Monitor user can always login in admin with stats credentials

This minor patch ensures that Monitor user can access the Admin module with stas credentials
10 years ago · 5c9c8b9224
parent d9efa6dad0
commit 5c9c8b9224
1 changed files with 5 additions and 3 deletions
--- a/lib/MySQL_Session.cpp
+++ b/lib/MySQL_Session.cpp
@ -1749,9 +1749,11 @@ void MySQL_Session::handler___status_CONNECTING_CLIENT___STATE_SERVER_HANDSHAKE(
 		&&
 		( (default_hostgroup<0 && admin==true) || (default_hostgroup>=0 && admin==false) || strncmp(client_myds->myconn->userinfo->username,mysql_thread___monitor_username,strlen(mysql_thread___monitor_username))==0 ) // Do not delete this line. See bug #492
 	)	{
-		if (default_hostgroup<0 && admin==true) {
-			if (default_hostgroup==STATS_HOSTGROUP) {
-				stats=true;
+		if (admin==true) {
+			if ( (default_hostgroup<0) || (strncmp(client_myds->myconn->userinfo->username,mysql_thread___monitor_username,strlen(mysql_thread___monitor_username))==0) ) {
+				if (default_hostgroup==STATS_HOSTGROUP) {
+					stats=true;
+				}
 			}
 		}
 		l_free(pkt->size,pkt->ptr);