Security in enterprise level business information networking
First Claim
1. A method of displaying a feed to a user of a database system, the method comprising:
- receiving at the database system, a request from a first user to view a record feed of a record that the first user is following;
identifying, by the database system, a plurality of feed items associated with the record for the record feed;
determining whether a first feed item of the plurality of feed items includes an update by a second user to a first field of a first record;
determining, by the database system, whether the first user has authorization to view each of the plurality of feed items by;
determining whether the first user has authorization to view a record type of the record based upon at least one of a profile type of the first user and a profile hierarchy of the first user, anddetermining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and
determining, by the database system, whether the first user has authorization to view the first feed item by;
determining whether the first user has authorization to view the first field of the record that is the subject of the record feed based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the second user manually sharing the first field of the record that is the subject of the record feed with the first user, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the first field such that the manual sharing of the field of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and
displaying the feed items of the plurality of feed items that the first user is authorized to view.
3 Assignments
0 Petitions
Accused Products
Abstract
Systems, apparatus, and methods for implementing enterprise level social and business information networking are provided. Users can receive relevant information about a database system and its users at an appropriate time. Users can then use this relevant information to reduce errors and limit redundant efforts. For example, an update of a record in the database can be identified, and a story created automatically about the update and sent to the users that are following the record. Which updates have stories created and which stories are to be sent to which users can be configured. Other events besides updating of records can also be tracked. For example, actions of a user that result in an event can be tracked, where such tracking can also be configurable. Subscriptions to follow an object can be automatic, and access checks can be used to ensure that unauthorized users do not see certain data.
-
Citations
30 Claims
-
1. A method of displaying a feed to a user of a database system, the method comprising:
-
receiving at the database system, a request from a first user to view a record feed of a record that the first user is following; identifying, by the database system, a plurality of feed items associated with the record for the record feed; determining whether a first feed item of the plurality of feed items includes an update by a second user to a first field of a first record; determining, by the database system, whether the first user has authorization to view each of the plurality of feed items by; determining whether the first user has authorization to view a record type of the record based upon at least one of a profile type of the first user and a profile hierarchy of the first user, and determining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and determining, by the database system, whether the first user has authorization to view the first feed item by; determining whether the first user has authorization to view the first field of the record that is the subject of the record feed based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the second user manually sharing the first field of the record that is the subject of the record feed with the first user, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the first field such that the manual sharing of the field of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and displaying the feed items of the plurality of feed items that the first user is authorized to view. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer program product comprising a non-transitory computer readable medium storing a plurality of instructions capable of controlling a processor to perform an operation of displaying a feed to a user of a database system, the instructions comprising:
-
receiving at the database system, a request from a first user to view a record feed of a record that the first user is following; identifying, by the database system, a plurality of feed items associated with the record for the record feed; determining whether a first feed item of the plurality of feed items includes an update by a second user to a first field of a first record; determining whether the first user has authorization to view each of the plurality of feed items, the checking performed by; determining whether the first user has authorization to view a record type of the record based upon at least one of a profile type of the first user and a profile hierarchy of the first user, and determining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and determining, by the database system, whether the first user has authorization to view the first feed item by; determining whether the first user has authorization to view the first field of the record that is the subject of the record feed based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the second user manually sharing the first field of the record that is the subject of the record feed with the first user, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the first field such that the manual sharing of the field of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and displaying the feed items of the plurality of feed items that the first user is authorized to view. - View Dependent Claims (8, 9, 10, 11)
-
-
7. A database system that displays a feed to a user of a database system, the database system comprising:
-
a database storing data for a plurality of records; one or more processors; a non-transitory computer readable medium storing a plurality of instructions, which when executed, cause the one or more processors to; receive, from a request from a first user to view a record feed of a record that the first user is following; identify a plurality of feed items associated with the record for the record feed; determine whether a first feed item of the plurality of feed items includes an update by a second user to a first field of a first record; determine whether the first user has authorization to view each of the feed items, the checking performed by; determining whether the first user has authorization to view a record type of the record based upon at least one of a profile type of the first user and a profile hierarchy of the first user, and determining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and determine whether the first user has authorization to view the first feed item by; determining whether the first user has authorization to view the first field of the record that is the subject of the record feed based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the second user manually sharing the first field of the record that is the subject of the record feed with the first user, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the first field such that the manual sharing of the field of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and display the feed items of the plurality of feed items that the first user is authorized to view. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A method of displaying a feed to a user of a database system, the method comprising:
-
receiving at the database system, a request from a user to view a record feed of a record that the user is following; identifying, by the database system, a plurality of feed items for the record feed; determining, by the database system, whether the user has authorization to view each of the plurality of record feed items by; determining whether the user has authorization to view a record type of the record based upon at least one of a profile type of the user and a profile hierarchy of the user, and determining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and displaying the plurality of feed items in response to a determination that the first user has authorization to view the record. - View Dependent Claims (17, 18, 19, 20)
-
-
21. A computer program product comprising a non-transitory computer readable medium storing a plurality of instructions capable of controlling a processor to perform an operation of displaying a feed to a user of a database system, the instructions comprising:
-
receiving at the database system, a request from the user to view a record feed of a record that the user is following; identifying, by the database system, a plurality of feed items for the record feed; determining, by the database system, whether the user has authorization to view each of the plurality of feed items by; determining whether the user has authorization to view a record type of the record based upon at least one of a profile type of the user and a profile hierarchy of the user, and determining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and displaying the plurality of feed items in response to a determination that the first user has authorization to view the first record. - View Dependent Claims (22, 23, 24, 25)
-
-
26. A database system that displays a feed to a user of a database system, the database system comprising:
-
a database storing data for a plurality of records; one or more processors; a non-transitory computer readable medium storing a plurality of instructions, which when executed, cause the one or more processors to; receive at the database system, a request from the user to view a record feed of a record that the user is following; identify, by the database system, a plurality of feed items for the record feed; determine, by the database system, whether the user has authorization to view each of the plurality of feed items by; determining whether the user has authorization to view a record type of the record based upon at least one of a profile type of the user and a profile hierarchy of the user, and determining whether the first user has authorization to view the record that is the subject of the record feed, the determination being based on a plurality of rules, wherein the plurality of rules comprise a rule based on a profile type of the first user, a rule based on a profile hierarchy of the first user, and a rule based on the manual sharing of the record that is the subject of the record feed with the first user by an owner of the record, the rule based on the second user manually sharing being used when the rules based on profile type and profile hierarchy do not provide authorization for the first user to view the record such that the manual sharing of the record that is the subject of the record feed, by itself, provides the first user the authorization to view the record; and display the plurality of feed items in response to a determination that the user has authorization to view the record. - View Dependent Claims (27, 28, 29, 30)
-
Specification