Projects/muscl
12
4
Fork 0
Code Issues 69 Pull Requests Actions Packages Releases Activity
275 Commits 4 Branches 0 Tags
186adefc22c68b340bd1ade034eccf8f006295fd
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
h7x4 186adefc22
All checks were successful
Build and test / build (push) Successful in 2m41s
Details
Build and test / check (push) Successful in 1m46s
Details
Build and test / check-license (push) Successful in 58s
Details
Build and test / test (push) Successful in 3m7s
Details
Build and test / docs (push) Successful in 5m40s
Details
Improve documentation
2025-12-18 02:08:20 +09:00
.gitea/workflows
create-deb.sh: move to scripts, add download-and-upload-debs.sh
2025-12-16 16:41:59 +09:00
assets
move example-config.toml to assets, sync with debian variant
2025-12-16 16:54:55 +09:00
docs
Improve documentation
2025-12-18 02:08:20 +09:00
nix
Implement denylists
2025-12-16 12:21:35 +09:00
scripts
create-deb.sh: move to scripts, add download-and-upload-debs.sh
2025-12-16 16:41:59 +09:00
src
Don't unwrap without message on failure to start SUID/SGID tokio
2025-12-17 05:46:05 +09:00
.envrc
.envrc: init
2024-12-10 00:36:41 +01:00
.gitignore
.gitignore: reorder
2025-12-04 09:24:32 +09:00
build.rs
build.rs: use relative symlinks for mysql-admutils aliases
2025-12-04 09:25:33 +09:00
Cargo.lock
client: display show-db output with human readable sizes
2025-12-16 14:36:53 +09:00
Cargo.toml
client: display show-db output with human readable sizes
2025-12-16 14:36:53 +09:00
CHANGELOG.md
Improve documentation
2025-12-18 02:08:20 +09:00
deny.toml
cargo-deny: fix license list
2025-11-25 19:38:05 +09:00
flake.lock
flake.lock: bump, Cargo.{toml,lock}: update inputs
2025-12-15 09:07:23 +09:00
flake.nix
flake.nix: add vm for testing non-mariadb mysql
2025-12-14 03:07:14 +09:00
LICENSE
LICENSE: change from GPLv2-only to BSD3
2025-01-18 22:40:48 +01:00
README.md
Improve documentation
2025-12-18 02:08:20 +09:00
rustfmt.toml
flake.lock: bump, Cargo.lock: bump, Cargo.toml: update inputs, format, etc
2025-05-07 10:39:10 +02:00

README.md

Coverage Docs

muscl 💪

Dropping DBs (dumbbells) and having MySQL spasms since 2024

What is this?

`muscl is a secure MySQL administration tool for multi-user systems. It allows unprivileged users to manage their own databases and database users without granting them direct access to the MySQL server. Authorization is handled by a prefix-based model tied to Unix users and groups, making it ideal for shared hosting environments, like university servers, tilde servers, or similar.

When a user requests an administrative operation, the muscl daemon verifies authenticates the user through unix socket peer credentials, and then checks the requested item name against the user's username and group list for authorization. The default authorization mechanism only allows the user to manage items prefixed with either their username or a group name. For example, a user would be allowed to manage items like <user>_mydb, <user>_mydbuser, or <group>_myotherdb.

The available administrative operations include:

  • creating/listing/modifying/deleting databases and database users
  • modifying privileges for a database user on a database
  • changing the passwords of the database users
  • locking and unlocking database users
  • ... and more

The software is designed to be run as a client and a server. The clients are run by the unprivileged users, and does not have direct access to the MySQL server. Instead, they communicate with the muscl server over a IPC, which then performs the requested operations on behalf of the clients.

Documentation

Reference in New Issue View Git Blame Copy Permalink
Description
Database administration tool for non-admin users 💪💪💪 rewrite of https://git.pvv.ntnu.no/Projects/mysql-admutils
cliexternalmulti-user-systemmysqlrust
Readme BSD-3-Clause 2.6 MiB
Languages
Rust 93.9%
Nix 5.1%
Shell 1%