Limiting access to application features in cloud applications

US 10,657,239 B2
Filed: 09/29/2017
Issued: 05/19/2020
Est. Priority Date: 05/25/2017
Status: Active Grant

First Claim

Patent Images

1. A method for providing access to an application feature, the method comprising:

receiving, by an integration cloud service system of a cloud environment, a request to access an access controlled feature in an application in the cloud environment, wherein the access controlled feature is configured to be accessed by using an access key that is generated based on user information;

dynamically generating, by the integration cloud service system, the access key for the access controlled feature in the application based on the user information, wherein the user information comprises at least one from a group consisting of a user role, a user permission, user environment information, user system version information, and feature information;

validating, by the integration cloud service system, the access key for the access controlled feature in the application based on the user information; and

in response to the access key being valid, executing, by the integration cloud service system the access controlled feature in the application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are provided for limiting access to a feature in an application. Certain application features, such as access controlled features, are not generally accessible to all users of an integration cloud service system. When a user makes a request to access an access controlled feature, the system can determine whether user information satisfies the requirements to access a requested access controlled feature. If the user satisfies the requirements for the requested access controlled feature, an access key can be dynamically generated based on the user information.

Citations

20 Claims

1. A method for providing access to an application feature, the method comprising:
- receiving, by an integration cloud service system of a cloud environment, a request to access an access controlled feature in an application in the cloud environment, wherein the access controlled feature is configured to be accessed by using an access key that is generated based on user information;
  
  dynamically generating, by the integration cloud service system, the access key for the access controlled feature in the application based on the user information, wherein the user information comprises at least one from a group consisting of a user role, a user permission, user environment information, user system version information, and feature information;
  
  validating, by the integration cloud service system, the access key for the access controlled feature in the application based on the user information; and
  
  in response to the access key being valid, executing, by the integration cloud service system the access controlled feature in the application.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method according to claim 1, wherein the user information comprises environment information, a cloud application instance information, and a unique ID of the application feature.
  - 3. The method according to claim 2, wherein the environment information comprises one of a production environment, a development environment, and a test environment.
  - 4. The method according to claim 2, wherein the cloud application instance information comprises a version number of the integration cloud service system.
  - 5. The method according to claim 2, wherein the access key comprises a string of characters that uniquely identifies the environment information, the cloud application instance information, and the unique ID of the application feature.
  - 6. The method according to claim 5, wherein the validating the access key for the feature in the application comprises:
    - receiving, on a user interface for the access controlled feature, the access key; and
      
      determining whether the access key corresponds to at least one of the environment information, the cloud application instance information, and the unique ID of the application feature; and
      
      in response to the access key corresponding to one of the environment information, the cloud application instance information, and the unique ID, determining that the access key is valid.
  - 7. The method according to claim 5, wherein the validating the access key for the feature in the application comprises:
    - receiving, on a user interface for the access controlled feature, the access key;
      
      determining whether the access key corresponds to the environment information, the cloud application instance information, and the unique ID of the application feature; and
      
      in response to the access key corresponding to the environment information, the cloud application instance information, and the unique ID, determining that the access key is valid.
  - 8. The method according to claim 1, wherein the feature comprises a functionality configured to be applied to the application.
  - 9. The method according to claim 1, wherein the application is an integrated cloud service application.
  - 10. The method according to claim 1, wherein an end user device of the integration cloud service system receives the request to access the access controlled feature in the application.

11. A computing device for providing access to an application feature, the computing device comprising:
- a memory; and
  
  one or more processors in an integration cloud service system of a cloud environment, the one or more processors configured to;
  
  receive a request to access an access controlled feature in an application in the cloud environment, wherein the access controlled feature is configured to be accessed by using an access key that is generated based on user information;
  
  dynamically generate the access key for the access controlled feature in the application based on the user information;
  
  validate the access key for the access controlled feature in the application based on the user information, wherein the user information comprises at least one from a group consisting of a user role, a user permission, user environment information, user system version information, and feature information; and
  
  in response to the access key being valid, execute the access controlled feature in the application.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The computing device according to claim 11, wherein the user information comprises environment information, a cloud application instance information, and a unique ID of the application feature.
  - 13. The computing device according to claim 12, wherein the environment information comprises one of a production environment, a development environment, and a test environment.
  - 14. The computing device according to claim 12, wherein the cloud application instance information comprises a version number of the integration cloud service system.
  - 15. The computing device according to claim 12, wherein the validating the access key for the feature in the application comprises:
    - receiving, on a user interface for the access controlled feature, the access key;
      
      determining whether the access key corresponds to the environment information, the cloud application instance information, and the unique ID of the application feature; and
      
      in response to the access key corresponding to the environment information, the cloud application instance information, and the unique ID, determining that the access key is valid.

16. A non-transitory computer readable storage medium storing instructions which, when executed by one or more processors of a computing device, cause the one or more processors to perform a method comprising:
- receiving, by an integration cloud service system of a cloud environment, a request to access an access controlled feature in an application in the cloud environment, wherein the access controlled feature is configured to be accessed by using an access key that is generated based on user information;
  
  dynamically generating, by the integration cloud service system, the access key for the access controlled feature in the application based on the user information, wherein the user information comprises at least one from a group consisting of a user role, a user permission, user environment information, user system version information, and feature information;
  
  validating, by the integration cloud service system, the access key for the access controlled feature in the application based on the user information; and
  
  in response to the access key being valid, executing, by the integration cloud service system the access controlled feature in the application.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The computer readable storage medium according to claim 16, wherein the user information comprises environment information, a cloud application instance information, and a unique ID of the feature in the application.
  - 18. The computer readable storage medium according to claim 17, wherein the environment information comprises one of a production environment, a development environment, and a test environment.
  - 19. The computer readable storage medium according to claim 17, wherein the cloud application instance information comprises a version number of the integration cloud service system.
  - 20. The computer readable storage medium according to claim 17, wherein the validating the access key for the feature in the application comprises:
    - receiving, on a user interface for the access controlled feature, the access key;
      
      determining whether the access key corresponds to the environment information, the cloud application instance information, and the unique ID of the feature in the application ; and
      
      in response to the access key corresponding to the environment information, the cloud application instance information, and the unique ID, determining that the access key is valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Gravenites, Greg, Rafique, Arif, Modi, Rajan Mahendrakumar, Suresh, Sindhu
Primary Examiner(s)
Cervetti, David Garcia

Application Number

US15/720,940
Publication Number

US 20180341762A1
Time in Patent Office

963 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/335   for accessing specific reso...

G06F 21/62   Protecting access to data v...

G06F 21/629   to features or functions of...

H04L 63/062   for key distribution, e.g. ...

H04L 63/067   using one-time keys cryptog...

H04L 63/068   using time-dependent keys, ...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/102   Entity profiles

H04L 9/0816   Key establishment, i.e. cry...

H04L 9/088   Usage controlling of secret...

H04L 9/3213   using tickets or tokens, e....

Limiting access to application features in cloud applications

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Limiting access to application features in cloud applications

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links