PHP, MySQL, JavaScript & HTML5 All-in-One For Dummies (2013)

---

All the account information is stored in a database named mysql that's automatically created when MySQL is installed. To add a new account or change any account information, you must use an account that has the proper privileges on the mysql database.

In the rest of this section, we describe how to add and delete accounts and change passwords and privileges for accounts — and how to refresh privileges so that MySQL sees the changes.

However, if you have an account that you received from your company IT department or from a web hosting company, you might receive an error when you try to add an account or change account privileges as described in this chapter. If your account is restricted from performing any of the necessary queries, you need to request an account with more privileges or ask the MySQL administrator to add a new account for you or make the changes you need.

Identifying what accounts currently exist

To see the account information, you can execute an SQL query, using the mysql client as described in Chapter 1 of this minibook. To see what accounts currently exist for your database, you need an account that has the necessary privileges.

All the account names are stored in a database named mysql in a table named user. To see the account information, you can execute the following query on a database named mysql:

SELECT * FROM user

You should get a list of all the accounts. However, if you’re accessing MySQL through your company or a web hosting company, you probably don’t have the necessary privileges. In that case, you might get an error message like this:

No Database Selected

This message means that your account is not allowed to select the mysql database. Or you might get an error message saying that you don't have the SELECT privilege. Even though this message is annoying, it's a sign that the company has good security measures in place. However, it also means that you can't see what privileges your account has. You must ask your MySQL administrator or try to figure it out yourself by trying queries and seeing whether you're allowed to execute them.

Adding accounts

The preferred way to access MySQL from PHP is to set up an account specifically for this purpose with only the privileges that are needed, and we describe in this section how to add accounts.

If you’re using an account given to you by a company IT department or a web hosting company, it might or might not have all the privileges needed to create an account. If it doesn’t, you can’t successfully execute the statement to add an account, and you have to request a second account to use with PHP.

If you need to request a second account, get an account with restricted privilege (if at all possible) because your web database application is more secure if the account your PHP programs use doesn’t have more privileges than are necessary.

To create one or more users when you have the necessary privileges, you can use the CREATE USER statement (added to MySQL in version 5.0.2), as follows:

CREATE USER accountname@hostname IDENTIFIED BY 'password',

accountname@hostname IDENTIFIED BY 'password',...

This statement creates the specified new user account(s) with the specified password for each account and no privileges. You don't need to specify a password. If you leave out IDENTIFIED BY 'password', the account is created with no password. You can add or change a password for the account at a later time. We discuss adding passwords and privileges in the sections Adding and changing passwords and Changing privileges, later in this chapter.

If you're using a version of MySQL before 5.0.2, you must use a GRANT statement to create an account. We describe the GRANT statement in the Changing privileges section, later in this chapter.

Adding and changing passwords

Passwords aren’t set in stone. You can add or change a password for an existing account. Like any of the procedures in this section, you can add or change passwords with an SQL statement, like this:

SET PASSWORD FOR username@hostname = PASSWORD('password')

The account is set to password for the account username@hostname. If the account currently has a password, the password is changed. You don't need to specify the FOR clause. If you don't, the password is set for the account you're currently using.

You can remove a password by sending the SET PASSWORD statement with an empty password:

SET PASSWORD FOR username@hostname = PASSWORD('')

When you make changes to passwords, you need to refresh the privileges so that MySQL sees the change. This is accomplished with the FLUSH PRIVILEGES statement:

FLUSH PRIVILEGES

Changing privileges

Each account has a set of privileges that specifies what the user of the account can and can’t do. You can set the privileges when you create an account, but you can also change the privileges of an account at any time. The most useful privileges that you can set for an account are shown earlier in the chapter, in Table 2-1.

You can see the current privileges for an account by sending the following statement:

SHOW GRANTS ON accountname@hostname

The output is a GRANT statement that would create the current account. The output shows all the current privileges. If you don't include the ON clause, you see the current privileges for the account that issued the SHOW GRANTS query.

