yubikey-val/ykval-db.sql

-- DROP DATABASE ykval;
CREATE DATABASE ykval;
USE ykval;

CREATE TABLE clients (
  id INT NOT NULL AUTO_INCREMENT,
  active BOOLEAN DEFAULT TRUE,
  created DATETIME NOT NULL,
  secret VARCHAR(60) NOT NULL DEFAULT '',
  email VARCHAR(255),
  notes VARCHAR(100) DEFAULT '',
  otp VARCHAR(100) DEFAULT '',
  PRIMARY KEY (id)
);

CREATE TABLE yubikeys (
  id INT NOT NULL UNIQUE AUTO_INCREMENT,
  active BOOLEAN DEFAULT TRUE,
  created DATETIME NOT NULL,
  accessed DATETIME,
  publicName VARCHAR(16) UNIQUE NOT NULL COLLATE ascii_bin,
  internalName VARCHAR(12) NOT NULL COLLATE ascii_bin,
  counter INT,
  low INT,
  high INT,
  sessionUse INT,
  notes VARCHAR(100) DEFAULT '',
  PRIMARY KEY (id)
);

CREATE TABLE queue (
  id INT NOT NULL UNIQUE AUTO_INCREMENT,
  queued_time TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
  modified_time TIMESTAMP,
  random_key INT,
  otp VARCHAR(100) NOT NULL,
  server VARCHAR(100) NOT NULL,
  info VARCHAR(256) NOT NULL,
  PRIMARY KEY (id)
);

-- DROP USER 'ykval_verifier'@'localhost';
CREATE USER 'ykval_verifier'@'localhost';
GRANT SELECT,INSERT,UPDATE(accessed, counter, low, high, sessionUse)
       ON ykval.yubikeys to 'ykval_verifier'@'localhost';
GRANT SELECT(id, secret, active)
       ON ykval.clients to 'ykval_verifier'@'localhost';
GRANT SELECT,INSERT,UPDATE,DELETE 
	ON ykval.queue to 'ykval_verifier'@'localhost';

-- DROP USER 'ykval_getapikey'@'localhost';
CREATE USER 'ykval_getapikey'@'localhost';
GRANT SELECT(id),INSERT
	ON ykval.clients to 'ykval_getapikey'@'localhost';

-- DROP USER 'ykval_revoke'@'localhost';
CREATE USER 'ykval_revoke'@'localhost';
GRANT UPDATE(active)
        ON ykval.yubikeys to 'ykval_revoke'@'localhost';
GRANT SELECT(publicName)
        ON ykval.yubikeys to 'ykval_revoke'@'localhost';

FLUSH PRIVILEGES;
Simplify SQL. 2009-04-27 18:46:05 +00:00			`-- DROP DATABASE ykval;`
			`CREATE DATABASE ykval;`
			`USE ykval;`
From yubiphpbase. 2009-02-25 12:20:53 +00:00
			`CREATE TABLE clients (`
Simplify SQL. 2009-04-27 18:46:05 +00:00			`id INT NOT NULL AUTO_INCREMENT,`
			`active BOOLEAN DEFAULT TRUE,`
			`created DATETIME NOT NULL,`
			`secret VARCHAR(60) NOT NULL DEFAULT '',`
Fix. 2009-05-06 14:16:43 +00:00			`email VARCHAR(255),`
Place notes field last. Add notes field to yubikeys. 2009-08-28 12:07:35 +00:00			`notes VARCHAR(100) DEFAULT '',`
Reorder again.. 2009-08-28 12:08:20 +00:00			`otp VARCHAR(100) DEFAULT '',`
Simplify SQL. 2009-04-27 18:46:05 +00:00			`PRIMARY KEY (id)`
From yubiphpbase. 2009-02-25 12:20:53 +00:00			`);`

