The RemoveGrant action revokes a grant (permission) for the use of the specified queue. Only the owner of the queue, or grantee with FullControl permissions for the queue, can add or remove grants.
The following table lists the parameters for the RemoveGrant operation.
| Name | Description | Type | Value |
|---|---|---|---|
QueueName | Specifies the queue to which the grant is currently applied. | Required. The name of the queue, as specified when the queue was created. | |
Grantee.EmailAddress | The email address of the user who is losing the grant. | Required. String. | email_alias@server_domain.com |
Grantee.ID | The ID of the user (returned by ListGrants) who is losing the grant. | Either Grantee.EmailAddress or Grantee.ID is required. String. | 79a59df900b949e55d96a1e698fbacedfd6e09d98eacf8f8d5218e7cd47ef2be |
Permission | The grant, or permission, to remove from the grantee. See Access Control Overview for a list of available grants. | String. | ReceiveMessage |
The following example RemoveGrant request removes ReceiveMessage access rights on the queue named queue2 from the user with the specified email address.
<soapenv:Body>
<ac:RemoveGrant xmlns:ac="http://access.amazonaws.com/doc/2006-01-01/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<ac:Request>
<ac:Grantee xsi:type="ac:AmazonCustomerByEmail">
<ac:EmailAddress>chriscustomer@email.com</ac:EmailAddress>
</ac:Grantee>
<ac:Permission>ReceiveMessage</ac:Permission>
</ac:Request>
</ac:RemoveGrant>
</soapenv:Body>