×

Protected handling of database queries

  • US 10,268,721 B2
  • Filed: 10/31/2014
  • Issued: 04/23/2019
  • Est. Priority Date: 11/07/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method for protected handling of queries of database system views and tables, the method comprising:

  • receiving a first user query from a first user, the first user query being directed to one or more views or tables of a database, wherein capacities of users of the database are determined by permission levels allotted to the users of the database, the permission levels including a database administrator permission level, and wherein the first user is not allotted the database administrator permission level;

    determining whether the first user has authority to provide the first user query based on the first user'"'"'s permission level;

    upon determining that the first user has authority to provide the first user query, parsing the first user query with a query parser to identify elements of the first user query including identifying one or more targets of the first user query, and determining whether the identified elements of the first user query meet a set of database access criteria including ensuring that the one or more targets are limited to access of appropriate data based on the first user'"'"'s permission level;

    upon determining that the identified elements of the first user query meet the set of database access criteria, automatically generating a first database query based on the identified elements of the first user query, the generation of the first database query including limiting the first database query according to the set of database access criteria;

    accessing the one or more views or tables using the automatically generated first database query, wherein the access for the first database query is limited to read-only access;

    obtaining a result of the access of the one or more views or tables;

    allowing the first user to view the result of the access of the one or more views or tables; and

    returning a query report based on the result of the access to the first user.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×