| title | DENY Full-Text Permissions (Transact-SQL) | Microsoft Docs | |||||
|---|---|---|---|---|---|---|
| ms.custom | ||||||
| ms.date | 05/15/2017 | |||||
| ms.prod | sql-non-specified | |||||
| ms.reviewer | ||||||
| ms.suite | ||||||
| ms.technology |
|
|||||
| ms.tgt_pltfrm | ||||||
| ms.topic | language-reference | |||||
| dev_langs |
|
|||||
| helpviewer_keywords |
|
|||||
| ms.assetid | d86e9a1d-0938-4ec2-a169-2d0564f3642e | |||||
| caps.latest.revision | 26 | |||||
| author | douglaslMS | |||||
| ms.author | douglasl | |||||
| manager | jhubbard |
[!INCLUDEtsql-appliesto-ss2008-asdb-xxxx-xxx_md]
Denies permissions on a full-text catalog and full-text stoplists.
Transact-SQL Syntax Conventions
DENY permission [ ,...n ] ON
FULLTEXT
{
CATALOG :: full-text_catalog_name
|
STOPLIST :: full-text_stoplist_name
}
TO database_principal [ ,...n ] [ CASCADE ]
[ AS denying_principal ]
permission
Is the name of a permission. The valid mappings of permissions to securables are described in the "Remarks" section, later in this topic.
ON FULLTEXT CATALOG **::**full-text_catalog_name
Specifies the full-text catalog on which the permission is being denied. The scope qualifier :: is required.
ON FULLTEXT STOPLIST **::**full-text_stoplist_name
Specifies the full-text stoplist on which the permission is being denied. The scope qualifier :: is required.
database_principal
Specifies the principal to which the permission is being denied. One of the following:
-
database user
-
database role
-
application role
-
database user mapped to a Windows login
-
database user mapped to a Windows group
-
database user mapped to a certificate
-
database user mapped to an asymmetric key
-
database user not mapped to a server principal.
CASCADE
Indicates that the permission being denied is also denied to other principals to which it has been granted by this principal.
denying_principal
Specifies a principal from which the principal executing this query derives its right to deny the permission. One of the following:
-
database user
-
database role
-
application role
-
database user mapped to a Windows login
-
database user mapped to a Windows group
-
database user mapped to a certificate
-
database user mapped to an asymmetric key
-
database user not mapped to a server principal.
A full-text catalog is a database-level securable contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be denied on a full-text catalog are listed in the following table, together with the more general permissions that include them by implication.
| Full-text catalog permission | Implied by full-text catalog permission | Implied by database permission |
|---|---|---|
| CONTROL | CONTROL | CONTROL |
| TAKE OWNERSHIP | CONTROL | CONTROL |
| ALTER | CONTROL | ALTER ANY FULLTEXT CATALOG |
| REFERENCES | CONTROL | REFERENCES |
| VIEW DEFINITION | CONTROL | VIEW DEFINITION |
A full-text stoplist is a database-level securable contained by the database that is its parent in the permissions hierarchy. The most specific and limited permissions that can be denied on a full-text stoplist are listed in the following table, together with the more general permissions that include them by implication.
| Full-text stoplist permission | Implied by full-text stoplist permission | Implied by database permission |
|---|---|---|
| ALTER | CONTROL | ALTER ANY FULLTEXT CATALOG |
| CONTROL | CONTROL | CONTROL |
| REFERENCES | CONTROL | REFERENCES |
| TAKE OWNERSHIP | CONTROL | CONTROL |
| VIEW DEFINITION | CONTROL | VIEW DEFINITION |
Requires CONTROL permission on the full-text catalog. If using the AS option, the specified principal must own the full-text catalog.
CREATE APPLICATION ROLE (Transact-SQL)
CREATE ASYMMETRIC KEY (Transact-SQL)
CREATE CERTIFICATE (Transact-SQL)
CREATE FULLTEXT CATALOG (Transact-SQL)
CREATE FULLTEXT STOPLIST (Transact-SQL)
DENY (Transact-SQL)
Encryption Hierarchy
sys.fn_my_permissions (Transact-SQL)
GRANT Full-Text Permissions (Transact-SQL)
HAS_PERMS_BY_NAME (Transact-SQL)
Permissions (Database Engine)
Principals (Database Engine)
sys.fn_builtin_permissions (Transact-SQL)
sys.fulltext_catalogs (Transact-SQL)
sys.fulltext_stoplists (Transact-SQL)