Revokes all privileges (excluding ALTER and INDEX) which the executor of the REVOKE statement has previously granted to the specified users.
If you do not use ALL, you must use one or more of the following keywords. Each keyword revokes the privilege described, but only as it applies to the tables or views named in the ON clause.
Revokes the privilege to use the SELECT statement.
Revokes the privilege to use the INSERT statement.
Revokes the privilege to use the DELETE statement.
Revokes the privilege to use the ALTER statement.
Revokes the privilege to execute the CREATE INDEX and DROP INDEX statements.
Revokes the privilege to use the UPDATE statement.
Revokes the privilege to update only the named columns. Each column-name must belong to every table or view named in the ON clause. The column names must be separated by commas and the list must be enclosed with parentheses.
Introduces a list of table and/or view names.
Specify the name of one or more tables or views on which you are revoking the privileges. The list can be a list of table names or view names, or a combination of the two. The names must be separated by commas.
For each table or view you identify, you (or the indicated grantors) must have granted (using the GRANT statement) at least one of the specified privileges on that table or view to all identified users (including PUBLIC, if specified).
Specify the accessor ID of one or more users from whom you are revoking the privileges that were granted with a GRANT statement. This is a user's ID, not a schema auth-id. If listing more than one accessor ID, separate them with commas.
Specify PUBLIC when you are revoking the specified privileges from all users.
Specify UNKNOWNUSER when you are revoking the specified privileges from users whose identities cannot be determined by the CA Datacom/DB security.
If CASCADE is specified, any other dependent privileges that have been granted to others (through the GRANT statement) are also revoked. If a REVOKE is issued without CASCADE and the grantee granted privileges to other users, the REVOKE is not permitted. The CASCADE option of REVOKE does not block the cascading effect of a revoke but operates instead as a fail-safe device. Specifying CASCADE simply acknowledges your understanding that there are cascading effects.
Allows you to specify that you are revoking privileges that were GRANTED BY another user(s). The accessor ID(s) specified in GRANTED BY must therefore have previously granted the specified privileges to the grantee. This form of the REVOKE statement may only be executed by a global database owner. For information about global database owners, see the CA Datacom Security Reference Guide.
The BY indicates that the person revoking the privileges is doing so on behalf of another user. Specify the accessor ID of the person who granted the privileges you are revoking. The accessor IDs must be separated by commas.
Specify ALL when revoking privileges granted by all other users to the user identified in the FROM clause of the REVOKE statement.
|
Copyright © 2014 CA.
All rights reserved.
|
|