Methods and systems for controlling access to custom objects in a database
First Claim
1. A method of controlling access to diverse custom objects in a custom entity share table, the method including:
- storing a plurality of custom object types for a plurality of shared database tenants in a custom entity share table in a memory, wherein;
a first custom object for a first tenant has a first schema including a first set of custom fields;
a second custom object for a second tenant has a second schema including a second set of custom fields;
the first and second custom objects are both stored in a same custom entity share table despite having different sets of custom fields; and
the first and second custom objects are both associated with fields for tenant identifier (id) and object type;
receiving a user request for access to custom objects of a particular custom object type and identifying a particular group of users to which the user belongs with a particular tenant id in response to the user request; and
determining whether the particular group has access to the particular custom object type requested and, responsively, accessing and returning at least some custom objects in the custom entity share table based at least on the particular tenant id and the particular custom object type to select at least some of the plurality of the custom objects responsive to the user request.
1 Assignment
0 Petitions
Accused Products
Abstract
In embodiments, methods and systems for controlling access to custom objects are provided. These techniques for controlling access to custom objects can enable embodiments to utilize a key for the protection of the security of data that is to remain private while not compromising efficiency of a query. The key for a requested custom object is identified and then used so that only an appropriate portion of a custom entity share table is searched to locate access information. It is then determined whether the user can access at least a portion of the custom object, and the appropriate and allowed data is sent to the user.
-
Citations
19 Claims
-
1. A method of controlling access to diverse custom objects in a custom entity share table, the method including:
-
storing a plurality of custom object types for a plurality of shared database tenants in a custom entity share table in a memory, wherein; a first custom object for a first tenant has a first schema including a first set of custom fields; a second custom object for a second tenant has a second schema including a second set of custom fields; the first and second custom objects are both stored in a same custom entity share table despite having different sets of custom fields; and the first and second custom objects are both associated with fields for tenant identifier (id) and object type; receiving a user request for access to custom objects of a particular custom object type and identifying a particular group of users to which the user belongs with a particular tenant id in response to the user request; and determining whether the particular group has access to the particular custom object type requested and, responsively, accessing and returning at least some custom objects in the custom entity share table based at least on the particular tenant id and the particular custom object type to select at least some of the plurality of the custom objects responsive to the user request. - View Dependent Claims (2, 3)
-
-
4. A system that controls access to diverse custom objects in a custom entity share table, the system including:
-
one or more processors coupled to memory, the memory loaded with computer instructions that, when executed on the processors, implement actions including; storing a plurality of custom object types for a plurality of shared database tenants in a custom entity share table in a memory, wherein; a first custom object for a first tenant has a first schema including a first set of custom fields; a second custom object for a second tenant has a second schema including a second set of custom fields; the first and second custom objects are both stored in a same custom entity share table despite having different sets of custom fields; and the first and second custom objects are both associated with fields for tenant identifier (id) and object type; receiving a user request for access to custom objects of a particular custom object type and identifying a particular group of users to which the user belongs with a particular tenant id in response to the user request; and determining whether the particular group has access to the particular custom object type requested and, responsively, accessing and returning at least some custom objects in the custom entity share table based at least on the particular tenant id and the particular custom object type to select at least some of the plurality of the custom objects responsive to the user request. - View Dependent Claims (5, 6)
-
-
7. A non-transitory machine-readable storage medium storing a plurality of instructions for programming one or more processors to control access to diverse custom objects in a custom entity share table, the instructions, when executed on the processors, implementing actions including:
-
storing a plurality of custom object types for a plurality of shared database tenants in a custom entity share table in a memory, wherein; a first custom object for a first tenant has a first schema including a first set of custom fields; a second custom object for a second tenant has a second schema including a second set of custom fields; the first and second custom objects are both stored in a same custom entity share table despite having different sets of custom fields; and the first and second custom objects are both associated with fields for tenant identifier (id) and object type; receiving a user request for access to custom objects of a particular custom object type and identifying a particular group of users to which the user belongs with a particular tenant id in response to the user request; and determining whether the particular group has access to the particular custom object type requested and, responsively, accessing and returning at least some custom objects in the custom entity share table based at least on the particular tenant id and the particular custom object type to select at least some of the plurality of the custom objects responsive to the user request. - View Dependent Claims (8, 9)
-
-
10. A computer-implemented method of controlling access to custom objects in a custom entity share table, the method including:
-
storing a plurality of custom objects for a plurality of shared database tenants in a custom entity share table in a memory; receiving a user request for access to the custom objects of a particular custom object type and identifying a particular group of users to which the user belongs based on a tenant identifier in response to the user request; and determining whether the particular group has access to the particular custom object type requested, including; when the user request is selective, accessing the custom entity share table based on the tenant identifier; and when the user request is unselective, accessing the custom entity share table based on a user group identifier; and responsive to the user request, returning at least some custom objects in the custom entity share table based at least on the tenant identifier or the group identifier and the particular custom object type. - View Dependent Claims (11, 12, 13)
-
-
14. A system including one or more processors coupled to memory, the memory loaded with computer instructions to control access to custom objects in a custom entity share table, the instructions, when executed on the processors, implement actions comprising:
-
storing a plurality of custom objects for a plurality of shared database tenants in a custom entity share table in a memory; receiving a user request for access to the custom objects of a particular custom object type and identifying a particular group of users to which the user belongs based on a tenant identifier in response to the user request; and determining whether the particular group has access to the particular custom object type requested, including; when the user request is selective, accessing the custom entity share table based on the tenant identifier; and when the user request is unselective, accessing the custom entity share table based on a user group identifier; and responsive to the user request, returning at least some custom objects in the custom entity share table based at least on the tenant identifier or the group identifier and the particular custom object type. - View Dependent Claims (15, 16)
-
-
17. A non-transitory computer readable storage medium impressed with computer program instructions to control access to custom objects in a custom entity share table, the instructions, when executed on the processors, implement a method comprising:
-
storing a plurality of custom objects for a plurality of shared database tenants in a custom entity share table in a memory; receiving a user request for access to the custom objects of a particular custom object type and identifying a particular group of users to which the user belongs based on a tenant identifier in response to the user request; and determining whether the particular group has access to the particular custom object type requested, including; when the user request is selective, accessing the custom entity share table based on the tenant identifier; and when the user request is unselective, accessing the custom entity share table based on a user group identifier; and responsive to the user request, returning at least some custom objects in the custom entity share table based at least on the tenant identifier or the group identifier and the particular custom object type. - View Dependent Claims (18, 19)
-
Specification