Plesk provides user roles for MySQL and Microsoft SQL Server database
users. The roles act as templates that help to assign permissions to a
database user. The following database user roles are supported: Read
and Write (used by default), Read Only, and Write Only. Each
role has a pre-defined set of privileges that are granted to a database
user account with this role. You can edit sets of privileges that
correspond to different roles.
Additionally, MySQL supports the Custom role that corresponds to a
user-defined set of privileges. SQL Server users cannot modify sets of
permissions that come with roles.
You can deny a permission and prohibit Plesk users from granting it.
For details on how to select roles for database users in Websites &
Domains > Databases > User Management, see Managing Database
User Accounts. Note that database users on
administrator’s subscriptions can be given global privileges in addition
to the rights on database tables.
MySQL Database User Roles
In Plesk with MySQL, users can select roles for database users as well
as add or remove individual privileges.
The default sets of MySQL privileges for each role are listed below.
| Privilege | Read and Write | Read Only | Write Only |
|---|---|---|---|
| Select | ➕ | ➕ | ➖ |
| Insert | ➕ | ➖ | ➕ |
| Update | ➕ | ➖ | ➕ |
| Delete | ➕ | ➖ | ➕ |
| Create | ➕ | ➖ | ➕ |
| Drop | ➕ | ➖ | ➕ |
| Alter | ➕ | ➖ | ➕ |
| Index | ➕ | ➖ | ➕ |
| Create Temporary Tables | ➕ | ➖ | ➕ |
| Lock Tables | ➕ | ➖ | ➕ |
| Create View | ➕ | ➖ | ➕ |
| Show View | ➕ | ➕ | ➖ |
To modify the default sets of privileges, edit the
panel.ini file and list the privilege names for each
role that you want to modify.
Remember that Plesk customers can still select more privileges than you
specified in panel.ini
…