Row-level security can be implemented using the Transact-SQL statement CREATE SECURITY POLICY. A Transact-SQL command is used to generate predicates as inline table-valued functions.
Row-level security supports two different categories of security predicates.
Filter predicates invisibly filter the rows that are accessible for reading functions (SELECT, UPDATE, and DELETE).
Block predicates specifically block write operations that violate the predicate (AFTER INSERT, AFTER UPDATE, BEFORE UPDATE, BEFORE DELETE).
