Bruce Perens released an addon for Ruby on Rails.
This addressed the requirement of limiting access to columns of the database depending on the specified user.
Now, there was lots of interest, but when you actually dug into the code it was not (at the time I looked at it) of an acceptable robustness. More an experiment of proof of concept than something to lean on with any confidence.
From my point of view, it also answered the wrong question, scratched an itch I just didn’t have.
I needed ROW security not column.
I needed to say….
‘This user can’t see records entered by users outside his organisation’
Not, ‘This class of user can’t see the balance recorded against all transactions’