Name

REVOKE

Synopsis

To revoke system privileges or roles:

REVOKE {system_privilege | role | ALL PRIVILEGES} FROM grantee

To revoke object privileges:

REVOKE {object_privilege | ALL [PRIVILEGES]}
                [column_name [,column_name . . .]]
        ON {schema.object | DIRECTORY directory_name | 
                JAVA [SOURCE | RESOURCE] [schema.]object}
        FROM grantee [CASCADE CONSTRAINTS] [FORCE]

Revokes privileges previously granted to a user or role. This command can only revoke privileges that were previously granted with the GRANT command. If you revoke a role from a user currently using the role, the role will remain but will not be available for the user again after he has left the role.

If multiple grantors have given a privilege to a user (or PUBLIC), all grantors must revoke the privilege before it becomes unavailable to the user.

Keywords

ALL PRIVILEGES

Revokes all existing system privileges for the user or role. New with Oracle9i.

JAVA SOURCE | RESOURCE

Revokes access to Java source code or a Java resource. New with Oracle8i.

CASCADE CONSTRAINTS

Used only when you revoke the REFERENCES privilege or ALL object privileges. Drops any constraints the revoked user has defined on the object.

FORCE

Used when you revoke the EXECUTE object privilege on user-defined type objects with table or type dependencies. Causes all dependent objects to be marked INVALID, disallows access to data in dependent tables, and marks all dependent function-based indexes as UNUSABLE.

Get Oracle in a Nutshell now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial