PANTHEON™ Help

 Toc
 PANTHEON Help - Welcome
[Collapse]PANTHEON
 [Collapse]Guides for PANTHEON
  [Expand]Guide for PANTHEON
  [Expand]Guide for PANTHEON Retail
  [Expand]Guide for PANTHEON Vet
  [Expand]Guide for PANTHEON Farming
 [Collapse]User Manuals for PANTHEON
  [Collapse]User Manual for PANTHEON
   [Collapse]Getting Started
     Dictionary of terms
     First steps with PANTHEON
    [Expand]Using PANTHEON at Tecta, a fictional company
    [Expand]Instructions for Ensuring Compliance of PANTHEON with SAS
    [Expand]PANTHEON Installation
    [Expand]PANTHEON System
    [Expand]PANTHEON Basics
    [Expand]PANTHEON Help
    [Expand]Materials and Goods Movements
    [Expand]Assigning Identifiers
    [Expand]Frequently asked questions about Pantheon (F.A.Q.)
    [Collapse]Archive
     [Expand]PANTHEON Editions
      Installing PANTHEON on Linux and Oracle Database
     [Expand]eDocumentation
     [Expand]eInvoice
     [Expand]Workflow
     [Expand]Backup
     [Collapse]Get.start
      [Expand]Duplicates
       Windows 7
       SQL Server
      [Expand]ODBC
       SQL Server Agent
       Windows Vista
       Slabšanje performans MS-SQL strežnika
      [Collapse]Row Level Security
        How RLS works in practice
        Upgrade
        Database
        Code changes
        Troubleshooting
        ARES - RLS Compatibility Mode
        RLS Questions and Answers
       MS SQL Server Installation
      [Expand]Task Scheduling
       PANTHEON System Environment
      [Expand]Hardware
       Installation types on different network configurations
      [Expand]Datalab Utilities
       Installation
       On-premises installation
       PANTHEON Cloud installation
       Ordering and setting eBusiness services
       One-user installation of PANTHEON Cloud
       Network installation of PANTHEN Cloud
       PANTHEON Client Setup Wizard
     [Expand]To-do
     [Expand]End-User License Agreement
      Introductory word
     [Expand]Referential integrity (RI)
      eExchange
      SMS notifications
   [Expand]User Manual for eBusiness
   [Expand]Settings
   [Expand]Orders
   [Expand]Goods
   [Expand]Manufacturing
   [Expand]Service
   [Expand]Help
   [Expand]Personnel
   [Expand]Financials
   [Expand]Analytics
  [Expand]User Manual for PANTHEON Retail
  [Expand]User manual for PANTHEON Vet
  [Expand]User Manual for PANTHEON Farming
[Collapse]PANTHEON Web
 [Collapse]Guides for PANTHEON Web
  [Expand]Guide for PANTHEON Web Light
  [Expand]Guide for PANTHEON Web Terminal
  [Expand]Guide for PANTHEON Web Legal
  [Expand]Old products Archive
 [Collapse]User Manuals for PANTHEON Web
  [Expand]Getting started PANTHEON Web
  [Expand]User Manual for PANTHEON Web Light
  [Expand]User Manual for PANTHEON Web Terminal
  [Expand]User Manual for PANTHEON Web Legal
  [Expand]Old products Archive
[Collapse]PANTHEON Granules
 [Collapse]Guides for PANTHEON Granules
  [Expand]Personnel Granule
  [Expand]Travel Orders Granule
  [Expand]Documents and Tasks Granule
  [Expand]Dashboard Granule
  [Expand]B2B Orders Granule
  [Expand]Field Service Granule
  [Expand]Fixed Assets Inventory Granule
  [Expand]Warehouse Inventory Granule
 [Collapse]User Manuals for PANTHEON Granules
  [Expand]Getting started
  [Expand]Personnel Granule
  [Expand]Travel Orders Granule
  [Expand]Documents and Tasks Granule
  [Expand]B2B Orders Granule
  [Expand]Dashboard Granule
  [Expand]Field Service Granule
  [Expand]Fixed Assets Inventory Granule
  [Expand]Warehouse Inventory Granule
  [Expand]Archive
[Expand]User Site

Load Time: 382.1877 ms
"
   1000002255 | 221878 | 373965 | Updated
Label

How RLS works in practice?

              

 

Digitization is bringing ever more sensitive data into user databases. The safest option is to move them to the Cloud, which is usually often more secure than environments with their own servers or even workstations.

At the same time, the Cloud has its own security requirements, because it is necessary to define precisely who, i.e. which company or which user in a company, has access to what. Security is exactly what PANTHEON 11 promotes.

PANTHEON has already ensured data security by implementing permissions. These remain unchanged and can be used to set access levels in a familiar way. Only the implementation of data security has changed.

We have developed advanced Row Level Security (RLS), which is configured with existing permissions.

All existing security mechanisms have been transferred from the user interface to table security. If you were previously able to read all accounts from a table with an SQL query, this will now no longer be possible. Every SQL query will be subject to the RLS protection mechanism. Only those rows that the user has access to will be read.

Let us look at two examples of how RLS works in PANTHEON.

  1. RLS and PANTHEON
  2. RLS and EXCEL (External application)

 

1. RLS and PANTHEON

Users RLS1 and RLS2 both have full permissions:

User RLS2's permission to view costs is removed.

The RLS security mechanism limits the user RLS2's access at line level and only returns records that the user RLS2 has access to.

This applies to all PANTHEON modules, including Workflow and ARES, as well as all external applications that connect to the PANTHEON database.

 

2. RLS and EXCEL (EXTERNAL APPLICATION)

Below is a description of how the RLS works if data is accessed using an external application, for example Excel.

Users RLS1 and RLS2 access the PANTHEON database using their own domain accounts.

User RLS2's access to view costs is removed using PANTHEON permissions:

Then, refresh data from the Excel database:

You can see that even with external links, the same results are obtained as with PANTHEON.

 

Related topics:

  Row Level Security

  Upgrade

  Database

  Code Changes

  Troubleshooting

 

Rate this topic
Was this topic usefull?
Comments
Comment will also bo visible in forum!