发明名称 |
Object-based access control |
摘要 |
Techniques are described for using permission data objects to control user access to business data objects. A permission data object identifies a group affiliation associated with a user and a business object type (or family of business data objects) to which the permission object controls access. A permission object includes a permission attribute and a permission value. A user who has the group affiliation that is identified in the permission object is permitted to access a particular business data object of the business object type when the value of the permission attribute in the permission data object is consistent with the value of a corresponding attribute in the particular business data object to which the user seeks access. <IMAGE>
|
申请公布号 |
EP1536309(A1) |
申请公布日期 |
2005.06.01 |
申请号 |
EP20040026798 |
申请日期 |
2004.11.11 |
申请人 |
SAP AG |
发明人 |
CHENG, TOM;KAUFMANN, MALTE CHRISTIAN;NAGAR, AMIT |
分类号 |
G06F21/00;(IPC1-7):G06F1/00 |
主分类号 |
G06F21/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|