Removing Members from a User-Defined Role

Remove a user or role as a member of a role. The user or role loses the ability to use any underlying system privileges or roles of a role, along with the ability to administer the role, if granted.

Prerequisites

Requires administrative privilege over the role being managed.

Task

A minimum number of role or global role administrators (as defined by the MIN_ROLE_ADMINS database option) with a login password must exist for each role at all times. When removing a member from a user-extended role, if the member is an administrator of the role and their removal would violate the minimum requirement, the removal fails.

To remove membership in a user-defined role from a grantee, execute one the these statements:

Revoke Type	Statement
Role membership and all administrative rights to the role	REVOKE ROLE `role_name` FROM `grantee [,...]`
Administrative rights to the role only	REVOKE ADMIN OPTION FOR ROLE `role_name` FROM `grantee [,...]`

Revoke Type

Statement

Role membership and

all administrative rights to the role

REVOKE ROLE role_name

FROM grantee [,...]

Administrative rights

to the role only

REVOKE ADMIN OPTION FOR ROLE role_name

FROM grantee [,...]