DENY Full-Text Permissions (Transact-SQL)

 

THIS TOPIC APPLIES TO:yesSQL Server (starting with 2008)yesAzure SQL DatabasenoAzure SQL Data Warehouse noParallel Data Warehouse

Denies permissions on a full-text catalog and full-text stoplists.

Applies to: SQL Server (SQL Server 2008 through current version), SQL Database V12.

Topic link icon Transact-SQL Syntax Conventions

  
DENY permission [ ,...n ] ON  
    FULLTEXT   
        {  
           CATALOG :: full-text_catalog_name  
           |  
           STOPLIST :: full-text_stoplist_name  
        }  
    TO database_principal [ ,...n ] [ CASCADE ]  
        [ AS denying_principal ]  

permission
Is the name of a permission. The valid mappings of permissions to securables are described in the "Remarks" section, later in this topic.

ON FULLTEXT CATALOG ::full-text_catalog_name
Specifies the full-text catalog on which the permission is being denied. The scope qualifier :: is required.

ON FULLTEXT STOPLIST ::full-text_stoplist_name
Specifies the full-text stoplist on which the permission is being denied. The scope qualifier :: is required.

database_principal
Specifies the principal to which the permission is being denied. One of the following:

  • database user

  • database role

  • application role

  • database user mapped to a Windows login

  • database user mapped to a Windows group

  • database user mapped to a certificate

  • database user mapped to an asymmetric key

  • database user not mapped to a server principal.

CASCADE
Indicates that the permission being denied is also denied to other principals to which it has been granted by this principal.

denying_principal
Specifies a principal from which the principal executing this query derives its right to deny the permission. One of the following:

  • database user

  • database role

  • application role

  • database user mapped to a Windows login

  • database user mapped to a Windows group

  • database user mapped to a certificate

  • database user mapped to an asymmetric key

  • database user not mapped to a server principal.

A full-text catalog is a database-level securable contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be denied on a full-text catalog are listed in the following table, together with the more general permissions that include them by implication.

Full-text catalog permissionImplied by full-text catalog permissionImplied by database permission
CONTROLCONTROLCONTROL
TAKE OWNERSHIPCONTROLCONTROL
ALTERCONTROLALTER ANY FULLTEXT CATALOG
REFERENCESCONTROLREFERENCES
VIEW DEFINITIONCONTROLVIEW DEFINITION

A full-text stoplist is a database-level securable contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be denied on a full-text stoplist are listed in the following table, together with the more general permissions that include them by implication.

Full-text stoplist permissionImplied by full-text stoplist permissionImplied by database permission
ALTERCONTROLALTER ANY FULLTEXT CATALOG
CONTROLCONTROLCONTROL
REFERENCESCONTROLREFERENCES
TAKE OWNERSHIPCONTROLCONTROL
VIEW DEFINITIONCONTROLVIEW DEFINITION

Requires CONTROL permission on the full-text catalog. If using the AS option, the specified principal must own the full-text catalog.

CREATE APPLICATION ROLE (Transact-SQL)
CREATE ASYMMETRIC KEY (Transact-SQL)
CREATE CERTIFICATE (Transact-SQL)
CREATE FULLTEXT CATALOG (Transact-SQL)
CREATE FULLTEXT STOPLIST (Transact-SQL)
DENY (Transact-SQL)
Encryption Hierarchy
sys.fn_my_permissions (Transact-SQL)
GRANT Full-Text Permissions (Transact-SQL)
HAS_PERMS_BY_NAME (Transact-SQL)
Permissions (Database Engine)
Principals (Database Engine)
sys.fn_builtin_permissions (Transact-SQL)
sys.fulltext_catalogs (Transact-SQL)
sys.fulltext_stoplists (Transact-SQL)

Community Additions

ADD
Show: