Changes permissions of a role, revoking access to one or more resources. To give access to a resource to the role, see the
REVOKE [ <permission> | POLICY <policyName> ] ON <resource> FROM <role>
<permission>Defines the permission you want to revoke from the role.
<policyName>Defines the name of a security policy
<resource>Defines the resource on which you want to revoke the permissions.
<role>Defines the role you want to revoke the permissions.
Revoke permission to delete records on any cluster to the role
REVOKE DELETE ON database.cluster.* FROM backoffice
Revoke a security policy previously assigned to
backofficeprofile on Person class:
REVOKE POLICY ON database.class.Person FROM backoffice
For more information, see
Using this command, you can grant the following permissions to a role.
|Revokes no permissions on the resource.|
|Revokes create permissions on the resource, such as the |
|Revokes read permissions on the resource, such as the |
|Revokes update permissions on the resource, such as the |
|Revokes delete permissions on the resource, such as the |
|Revokes all permissions on the resource.|
Using this command, you can grant permissions on the following resources.
|Revokes access on the current database.|
|Revokes access on records contained in the indicated class. Use |
|intended only for security policies. Revokes policies assigned to a specific class property for a role. Use |
|Revokes access to records contained in the indicated cluster. Use |
|Revokes the ability to execute a query, (|
|Revokes the ability to execute the given command. Use |
|Revokes access to the configuration. Valid permissions are |
|Revokes the ability to set hooks.|
|Revokes the ability to access server resources.|