This form of the REVOKE statement revokes the privilege to access and use a specified data source in pass-through mode.
Invocation
This statement can be embedded in an application program or issued through the use of dynamic SQL statements. It is an executable statement that can be dynamically prepared. However, if the bind option DYNAMICRULES BIND applies, the statement cannot be dynamically prepared (SQLSTATE 42509).
Authorization
The authorization ID of the statement must have SYSADM or DBADM authority.
Refer to REVOKE (Database Authorities), REVOKE (Index Privileges), REVOKE (Package Privileges), REVOKE (Schema Privileges) and REVOKE (Table, View, or Nickname Privileges) for other GRANT statements.
Syntax
>>-REVOKE PASSTHRU ON SERVER--server-name----FROM--------------->
.-,------------------------------------.
V |
>-------+-+-------+---authorization-name--+--+-----------------><
| +-USER--+ |
| '-GROUP-' |
'-PUBLIC--------------------------'
Description
The authorization ID of the REVOKE statement itself cannot be used (SQLSTATE 42502). It is not possible to revoke the privileges from an authorization-name that is the same as the authorization ID of the REVOKE statement.
Examples
Example 1: Revoke USER6's privilege to pass through to data source MOUNTAIN.
REVOKE PASSTHRU ON SERVER MOUNTAIN FROM USER USER6
Example 2: Revoke group D024's privilege to pass through to data source EASTWING.
REVOKE PASSTHRU ON SERVER EASTWING FROM GROUP D024
The members of group D024 will no longer be able to use their group ID to pass through to EASTWING. But if any members have the privilege to pass through to EASTWING under their own user IDs, they will retain this privilege.