如何使用php pdo创建mysql用户

I wnat to create mysql user accounts from a php code. my code is working but can't login to user accounts which create using that code. this is my php code

//include database connection function
include("dbcon.inc.php");

//prepare db connection
dbcon(1,"root");

//call db_user function to create new db user account
db_user(1,1,"insert","user123");

function db_user($user_admin,$user_active,$user_action,$user_name){
    global $conn;
    $sql_query="";
    $host_name="localhost";
    $staff_password="123";
    $database_name="smart_lib";

    if($user_action=="insert"){
        //create user account
        $sql_query="CREATE USER '$user_name'@'$host_name' IDENTIFIED WITH mysql_native_password AS '$staff_password';";
    }
    elseif($user_action=="update"){
        //update
        $sql_query="REVOKE ALL PRIVILEGES ON *.* FROM '$user_name'@'$host_name';";
    }

    //if user is active give privilages
    if($user_active==1){
        //if user is an admin give admin privilages
        if($user_admin==1){
            $sql_query.="GRANT ALL PRIVILEGES ON *.* TO '$user_name'@'$host_name' REQUIRE NONE WITH GRANT OPTION MAX_QUERIES_PER_HOUR 0 MAX_CONNECTIONS_PER_HOUR 0 MAX_UPDATES_PER_HOUR 0 MAX_USER_CONNECTIONS 0;";
        }
        //if user not an admin give privilages without grant optin
        else{
            $sql_query.="GRANT SELECT, INSERT, UPDATE, DELETE ON `$database_name`.* TO '$user_name'@'$host_name'; FLUSH PRIVILEGES;";
        }
    }
    $sql = $conn->prepare($sql_query);
    $sql->execute();

    echo $sql_query."<br/>";
}

I get the query using echo $sql_query and execute it on php myadmin. it worked correctly.

This is my database connection.

function dbcon($user_type,$user_name){
    $Database = "smart_lib";
    $Hostname = "localhost";
    $Username = $user_name;
    $Password = "123";

    try{
        global $conn;
        $conn = new PDO("mysql:host=$Hostname;dbname=$Database", $Username,$Password);
        $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        $conn->exec ("SET NAMES utf8");
    }
    catch(PDOException $exp)
    {
        echo "Error! ".$exp->getMessage();
    }
}

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
douganbi7686 2017-07-25 21:53
关注
These are correct sql statements - tested:

// Build another variable: $user = $user_name . '@' . $host_name; // Sql statements: $sql_query = "CREATE USER `" . $user . "` IDENTIFIED WITH mysql_native_password AS '" . $staff_password . "';"; $sql_query = "REVOKE ALL PRIVILEGES ON *.* FROM `" . $user . "`;"; $sql_query .= "GRANT ALL PRIVILEGES ON *.* TO `" . $user . "` REQUIRE NONE WITH GRANT OPTION MAX_QUERIES_PER_HOUR 0 MAX_CONNECTIONS_PER_HOUR 0 MAX_UPDATES_PER_HOUR 0 MAX_USER_CONNECTIONS 0;"; $sql_query .= "GRANT SELECT, INSERT, UPDATE, DELETE ON `" . $database_name . "`.* TO `" . $user . "`; FLUSH PRIVILEGES;";

Notes:

The problem resided - at least in my tests - in this representation of the user name: '$user_name'@'$host_name'. My personal tests showed this:

If you use 'abc'@'def', then the user abc and the host def is created.

But if you use abc@def with backticks around, or 'abc@def', then the user abc@def is created, with the host %.

In general, use backticks when you pass special characters like "@".

I also recommend you to use exception handling on prepare() and execute() as well.

When you're using prepared statements then you should bind the input parameters, not pass them directly to the sql statements. For this task use the bindValue() or the bindParam() function.

And don't use global connection variable, but create a connection on the page which requires it and pass it as argument to each function.

Maybe this will be helpful:

Complete example of PDO w. prepared statements and exception handling (see especially "generalFunctions.php").

On development (not on production!) use error reporting and display:

error_reporting(E_ALL); ini_set('display_errors', 1);

Good luck!
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

使用PHP / PDO从MySQL创建单个数组 php
2018-08-27 16:07

回答 3 已采纳 What you need is PDO::FETCH_COLUMN mode: $sql = "SELECT name FROM " . $this->table_name . " O
如何使用PHP函数使用PDO连接到MySQL [关闭] mysql php
2019-08-19 17:03

回答 1 已采纳 1) As referenced by HTMHell, your $config array is local here and I believe this should be delete
使用php PDO执行mysql pivotable语句 mysql php
2015-09-11 14:16

回答 2 已采纳 You can do the group concatenation in PHP instead of SQL. $pdo->query("SET group_concat_max_le
php mysql 大量读取_PHP使用PDO从mysql读取大量数据处理详解
2021-03-16 23:35

weixin_39678304的博客环境mysql: 5.6.34php: 5.6nginx: php-fpm适用场景需要处理一定数据集业务从mysql读取一定数据的业务导出一次需要处理一定的mysql业务操作更新删除等更多需要处理一定数据集的操作pdo 关键设置$dbh = new \PDO...
使用PDO从PHP无法连接到MySQL mysql php
2014-05-24 13:49

回答 1 已采纳 mysql:host=localhost;dbname=;pizzadb3 Needs to be: mysql:host=localhost;dbname=pizzadb3;
使用php pdo无法验证MySQL数据库 mysql php
2014-04-30 02:24

