REVOKE Statement

Enables you to remove explicitly granted or denied privileges from the specified object. 
REVOKE { { "objectpriv" | "containerpriv" |
"serverpriv" [,...] } |
ALL [ PRIVILEGES ] }
[ ON { SCHEMA "schemaname" | CATALOG "catalogname" | 
     [DATA] SERVICE "servicename" | DSN "dsnname" | SERVER} ]
FROM { "authid" | PUBLIC | USERS } [, ...]

“objectpriv”

Specifies the name of an object-level privilege as one of the following values:

  • SELECT
  • INSERT
  • UPDATE
  • DELETE
  • REFERENCES

“containerpriv”

Specifies the name of a container-level privilege as one of the following values:

  • CREATE VIEW
  • ALTER VIEW
  • DROP VIEW
  • CREATE TABLE
  • ALTER TABLE
  • DROP TABLE

“serverpriv”

Specifies the name of the server-level privilege to grant or deny, as one of the following values:

  • ADMINISTER
  • TRACE
  • CREATE DSN
  • CONNECT

ALL [PRIVILEGES]

Specifies that (all) object, container, and server privileges be removed from the specified object.

SCHEMA “schemaname”

Specifies the name of the schema.

CATALOG “catalogname”

Specifies the name of the catalog.

[DATA] SERVICE “servicename”

Specifies the name of the data service.

DSN “dsnname”

Specifies the name of the DSN.

“authid”

Specifies the user or group name for which the privileges are granted or denied.

[ AS ADMINISTRATOR ]

Grants privileges using the ADMINISTRATOR role. If this option is not used, the privilege is granted as the individual user. If the user is a system user, privileges are assigned with SYSTEM as the grantor.

Examples:
REVOKE ALL ON SCHEMA "BASE_CATALOG1"."schema1_BASE" FROM "user1"
REVOKE INSERT ON DATA SERVICE BASE FROM "USER1"
REVOKE all on server from "user1"
Copyright © SAS Institute Inc. All rights reserved.