sougou
commented
5 years ago I think we should do this as part of the v2 cleanup, which will render most of the vttablet plans obsolete. We can then introduce new ones.
Open dweitzman opened 5 years ago
sougou
commented
5 years ago I think we should do this as part of the v2 cleanup, which will render most of the vttablet plans obsolete. We can then introduce new ones.
For table ACLs,
deletestatements are currently grouped into theWRITERrole.Some environments may find idea of mysql rows being removed by OLTP traffic or ordinary batch jobs scary, with a preference instead of having people soft-delete rows by marking them as deleted until a few days or weeks later a garbage collector job does the actual hard deleting.
Seems like
deleteandupdateshare plan types and there's a map of plan types to what tableacl role they require, so I'll need to poke a little more to see what might be a good way to support this.Longer term, it would also be awesome to support MySQL 8 roles or something like them in vitess so that people with permission to do so could selectively activate and deactivate powers like the power to delete rows within a single session as a single user.