回答 1 已采纳 Try this <?php //main.php\\ global $dberror; $dberror = ""; require('database_pdo.php'); $con
如何在PHP中使用带有PDO的MySQL用户函数？ mysql php
2014-05-26 13:57

回答 2 已采纳 The mysql driver does not support multi-statement queries. Therefore, DELIMITER makes no sense in
php查询mysql表里的数据_PHP/MYSQL 查询大数据/遍历表
2020-12-19 14:59

weixin_39602891的博客 PHP：PHP 5.3.6 (cli) (built: Jun 15 2011 16:29:50)MYSQL：5.1.51如果我们有的一张表有几百万或几千万的记录，我们要使用 PHP 将所有的记录都获取过来(遍历数据表)进行处理。查询语句：SELECT * FROM largetable;...
使用PDO和变量进行MySQL更新 mysql php
2018-02-06 16:38

回答 2 已采纳 The syntax for UPDATE with PDO is SET col=:col Using the column name, followed by the equal sign
PHP PDO向MySQL插入行查询 mysql php
2016-09-22 15:10

回答 1 已采纳 If you have Varnish then yes, it will cache the URL. So if you so example.com/?data_1=data2, the f
使用PHP的PDO MYSQL准备更新语句未执行 mysql php
2015-04-26 14:00

回答 1 已采纳 Try to put the whole update customer code on try block and put catch block if any error occurs. B
mysql大数据更新缓存_redis缓存mysql
2021-02-07 14:56

weixin_32243075的博客 #创建用于缓存mysql数据的redis用户 mysql -uredis -pwestos #测试这个用户创建测试用的php页面： cat /usr/share/nginx/html/index.php $redis = new Redis(); $redis->connect('127.0.0.1',6379) or ...
使用PHP从远程MySQL创建CSV文件 mysql php
2018-10-05 16:23

回答 1 已采纳 $fp = fopen('php://output', 'w'); this specific line should be changed to $fp = fopen($filename, '
php+mysql导出大数据
2019-03-13 16:51

来自农村的小伙子的博客 $pdo = new \PDO('mysql:host=127.0.0.1;dbname=test', 'root', 'root'); $pdo->setAttribute(\PDO::MYSQL_ATTR_USE_BUFFERED_QUERY, false); $rows = $pdo->query($sql); $filename = date('Ymd') . '.csv'; //设置...
用PDO存取图片等大数据对象
2017-12-09 23:32

u012600104的博客什么是大数据对象？php官方给的定义是“大约4kb 或以上”，也就是说如果存储到数据库表里面的数据若大于4kb以上则称为大数据对象例如图片，视频等...pdo存储大数据对象则是直接把图片、视频等大数据对象保存到数据库表
mysql操作大量数据处理_PHP使用PDO从mysql读取大量数据处理详解
2021-02-02 10:27

牛人说的博客前言本文主要介绍了关于PHP利用PDO从mysql读取大量数据处理的相关内容，分享出来供大家参考学习，下面话不多说了，来一起看看详细的介绍吧。环境 mysql: 5.6.34 php: 5.6 nginx: php-fpm适用场景需要处理一定数据集...
mysql+php+pdo批量添加大数据
2015-09-17 14:11

weixin_33991727的博客 1.使用insert into插入 ...//限制超时时间，因为第一种时间较长，索性设为0不限制　$pdo = new PDO("mysql:host=localhost;dbname=oradt_cloud1520","root","123456"); 　for($i=0; $i<100000; $i++){ ...
php pdo删除数据库记录数,PDO数据库操作类——删除数据的实现
2021-04-14 01:21

要努力变得更好的博客 mPHP核心框架使用PDO数据库抽象层往数据表中更新、插入或者删除数据，都是通过PDO的exec()方法，如果你熟悉Mysql数据库的sql语句，那么理解起来就更轻松了，你可以把它当作mysql的query()来使用，而且exec()执行完毕...
PHP之mysql面试题大全(58持续更新中)
2023-09-26 15:20

PHP隔壁老王邻居的博客创建索引：alert table tablename add index 索引名 (`字段名`) 14、MySQL使用B+树（B+ Tree）索引结构平衡性：B+树保持了所有叶子节点的深度相同，使得查询操作的时间复杂度保持在O(logN)的级别。多路性：B+树的...
PDO操作大数据对象
2020-11-26 18:02

码农老张Zy的博客 PDO操作大数据对象一般在数据库中，我们保存的都只是 int 、 varchar 类型的数据，一是因为现代的关系型数据库对于这些内容会有很多的优化，二是大部分的索引也无法施加在内容过多的...
没有解决我的问题, 去提问

悬赏问题

¥15 关于smbclient 库的使用
¥15 微信小程序协议怎么写
¥15 c语言怎么用printf（“\b \b”）与getch（）实现黑框里写入与删除？
¥20 怎么用dlib库的算法识别小麦病虫害
¥15 华为ensp模拟器中S5700交换机在配置过程中老是反复重启
¥15 java写代码遇到问题，求帮助
¥15 uniapp uview http 如何实现统一的请求异常信息提示？
¥15 有了解d3和topogram.js库的吗？有偿请教
¥100 任意维数的K均值聚类
¥15 stamps做sbas-insar，时序沉降图怎么画

如何使用php pdo创建mysql用户

1条回答 默认 最新

悬赏问题

1条回答默认最新