SYSTEM AND METHOD FOR HIERARCHICAL ROLE-BASED ENTITLEMENTS
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for authorization to adaptively control access to a resource, comprising the steps of providing for the mapping of a principal to at least one role, wherein the at least one role is hierarchically related to the resource; providing for the evaluation of a policy based on the at least one role; and providing for the determination of whether to grant the principal access to the resource based on the evaluation of the policy.
-
Citations
80 Claims
-
1-60. -60. (canceled)
-
61. A machine readable medium having instructions stored thereon that when executed by a processor cause a system to:
-
map a principal to at least one role, wherein the at least one role is hierarchically related to the resource, the resource being part of a resource hierarchy;
wherein the resource is a portal, a portlet or a page, the resource inheriting a role from another resource higher in the resource hierarchy;evaluate a policy based on the at least one role; and determine whether to grant access to the resource based on the evaluation of the policy; wherein roles are inherited by resources lower in the resource hierarchy unless the resources lower in the resource hierarchy are associated with roles of the same name, in which case, the role inheritance is overridden. - View Dependent Claims (62, 63, 64, 65, 66, 67, 68, 69, 70)
-
-
71. A machine-readable medium have sets of instructions stored thereon which, when executed by a machine, cause the machine to:
-
evaluate a policy based on at least one role applicable to a principal attempting to access the resource, the resource being part of a resource hierarchy;
wherein the resource is a portal, a portlet or a page, the resource inheriting a role from another resource higher in the resource hierarchy;grant access to the resource based on the evaluation; and wherein the resource, the policy and the at least one role are hierarchically related; wherein roles are inherited by resources lower in the resource hierarchy unless the resources lower in the resource hierarchy are associated with roles of the same name, in which case, the role inheritance is overridden. - View Dependent Claims (72, 73, 74, 75, 76, 77, 78, 79, 80)
-
Specification