MySQL

Add MySQL as a decube connection and help your team discover, document and monitor their data assets to drive data-driven insights and decisions.

Supported Capabilities

General

Metadata — metadata extraction and display of asset information (tables, columns, schemas). Types collected: Schema, Table, Column, View
Profiling — data profiling on the Profiler tab
Preview — sample data preview
Data Quality — data quality monitoring and observability
View Table — view tables, which are virtual tables based on SQL queries

Data Quality Monitors

Freshness
Volume
Field Health
Custom SQL
Schema Drift

Lineage

View Table Lineage — tracks virtual tables (views) and their data dependencies
Foreign Key Lineage — tracks relationships between tables via primary and foreign keys

Connection Requirements

Connecting to decube is as easy as providing us with credentials to your MySQL database. At a minimum, we require

username
password
host address
host port
database name

The source name will be for you to differentiate and recognize particular sources within the decube application.

We strongly encourage you to create a decube read-only user for this credential purpose, which you can follow here.

Security Concerns

If access to your database is protected by security measures, we allow for connecting via SSH Tunneling or you could whitelist our IP. See more here.

Configuring a Custom MySQL User

Creating a dedicated database user for Decube is the recommended approach. This follows the principle of least privilege, ensuring Decube has only the specific permissions it needs to monitor your data without risking broader database security.

1. Create the Decube User

Run the following command to initialize the user. Replace <host> with Decube's IP (or % for any host) and set a strong password.

CREATE USER 'decube'@'<host>' IDENTIFIED BY '<password>';

2. Assign Necessary Permissions

Decube requires specific privileges to read metadata and monitor table health.

Data Access (SELECT)

You must grant SELECT access to the tables you wish to observe. Use a wildcard (*) for the entire database or specify individual tables.

For the entire database:

GRANT SELECT ON <database>.* TO 'decube'@'<host>';

For specific tables only:

GRANT SELECT ON <database>.<table> TO 'decube'@'<host>';

View Metadata Access (SHOW VIEW)

To monitor and process MySQL Views, Decube requires the SHOW VIEW privilege at the database level. Without this, Decube cannot ingest view definitions.

GRANT SHOW VIEW ON <database>.* TO 'decube'@'<host>';

Use your own SSL CA Cert

If your database enforces SSL connection, you can provide your own CA Cert file by choosing Use Customer CA Certand uploading a CA Cert.

This works for AWS RDS Aurora MySQL instances as well. To see where to retrieve your Aurora certificates, please use this guide from AWS

PreviousPostgreSQL NextSingleStore

Last updated 2 days ago

hashtagSupported Capabilities

hashtagConnection Requirements

hashtagSecurity Concerns

hashtagConfiguring a Custom MySQL User

hashtag1. Create the Decube User

hashtag2. Assign Necessary Permissions

hashtagUse your own SSL CA Cert