1.对单个数据库只读
CREATE USER 'reader'@'%' IDENTIFIED BY 'secure_password123';
GRANT SELECT ON your_database.* TO 'reader'@'%';
FLUSH PRIVILEGES;2.对所有数据库只读
CREATE USER 'global_reader'@'%' IDENTIFIED BY 'secure_password123';
GRANT SELECT ON *.* TO 'global_reader'@'%';
FLUSH PRIVILEGES;3.对特定表的只读
CREATE USER 'table_reader'@'%' IDENTIFIED BY 'secure_password123';
GRANT SELECT ON database_name.table_name TO 'table_reader'@'%';
FLUSH PRIVILEGES;4.限制用户只能从特定IP访问
CREATE USER 'secure_reader'@'192.168.1.100' IDENTIFIED BY 'secure_password123';
GRANT SELECT ON database_name.* TO 'secure_reader'@'192.168.1.100';
FLUSH PRIVILEGES;5.修改用户密码
SET PASSWORD FOR 'username'@'host' = 'new_password';6.授予权限
-- 授予所有权限(慎用)
GRANT ALL PRIVILEGES ON *.* TO 'username'@'host' WITH GRANT OPTION;
-- 授予特定数据库的所有权限
GRANT ALL PRIVILEGES ON database_name.* TO 'username'@'host';