Content management system and methodology employing non-transferable access tokens to control data access
First Claim
Patent Images
1. A method of accessing information in a content management system comprising:
- receiving, by the system, a request from a client user for an object stored in the system;
generating, by the system, a unique object identifier associated with the requested object; and
generating, by the system, a non-transferable access token coded with information unique to the client user such that when submitted to the system by a user other than the client user, the system denies access to the requested object.
1 Assignment
0 Petitions
Accused Products
Abstract
A method is provided for accessing information in a content management system including a library server for generating non-transferable access tokens and an object server for storing objects to which access may be requested by a client user. Enhanced security is achieved by generating non-transferable access tokens which can be used by a particular client user to access a particular data object in the object server. However, should the token be transferred to a user other then the client user for which the token was generated, the system will not permit access to the object.
176 Citations
26 Claims
-
1. A method of accessing information in a content management system comprising:
-
receiving, by the system, a request from a client user for an object stored in the system;
generating, by the system, a unique object identifier associated with the requested object; and
generating, by the system, a non-transferable access token coded with information unique to the client user such that when submitted to the system by a user other than the client user, the system denies access to the requested object. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method of accessing information in a content management system including a library server for generating access tokens and an object server for storing objects, the method comprising:
-
receiving, by the library server, a request from a client user for an object stored in the object server;
generating, by the library server, a unique object identifier associated with the requested object; and
generating, by the library server, a non-transferable access token coded with information unique to the client user such that when submitted to the system by a user other than the client user, the system denies access to the requested object. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A content management system comprising:
-
an object server for storing objects to be accessed by client users;
a library server for generating access tokens having a flag which is settable to indicate that a token is non-transferable or which remains unset to indicate that a token is transferable; and
an application program interface, coupled to the object server and the library server, to provide a communication port between the system and a client user requesting access to an object.
-
-
24. A computer program product for organizing information in a content management system, the computer program product including a plurality of computer executable instructions stored on a computer readable medium, wherein the instructions, when executed by the content management system, cause the system to perform the steps of:
-
receiving, by the system, a request from a client user for an object stored in the system;
generating, by the system, a unique object identifier associated with the requested object; and
generating, by the system, a non-transferable access token coded with information unique to the client user such that when submitted to the system by a user other than the client user, the system denies access to the requested object. - View Dependent Claims (25, 26)
-
Specification