Bug #106785 Add ALTER USER privilege
Submitted: 20 Mar 2022 22:02 Modified: 21 Mar 2022 5:30
Reporter: Sveta Smirnova (OCA) Email Updates:
Status: Verified Impact on me:
None 
Category:MySQL Server: Security: Privileges Severity:S3 (Non-critical)
Version:8.0.28 OS:Any
Assigned to: CPU Architecture:Any

[20 Mar 2022 22:02] Sveta Smirnova
Description:
Currently MySQL has CREATE USER privilege that "Enables use of the ALTER USER, CREATE ROLE, CREATE USER, DROP ROLE, DROP USER, RENAME USER, and REVOKE ALL PRIVILEGES statements." as stated at https://dev.mysql.com/doc/refman/8.0/en/privileges-provided.html#priv_create-user

For some setups, this is too much. Please implement new privilege: ALTER USER that will only "Enables use of the ALTER USER statement". Similarly, like Oracle database has.

How to repeat:
See description
[21 Mar 2022 5:30] MySQL Verification Team
Hello Sveta,

Thank you for the feedback and reasonable feature request.

Sincerely,
Umesh