SQL DCL Commands GRANT, REVOKE

 

SQL DCL Commands (GRANT, REVOKE)

1. AIM

To study and implement SQL Data Control Language (DCL) commands — GRANT and REVOKE — for managing database user permissions in MySQL.

2. THEORY

DCL commands are used to control access to data in the database.

Major DCL Commands

CommandPurpose
GRANTGives a user specific privileges
REVOKERemoves previously granted privileges

These commands allow the database administrator to manage security, access control, and permissions.

3. COMMON PRIVILEGES IN MYSQL

PrivilegeMeaning
SELECT    Allows reading data
INSERT        Allows inserting records
UPDATE    Allows updating records
DELETE    Allows deleting records
ALL PRIVILEGES    Gives full permissions
CREATE    Create tables
DROP    Drop tables
ALTER    Modify tables

4. PREPARATION FOR LAB

Create a Sample Database and Table

CREATE DATABASE LabSecurity;
USE LabSecurity;

CREATE TABLE employees (
    emp_id INT PRIMARY KEY,
    emp_name VARCHAR(50),
    salary INT
);

INSERT INTO employees VALUES
(1, 'Alice', 50000),
(2, 'Bob', 60000),
(3, 'Charlie', 70000);

5. DCL COMMANDS WITH EXAMPLES

Experiment 1: Creating a New User

CREATE USER 'student1'@'localhost' IDENTIFIED BY 'password123';

✔ A user student1 is created on the local machine.

Experiment 2: GRANT Privileges

Example 1 — Grant SELECT privilege

GRANT SELECT ON LabSecurity.employees TO 'student1'@'localhost';

Student1 can now view the table but cannot insert/update/delete.

Example 2 — Grant multiple privileges

GRANT SELECT, INSERT, UPDATE
ON LabSecurity.employees
TO 'student1'@'localhost';

Example 3 — Grant ALL PRIVILEGES

GRANT ALL PRIVILEGES ON LabSecurity.* TO 'student1'@'localhost';

✔ Student1 can now perform any operation inside the database.

Apply privileges using FLUSH

FLUSH PRIVILEGES;

Experiment 3: REVOKE Privileges

Example 1 — Revoke a specific privilege

REVOKE INSERT ON LabSecurity.employees FROM 'student1'@'localhost';

Student1 can no longer insert rows.

Example 2 — Revoke all privileges

REVOKE ALL PRIVILEGES, GRANT OPTION
FROM 'student1'@'localhost';

This removes all permissions granted earlier.

Experiment 4: Deleting a User

(Optional for lab)

DROP USER 'student1'@'localhost';

6. LAB PRACTICE EXERCISES

  1. Create a user labuser and give only SELECT privileges on employees table.
  2. Revoke SELECT privilege and check access.
  3. Give INSERT and UPDATE privileges to a new user and test them.
  4. Grant ALL PRIVILEGES on the database to a user and later revoke only DELETE permission.
  5. Create two users and assign different privileges to compare their permissions.
  6. Try accessing restricted operations and observe the MySQL error messages.

7. RESULT

Students successfully learned how to manage user permissions using GRANT and REVOKE commands.
They understood how MySQL controls security and access at database and table levels.

Comments

Post a Comment

Popular posts from this blog

DBMS Lab PCCSL408 2024 Scheme and Syllabus

  DBMS LAB (Commonto CS/CD/CR/CA/AD/AI/CB/CN/CC/CU/CI/CG)   Course Code PCCSL408 CIE Marks 50 Teaching Hours/Week (L: T:P: R) 0:0:3:0 ESE Marks 50 Credits 2 Exam Hours 2Hrs.30 Min. Prerequisites(if any) None Course  Type Lab Course  Objectives: 1.        To equip students with comprehensive skills in SQL,PL/SQL, and NoSQL databases.   2.        To enable the learner to proficiently design,implement,and manage relational and non- relational databases to meet diverse data management needs   Expt. No. Experiments 1 Design a database schema for an application with ERdiagram from ap roblem  description.   2 Creation of database schema-DDL(createtables...
Read more

Database Management Systems DBMS Lab PCCSL408 Semester 4 KTU CS 2024 Scheme

 About Me Scheme and Syllabus Experiments Introduction to RDBMS Working with MySQL Design a Database schema for an application ER Diagrams - MySQL Workbench Introduction to SQL Data Types in MySQL Built-in Functions-MySQL Aggregate Functions Enforcing Rules using Constraints MySQL Lab Exercise Importing Data from a csv file into MySQL Order by, group by and having clause MySQL Lab Exercise Set Operations Nested Queries Subqueries in FROM and SELECT clause Join Queries Example Join Queries Temporary and Intermediate Tables in SQL MySQL Lab Exercise - Handling Multiple Tables SQL TCL commands - COMMIT, ROLLBACK , SAVEPOINT SQL DCL Commands - GRANT, REVOKE Views Assertions Stored Procedures in MySQL Triggers in MySQL
Read more

Set Operations in SQL

  Set Operations in SQL (MySQL) 1. Aim To understand and implement SQL set operations such as UNION, UNION ALL, INTERSECT (simulated), and EXCEPT (simulated) using MySQL. 2. Theory Set operations in SQL allow combining results from multiple queries into a single result set. They are useful when comparing datasets, finding common or unique values, and merging information from different sources. 2.1 Types of Set Operations UNION Combines results of two SELECT queries. Removes duplicates. UNION ALL Combines results of two SELECT queries. Retains duplicates. INTERSECT Returns rows common to both queries. MySQL does not support INTERSECT directly , but it can be simulated using INNER JOIN or IN . EXCEPT (MINUS) Returns rows from the first query that are not present in the second query. MySQL does not support EXCEPT directly , but it can be simulated using LEFT JOIN … WHERE NULL or NOT IN . 3. Problem Statement Consider two table...
Read more