公开(公告)号：US20220374397A1

公开(公告)日：2022-11-24

申请号：US17326610

申请日：2021-05-21

Applicant: salesforce.com, inc.

Inventor： Mang Fu Matthew Wong ,  Subhash Uppalapati ,  Jesse Wang ,  Sunghyun Song ,  Federico Recio ,  Jesse Collins

IPC: G06F16/21 ,  G06F16/28 ,  G06F16/2455

Abstract: Systems and methods are described for implementing attribute aware, relationship-based access control by receiving a query to access a relational database from a user, determining if a rule of the relational database is applicable to the query, determining one or more relationships associated with the query based at least in part on the rule, and modifying the query by adding an extra join operation to the query based at least in part on the rule and the one or more relationships. Further, when a type of the rule is row level, a where clause filter is added to the modified query to enforce a condition of the rule, and when the type of the rule is field level, a case column is added to the modified query and a select clause is added to the modified query to wrap the query. The modified query is processed to produce a result.