#Create a readonly front-end multisite
Client wants to have a front-end 'readonly' site in which no users will ever login. The main goal of this is to create a secure site that someone cannot use access bypass or escalation of privileges to gain access to a trusted role of any kind. This example assumes the site is using syslog, not dblog, which is a general recommendation.
-
Create a database user which has readonly access to the database.
-
Add write access for the database user for the following tables:
-- Minium needed to function
GRANT INSERT, UPDATE, DELETE ON project.semaphore TO 'project_ro'@'localhost';