You can change privileges for an account with the GRANT statement, which has the following general format:

GRANT privilege (columns) ON tablename

TO accountname@hostname IDENTIFIED BY 'password'

Like other privilege-related changes, you need to refresh the privileges after making changes using FLUSH PRIVILEGES.

You can also create a new account or change a password with the GRANT statement. You need to fill in the following information:

privilege (columns): You must list at least one privilege. You can limit each privilege to one or more columns by listing the column name in parentheses following the privilege. If you don't list a column name, the privilege is granted on all columns in the table(s). You can list as many privileges and columns as needed, separated by commas. You can see the possible privileges listed in Table 2-1. For instance, a GRANT statement might start with this:

GRANT select (firstName,lastName), update,

insert (birthdate) ...

tablename: The name (or names) of the table(s) on which the privilege is granted. You need to include at least one table. You can list several tables, separated by commas. The possible values for tablename are

• tablename: The entire table named tablename in the current database. You can use an asterisk (*) to mean all tables in the current database. If you use an asterisk and no current database is selected, the privilege is granted to all tables on all databases.

• databasename.tablename: The entire table named tablename in databasename. You can use an asterisk (*) for either the database name or the table name to mean all databases or tables. Using *.* grants the privilege on all tables in all databases.

accountname@hostname: If the account already exists, it's given the indicated privileges. If the account doesn't exist, it's added. The account is identified by the accountname and the hostname as a pair. If an account exists with the specified account name but a different hostname, the existing account isn't changed; a new one is created.

password: The password that you're adding or changing. A password isn't required. If you don't want to add or change a password for this account, leave out the phrase IDENTIFIED BY 'password'.

For example, the GRANT statement that adds a new account for use in the PHP scripts for an online catalog database named ProductCatalog might be

GRANT select ON ProductCatalog.* TO phpuser@localhost

IDENTIFIED BY 'A41!14a!'

To remove privileges, use the REVOKE statement. The general format is

REVOKE privilege (columns) ON tablename

FROM accountname@hostname

You need to fill in the appropriate information.

You can remove all the privileges for an account with the following REVOKE statement:

REVOKE all ON *.* FROM accountname@hostname

Removing accounts

You might want to remove an account. In most cases, having an account that no one uses doesn’t have any negative effects. However, if you think an account has been compromised, you might want to remove it for security reasons.

To remove an account, you can use the DROP USER statement (which was added in MySQL 4.1.1), as follows:

DROP USER accountname@hostname, accountname@hostname, ...

You must use an account that has DELETE privileges on the mysql database to execute the DROP USER statement.

The behavior of DROP USER has changed through MySQL versions. As of MySQL 5.0.2, it removes the account and all records related to the account, including records that give the account privileges on specific databases or tables. However, in versions before MySQL 5.0.2,DROP USER drops only accounts that have no privileges. Therefore, in older versions, you must remove all the privileges from an account, including database or table privileges, before you can drop that account.

Backing Up Your Database

You need to have at least one backup copy of your valuable database. Disasters occur rarely, but they do occur. The computer where your database is stored can break down and lose your data, the computer file can become corrupted, the building can burn down, and so on. Backup copies of your database guard against data loss from such disasters.

You should have at least one backup copy of your database stored in a location that’s separate from the copy you currently use. You should probably have more than one copy — perhaps as many as three.

Here’s how you can store your copies:

First copy: Store one copy in a handy location, perhaps even on the same computer on which you store your database, to quickly replace a working database that becomes damaged.

Second copy: Store a second copy on another computer in case the computer on which you have your database breaks down, making the first backup copy unavailable.

Third copy: Store a third copy in a different physical location to prepare for the remote chance that the building burns down. If you store the second backup copy on a computer at another physical location, you don’t need this third copy.

If you don’t have access to a computer offsite on which you can back up your database, you can copy your backup to a portable medium, such as a CD or DVD, and store it offsite. Certain companies will store your computer media at their location for a fee, or you can just put the media in your pocket and take it home.

