Can we use the customer db user to login into phpmyadmin?

matrix

I see that for every customer plan an additional phpmyadmin user is created to access PMA.
It's possible to use the default user linked to a db instead?
This is because the PMA user can't see for example the processlist, so to debug things we have to use ssh and enter the mariadb container. But using the CLI to show processlist and do debug things is a pain (to read and use) compared to phpmyadmin.
I suppose this is because PMA is logged in with that additional user, but maybe I'm missing something...
Plus having an additional user for every customer just to login PMA seems overkill.

adil

Yes you can, but you will have to do it manually and not with SSO.

So you go to PHPMyAdmin url directly and put the username & password.

matrix

adil Yeah, sorry I explained myself wrong. I mean if it's possible to change the SSO directly in the panel. What is the point of having lots of additional PMA users if we can just use the one who actually uses that DB and see all the real stats? Maybe this should be a feature request?

Adam

The problem is that Enhance would need to know the original password for the website's database user to impersonate it - currently Enhance only stores the hash. Storing passwords "in the clear" is generally considered bad practice.

You're right this does stop you seeing queries owned by the website user.

matrix

Adam can't it just login as user via socket without pass?

Adam

It could but this would still be a separate user to the user under which the website runs so it wouldn't solve your process list issue. Unless your websites used this user too but again this wouldn't be ideal if you have multiple apps on the same website and you don't want them to share database credentials.

matrix

I usually create a DB user for each DB. And 1 app = 1 DB where app = CMS. Usually.
Since I also use localhsot as SQL host I already use sockets for the CMS and using the same user will let me see the processlist I suppose.
The only difficulty here is how to let enhance know which user to use for each DB. I suppose you can get the user if there is only one associated with that DB. Of course if there are multiple users for a single DB that's another story, you can pick the oldest one maybe.
In plesk you can set a specific DB user as the default for a DB. So you can SSO with the one you choose in the panel.
Maybe asking to add a way to set a default user for each DB is too much hassle for now (not a priority), but using the first one created that has access to a DB would be a good compromise for my use case.