Reference Manual
CHAPTER 9. SQL Statements
To remove permissions for specified user(s).
REVOKE
{ CONNECT
| DBA
| INTEGRATED LOGIN
| GROUP
| MEMBERSHIP IN GROUP userid,...
| RESOURCE
}
... FROM userid,...
REVOKE
{ ALL [PRIVILEGES]
| ALTER
| DELETE
| INSERT
| REFERENCES [ ( column-name,...) ]
| SELECT [ ( column-name,...) ]
| UPDATE [ ( column-name,...) ]
}
... ON [ owner.]table-name FROM userid,...
REVOKE EXECUTE ON [ owner.]procedure-name FROM userid,...
Must be the grantor of the permissions that are being revoked or have DBA authority.
If you are revoking CONNECT permissions or table permissions from another user, the other user must not be connected to the database.
Automatic commit.
The REVOKE statement is used to remove permissions that were given using the GRANT statement. Form 1 is used to revoke special user permissions. Form 2 is used to revoke table permissions. Form 3 is used to revoke permission to execute a procedure. REVOKE CONNECT is used to remove a user ID from a database. REVOKE GROUP will automatically REVOKE MEMBERSHIP from all members of the group.
SQL/92 Syntax 1 is a vendor extension. Syntax 2 is an entry-level feature. Syntax 3 is a Persistent Stored Module feature.
Sybase Syntax 2 and 3 are supported by Adaptive Server Enterprise. Syntax 1 is not supported by Adaptive Server Enterprise. User management and security models are different for Adaptive Server Anywhere and Adaptive Server Enterprise.
Prevent user Dave from updating the employee table.
REVOKE UPDATE ON employee FROM dave ;
Revoke resource permissions from user Jim.
REVOKE RESOURCE FROM Jim ;
Revoke integrated login mapping from user profile name Administrator
REVOKE INTEGRATED LOGIN FROM Administrator ;
Disallow the Finance group from executing the procedure sp_customer_list.
REVOKE EXECUTE ON sp_customer_list FROM finance ;
Drop user ID FranW from the database.
REVOKE CONNECT FROM FranW