公开(公告)号：US20200082107A1

公开(公告)日：2020-03-12

申请号：US16126104

申请日：2018-09-10

Applicant: SAP SE

Inventor： Juergen Kremp ,  Ralf Miko ,  Andreas Riehl ,  Michael Belenki

IPC: G06F21/62 ,  G06F17/30

Abstract: The present disclosure involves systems, software, and computer implemented methods for access control delegation. One example method includes identifying creation of a derived entity from an originating entity. A definition of the derived entity is modified to include an association to the originating entity. A derived access control definition is created based on an originating access control definition. Access control condition(s) in the derived access control definition are identified. Modified access control condition(s) are created by modifying column reference(s) to include a reference to the association to the originating entity. A query is received for the derived entity. A modified query is created by including, in the received query, the modified access control condition(s) and unfolding the association to the originating entity. The modified query is executed, including evaluation of the modified access control condition(s) to determine records of the derived entity that are accessible to a query user.

公开(公告)号：US10915649B2

公开(公告)日：2021-02-09

申请号：US16126104

申请日：2018-09-10

Applicant: SAP SE

Inventor： Juergen Kremp ,  Ralf Miko ,  Andreas Riehl ,  Michael Belenki

IPC: G06F16/245 ,  G06F21/62

Abstract: The present disclosure involves systems, software, and computer implemented methods for access control delegation. One example method includes identifying creation of a derived entity from an originating entity. A definition of the derived entity is modified to include an association to the originating entity. A derived access control definition is created based on an originating access control definition. Access control condition(s) in the derived access control definition are identified. Modified access control condition(s) are created by modifying column reference(s) to include a reference to the association to the originating entity. A query is received for the derived entity. A modified query is created by including, in the received query, the modified access control condition(s) and unfolding the association to the originating entity. The modified query is executed, including evaluation of the modified access control condition(s) to determine records of the derived entity that are accessible to a query user.

公开(公告)号：US20170371942A1

公开(公告)日：2017-12-28

申请号：US15189535

申请日：2016-06-22

Applicant: SAP SE

Inventor： Dirk Baumgaertel ,  Michael Belenki

IPC: G06F17/30

CPC classification number: G06F16/27 ,  G06F16/215 ,  G06F16/258

Abstract: A computerized method, system and computer-medium for migrating reports to an enhanced user experience are described. In one example, an existing report for migration to an enhanced user experience application is identified, where the existing report is associated with existing metadata for selection screen presentation and backend coding. A metadata object associated with the identified report is created, and at least some of the existing metadata associated with the identified existing report is replicated into the created metadata object based on the relationship between the existing report and the enhanced report. At least one enhancement to the created metadata object is received, where the at least one enhancement includes at least one additional metadata attribute to be represented in an updated selection screen presentation associated with the enhanced user experience application. The created metadata object is then persisted for later execution.