<< Syntax for sequence generators | Cascading object dependencies >>

Syntax for user-defined types

<< Syntax for sequence generators | Cascading object dependencies >>

Derby Reference Manual

( column-identifier {, column-identifier}* )

Use the ALL PRIVILEGES privilege type to revoke all of the privileges from the user
or role for the specified table. You can also revoke one or more table privileges by
specifying a privilege-list.

Use the DELETE privilege type to revoke permission to delete rows from the specified
table.

Use the INSERT privilege type to revoke permission to insert rows into the specified
table.

Use the REFERENCES privilege type to revoke permission to create a foreign key
reference to the specified table. If a column list is specified with the REFERENCES
privilege, the permission is revoked on only the foreign key reference to the specified
columns.

Use the SELECT privilege type to revoke permission to perform SELECT statements on
a table or view. If a column list is specified with the SELECT privilege, the permission is
revoked on only those columns. If no column list is specified, then the privilege is valid on
all of the columns in the table.

Use the TRIGGER privilege type to revoke permission to create a trigger on the specified
table.

Use the UPDATE privilege type to revoke permission to use the UPDATE statement
on the specified table. If a column list is specified, the privilege is revoked only on the
specified columns.

grantees

{

AuthorizationIdentifier

roleName

| PUBLIC }

[,{

AuthorizationIdentifier

roleName

| PUBLIC } ] *

You can revoke the privileges from specific users or roles or from all users. Use the
keyword PUBLIC to specify all users. The privileges revoked from PUBLIC and from
individual users or roles are independent privileges. For example, a SELECT privilege
on table

is granted to both PUBLIC and to the authorization ID

harry

. The SELECT

privilege is later revoked from the authorization ID

harry

, but the authorization ID

harry

can access the table

through the PUBLIC privilege.

You can revoke a role from a role, from a user, or from PUBLIC.

Restriction: You cannot revoke the privileges of the owner of an object.

routine-designator

{
qualified-name [ signature ]
}

sequenceName

[

schemaName

. ]

SQL92Identifier

If schemaName is not provided, the current schema is the default schema. If a qualified
sequence name is specified, the schema name cannot begin with SYS.

Prepared statements and open result sets/cursors

Checking for privileges happens at statement execution time, so prepared statements are
still usable after a revoke action. If sufficient privileges are still available for the session,
prepared statements will be executed, and for queries, a result set will be returned.