#!/usr/bin/env bash working_dir="$(dirname $(realpath $0))" log_dir="${working_dir}/log" conf_file="${working_dir}/conf/mysql_credetials.conf" tmp_log_file="$(mktemp)" # ------------- # - Variable settings # ------------- MYSQL_CREDENTIALS_GIVEN=false DATABASE_USER="" DATABASE_PASSWD="" DATABASE_USER_NEEDED=true DATABASE_PASSWD_NEEDED=true QUIET_MODE=false NON_INTERACTIVE_MODE=false # ------------- # --- Some functions # ------------- usage() { echo [ -n "$1" ] && echo -e "Error: $1\n" cat< Password for the given user. If not set, script looks for a file named 'databases/'. If found, script reads database password from that file. If not running in quiet mode, you will be asked to confirm or set the db-user. -q Be quiet. Setting this parameter implies non-interactive mode (parameter -I). So if '-q' is set, at least the database name must be given using parameter '-d'. -u The name of the database user who will be granted full access to the given database. If not set, script looks for a file 'databases/'. If found, script reads database settings (user/password) from that file. If not running in quiet mode, you will be asked to confirm or set the db-user. EOF clean_up 1 } clean_up() { # Perform program exit housekeeping rm -f $tmp_log_file exit $1 } fatal(){ echo "" if $terminal ; then if [[ -n "$*" ]] ; then echo -e " [ \033[31m\033[1mFatal\033[m ]: $*" else echo " \033[31m\033[1mFatal error\033[m:" fi echo "" echo -e " \033[31m\033[1mScript will be interrupted.\033[m\033[m" else if [[ -n "$*" ]] ; then echo " [ Fatal ]: $*" else echo " Fatal error:" fi echo "" echo " Script was terminated...." fi echo "" clean_up 1 } echononl(){ if $terminal && ! $QUIET_MODE ; then echo X\\c > /tmp/shprompt$$ if [ `wc -c /tmp/shprompt$$ | awk '{print $1}'` -eq 1 ]; then echo -e -n "$*\\c" 1>&2 else echo -e -n "$*" 1>&2 fi rm /tmp/shprompt$$ fi } error(){ echo "" if $terminal ; then echo -e " [ \033[31m\033[1mError\033[m ]: $*" else echo "Error: $*" fi echo "" } warn (){ if $terminal && ! $QUIET_MODE ; then echo "" echo -e " [ \033[33m\033[1mWarning\033[m ]: $*" echo "" fi } info (){ if $terminal && ! $QUIET_MODE ; then echo "" echo -e " [ \033[32m\033[1mInfo\033[m ]: $*" echo "" fi } echo_ok() { if $terminal && ! $QUIET_MODE ; then echo -e "\033[80G[ \033[32mok\033[m ]" fi } echo_failed(){ if $terminal && ! $QUIET_MODE ; then echo -e "\033[80G[ \033[1;31mfailed\033[m ]" fi } echo_skipped() { if $terminal && ! $QUIET_MODE ; then echo -e "\033[80G[ \033[37mskipped\033[m ]" fi } is_number() { return $(test ! -z "${1##*[!0-9]*}" > /dev/null 2>&1); # - also possible # - #[[ ! -z "${1##*[!0-9]*}" ]] && return 0 || return 1 #return $([[ ! -z "${1##*[!0-9]*}" ]]) } detect_mysql_version () { _MYSQLD_VERSION="$(mysqld -V 2>/dev/null)" if [[ -z "$_MYSQLD_VERSION" ]]; then fatal "No installed MySQL server or distribution found!" elif [[ -d "/usr/local/mysql" ]] && [[ "$(basename "$(realpath "/usr/local/mysql")")" =~ percona- ]]; then MYSQL_CUR_DISTRIBUTION="Percona" elif [[ "$_MYSQLD_VERSION" =~ MariaDB ]]; then MYSQL_CUR_DISTRIBUTION="MariaDB" elif [[ "$_MYSQLD_VERSION" =~ MySQL ]]; then MYSQL_CUR_DISTRIBUTION="MySQL" elif [[ -d "/usr/local/mysql" ]] && [[ "$(basename "$(realpath "/usr/local/mysql")")" =~ mysql- ]]; then MYSQL_CUR_DISTRIBUTION="MySQL" elif [[ -d "/usr/local/mysql" ]] && [[ "$(basename "$(realpath "/usr/local/mysql")")" =~ mariadb- ]]; then MYSQL_CUR_DISTRIBUTION="MariaDB" else error "MySQL Instalation found, but cannot determin the distribution!" MYSQL_CUR_DISTRIBUTION= echo "" echo " Select the MySQL distribution to install." echo "" echo " [1] MySQL (the original community edition)" echo " [2] Percona Server for MySQL" echo " [3] MariaDB" echo "" echononl " Eingabe [1/2/3]: " while [ "$MYSQL_CUR_DISTRIBUTION" != "MySQL" -a "$MYSQL_CUR_DISTRIBUTION" != "MariaDB" -a "$MYSQL_CUR_DISTRIBUTION" != "Percona" ];do read OPTION case $OPTION in 1) MYSQL_CUR_DISTRIBUTION="MySQL" ;; 2) MYSQL_CUR_DISTRIBUTION="Percona" ;; 3) MYSQL_CUR_DISTRIBUTION="MariaDB" ;; *) echo "" echo -e "\tFalsche Eingabe ! [ 1 = MySQL ; 2 = Percona ; 3 = MariaDB ]" echo "" echononl " Eingabe:" ;; esac done fi MYSQL_VERSION="$(echo $_MYSQLD_VERSION | grep -o -E "[0-9]+\.[0-9]+\.[0-9]+(-[0-9]+)?" | head -n 1)" MYSQL_MAJOR_VERSION="$(echo $MYSQL_VERSION | cut -d '.' -f1)" MYSQL_MINOR_VERSION="$(echo $MYSQL_VERSION | cut -d '.' -f2)" MYSQL_PATCH_LEVEL="$(echo $MYSQL_VERSION | cut -d '.' -f3)" MYSQL_MAIN_VERSION="$(echo $MYSQL_VERSION | cut -d '.' -f1,2)" } trap clean_up SIGHUP SIGINT SIGTERM # ------------- # - Read Commandline Parameters # ------------- while getopts d:hIp:qu: opt ; do case $opt in I) NON_INTERACTIVE_MODE=true ;; p) DATABASE_PASSWD="$OPTARG" DATABASE_PASSWD_NEEDED=false ;; q) QUIET_MODE=true NON_INTERACTIVE_MODE=true ;; u) DATABASE_USER="$OPTARG" DATABASE_USER_NEEDED=false ;; h) usage ;; *) usage esac done shift $(expr $OPTIND - 1) [[ "$#" -gt 0 ]] && usage "Wrong number of arguments given!" # - If not running in a terminal, be silent and non-interactive # - if [[ -t 1 ]] ; then terminal=true else terminal=false QUIET_MODE=true NON_INTERACTIVE_MODE=true fi # - Clear Screen # - clear # ------------- # - Load Settings from configuration file mysql_credetials.conf # ------------- if ! $QUIET_MODE ; then echo "" fi echononl " Loading configuration settings from $(basename ${conf_file}).." if [[ -f "$conf_file" ]]; then source "$conf_file" > $tmp_log_file 2>&1 if [[ $? -eq 0 ]]; then echo_ok else echo_failed fatal "$(cat $tmp_log_file)" fi else echo_skipped warn "No Configuration File found. Loading defaults.." fi if [[ -n "$mysql_credential_args" ]]; then MYSQL_CREDENTIAL_ARGS="$mysql_credential_args" MYSQL_CREDENTIALS_GIVEN=true fi echononl " Get MySQL command.." mysql_command="$(which mysql)" if [[ $? -eq 0 ]]; then echo_ok else if [[ -x "/usr/local/mysql/bin/mysql" ]]; then mysql_command="/usr/local/mysql/bin/mysql" echo_ok else echo_failed fatal "$(cat $tmp_log_file)" fi fi if ! $NON_INTERACTIVE_MODE ; then declare -i index_arr=0 # - Get MySQL Version # - if [[ ${#mysql_credential_args_arr[@]} -gt 0 ]] ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Which Installation should be used for database creation?" echo "" echo "" declare -a _tmp_arr=() #for _val in ${mysql_credential_args_arr[@]} ; do while [[ $index_arr -lt ${#mysql_credential_args_arr[@]} ]] ; do #IFS=':' read -a _val_arr <<< "${_val}" IFS=':' read -a _val_arr <<< "${mysql_credential_args_arr[$index_arr]}" mysql_version="${_val_arr[0]}" mysql_credential_args="${_val_arr[1]}" mysql_dist_string="$(${mysql_command} $mysql_credential_args -N -s -e "SELECT VERSION()" 2> /dev/null)" if [[ $? -ne 0 ]] ; then if [[ "$(cat $tmp_log_file)" =~ "unknown variable 'login-path" ]] ; then if [[ -x "/usr/local/mysql/bin/mysql" ]] ; then mysql_dist_string="$(/usr/local/mysql/bin/mysql $mysql_credential_args -N -s -e "SELECT VERSION()" 2> /dev/null)" fi fi fi if [[ "$mysql_dist_string" =~ MariaDB ]]; then mysql_dist="MariaDB $mysql_version" else mysql_dist="MySQL/Percona $mysql_version" fi echo " [$index_arr] $mysql_dist" _temp_arr[${index_arr}]="$mysql_credential_args" #_temp_arr+=("$mysql_credential_args") (( index_arr++ )) done _OK=false echo "" echononl "Eingabe: " while ! $_OK ; do read _IN if is_number "$_IN" && [[ -n ${_temp_arr[$_IN]} ]]; then MYSQL_CREDENTIAL_ARGS="${_temp_arr[$_IN]}" _OK=true else echo "" echo -e "\tFalsche Eingabe !" echo "" echononl "Eingabe: " fi done MYSQL_CREDENTIALS_GIVEN=true fi if $DATABASE_USER_NEEDED ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert Database user who will grant full access all databases" echo "" echo "" if [ -z "$DATABASE_USER" ]; then echononl "Database user who will grant full access all databases: " read DATABASE_USER while [ "X$DATABASE_USER" = "X" ] ; do echo -e "\n\t\033[33m\033[1mEingabe erforderlich.\033[m\n" echononl "Database user for database who will grant full access all databases: " read DATABASE_USER done else _DATABASE_USER="$DATABASE_USER" echononl "Database user who will grant full access all databases [${_DATABASE_USER}]: " read DATABASE_USER if [[ "X$DATABASE_USER" = "X" ]]; then DATABASE_USER=$_DATABASE_USER fi fi fi if $DATABASE_PASSWD_NEEDED ; then echo "" echo -e "\033[32m--\033[m" echo "" echo "Insert password for Database user '${DATABASE_USER}'.." echo "" echo "" if [ -z "$DATABASE_PASSWD" ]; then echononl "Password for Database user '${DATABASE_USER}': " read DATABASE_PASSWD while [ "X$DATABASE_PASSWD" = "X" ] ; do echo -e "\n\t\033[33m\033[1mEingabe erforderlich.\033[m\n" echononl "Password for Database user '${DATABASE_USER}': " read DATABASE_PASSWD done else _DATABASE_PASSWD="$DATABASE_PASSWD" echononl "Password for Database user '${DATABASE_USER}' [${_DATABASE_PASSWD}]: " read DATABASE_PASSWD if [[ "X$DATABASE_PASSWD" = "X" ]]; then DATABASE_PASSWD=$_DATABASE_PASSWD fi fi fi echo "" echo -e "\033[32m--\033[m" echo "" echo " Access from outside?" echo "" echo " Give a blank seoarated list of IP-Addresses." echo "" echo " Leave empty to deny access from outside." echo "" echo " Example:" echo "" echo -e " \e[90m# A single IP Address\033[m" echo -e " \033[1m192.168.52.192.168.52.44\033[m" echo "" echo -e " \e[90m# Class C Network\033[m" echo -e " \033[1m192.168.52.%\033[m" echo "" echo -e " \e[90m# A Class C and a Class A Network\033[m" echo -e " \033[1m192.168.52.% 10.