yubikey-val/ykval-db.sql

-- DROP DATABASE ykval;
CREATE DATABASE ykval;
USE ykval;

CREATE TABLE clients (
  id INT NOT NULL AUTO_INCREMENT,
  active BOOLEAN DEFAULT TRUE,
  created DATETIME NOT NULL,
  secret VARCHAR(60) NOT NULL DEFAULT '',
  email VARCHAR(255),
  notes VARCHAR(100) DEFAULT '',
  otp VARCHAR(100) DEFAULT '',
  PRIMARY KEY (id)
);

CREATE TABLE yubikeys (
  id INT NOT NULL UNIQUE AUTO_INCREMENT,
  active BOOLEAN DEFAULT TRUE,
  created DATETIME NOT NULL,
  accessed DATETIME,
  publicName VARCHAR(16) UNIQUE NOT NULL COLLATE ascii_bin,
  internalName VARCHAR(12) NOT NULL COLLATE ascii_bin,
  counter INT,
  low INT,
  high INT,
  sessionUse INT,
  notes VARCHAR(100) DEFAULT '',
  PRIMARY KEY (id)
);

CREATE TABLE queue (
  id INT NOT NULL UNIQUE AUTO_INCREMENT,
  added DATETIME DEFAULT NOW(),
  server VARCHAR(100) NOT NULL,
  info VARCHAR(100) NOT NULL,
  otp VARCHAR(100) NOT NULL,
  PRIMARY KEY (id)
);

-- DROP USER 'ykval_verifier'@'localhost';
CREATE USER 'ykval_verifier'@'localhost';
GRANT SELECT,INSERT,UPDATE(accessed, counter, low, high, sessionUse)
       ON ykval.yubikeys to 'ykval_verifier'@'localhost';
GRANT SELECT(id, secret, active)
       ON ykval.clients to 'ykval_verifier'@'localhost';

-- DROP USER 'ykval_getapikey'@'localhost';
CREATE USER 'ykval_getapikey'@'localhost';
GRANT SELECT(id),INSERT
	ON ykval.clients to 'ykval_getapikey'@'localhost';

-- DROP USER 'ykval_revoke'@'localhost';
CREATE USER 'ykval_revoke'@'localhost';
GRANT UPDATE(active)
        ON ykval.yubikeys to 'ykval_revoke'@'localhost';
GRANT SELECT(publicName)
        ON ykval.yubikeys to 'ykval_revoke'@'localhost';

FLUSH PRIVILEGES;
Simplify SQL. 2009-04-27 20:46:05 +02:00			`-- DROP DATABASE ykval;`
			`CREATE DATABASE ykval;`
			`USE ykval;`
From yubiphpbase. 2009-02-25 13:20:53 +01:00
			`CREATE TABLE clients (`
Simplify SQL. 2009-04-27 20:46:05 +02:00			`id INT NOT NULL AUTO_INCREMENT,`
			`active BOOLEAN DEFAULT TRUE,`
			`created DATETIME NOT NULL,`
			`secret VARCHAR(60) NOT NULL DEFAULT '',`
Fix. 2009-05-06 16:16:43 +02:00			`email VARCHAR(255),`
Place notes field last. Add notes field to yubikeys. 2009-08-28 14:07:35 +02:00			`notes VARCHAR(100) DEFAULT '',`
Reorder again.. 2009-08-28 14:08:20 +02:00			`otp VARCHAR(100) DEFAULT '',`
Simplify SQL. 2009-04-27 20:46:05 +02:00			`PRIMARY KEY (id)`
From yubiphpbase. 2009-02-25 13:20:53 +01:00			`);`

			`CREATE TABLE yubikeys (`
Simplify SQL. 2009-04-27 20:46:05 +02:00			`id INT NOT NULL UNIQUE AUTO_INCREMENT,`
			`active BOOLEAN DEFAULT TRUE,`
			`created DATETIME NOT NULL,`
			`accessed DATETIME,`
Make sure b64 values are compared case-sensitively. 2009-08-31 20:00:05 +02:00			`publicName VARCHAR(16) UNIQUE NOT NULL COLLATE ascii_bin,`
			`internalName VARCHAR(12) NOT NULL COLLATE ascii_bin,`
Simplify SQL. 2009-04-27 20:46:05 +02:00			`counter INT,`
			`low INT,`
			`high INT,`
			`sessionUse INT,`
Place notes field last. Add notes field to yubikeys. 2009-08-28 14:07:35 +02:00			`notes VARCHAR(100) DEFAULT '',`
Simplify SQL. 2009-04-27 20:46:05 +02:00			`PRIMARY KEY (id)`
From yubiphpbase. 2009-02-25 13:20:53 +01:00			`);`
Create user. 2009-04-27 20:52:05 +02:00
Add queue table. 2009-11-25 11:37:37 +01:00			`CREATE TABLE queue (`
			`id INT NOT NULL UNIQUE AUTO_INCREMENT,`
			`added DATETIME DEFAULT NOW(),`
			`server VARCHAR(100) NOT NULL,`
			`info VARCHAR(100) NOT NULL,`
			`otp VARCHAR(100) NOT NULL,`
			`PRIMARY KEY (id)`
			`);`

Fix comment. 2009-05-06 16:28:42 +02:00			`-- DROP USER 'ykval_verifier'@'localhost';`
			`CREATE USER 'ykval_verifier'@'localhost';`
Create user. 2009-04-27 20:52:05 +02:00			`GRANT SELECT,INSERT,UPDATE(accessed, counter, low, high, sessionUse)`
			`ON ykval.yubikeys to 'ykval_verifier'@'localhost';`
Drop chk_time. 2009-05-06 15:20:40 +02:00			`GRANT SELECT(id, secret, active)`
Fix perms. 2009-04-27 21:10:27 +02:00			`ON ykval.clients to 'ykval_verifier'@'localhost';`
Lay foundation for get-api-key service. 2009-08-28 12:55:56 +02:00
Add comment to drop ykval_getapikey. 2009-08-28 13:27:30 +02:00			`-- DROP USER 'ykval_getapikey'@'localhost';`
Lay foundation for get-api-key service. 2009-08-28 12:55:56 +02:00			`CREATE USER 'ykval_getapikey'@'localhost';`
			`GRANT SELECT(id),INSERT`
			`ON ykval.clients to 'ykval_getapikey'@'localhost';`

Add revoke service. 2009-08-31 10:25:01 +02:00			`-- DROP USER 'ykval_revoke'@'localhost';`
			`CREATE USER 'ykval_revoke'@'localhost';`
			`GRANT UPDATE(active)`
			`ON ykval.yubikeys to 'ykval_revoke'@'localhost';`
			`GRANT SELECT(publicName)`
			`ON ykval.yubikeys to 'ykval_revoke'@'localhost';`

Create user. 2009-04-27 20:52:05 +02:00			`FLUSH PRIVILEGES;`