System and method for database integrity via local database lockout
First Claim
1. A method for controlling access to one or more database files, said method comprising:
- deciding whether a local copy of a database is running on a computer system, wherein the local copy of the database is replicated from a server copy of the database, and wherein the local copy of the database is identical to the server copy of the database at the time of replication;
in response to deciding that the local copy of the database is running on the computer system, determining whether a user of the computer system is authorized to use the local copy of the database, wherein the determining includes;
retrieving one or more access control entries correspond in to the local copy of the database;
matching a user role corresponding to one or more of the access control entries to a key role, wherein the key role indicates roles allowed to use the local copy of the database; and
deciding whether a usemname corresponding to the user is authorized to use the local copy of the database in response to the matching;
denying the user access to the database files in the local copy of the database in response to determining that the user is not authorized; and
allowing the user access to the database files in the local copy of the database in response to determining that the user is authorized.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method is provided to perform a routine when the user attempts to access any document in a database. When the user attempts to access any document in the database, a call to a function is performed to determine whether the user is allowed to access a local copy of the database. The function determines whether the database is a local database. If the function determines that the database is running on the user'"'"'s local machine then the function determines whether the user has permission to access the local copy of the database by searching through individual and group access control files. If the user is authorized, the function allows the user to access the local copy of the database. However, if the user is not authorized, an error message is displayed and the user is denied access to the local database copy.
25 Citations
17 Claims
-
1. A method for controlling access to one or more database files, said method comprising:
-
deciding whether a local copy of a database is running on a computer system, wherein the local copy of the database is replicated from a server copy of the database, and wherein the local copy of the database is identical to the server copy of the database at the time of replication;
in response to deciding that the local copy of the database is running on the computer system, determining whether a user of the computer system is authorized to use the local copy of the database, wherein the determining includes;
retrieving one or more access control entries correspond in to the local copy of the database;
matching a user role corresponding to one or more of the access control entries to a key role, wherein the key role indicates roles allowed to use the local copy of the database; and
deciding whether a usemname corresponding to the user is authorized to use the local copy of the database in response to the matching;
denying the user access to the database files in the local copy of the database in response to determining that the user is not authorized; and
allowing the user access to the database files in the local copy of the database in response to determining that the user is authorized. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An information handling system comprising:
-
one or more processors;
a memory accessible by the processors;
a nonvolatile storage area for storing database files;
a database access tool for controlling access to a database, the database access tool including;
means for deciding whether a local copy of a database is running on a computer system, wherein the local copy of the database is replicated from a server copy of the database, and wherein the local copy of the database is identical to the server copy of the database at the time of replication;
means for determining whether a user of the computer system is authorized to use the local copy of the database, wherein said means for determining includes;
means for retrieving one or more access control entries corresponding to the local copy of the database;
means for matching a user role corresponding to one or more of the access control entries to a key role, wherein the key role indicates roles allowed to use the local copy of the database; and
means for deciding whether a username corresponding to the user is authorized to use the local copy of the database in response to the matching;
means for denying the user access to the database files in the local copy of the database in response to determining that the user is not authorized; and
means for allowing the user access to the database files in the local copy of the database in response to determining that the user is authorized. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A computer program product stored in a computer operable media for controlling access to one or more database files, said computer program product comprising:
-
means for deciding whether a local copy of a database is running on a computer systems wherein the local copy of the database is replicated from a server copy of the database, and wherein the local copy of the database is identical to the server copy of the database at the time of replication;
means for determining whether a user of the computer system is authorized to use the local copy of the database, wherein the means for determining includes;
means for retrieving one or more access control entries corresponding to the local copy of the database;
means for matching a user role corresponding to one or more of the access control entries to a key role, wherein the key role indicates roles allowed to use the local copy of the database; and
means for deciding whether a username corresponding to the user is authorized to use the local copy of the database in response to the matching;
means for denying the user access to the database files in the local copy of the database in response to determining that the user is not authorized; and
means far allowing the user access to the database files in the local copy of the database in response to determining that the user is authorized. - View Dependent Claims (13, 14, 15, 16, 17)
-
Specification