Home » PostgreSQL Administration » PostgreSQL REVOKE Statement

PostgreSQL REVOKE Statement

Summary: in this tutorial, you will learn about the PostgreSQL REVOKE statement to remove privileges from a role.

Introduction to the PostgreSQL REVOKE statement

The REVOKE statement revokes previously granted privileges on database objects from a role.

The following shows the syntax of the REVOKE statement that revokes privileges on one or more tables from a role:

REVOKE privilege | ALL
ON TABLE table_name |  ALL TABLES IN SCHEMA schema_name
FROM role_name;Code language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

In this syntax:

  • First, specify one or more privileges that you want to revoke or use the ALL option to revoke all privileges.
  • Second, provide the name of the table after the ON keyword or use the ALL TABLES to revoke specified privileges from all tables in a schema.
  • Third, specify the name of the role from which you want to revoke privileges.

PostgreSQL REVOKE statement example

Let’s take an example of using the REVOKE statement.

Step 1. Create a role and grant privileges

First, use the postgres user to log in to the dvdrental sample database:

psql -U postgres -d dvdrentalCode language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

Second, create a new role called jim with the LOGIN and PASSWORD attributes:

CREATE ROLE jim LOGIN PASSWORD 'YourPassword';Code language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

Replace the YourPassword with the one you want.

Third, grant all privileges to the role jim on the film table:

GRANT ALL ON film TO jim;Code language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

Finally, grant the SELECT privilege on the actor table to the role jim:

GRANT SELECT ON actor TO jim;Code language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

Step 2. Revoke privileges from a role

To revoke the SELECT privilege on the actor table from the role jim, you use the following statement:

REVOKE SELECT ON actor FROM jim;Code language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

To revoke all privileges on the film table from the role jim, you use REVOKE statement with the ALL option like this:

REVOKE ALL ON film FROM jim;Code language: PostgreSQL SQL dialect and PL/pgSQL (pgsql)

Revoking privileges on other database objects

To revoke privileges from other database objects such as sequences, functions, stored procedures, schemas, and databases, check out the REVOKE statement.

Summary

  • Use the PostgreSQL REVOKE statement to revoke previously granted privileges on database objects from a role.
Was this tutorial helpful ?
PostgreSQL GRANT
Previously
PostgreSQL GRANT
Up Next
PostgreSQL Role Membership
PostgreSQL Role Membership