Revoking Privileges for a Role

From InterBase
Jump to: navigation, search

Go Up to Revoking User Access


If you have granted privileges to a role or granted a role to users, you can use REVOKE to remove the privileges or the role.

To Remove Privileges from a Role:

REVOKE privileges ON table FROM rolenamelist;

To Revoke a Role from Users:

REVOKE role_granted FROM {PUBLIC | role_grantee_list};

The following statement revokes UPDATE privileges from the DOITALL role:

REVOKE UPDATE ON DEPARTMENTS FROM DOITALL;

Now, users who were granted the DOITALL role no longer have UPDATE privileges on DEPARTMENTS, although they retain the other privileges—SELECT, INSERT, DELETE,and REFERENCES—that they acquired with this role.

Important: If you drop a role using the DROP ROLE statement, all privileges that were conferred by that role are revoked.

Advance To: