Methods and systems for controlling access to custom objects in a database
First Claim
1. A method for controlling access to diverse custom objects in a custom entity share table, the method including:
- storing a plurality of custom object types for a plurality of shared database tenants in a custom entity share table in a memory, wherein;
a first custom object for a first tenant has a first schema including a first set of custom fields;
a second custom object for a second tenant has a second schema including a second set of custom fields;
the first and second custom objects are both stored in the same custom entity share table despite having different sets of custom fields; and
the first and second custom objects are both associated with fields for tenant identifier (id) and object type;
receiving a request on behalf of a user belonging to a particular tenant for access to custom objects of a particular custom object type;
identifying a particular tenant and a particular group within a particular organization to which the user belongs;
determining whether the particular group has access to the particular custom object type requested and, responsively, filtering custom objects in the custom entity share table by at least the tenant id and by the object type to select at least some of the plurality of the custom objects responsive to the request received; and
responsive to the received request, accessing the at least some selected custom objects of the particular custom object type.
1 Assignment
0 Petitions
Accused Products
Abstract
In embodiments, methods and systems for controlling access to custom objects are provided. These techniques for controlling access to custom objects can enable embodiments to utilize a key for the protection of the security of data that is to remain private while not compromising efficiency of a query. The key for a requested custom object is identified and then used so that only an appropriate portion of a custom entity share table is searched to locate access information. It is then determined whether the user can access at least a portion of the custom object, and the appropriate and allowed data is sent to the user.
20 Citations
3 Claims
-
1. A method for controlling access to diverse custom objects in a custom entity share table, the method including:
-
storing a plurality of custom object types for a plurality of shared database tenants in a custom entity share table in a memory, wherein; a first custom object for a first tenant has a first schema including a first set of custom fields; a second custom object for a second tenant has a second schema including a second set of custom fields; the first and second custom objects are both stored in the same custom entity share table despite having different sets of custom fields; and the first and second custom objects are both associated with fields for tenant identifier (id) and object type; receiving a request on behalf of a user belonging to a particular tenant for access to custom objects of a particular custom object type; identifying a particular tenant and a particular group within a particular organization to which the user belongs; determining whether the particular group has access to the particular custom object type requested and, responsively, filtering custom objects in the custom entity share table by at least the tenant id and by the object type to select at least some of the plurality of the custom objects responsive to the request received; and responsive to the received request, accessing the at least some selected custom objects of the particular custom object type. - View Dependent Claims (2, 3)
-
Specification