View Issue Details

IDProjectCategoryView StatusLast Update
0010308mantisbtplug-inspublic2016-02-27 09:58
Reporterdhx Assigned To 
PrioritynormalSeverityfeatureReproducibilityN/A
Status confirmedResolutionopen 
Product Versiongit trunk 
Summary0010308: Need ability to specify MySQL administrator username/password to install plugins
Description

The Mantis installation script allows the installer to specify a higher privilege MySQL administrator account to create and alter the database schema.

The plugin installation system on the other hand just assumes that the MySQL user/pass from config_inc.php has table alter/create privileges.

The person doing the plugin installation might not necessarily be a Mantis administrator (they might just be a system administrator). Therefore there really needs to be something along the lines of an admin/install_plugin.php script that allows external installation of the plugin using a specified MySQL username/password, without having to be logged into Mantis.

TagsNo tags attached.

Relationships

related to 0010912 closeddhx Move code from admin/install.php to a new API file within core (and make plugins also use this API) 
related to 0013137 new DB user with minimal rights as per install checks, cannot install plugins 
related to 0019953 new Upgrade unattended should upgrade plugins as well 
has duplicate 0020627 closeddregad plugin schema install/upgrade options for unprivileged db user 

Activities

vboctor

vboctor

2016-02-25 02:46

manager   ~0052559

I added 0019953 as a related issue, since you can argue that whenever new MantisBT core code or plugins are installed, there is a chance that a schema upgrade is required. In both cases, we should have the same experience that does both, in my opinion.

So that would apply for:

  • Schema check on login page that takes user to admin to upgrade schema.
  • upgrade unattended script that can upgrade core, but also make it upgrade plugins.

There is a discussion about this in the referenced issue, but there is no agreement yet.