ajout des roles et users
This commit is contained in:
Albert
parent
840d285b2c
commit
1649649a0b
2
.gitignore
vendored
2
.gitignore
vendored
@ -16,3 +16,5 @@
|
||||
*.swp
|
||||
|
||||
**/~$*.xlsx
|
||||
**/~$*.docx
|
||||
|
||||
|
||||
152
README.md
152
README.md
@ -457,56 +457,124 @@ Records: 0 Duplicates: 0 Warnings: 0
|
||||
|
||||
## Utilisateurs et rôles
|
||||
|
||||
##### Création des rôles
|
||||
### Administrateur
|
||||
|
||||
##### Creation du rôle
|
||||
```sql
|
||||
CREATE ROLE 'administarteur';
|
||||
CREATE ROLE 'gestionnaire_vols';
|
||||
CREATE ROLE 'agent_reservation';
|
||||
CREATE ROLE 'agent_comptoir';
|
||||
CREATE ROLE 'analyste';
|
||||
CREATE ROLE 'role_administarteur'@'localhost';
|
||||
```
|
||||
|
||||
##### Assignation des permissions
|
||||
```sql
|
||||
-- 1. Administrateur: Contrôle total [cite: 184]
|
||||
GRANT ALL PRIVILEGES ON db_aeroport.* TO 'administrateur'@'localhost' WITH GRANT OPTION;
|
||||
|
||||
-- 2. Gestionnaire des Vols: Ajout/modif vols et programmes [cite: 192, 195-197]
|
||||
GRANT INSERT, UPDATE ON db_aeroport.t_vol TO 'role_flight_manager'@'localhost';
|
||||
GRANT INSERT, UPDATE ON db_aeroport.t_programme_vol TO 'role_flight_manager'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_avion TO 'role_flight_manager'@'localhost';
|
||||
|
||||
-- 3. Agent de Réservation: Gère passagers et réservations [cite: 199-204]
|
||||
GRANT INSERT ON db_aeroport.t_passager TO 'role_booking_agent'@'localhost';
|
||||
GRANT INSERT, UPDATE ON db_aeroport.t_reservation TO 'role_booking_agent'@'localhost';
|
||||
-- Droits de lecture nécessaires pour travailler :
|
||||
GRANT SELECT ON db_aeroport.t_passager TO 'role_booking_agent'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_vol TO 'role_booking_agent'@'localhost';
|
||||
|
||||
-- 4. Agent de Comptoir: Vérifie réservations, modifie siège [cite: 206-210]
|
||||
GRANT SELECT ON db_aeroport.t_reservation TO 'role_counter_agent'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_passager TO 'role_counter_agent'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_vol TO 'role_counter_agent'@'localhost';
|
||||
GRANT UPDATE (siege) ON db_aeroport.t_reservation TO 'role_counter_agent'@'localhost';
|
||||
|
||||
-- 5. Analyste: Lecture seule sur tout [cite: 216, 222]
|
||||
GRANT SELECT ON db_aeroport.* TO 'role_analyst'@'localhost';
|
||||
GRANT ALL PRIVILEGES ON db_aeroport.* TO 'role_administrateur'@'localhost' WITH GRANT OPTION;
|
||||
```
|
||||
|
||||
##### Création des utilisateurs et assignation des rôles
|
||||
##### Création de l'utilisateur
|
||||
```sql
|
||||
-- Création des utilisateurs
|
||||
CREATE USER 'usr_admin'@'localhost' IDENTIFIED BY 'P@sswordAdmin123';
|
||||
CREATE USER 'usr_flight_manager'@'localhost' IDENTIFIED BY 'P@sswordFlight123';
|
||||
CREATE USER 'usr_booking_agent'@'localhost' IDENTIFIED BY 'P@sswordBooking123';
|
||||
CREATE USER 'usr_counter_agent'@'localhost' IDENTIFIED BY 'P@sswordCounter123';
|
||||
CREATE USER 'usr_analyst'@'localhost' IDENTIFIED BY 'P@sswordAnalyst123';
|
||||
CREATE USER 'administrateur'@'localhost' IDENTIFIED BY 'administateur';
|
||||
```
|
||||
|
||||
##### Assignation du rôle à l'utilisateur
|
||||
```sql
|
||||
GRANT 'role_admininistateur'@'localhost' TO 'administrateur'@'localhost';
|
||||
```
|
||||
|
||||
### Gestionnaire de vols
|
||||
|
||||
##### Creation du rôle
|
||||
```sql
|
||||
CREATE ROLE 'role_gestionnaire_vols'@'localhost';
|
||||
```
|
||||
|
||||
