mysql: revoke permissions when dropping database

Grants are not automatically deleted. Also have to explicitly revoke
grant option or a "USAGE WITH GRANT OPTION" grant is left behind.

diff --git a/src/plugins/domtool-mysql b/src/plugins/domtool-mysql
index 0d1710e..4e549e6 100755 (executable)
--- a/src/plugins/domtool-mysql
+++ b/src/plugins/domtool-mysql
@@ -42,7 +42,10 @@ case $1 in
                DBNAME_BASE=$3
                DBNAME="${USERNAME}_${DBNAME_BASE}"
 
                DBNAME_BASE=$3
                DBNAME="${USERNAME}_${DBNAME_BASE}"
 

+               sudo -H mysql -e "REVOKE ALL ON TABLE * FROM '$USERNAME'@$WHERE;" $DBNAME
+               sudo -H mysql -e "REVOKE GRANT OPTION ON TABLE * FROM '$USERNAME'@$WHERE;" $DBNAME

                sudo -H mysql -e "DROP DATABASE $DBNAME;"
                sudo -H mysql -e "DROP DATABASE $DBNAME;"

+

        ;;
 
        grant)
        ;;
 
        grant)