XQuery sec:remove-role-from-privileges

MarkLogic Server 11.0 Product Documentation
sec.removeRoleFromPrivileges

sec.removeRoleFromPrivileges(
   role-name as String
) as null

Summary

Removes references to the role ($role-name) from all privileges.

If a role with name equal to $role-name is not found, an error is returned.

If the current user is limited to granting only his/her roles, and $role-name is not a subset of the current user's roles, then an error is returned.

Parameters
role-name The name of a role.

Required Privileges

http://marklogic.com/xdmp/privileges/remove-role-from-privileges
and for role removal:
http://marklogic.com/xdmp/privileges/grant-all-roles or
http://marklogic.com/xdmp/privileges/grant-my-roles

Usage Notes

This function must be executed against the security database.

Example


// execute this against the security database

declareUpdate();   
const sec = require('/MarkLogic/security.xqy');
   
sec.removeRoleFromPrivileges("Developer")

// Removes the "Developer" role from all privileges.
Powered by MarkLogic Server | Terms of Use | Privacy Policy