US Patent 8190673 Enforcement of object permissions in enterprise resource planning software

A system and method of enforcing Enterprise Resource Planning (“ERP”) software object permissions in a three-tiered architecture is provided. A user connects to the three-tiered architecture via an enhanced client, which connects to a database server via a middle-tier server. The database server stores code and permission information for each database object. When a user connects to the system, the user's permissions are retrieved and stored at the middle-tier server. The user may then access data by instantiating objects at the middle-tier server by compiling and executing code retrieved from the database server. The middle-tier server performs permission checking for accessing database objects and provides environments for executing both managed and unmanaged code. The middle-tier server can perform permission checking for users and objects without accessing the database server.