In this episode of Data Exposed, I sit down with Tommy Mullaney, a Program Manager on the SQL Security team, to discuss and demo some exciting new functionality released this month for Row-Level Security on SQL Server and Azure SQL Database.
Row-Level Security (RLS) enables you to control access to particular rows in a table based on the identity, role, or execution context of the user executing a query. New this month: Block predicates enable you to prevent users from inserting, updating, and/or deleting rows that violate your criteria; and SESSION_CONTEXT is a session-scoped key-value store that makes it much easier to use RLS in middle-tier applications. If you’re interested in multi-tenant applications or best practices for limiting access to data, you’ll definitely want to check this out!
- RLS block predicates announcement
- RLS documentation
- RLS overview on Channel 9
- SQL Security team blog