%\033[m" echo "" echononl "List of IP Addresses: " read IP_ADDRESSES if [[ -n "$IP_ADDRESSES" ]] ; then ACCESS_FROM_OUTSIDE=true else ACCESS_FROM_OUTSIDE=false fi fi if $MYSQL_CREDENTIALS_GIVEN ; then # - Get MySQL Version # - echo "" echo -e "\033[32m--\033[m" echo "" echononl " Get MySQL Version" _version="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "SELECT VERSION()" 2> $tmp_log_file)" if [[ $? -ne 0 ]] ; then if [[ "$(cat $tmp_log_file)" =~ "unknown variable 'login-path" ]] ; then if [[ -x "/usr/local/mysql/bin/mysql" ]] ; then mysql_command="/usr/local/mysql/bin/mysql" else echo_failed fatal "$(cat $tmp_log_file)" fi _version="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "SELECT VERSION()" 2> $tmp_log_file)" if [[ $? -ne 0 ]] ; then echo_failed fatal "$(cat $tmp_log_file)" else echo_ok fi else echo_failed fatal "$(cat $tmp_log_file)" fi else echo_ok fi IFS='.' read -r -a version_arr <<< "$_version" declare -i MAJOR_VERSION="${version_arr[0]}" declare -i MINOR_VERSION="${version_arr[1]}" _path_level="${version_arr[2]}" declare -i PATCH_LEVEL="${_path_level%%-*}" ## - Get current MySQL Distribution ## - echononl " Get current MySQL distribution .." if [[ -z "$_version" ]]; then echo_failed fatal "No installed MySQL server or distribution found!" elif [[ "$_version" =~ MariaDB ]]; then MYSQL_CUR_DISTRIBUTION="MariaDB" else MYSQL_CUR_DISTRIBUTION="MySQL" fi echo_ok echo "" echo -e "\033[32m--\033[m" echo "" else detect_mysql_version MAJOR_VERSION="$MYSQL_MAJOR_VERSION" MINOR_VERSION="$MYSQL_MINOR_VERSION" PATCH_LEVEL="$MYSQL_PATCH_LEVEL" if [[ "$MYSQL_CUR_DISTRIBUTION" = "MariaDB" ]] && ([[ $MAJOR_VERSION -gt 10 ]] \ || ( [[ $MAJOR_VERSION -eq 10 ]] && [[ $MINOR_VERSION -gt 3 ]] )) ; then if [[ -S "/tmp/mysql.sock" ]]; then MYSQL_CREDENTIAL_ARGS="-u root -S /tmp/mysql.sock" elif [[ -S "/run/mysqld/mysqld.sock" ]]; then mysql_credential_args="-u root -S /run/mysqld/mysqld.sock" elif [[ -S "/var/run/mysqld/mysqld.sock" ]]; then MYSQL_CREDENTIAL_ARGS="-u root -S /var/run/mysqld/mysqld.sock" else fatal "Parameter 'MYSQL_CREDENTIAL_ARGS' cannot be determined automated. Use configuration file "$conf_file" to set parameter manually." fi else if $(${mysql_command} --login-path=local -e ";" > /dev/null 2>&1) ; then MYSQL_CREDENTIAL_ARGS="--login-path=local" elif [[ -f "/usr/local/mysql/sys-maint.cnf" ]] ; then MYSQL_CREDENTIAL_ARGS="--defaults-file=/usr/local/mysql/sys-maint.cnf" elif [[ -f "/etc/mysql/debian.cnf" ]] ; then MYSQL_CREDENTIAL_ARGS="--defaults-file=/etc/mysql/debian.cnf" else fatal "Parameter 'MYSQL_CREDENTIAL_ARGS' cannot be determined automated. Use configuration file "$conf_file" to set parameter manually." fi fi fi if ! $QUIET_MODE ; then echo "" echo "" echo -e "\033[32m\033[1m====================\033[m" echo "Grant MySQL Database access settings" echo -e "\033[32m\033[1m====================\033[m" echo "" echo " MySQL Distribution...........: $MYSQL_CUR_DISTRIBUTION" echo " MySQL Version................: ${MAJOR_VERSION}.${MINOR_VERSION}.${PATCH_LEVEL}" echo " MySQL Credentials............: $MYSQL_CREDENTIAL_ARGS" echo "" echo " MySQL commnd.................: ${mysql_command}" echo "" echo " Database user................: $DATABASE_USER" echo " Database password............: $DATABASE_PASSWD" echo "" if $ACCESS_FROM_OUTSIDE ; then echo " Access from outside..........: $IP_ADDRESSES" else echo -e " Access from outside..........: \033[33m\033[1m- denied -\033[m" fi echo "" echo "" fi if ! $NON_INTERACTIVE_MODE ; then echo -e -n "\033[1mContinue with above settings? [y/n]:\033[m " read OK while [[ "X${OK}X" = "XX" ]] ; do echo "" echo -e -n "\033[1mContinue with above settings? [y/n]:\033[m " read OK done if [[ "${OK,,}" != 'yes' ]] && [[ "${OK,,}" != 'y' ]]; then fatal "Abort by user request." fi fi if ! $QUIET_MODE ; then echo "" echo ""^ echo -e " Processing database user \033[1m${DATABASE_USER}\033[m" echo "" fi # - Check if User already exists # - echononl " Check if user '$DATABASE_USER' already exists for localhost .." if [[ "$(${mysql_command} $MYSQL_CREDENTIAL_ARGS -se "SELECT EXISTS(SELECT 1 FROM mysql.user WHERE user = '${DATABASE_USER}')")" = "1" ]]; then user_exists=true else user_exists=false fi echo_ok if [[ "$MYSQL_CUR_DISTRIBUTION" = "MySQL" ]] && ([[ $MAJOR_VERSION -gt 8 ]] \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -gt 0 ]] ) \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -eq 0 ]] && [[ $PATCH_LEVEL -ge 3 ]] )) ; then # - Use (password) plugin mysql_native_password # - if ! $QUIET_MODE ; then if [[ $MAJOR_VERSION -gt 8 ]] \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -gt 0 ]] ) \ || ( [[ $MAJOR_VERSION -eq 8 ]] && [[ $MINOR_VERSION -eq 0 ]] && [[ $PATCH_LEVEL -ge 3 ]] ) ; then info "Using (old) Password Plugin 'mysql_native_password'" else echo "" fi fi echononl " Create database user '$DATABASE_USER' access from locahost" if ! $user_exists ; then ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'localhost' IDENTIFIED WITH mysql_native_password BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_skipped fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Check if user '$DATABASE_USER' already exists for '$_ip' .." _count="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS mysql -N -s -e \ "SELECT count(User) FROM user WHERE User = '$DATABASE_USER' and Host = '$_ip'" 2> $tmp_log_file)" if [[ -z "$_count" ]]; then echo_failed error $(cat "$tmp_log_file") elif [[ $_count -eq 0 ]]; then echo_ok echononl " Create database user '$DATABASE_USER' access from '$_ip' " ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'$_ip' IDENTIFIED WITH mysql_native_password BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_skipped fi done fi echononl " Grant full access to user '$DATABASE_USER' on all Databases" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL ON *.* TO '$DATABASE_USER'@'localhost'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Grant full access to user '$DATABASE_USER' on all Database from '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL ON *.* TO '$DATABASE_USER'@'$_ip'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi elif [[ "$MYSQL_CUR_DISTRIBUTION" = "MariaDB" ]] && ([[ $MAJOR_VERSION -gt 10 ]] \ || ( [[ $MAJOR_VERSION -eq 10 ]] && [[ $MINOR_VERSION -gt 3 ]] )) ; then echononl " Create database user '$DATABASE_USER' access from locahost" if ! $user_exists ; then #echo "" #echo "${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \"CREATE USER '$DATABASE_USER'@'localhost' IDENTIFIED BY '$DATABASE_PASSWD'\"" #echo "" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'localhost' IDENTIFIED BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_skipped fi echononl " Grant permissions to access and use the MySQL server to user '$DATABASE_USER'" #echo "" #echo "${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \"GRANT USAGE ON *.