REVOKE Service Broker Permissions (Transact-SQL)
Revokes permissions on a Service Broker contract, message type, remote service binding, route, or service.
Transact-SQL Syntax Conventions
Składnia
REVOKE [ GRANT OPTION FOR ] permission [ ,...n ] ON
{
[ CONTRACT :: contract_name ]
| [ MESSAGE TYPE :: message_type_name ]
| [ REMOTE SERVICE BINDING :: remote_binding_name ]
| [ ROUTE :: route_name ]
| [ SERVICE :: service_name ]
}
{ TO | FROM } database_principal [ ,...n ]
[ CASCADE ]
[ AS revoking_principal ]
Arguments
GRANT OPTION FOR
Indicates that the right to grant the specified right to other principals will be revoked. The permission itself will not be revokes.Ważne:
If the principal has the specified permission without the GRANT option, the permission itself will be revoked.
permission
Specifies a permission that can be revoked on a Service Broker securable. For a list of these permissions, see the Remarks section later in this topic.CONTRACT **::**contract_name
Specifies the contract on which the permission is being revoked. The scope qualifier :: is required.MESSAGE TYPE **::**message_type_name
Specifies the message type on which the permission is being revoked. The scope qualifier :: is required.REMOTE SERVICE BINDING **::**remote_binding_name
Specifies the remote service binding on which the permission is being revoked. The scope qualifier :: is required.ROUTE **::**route_name
Specifies the route on which the permission is being revoked. The scope qualifier :: is required.SERVICE **::**message_type_name
Specifies the service on which the permission is being revoked. The scope qualifier :: is required.database_principal
Specifies the principal from which the permission is being revoked. database_principal can be one of the following:Database user
Database role
Application role
Database user mapped to a Windows login
Database user mapped to a Windows group
Database user mapped to a certificate
Database user mapped to an asymmetric key
Database user not mapped to a server principal
CASCADE
Indicates that the permission being revoked is also revoked from other principals to which it has been granted or denied by this principal.Przestroga
A cascaded revocation of a permission granted WITH GRANT OPTION will revoke both GRANT and DENY of that permission.
AS revoking_principal
Specifies a principal from which the principal executing this query derives its right to revoke the permission. revoking_principal can be one of the following:Database user
Database role
Application role
Database user mapped to a Windows login
Database user mapped to a Windows group
Database user mapped to a certificate
Database user mapped to an asymmetric key
Database user not mapped to a server principal
Uwagi
Service Broker Contracts
A Service Broker contract is a database-level securable that is contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be revoked on a Service Broker contract are listed in the following table, together with the more general permissions that include them by implication.
Service Broker contract permission |
Implied by Service Broker contract permission |
Implied by database permission |
---|---|---|
CONTROL |
CONTROL |
CONTROL |
TAKE OWNERSHIP |
CONTROL |
CONTROL |
ALTER |
CONTROL |
ALTER ANY CONTRACT |
REFERENCES |
CONTROL |
REFERENCES |
VIEW DEFINITION |
CONTROL |
VIEW DEFINITION |
Service Broker Message Types
A Service Broker message type is a database-level securable that is contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be revoked on a Service Broker message type are listed in the following table, together with the more general permissions that include them by implication.
Service Broker message type permission |
Implied by Service Broker message type permission |
Implied by database permission |
---|---|---|
CONTROL |
CONTROL |
CONTROL |
TAKE OWNERSHIP |
CONTROL |
CONTROL |
ALTER |
CONTROL |
ALTER ANY MESSAGE TYPE |
REFERENCES |
CONTROL |
REFERENCES |
VIEW DEFINITION |
CONTROL |
VIEW DEFINITION |
Service Broker Remote Service Bindings
A Service Broker remote service binding is a database-level securable that is contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be revoked on a Service Broker remote service binding are listed in the following table, together with the more general permissions that include them by implication.
Service Broker remote service binding permission |
Implied by Service Broker remote service binding permission |
Implied by database permission |
---|---|---|
CONTROL |
CONTROL |
CONTROL |
TAKE OWNERSHIP |
CONTROL |
CONTROL |
ALTER |
CONTROL |
ALTER ANY REMOTE SERVICE BINDING |
VIEW DEFINITION |
CONTROL |
VIEW DEFINITION |
Service Broker Routes
A Service Broker route is a database-level securable that is contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be revoked on a Service Broker route are listed in the following table, together with the more general permissions that include them by implication.
Service Broker route permission |
Implied by Service Broker route permission |
Implied by database permission |
---|---|---|
CONTROL |
CONTROL |
CONTROL |
TAKE OWNERSHIP |
CONTROL |
CONTROL |
ALTER |
CONTROL |
ALTER ANY ROUTE |
VIEW DEFINITION |
CONTROL |
VIEW DEFINITION |
Service Broker Services
A Service Broker service is a database-level securable that is contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be revoked on a Service Broker service are listed in the following table, together with the more general permissions that include them by implication.
Service Broker service permission |
Implied by Service Broker service permission |
Implied by database permission |
---|---|---|
CONTROL |
CONTROL |
CONTROL |
TAKE OWNERSHIP |
CONTROL |
CONTROL |
SEND |
CONTROL |
CONTROL |
ALTER |
CONTROL |
ALTER ANY SERVICE |
VIEW DEFINITION |
CONTROL |
VIEW DEFINITION |
Permissions
Requires CONTROL permission on the Service Broker contract, message type, remote service binding, route, or service
Zobacz także
Odwołanie
GRANT Service Broker Permissions (Transact-SQL)
DENY Service Broker Permissions (Transact-SQL)