vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/dli/sqlreference/dli_08_0146.html
Su, Xiaomeng 76a5b1ee83 dli_sqlreference_20240227 
Reviewed-by: Pruthi, Vineet <vineet.pruthi@t-systems.com>
Co-authored-by: Su, Xiaomeng <suxiaomeng1@huawei.com>
Co-committed-by: Su, Xiaomeng <suxiaomeng1@huawei.com>
2024-03-27 22:02:33 +00:00

40 lines
7.5 KiB
HTML
Raw Blame History

<a name="dli_08_0146"></a><a name="dli_08_0146"></a>
<h1 class="topictitle1">Revoking a Permission</h1>
<div id="body8662426"><div class="section" id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_se8384cdf8b0a46c1aabc005a85c4ec0a"><h4 class="sectiontitle">Function</h4><p id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_adb3094dfa49941ad9e7a65b23466f066">This statement is used to revoke permissions granted to a user or role.</p>
</div>
<div class="section" id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_s4069747e5e64491792b47f9b76109fb9"><h4 class="sectiontitle">Syntax</h4><div class="codecoloring" codetype="Sql" id="dli_08_0146__en-us_topic_0114776240_screen1690415151561"><div class="highlight"><table class="highlighttable"><tr><td class="linenos"><div class="linenodiv"><pre><span class="normal">1</span></pre></div></td><td class="code"><div><pre><span></span><span class="k">REVOKE</span><span class="w"> </span><span class="p">(</span><span class="n">privilege</span><span class="p">,...)</span><span class="w"> </span><span class="k">ON</span><span class="w"> </span><span class="p">(</span><span class="n">resource</span><span class="p">,..)</span><span class="w"> </span><span class="k">FROM</span><span class="w"> </span><span class="p">((</span><span class="k">ROLE</span><span class="w"> </span><span class="p">[</span><span class="n">db_name</span><span class="p">].</span><span class="n">role_name</span><span class="p">)</span><span class="w"> </span><span class="o">|</span><span class="w"> </span><span class="p">(</span><span class="k">USER</span><span class="w"> </span><span class="n">user_name</span><span class="p">)),...);</span>
</pre></div></td></tr></table></div>
</div>
</div>
<div class="section" id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_s3805b86231dd4c41b26864162d6c4ed5"><h4 class="sectiontitle">Keywords</h4><p id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_p15807110581">ROLE: The subsequent <strong id="dli_08_0146__b153391358171415">role_name</strong> must be a role.</p>
<p id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_p180181135812">USER: The subsequent <strong id="dli_08_0146__en-us_topic_0093946866_b84235270694717">user_name</strong> must be a user.</p>
</div>
<div class="section" id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_se27973c28c9447c7adf942223c2e7e07"><h4 class="sectiontitle">Precautions</h4><ul id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_ul129692195118"><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li6262793210446">The privilege must be the granted permissions of the authorized object in the resource. Otherwise, the permission fails to be revoked. For details about the permission types supported by the privilege, see <a href="dli_08_0140.html">Data Permissions List</a>.</li><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li17301162145111">The resource can be a queue, database, table, view, or column. The formats are as follows:<ul id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_ul18302132116514"><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li63021221175111">Queue format: queues.queue_name</li><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li15302121125110">Database format: databases.db_name</li><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li1630272120516">Table format: databases.db_name.tables.table_name</li><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li197649166520">View format: databases.db_name.tables.view_name</li><li id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_li11302421185111">Column format: databases.db_name.tables.table_name.columns.column_name</li></ul>
</li></ul>
</div>
<div class="section" id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_section24482074163428"><h4 class="sectiontitle">Example</h4><p id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_p4461111965314">To revoke the permission of user <strong id="dli_08_0146__en-us_topic_0093946958_b84235270695149">user_name1</strong> to delete database <strong id="dli_08_0146__en-us_topic_0093946958_b84235270695328">db1</strong>, run the following statement:</p>
<div class="codecoloring" codetype="Sql" id="dli_08_0146__en-us_topic_0114776240_screen141008338611"><div class="highlight"><table class="highlighttable"><tr><td class="linenos"><div class="linenodiv"><pre><span class="normal">1</span></pre></div></td><td class="code"><div><pre><span></span><span class="k">REVOKE</span><span class="w"> </span><span class="n">DROP_DATABASE</span><span class="w"> </span><span class="k">ON</span><span class="w"> </span><span class="n">databases</span><span class="p">.</span><span class="n">db1</span><span class="w"> </span><span class="k">FROM</span><span class="w"> </span><span class="k">USER</span><span class="w"> </span><span class="n">user_name1</span><span class="p">;</span>
</pre></div></td></tr></table></div>
</div>
<p id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_p13301132111543">To revoke the SELECT permission of user <strong id="dli_08_0146__b579699755">user_name1</strong> on table <strong id="dli_08_0146__en-us_topic_0093946958_b84235270695441">tb1</strong> in database <strong id="dli_08_0146__b1502211094">db1</strong>, run the following statement:</p>
<div class="codecoloring" codetype="Sql" id="dli_08_0146__en-us_topic_0114776240_screen1284104620617"><div class="highlight"><table class="highlighttable"><tr><td class="linenos"><div class="linenodiv"><pre><span class="normal">1</span></pre></div></td><td class="code"><div><pre><span></span><span class="k">REVOKE</span><span class="w"> </span><span class="k">SELECT</span><span class="w"> </span><span class="k">ON</span><span class="w"> </span><span class="n">databases</span><span class="p">.</span><span class="n">db1</span><span class="p">.</span><span class="n">tables</span><span class="p">.</span><span class="n">tb1</span><span class="w"> </span><span class="k">FROM</span><span class="w"> </span><span class="k">USER</span><span class="w"> </span><span class="n">user_name1</span><span class="p">;</span>
</pre></div></td></tr></table></div>
</div>
<p id="dli_08_0146__en-us_topic_0114776240_en-us_topic_0093946958_p1116873455515">To revoke the SELECT permission of role <strong id="dli_08_0146__b1202899372">role_name</strong> on table <strong id="dli_08_0146__b401194062">tb1</strong> in database <strong id="dli_08_0146__b2071882561">db1</strong>, run the following statement:</p>
<div class="codecoloring" codetype="Sql" id="dli_08_0146__en-us_topic_0114776240_screen946018114711"><div class="highlight"><table class="highlighttable"><tr><td class="linenos"><div class="linenodiv"><pre><span class="normal">1</span></pre></div></td><td class="code"><div><pre><span></span><span class="k">REVOKE</span><span class="w"> </span><span class="k">SELECT</span><span class="w"> </span><span class="k">ON</span><span class="w"> </span><span class="n">databases</span><span class="p">.</span><span class="n">db1</span><span class="p">.</span><span class="n">tables</span><span class="p">.</span><span class="n">tb1</span><span class="w"> </span><span class="k">FROM</span><span class="w"> </span><span class="k">ROLE</span><span class="w"> </span><span class="n">role_name</span><span class="p">;</span>
</pre></div></td></tr></table></div>
</div>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="dli_08_0139.html">Data Permissions Management</a></div>
</div>
</div>
View Git Blame Copy Permalink