Authorization Condition Providers

SADL supports the concept of authorization condition providers.

The providers are objects responsible for reading the business entity metadata, evaluating the authorizations of the active users, and transforming the result into suitable restriction information for the database selection. With respect to the provision of authorization information, we distinguish between Business Entities with built-in authorization information (referred to as modeled authorizations), and Business Entities that are agnostic of authorizations, and rely on an outside check before access is given (also referred to in the following as application-defined authorizations).