_DISTRIBUTION" echo " MySQL Version................: ${MAJOR_VERSION}.${MINOR_VERSION}.${PATCH_LEVEL}" echo " MySQL Credentials............: $MYSQL_CREDENTIAL_ARGS" echo "" echo " MySQL commnd.................: ${mysql_command}" echo "" echo " Database name................: $DATABASE_NAME" echo " Database user................: $DATABASE_USER" echo " Database password............: $DATABASE_PASSWD" echo "" echo " Database character-set.......: $DATABASE_CHARACTER_SET" echo " Database collation...........: $DATABASE_COLLATION" echo "" if $ACCESS_FROM_OUTSIDE ; then echo " Access from outside..........: $IP_ADDRESSES" else echo -e " Access from outside..........: \033[33m\033[1m- denied -\033[m" fi echo "" echo "" fi if ! $NON_INTERACTIVE_MODE ; then echo -e -n "\033[1mContinue creating database with above settings? [y/n]:\033[m " read OK while [[ "X${OK}X" = "XX" ]] ; do echo "" echo -e -n "\033[1mContinue with above settings? [y/n]:\033[m " read OK done if [[ "${OK,,}" != 'yes' ]] && [[ "${OK,,}" != 'y' ]]; then fatal "Abort by user request." fi fi if ! $QUIET_MODE ; then echo "" echo "" echo -e " Processing database \033[1m$DATABASE_NAME\033[m" echo "" fi # - Test if Database already exists # - _result="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "SHOW DATABASES LIKE '$DATABASE_NAME'")" if [[ "$_result" = "$DATABASE_NAME" ]] ; then fatal "Database '$DATABASE_NAME' already exists" fi echononl " Create database \033[1m$DATABASE_NAME\033[m (full UTF-8 support - ${DATABASE_CHARACTER_SET})" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE DATABASE $DATABASE_NAME CHARACTER SET ${DATABASE_CHARACTER_SET} COLLATE ${DATABASE_COLLATION}" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" echononl " Create database \033[1m$DATABASE_NAME\033[m (UTF-8 support - utf8)" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE DATABASE $DATABASE_NAME CHARACTER SET utf8 COLLATE utf8_general_ci" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed fatal "$(cat $tmp_log_file)" else echo_ok fi else echo_ok fi if [[ "$MYSQL_CUR_DISTRIBUTION" = "MySQL" ]] && ([[ $MAJOR_VERSION -gt 8 ]] \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -gt 0 ]] ) \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -eq 0 ]] && [[ $PATCH_LEVEL -ge 3 ]] )) ; then # - Use (password) plugin mysql_native_password # - if ! $QUIET_MODE ; then if [[ $MAJOR_VERSION -gt 8 ]] \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -gt 0 ]] ) \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -eq 0 ]] && [[ $PATCH_LEVEL -ge 3 ]] ) ; then info "Using (old) Password Plugin 'mysql_native_password'" else echo "" fi fi echononl " Create database user '$DATABASE_USER' access from locahost" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'localhost' IDENTIFIED WITH mysql_native_password BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Create database user '$DATABASE_USER' access from '$_ip' " ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'$_ip' IDENTIFIED WITH mysql_native_password BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi echononl " Grant full access to user '$DATABASE_USER' on Database '$DATABASE_NAME'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL ON ${DATABASE_NAME}.* TO '$DATABASE_USER'@'localhost'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Grant full access to user '$DATABASE_USER' on Database '$DATABASE_NAME' from '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL ON ${DATABASE_NAME}.* TO '$DATABASE_USER'@'$_ip'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi elif [[ "$MYSQL_CUR_DISTRIBUTION" = "MariaDB" ]] && ([[ $MAJOR_VERSION -gt 10 ]] \ || ( [[ $MAJOR_VERSION -eq 10 ]] && [[ $MINOR_VERSION -gt 3 ]] )) ; then echononl " Check if user '$DATABASE_USER' already exists for localhost .." _count="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS mysql -N -s -e \ "SELECT count(User) FROM user WHERE User = '$DATABASE_USER' and Host = 'localhost'" 2> $tmp_log_file)" if [[ -z "$_count" ]]; then echo_failed error $(cat "$tmp_log_file") elif [[ $_count -eq 0 ]]; then echo_ok echononl " Create database user '$DATABASE_USER'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'localhost' IDENTIFIED BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_ok warn "User '$DATABASE_USER' already exists for host localhost" fi echononl " Grant permissions to access and use the MySQL server to user '$DATABASE_USER'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON \`$DATABASE_NAME\`.* TO '$DATABASE_USER'@'localhost'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to a user '$DATABASE_USER' on database '$DATABASE_NAME'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL privileges ON \`$DATABASE_NAME\`.* TO '$DATABASE_USER'@'localhost'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Check if user '$DATABASE_USER' already exists for '$_ip' .." _count="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS mysql -N -s -e \ "SELECT count(User) FROM user WHERE User = '$DATABASE_USER' and Host = '$_ip'" 2> $tmp_log_file)" if [[ -z "$_count" ]]; then echo_failed error $(cat "$tmp_log_file") elif [[ $_count -eq 0 ]]; then echo_ok echononl " Create database user '$DATABASE_USER' for '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'$_ip' IDENTIFIED BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_ok warn "User '$DATABASE_USER' already exists for host '$_ip'" fi echononl " Allow access to user '$DATABASE_USER' on Database '$DATABASE_NAME' from '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON \`${DATABASE_NAME}\`.* TO '$DATABASE_USER'@'$_ip'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on database '$DATABASE_NAME' from '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL privileges ON \`$DATABASE_NAME\`.* TO '$DATABASE_USER'@'$_ip'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi else echononl " Grant usage to user '$DATABASE_USER' (Creates User..)" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON *.* TO '$DATABASE_USER'@'localhost' IDENTIFIED BY '$DATABASE_PASSWD'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on Database '$DATABASE_NAME'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL PRIVILEGES ON ${DATABASE_NAME}.* TO '$DATABASE_USER'@'localhost'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Grant usage to user '$DATABASE_USER' access from ${_ip}" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON *.* TO '$DATABASE_USER'@'${_ip}' IDENTIFIED BY '$DATABASE_PASSWD'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on Database '$DATABASE_NAME' from $_ip" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL PRIVILEGES ON ${DATABASE_NAME}.* TO '$DATABASE_USER'@'${_ip}'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi fi # if [[ $MYSQL_CUR_DISTRIBUTION -ge 8 ]] echononl " Flush Privileges.." ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "FLUSH PRIVILEGES" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if ! $QUIET_MODE ; then echo "" fi echononl " Create directory '${working_dir}/databases'.." if [[ -d "${working_dir}/databases" ]]; then echo_skipped else mkdir ${working_dir}/databases > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi fi echononl " Remove file '${working_dir}/databases/DELETED/$DATABASE_NAME'" if [[ -f "${working_dir}/databases/DELETED/$DATABASE_NAME" ]] ; then rm "${working_dir}/databases/DELETED/$DATABASE_NAME" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_skipped fi echononl " Create/Renew file '${working_dir}/databases/$DATABASE_NAME'" cat < "${working_dir}/databases/$DATABASE_NAME" 2> $tmp_log_file 2>&1 # $DATABASE_NAME $DATABASE_USER $DATABASE_PASSWD EOF if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if ! $QUIET_MODE ; then echo "" fi clean_up 0