			`CREATE TABLE yubikeys (`
Simplify SQL. 2009-04-27 18:46:05 +00:00			`id INT NOT NULL UNIQUE AUTO_INCREMENT,`
			`active BOOLEAN DEFAULT TRUE,`
			`created DATETIME NOT NULL,`
			`accessed DATETIME,`
Make sure b64 values are compared case-sensitively. 2009-08-31 18:00:05 +00:00			`publicName VARCHAR(16) UNIQUE NOT NULL COLLATE ascii_bin,`
			`internalName VARCHAR(12) NOT NULL COLLATE ascii_bin,`
Simplify SQL. 2009-04-27 18:46:05 +00:00			`counter INT,`
			`low INT,`
			`high INT,`
			`sessionUse INT,`
Place notes field last. Add notes field to yubikeys. 2009-08-28 12:07:35 +00:00			`notes VARCHAR(100) DEFAULT '',`
Simplify SQL. 2009-04-27 18:46:05 +00:00			`PRIMARY KEY (id)`
From yubiphpbase. 2009-02-25 12:20:53 +00:00			`);`
Create user. 2009-04-27 18:52:05 +00:00
Add queue table. 2009-11-25 10:37:37 +00:00			`CREATE TABLE queue (`
			`id INT NOT NULL UNIQUE AUTO_INCREMENT,`
Committed first trial version for replication protocol. 2009-12-02 17:32:20 +00:00			`queued_time TIMESTAMP DEFAULT CURRENT_TIMESTAMP,`
			`modified_time TIMESTAMP,`
Storing local param info at the time when verify request arrived. Used to give correct warnings of wether local/remote is out of sync or not 2009-12-04 11:57:49 +00:00			`random_key INT,`
Fix. 2009-11-25 14:15:13 +00:00			`otp VARCHAR(100) NOT NULL,`
Add queue table. 2009-11-25 10:37:37 +00:00			`server VARCHAR(100) NOT NULL,`
Moved config to ykval-config 2009-12-07 15:31:33 +00:00			`info VARCHAR(256) NOT NULL,`
Add queue table. 2009-11-25 10:37:37 +00:00			`PRIMARY KEY (id)`
			`);`

Fix comment. 2009-05-06 14:28:42 +00:00			`-- DROP USER 'ykval_verifier'@'localhost';`
			`CREATE USER 'ykval_verifier'@'localhost';`
Create user. 2009-04-27 18:52:05 +00:00			`GRANT SELECT,INSERT,UPDATE(accessed, counter, low, high, sessionUse)`
			`ON ykval.yubikeys to 'ykval_verifier'@'localhost';`
Drop chk_time. 2009-05-06 13:20:40 +00:00			`GRANT SELECT(id, secret, active)`
Fix perms. 2009-04-27 19:10:27 +00:00			`ON ykval.clients to 'ykval_verifier'@'localhost';`
Committed first trial version for replication protocol. 2009-12-02 17:32:20 +00:00			`GRANT SELECT,INSERT,UPDATE,DELETE`
			`ON ykval.queue to 'ykval_verifier'@'localhost';`
Lay foundation for get-api-key service. 2009-08-28 10:55:56 +00:00
Add comment to drop ykval_getapikey. 2009-08-28 11:27:30 +00:00			`-- DROP USER 'ykval_getapikey'@'localhost';`
Lay foundation for get-api-key service. 2009-08-28 10:55:56 +00:00			`CREATE USER 'ykval_getapikey'@'localhost';`
			`GRANT SELECT(id),INSERT`
			`ON ykval.clients to 'ykval_getapikey'@'localhost';`

Add revoke service. 2009-08-31 08:25:01 +00:00			`-- DROP USER 'ykval_revoke'@'localhost';`
			`CREATE USER 'ykval_revoke'@'localhost';`
			`GRANT UPDATE(active)`
			`ON ykval.yubikeys to 'ykval_revoke'@'localhost';`
			`GRANT SELECT(publicName)`
			`ON ykval.yubikeys to 'ykval_revoke'@'localhost';`

Create user. 2009-04-27 18:52:05 +00:00			`FLUSH PRIVILEGES;`