Permissions explicitly granted to a user or group

These are the permissions that are explicitly set for a user or group to control whether they can create, execute, delete, modify, or use specified database objects. A permission is explicitly set using the GRANT statement or the database object's Permissions tab in Sybase Central. See Grant permissions to users.

Negative permissions

SQL Anywhere does not support negative permissions. This means that you cannot revoke a permission that was not explicitly granted.

For example, suppose user bob is a member of a group called sales. If a user grants DELETE permission on a table T to group sales, then bob can delete rows from T. If you want to prevent bob from deleting from T, you cannot execute a REVOKE DELETE on T from bob, since the DELETE ON T permission was never granted directly to bob. In this case, you would have to revoke bob's membership in the sales group.

Permissions explicitly granted to a user or group

Negative permissions

See also