* TO '$DATABASE_USER'@'localhost'\"" #echo "" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON *.* TO '$DATABASE_USER'@'localhost'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on all database " echo "" echo "$MYSQL_CREDENTIAL_ARGS -N -s -e \"GRANT ALL privileges ON *.* TO '$DATABASE_USER'@'localhost'\"" echo "" #${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ # "GRANT ALL privileges ON *.* TO '$DATABASE_USER'@'localhost'" \ # > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Check if user '$DATABASE_USER' already exists for '$_ip' .." _count="$(${mysql_command} $MYSQL_CREDENTIAL_ARGS mysql -N -s -e \ "SELECT count(User) FROM user WHERE User = '$DATABASE_USER' and Host = '$_ip'" 2> $tmp_log_file)" if [[ -z "$_count" ]]; then echo_failed error $(cat "$tmp_log_file") elif [[ $_count -eq 0 ]]; then echo_ok echononl " Create database user '$DATABASE_USER' for '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "CREATE USER '$DATABASE_USER'@'$_ip' IDENTIFIED BY '$DATABASE_PASSWD'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi else echo_ok warn "User '$DATABASE_USER' already exists for host '$_ip'" fi echononl " Allow access to user '$DATABASE_USER' on all databases from '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON *.* TO '$DATABASE_USER'@'$_ip'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on all databases from '$_ip'" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL privileges ON *.* TO '$DATABASE_USER'@'$_ip'" \ > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi else echononl " Grant usage to user '$DATABASE_USER' (Creates User..)" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON *.* TO '$DATABASE_USER'@'localhost' IDENTIFIED BY '$DATABASE_PASSWD'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on all databases" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL PRIVILEGES ON *.* TO '$DATABASE_USER'@'localhost'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if $ACCESS_FROM_OUTSIDE ; then for _ip in $IP_ADDRESSES ; do echononl " Grant usage to user '$DATABASE_USER' access from ${_ip}" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT USAGE ON *.* TO '$DATABASE_USER'@'${_ip}' IDENTIFIED BY '$DATABASE_PASSWD'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi echononl " Grant all privileges to user '$DATABASE_USER' on all databases from $_ip" ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e \ "GRANT ALL PRIVILEGES ON *.* TO '$DATABASE_USER'@'${_ip}'" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi done fi fi # if [[ $MYSQL_CUR_DISTRIBUTION -ge 8 ]] echononl " Flush Privileges.." ${mysql_command} $MYSQL_CREDENTIAL_ARGS -N -s -e "FLUSH PRIVILEGES" > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi if ! $QUIET_MODE ; then echo "" fi echononl " Create directory '${working_dir}/databases'.." if [[ -d "${working_dir}/databases" ]]; then echo_skipped else mkdir ${working_dir}/databases > $tmp_log_file 2>&1 if [[ $? -ne 0 ]] ; then echo_failed error "$(cat $tmp_log_file)" else echo_ok fi fi if ! $QUIET_MODE ; then echo "" fi clean_up 0