公开(公告)号：US20240303364A1

公开(公告)日：2024-09-12

申请号：US18180221

申请日：2023-03-08

Applicant: SAP SE

Inventor： Xun Zhang ,  Taehyung Lee ,  Yinghua Ouyang ,  Dongmei XV ,  Yanchen Cao ,  Hong-Hai Do ,  Taeyoung Jeong ,  Zhen Tian

IPC: G06F21/62

CPC classification number: G06F21/6227 ,  G06F2221/2141

Abstract: 1. Implementations of the present disclosure include receiving, by a database system, a query from an entity, providing a parse tree based on the query, the parse tree including nodes representative of operations to be executed and data objects stored within the database system, generating a module tree based on the parse tree, the module tree including a set of modules provided in sequential order from a root module to a leaf module, and executing an authorization check using the module tree by, for each module, determining a set of data objects and, for each data object in the set of data objects, determining whether the entity is one or more of authorized access the data object and perform an operation on the data object.