US 12,189,805 B2
System of record agnostic data entitlement API
Vijayanand Veeraraghavan, Chennai (IN); Haribabu Mohan, Chennai (IN); and Mogana Rangan, Chennai (IN)
Assigned to ADP, Inc., Roseland, NJ (US)
Filed by ADP, Inc., Roseland, NJ (US)
Filed on Mar. 17, 2022, as Appl. No. 17/655,219.
Prior Publication US 2023/0297712 A1, Sep. 21, 2023
Int. Cl. H04L 29/06 (2006.01); G06F 16/242 (2019.01); G06F 21/62 (2013.01); G06F 21/64 (2013.01); G06F 40/186 (2020.01)
CPC G06F 21/6227 (2013.01) [G06F 16/2433 (2019.01); G06F 21/64 (2013.01); G06F 40/186 (2020.01)] 30 Claims
OG exemplary drawing
 
1. A computer-implemented method for controlling access to a system of record, the method comprising:
using a number of processors to perform the steps of:
receiving, from an endpoint, an application programming interface (API) request to a system of record (SOR) for customer data associated with a customer, wherein the endpoint belongs to a partner of the customer;
determining if the endpoint is entitled to access the customer data in the SOR, wherein entitlement is provided by a data entitlement template defined by the customer;
responsive to a determination the endpoint is not entitled to access the customer data in the SOR, denying the API request;
responsive to a determination the endpoint is entitled to access the customer data in the SOR, querying the SOR based on the API request, wherein querying the SOR comprises:
building an open data protocol (ODATA) query based on the data entitlement template; and
constructing a structured query language (SQL) query from the ODATA query, wherein only the customer data agreed upon by the customer and the partner is included in the SQL query according to mapping information contained in the data entitlement template;
receiving an SOR response;
applying a number of response filters to the SOR response, wherein the response filters are specified in the data entitlement template according to an SOR-agnostic schema; and
forwarding the filtered SOR response to the endpoint.