If you use MySQL on someone else’s computer, such as the computer of a web hosting company, the people who provide your access are responsible for backups. They should have automated procedures in place that make backups of your database. When evaluating a web hosting company, ask about the backup procedures. You want to know how often backup copies are made and where they’re stored. If you’re not confident that your data is safe, you can discuss changes or additions to the backup procedures.

If you’re the MySQL administrator, you’re responsible for making backups. Even if you’re using MySQL on someone else’s computer, you might want to make your own backup copy, just to be safe.

Make backups at certain times — at least once per day. If your database changes frequently, you might want to back up more often. For example, you might want to back up to the backup directory hourly but back up to another computer once a day.

You can back up your MySQL database by using a utility program called mysqldump, provided by MySQL. The mysqldump program creates a text file that contains all the SQL statements you need to re-create your entire database. The file contains the CREATE statements for each table andINSERT statements for each row of data in the tables. You can restore your database, either to its current location or on another computer, by executing this set of MySQL statements.

Backing up on Windows

To make a backup copy of your database in Windows, follow these steps:

1. Open a command prompt window.

For instance, choose Start⇒All Programs⇒Accessories⇒Command Prompt.

2. Change to the bin subdirectory in the directory where MySQL is installed.

For instance, type cd c:\Program Files\MySQL\MySQL Server 5.0\bin into the command prompt.

3. Type the following:

mysqldump --user=accountname --password=password databasename >path\backupfilename

Backing up on Linux, Unix, and Mac

Follow these steps to make a backup copy of your database in Linux, in Unix, or on a Mac:

1. Change to the bin subdirectory in the directory in which MySQL is installed.

For instance, type cd /usr/local/mysql/bin.

2. Type the following:

mysqldump --user=accountname --password=password

databasename >path/backupfilename

In the preceding code, make the following substitutions:

• accountname: Replace with the name of the MySQL account that you're using to back up the database.

• password: Use the password for the account.

• databasename: Use the name of the database that you want to back up.

• path/backupfilename: Replace path with the directory in which you want to store the backups and backupfilename with the name of the file in which you want to store the SQL output.

The account that you use needs to have SELECT privilege. If the account doesn't require a password, you can leave out the entire password option.

You can type the command on one line without pressing Enter. Or you can type a backslash (\), press Enter, and continue the command on another line.

For example, to back up the PetCatalog database, you might use the command

mysqldump --user=root --password=secret PetCatalog \

>/usr/local/mysql/backups/PetCatalogBackup

Note: With Linux or Unix, the account that you’re logged in to must have privilege to write a file into the backup directory.

You must type the mysqldump command on one line without pressing Enter.

In the preceding code, make the following substitutions:

• accountname: Enter the name of the MySQL account that you're using to back up the database.

The account that you use needs to have SELECT privilege. If the account doesn't require a password, you can leave out the entire password option.

• password: Use the password for the account.

• databasename: Replace with the name of the database that you want to back up.

• path\backupfilename: Replace path with the directory in which you want to store the backups and use the name of the file in which you want to store the SQL output in place of backupfilename.

For example, to back up the ProductCatalog database, you might use the command

mysqldump --user=root ProductCatalog >ProdCatalogBackup

Restoring Your Data

At some point, one of your database tables might become damaged and unusable. It’s unusual, but it happens. For instance, a hardware problem or an unexpected computer shutdown can cause corrupted tables. Sometimes, an anomaly in the data that confuses MySQL can cause corrupt tables. In some cases, a corrupt table can cause your MySQL server to shut down.

Here’s a typical error message that signals a corrupted table:

Incorrect key file for table: 'tablename'.

You can replace the corrupted table(s) with the data stored in a backup copy.

However, in some cases, the database might be lost completely. For instance, if the computer on which your database resides breaks down and can’t be fixed, your current database is lost — but your data isn’t gone forever. You can replace the broken computer with a new computer and restore your database from a backup copy.

You can replace your current database table(s) with the database you’ve stored in a backup copy. The backup copy contains a snapshot of the data as it was when the copy was made. Of course, you don’t get any of the changes to the database since the backup copy was made; you have to re-create those changes manually.

