This form of the REVOKE statement revokes the privileges on a schema.
Invocation
This statement can be embedded in an application program or issued through the use of dynamic SQL statements. It is an executable statement that can be dynamically prepared. However, if the bind option DYNAMICRULES BIND applies, the statement cannot be dynamically prepared (SQLSTATE 42509).
Authorization
The authorization ID of the statement must hold either SYSADM or DBADM authority (SQLSTATE 42501).
Syntax
.-,-------------. V | >>-REVOKE------+-ALTERIN--+--+--ON SCHEMA--schema-name----------> +-CREATEIN-+ '-DROPIN---' .-,------------------------------------. V | >----FROM----+-+-------+---authorization-name--+--+------------>< | +-USER--+ | | '-GROUP-' | '-PUBLIC--------------------------'
Description
The authorization ID of the REVOKE statement itself cannot be used. (It is not possible to revoke the privileges from an authorization-name that is the same as the authorization ID of the REVOKE statement.)
Rules
Examples
Example 1: Given that USER4 is only a user and not a group, revoke the privilege to create objects in schema DEPTIDX from the user USER4.
REVOKE CREATEIN ON SCHEMA DEPTIDX FROM USER4
Example 2: Revoke the privilege to drop objects in schema LUNCH from the user CHEF and the group WAITERS.
REVOKE DROPIN ON SCHEMA LUNCH FROM USER CHEF, GROUP WAITERS