##### Assignation des permissions
|
||||
```sql
|
||||
GRANT INSERT, UPDATE ON db_aeroport.t_vol TO 'role_geastionnaire_vols'@'localhost';
|
||||
GRANT INSERT, UPDATE ON db_aeroport.t_programme_vol TO 'role_geastionnaire_vols'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_avion TO 'role_gestionnaire_vols'@'localhost';
|
||||
```
|
||||
|
||||
##### Création de l'utilisateur
|
||||
```sql
|
||||
CREATE USER 'gestionnaire_vols'@'localhost' IDENTIFIED BY 'gestionnaire_vols';
|
||||
```
|
||||
|
||||
##### Assignation du rôle à l'utilisateur
|
||||
```sql
|
||||
GRANT 'role_gestionnaire_vols'@'localhost' TO 'gestionnaire_vols'@'localhost';
|
||||
```
|
||||
|
||||
### Agent de réservation
|
||||
|
||||
##### Creation du rôle
|
||||
```sql
|
||||
CREATE ROLE 'role_agent_reservation'@'localhost';
|
||||
```
|
||||
|
||||
##### Assignation des permissions
|
||||
```sql
|
||||
GRANT INSERT ON db_aeroport.t_passager TO 'role_agent_reservation'@'localhost';
|
||||
GRANT INSERT, UPDATE ON db_aeroport.t_reservation TO 'role_agent_reservation'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_passager TO 'role_agent_reservation'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_vol TO 'role_agent_reservation'@'localhost';
|
||||
```
|
||||
|
||||
##### Création de l'utilisateur
|
||||
```sql
|
||||
CREATE USER 'agent_reservation'@'localhost' IDENTIFIED BY 'agent_reservation';
|
||||
```
|
||||
|
||||
##### Assignation du rôle à l'utilisateur
|
||||
```sql
|
||||
```
|
||||
|
||||
### Agent de comptoir
|
||||
|
||||
##### Creation du rôle
|
||||
```sql
|
||||
CREATE ROLE 'role_agent_comptoir'@'localhost';
|
||||
```
|
||||
|
||||
##### Assignation des permissions
|
||||
```sql
|
||||
GRANT SELECT ON db_aeroport.t_reservation TO 'role_agent_comptoir'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_passager TO 'role_agent_comptoir'@'localhost';
|
||||
GRANT SELECT ON db_aeroport.t_vol TO 'role_agent_comptoir'@'localhost';
|
||||
GRANT UPDATE (siege) ON db_aeroport.t_reservation TO 'role_agent_comptoir'@'localhost';
|
||||
```
|
||||
|
||||
##### Création de l'utilisateur
|
||||
```sql
|
||||
CREATE USER 'agent_comptoir'@'localhost' IDENTIFIED BY 'agent_comptoir';
|
||||
```
|
||||
|
||||
##### Assignation du rôle à l'utilisateur
|
||||
```sql
|
||||
GRANT 'role_agent_comptoir'@'localhost' TO 'agent_comptoir'@'localhost';
|
||||
```
|
||||
|
||||
### Analyste
|
||||
|
||||
##### Creation du rôle
|
||||
```sql
|
||||
CREATE ROLE 'role_analyste'@'localhost';
|
||||
```
|
||||
|
||||
##### Assignation des permissions
|
||||
```sql
|
||||
GRANT SELECT ON db_aeroport.* TO 'role_analyste'@'localhost';
|
||||
```
|
||||
|
||||
##### Création de l'utilisateur
|
||||
```sql
|
||||
CREATE USER 'analyste'@'localhost' IDENTIFIED BY 'analyste';
|
||||
```
|
||||
|
||||
##### Assignation du rôle à l'utilisateur
|
||||
```sql
|
||||
GRANT 'role_analyste'@'localhost' TO 'usr_analyste'@'localhost';
|
||||
```
|
||||
|
||||
|
||||
-- Assignation des rôles
|
||||
GRANT 'role_admin'@'localhost' TO 'usr_admin'@'localhost';
|
||||
GRANT 'role_flight_manager'@'localhost' TO 'usr_flight_manager'@'localhost';
|
||||
GRANT 'role_booking_agent'@'localhost' TO 'usr_booking_agent'@'localhost';
|
||||
GRANT 'role_counter_agent'@'localhost' TO 'usr_counter_agent'@'localhost';
|
||||
GRANT 'role_analyst'@'localhost' TO 'usr_analyst'@'localhost';
|
||||
|
||||
-- Activer les rôles par défaut
|
||||
SET DEFAULT ROLE ALL TO
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user