Again, if you access MySQL through an IT department or through a web hosting company, you need to ask the MySQL administrator to restore your database from a backup. If you’re the MySQL administrator, you can restore it yourself.

As we describe in Chapter 1 of this minibook, you build a database by creating the database and then adding tables to the database. The backup created by the mysqldump utility, as described in the section Backing Up Your Database, earlier in this chapter, is a file that contains all the SQL statements necessary to rebuild the tables, but it doesn't contain the statements you need to create the database itself.

To restore the database from the backup file, you must first edit the backup file (which is a text file). Then, you use the mysql client to create the database from the SQL statements in the backup file.

First, you edit the backup file by following these steps:

1. Open the backup file in a text editor.

2. Locate the line that shows the Server Versions.

3. If you want to rebuild an entire database, add the following statement below the line that you locate in Step 2:

CREATE DATABASE IF NOT EXISTS databasename

4. Below the line in Step 3, add a line specifying which database to add the tables to:

USE databasename

5. Check the blocks of statements that rebuild the tables.

If you don't want to rebuild a table, add -- (two hyphens) at the beginning of each line that rebuilds the table. The hyphens mark the lines as comments.

6. Check the INSERT lines for each table.

If you don't want to add data to any tables, comment out the lines that INSERT the data.

7. Save the edited backup file.

After the backup file contains the statements that you want to use to rebuild your database or table(s), you can use the mysql client to execute the SQL statements in the backup file. Just follow these steps:

1. From a command line prompt, change to the bin subdirectory in the directory where MySQL is installed.

In Windows, you open a command prompt window to use the mysql client, as described in Chapter 1 of this minibook.

Type a cd command to change to the correct directory. For instance, you might type cd /usr/local/mysql/bin or cd c:\Program Files\MySQL\MySQL Server 5.0\bin.

2. Type this command (which sends the SQL queries in the backup file):

mysql -u accountname -p < path/backupfilename

You replace accountname with an account that has CREATE privilege. If the account doesn't require a password, leave out the -p. If you use the -p, you're asked for the password. Use the entire path and filename for the backup file. For instance, you could use this command to restore theProductCatalog database:

mysql -u root -p < c:\Program Files\MySQL\MySQL Server 5.0\bin\bak\ProductCatalog.bak

The tables might take a short time to restore. Wait for the command to finish. If a problem occurs, an error message appears. If no problems occur, you see no output. When the command is finished, the prompt appears.

Your database is now restored with all the data that was in it at the time the copy was made. If the data has changed since the copy was made, you lose those changes. For instance, if more data was added after the backup copy was made, the new data isn’t restored. If you know the changes that were made after creating the backup, you can make them manually in the restored database.

Upgrading MySQL

New versions of MySQL are released periodically, and you can upgrade from one version of MySQL to a newer version. You can find upgrading information in the MySQL manual at http://dev.mysql.com/doc/refman/5.5/en/upgrading.html.

However, there are special considerations when you upgrade. As a precaution, back up your current databases, including the GRANT tables in the mysql database, before upgrading.

MySQL recommends that you don’t skip versions. If you want to upgrade from one version to a version more than one version newer, such as from MySQL 4.0 to MySQL 5.0, you should upgrade to the next version first. After that version is working correctly, you can upgrade to the next version, and so on. In other words, upgrade from 4.0 to 4.1, then from 4.1 to 5.0.

Occasionally, incompatible changes are introduced in new versions of MySQL. Some releases introduce changes to the structure of the GRANT tables. For instance, MySQL 4.1 changed the method of encrypting passwords, requiring a longer password field in the GRANT tables.

After upgrading to the newer version, you should run the mysql_upgrade script. It repairs your files and upgrades the system tables, if needed. In versions prior to MySQL version 5.0.19, the mysql_upgrade script doesn't run on Windows; it runs only on Unix. On Windows, you can run a script called mysql_fix_privileges_tables with MySQL versions prior to 5.0.19. The script upgrades the system tables but doesn't perform the complete table check and repair that mysql_upgrade performs.