User access to a registry of business entity definitions
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides an apparatus, method and computer program product for a registry, such as a UDDI registry, to restrict access to business entity definitions contained in the registry according to permission details associated with the business service definition. A business entity definition may comprise a plurality of information elements. Permission details, which define users or groups of users with permission to access the information element, are then associated with one or more of these information elements. When a user request is received to access a business entity definition access is restricted to only those information elements for which the user has the required permission.
-
Citations
29 Claims
-
1-15. -15. (canceled)
-
16. A method for a registry of business entity definitions to handle user requests to access business entity definitions, the method comprising:
-
receiving a request from a user to access a business entity definition;
obtaining the identity of the user from data associated with the request;
determining whether the user has permission to access information in the business entity definition from permission details associated with the business entity definition and the identity of the user; and
denying the user access to information in the business entity definition if it is determined that the user does not have permission;
wherein the information in the business entity definition comprises a plurality of information elements each having permission details associated therewith;
wherein determining whether the user has permission to access information in the business entity definition from permission details associated with the business entity definition and the identity of the user comprises determining from permission details associated with each information element whether the user has permission to access that information element; and
wherein denying the user access to information in the business entity definition if it is determined that the user does not have permission comprises denying the user access to those information elements for which it is determined that the user does not have permission. - View Dependent Claims (17, 18, 19)
-
-
20. A registry of business entity definitions for handling requests to access business entity definitions, the registry comprising:
-
means for receiving a request from a user to access a business entity definition;
means for obtaining the identity of the user from data associated with the request;
means for determining whether the user has permission to access information in the business entity definition from permission details associated with the business entity definition and the identity of the user; and
means for denying the user access to information in the business entity definition if it is determined that the user does not have permission;
wherein the information in the business entity definition comprises a plurality of information elements each having permission details associated therewith;
wherein the means for determining comprises means for determining from permission details associated with each information element whether the user has permission to access that information element; and
wherein the means for denying comprises means for denying the user access to those information elements for which it is determined that the user does not have permission. - View Dependent Claims (21, 22, 23, 24, 25)
-
-
26. A computer program product for a registry of business entity definitions to handle user requests to access business entity definitions, the computer program product comprising:
-
a computer usable medium having computer usable program code embodied therewith, the computer usable program code comprising;
computer usable program code configured to receive a request from a user to access a business entity definition;
computer usable program code configured to obtain the identity of the user from data associated with the request;
computer usable program code configured to determine whether the user has permission to access information in the business entity definition from permission details associated with the business entity definition and the identity of the user; and
computer usable program code configured to deny the user access to information in the business entity definition if it is determined that the user does not have permission;
wherein the information in the business entity definition comprises a plurality of information elements each having permission details associated therewith;
wherein the computer usable program code configured to determine whether the user has permission to access information in the business entity definition from permission details associated with the business entity definition and the identity of the user comprises computer usable program code configured to determine from permission details associated with each information element whether the user has permission to access that information element; and
wherein the computer usable program code configured to deny the user access to information in the business entity definition if it is determined that the user does not have permission comprises computer usable program code configured to deny the user access to those information elements for which it is determined that the user does not have permission. - View Dependent Claims (27, 28, 29)
-
Specification