yoshi-taka/file0.txt

## file0.txt
SELECT * FROM information_schema.user_privileges;   -- グローバルレベル権限のリスト
SELECT * FROM information_schema.schema_privileges; -- データベースレベル権限のリスト
SELECT * FROM information_schema.table_privileges;  -- テーブルレベル権限のリスト
SELECT * FROM information_schema.column_privileges; -- カラムレベル権限のリスト

## file1.txt
-- グローバルレベル権限のリスト
SELECT
  grantee user, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
FROM
  information_schema.user_privileges
GROUP BY
  grantee;

-- データベースレベル権限のリスト
SELECT
  grantee user, table_schema db, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
FROM
  information_schema.schema_privileges
GROUP BY
  grantee, table_schema;

-- テーブルレベル権限のリスト
SELECT
  grantee user, table_schema db, table_name tbl, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
FROM
  information_schema.table_privileges
GROUP BY
  grantee, table_schema, table_name;

-- カラムレベル権限のリスト
SELECT
  grantee user, table_schema db, table_name tbl, column_name clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
FROM
  information_schema.column_privileges
GROUP BY
  grantee, table_schema, table_name, column_name;

-- GROUP_CONCAT関数はANSI SQL非標準

## file2.txt
(SELECT grantee user, '*'          db, '*'        tbl, '*'         clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.user_privileges   GROUP BY grantee)
UNION
(SELECT grantee user, table_schema db, '*'        tbl, '*'         clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.schema_privileges GROUP BY grantee, table_schema)
UNION
(SELECT grantee user, table_schema db, table_name tbl, '*'         clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.table_privileges  GROUP BY grantee, table_schema, table_name)
UNION
(SELECT grantee user, table_schema db, table_name tbl, column_name clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.column_privileges GROUP BY grantee, table_schema, table_name, column_name)
ORDER BY user, db, tbl, clmn;

-- 結果例
+----------------+-------+------+------------------+---------------+
| user           | db    | tbl  | clmn             | privileges    |
+----------------+-------+------+------------------+---------------+
| 'testuser'@'%' | *     | *    | *                | FILE,PROCESS  |
| 'testuser'@'%' | mysql | *    | *                | SELECT,INSERT |
| 'testuser'@'%' | mysql | user | *                | DELETE        |
| 'testuser'@'%' | mysql | user | password_expired | UPDATE        |
+----------------+-------+------+------------------+---------------+

## file3.txt
-- 棚卸し用ユーザー
-- テーブルレベル(mysql.userなど)では効果がなく、データベースレベルが必要
GRANT SELECT ON mysql.* to listmaker;

## file4.txt
CREATE SQL SECURITY DEFINER VIEW sampledb.db_privileges AS
  SELECT grantee, table_schema, priviledge_type
  FROM information_schema.schema_privileges; -- Viewを作る
	SELECT * FROM information_schema.user_privileges; -- グローバルレベル権限のリスト
	SELECT * FROM information_schema.schema_privileges; -- データベースレベル権限のリスト
	SELECT * FROM information_schema.table_privileges; -- テーブルレベル権限のリスト
	SELECT * FROM information_schema.column_privileges; -- カラムレベル権限のリスト
	-- グローバルレベル権限のリスト
	SELECT
	grantee user, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
	FROM
	information_schema.user_privileges
	GROUP BY
	grantee;

	-- データベースレベル権限のリスト
	SELECT
	grantee user, table_schema db, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
	FROM
	information_schema.schema_privileges
	GROUP BY
	grantee, table_schema;

	-- テーブルレベル権限のリスト
	SELECT
	grantee user, table_schema db, table_name tbl, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
	FROM
	information_schema.table_privileges
	GROUP BY
	grantee, table_schema, table_name;

	-- カラムレベル権限のリスト
	SELECT
	grantee user, table_schema db, table_name tbl, column_name clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges
	FROM
	information_schema.column_privileges
	GROUP BY
	grantee, table_schema, table_name, column_name;

	-- GROUP_CONCAT関数はANSI SQL非標準
	(SELECT grantee user, '' db, '' tbl, '*' clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.user_privileges GROUP BY grantee)
	UNION
	(SELECT grantee user, table_schema db, '' tbl, '' clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.schema_privileges GROUP BY grantee, table_schema)
	UNION
	(SELECT grantee user, table_schema db, table_name tbl, '*' clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.table_privileges GROUP BY grantee, table_schema, table_name)
	UNION
	(SELECT grantee user, table_schema db, table_name tbl, column_name clmn, GROUP_CONCAT(privilege_type ORDER BY privilege_type) privileges FROM information_schema.column_privileges GROUP BY grantee, table_schema, table_name, column_name)
	ORDER BY user, db, tbl, clmn;

	-- 結果例
	+----------------+-------+------+------------------+---------------+
	\| user \| db \| tbl \| clmn \| privileges \|
	+----------------+-------+------+------------------+---------------+
	\| 'testuser'@'%' \| * \| * \| * \| FILE,PROCESS \|
	\| 'testuser'@'%' \| mysql \| * \| * \| SELECT,INSERT \|
	\| 'testuser'@'%' \| mysql \| user \| * \| DELETE \|
	\| 'testuser'@'%' \| mysql \| user \| password_expired \| UPDATE \|
	+----------------+-------+------+------------------+---------------+
	-- 棚卸し用ユーザー
	-- テーブルレベル(mysql.userなど)では効果がなく、データベースレベルが必要
	GRANT SELECT ON mysql.* to listmaker;
	CREATE SQL SECURITY DEFINER VIEW sampledb.db_privileges AS
	SELECT grantee, table_schema, priviledge_type
	FROM information_schema.schema_privileges; -- Viewを作る