I think that the best way for this is invoking stored procedures that validate requests.