×

Method and system for controlling public access to a plurality of data objects within a data processing system

  • US 5,414,844 A
  • Filed: 05/24/1990
  • Issued: 05/09/1995
  • Est. Priority Date: 05/24/1990
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method in a data processing system for controlling public access to a plurality of data objects stored therein, said data processing system having an access control profile associated with each data object stored therein, each access control profile including:

  • an explicit authorization parameter listing the identity of a user and the authorization level granted to that user;

    a shared authorization parameter setting forth a shared authorization list associated with the access control profile of each of a plurality of data objects and containing the identities of a plurality of users and the authorization level granted to each listed user; and

    , a public authorization parameter listing the authorization level granted to each user not specifically identified within said access control profile, said method comprising the data processing system implemented steps of;

    creating and storing within said shared authorization list a "public" user identity for users not specifically identified within the access control profiles of the plurality of data objects;

    listing within said shared authorization list within said data processing system an authorization level for said "public" user identity for all of a plurality of data objects within said data processing system;

    listing said shared authorization list within a shared authorization parameter within the access control profile of each of said plurality of data objects within said data processing system;

    storing a reference within said public authorization parameter to said shared authorization parameter within the access control profile of each of said plurality of data objects within said data processing system; and

    thereafter, controlling public access for each of said plurality of data objects by;

    accessing said shared authorization parameter by accessing said reference to said shared authorization parameter stored within said public authorization parameter within the access control profile of a selected one of said plurality of data objects in response to an attempted access by a user after it is determined that the user is not listed within said explicit authorization parameter for said selected one of said plurality of data objects;

    accessing said shared authorization list set forth within said shared authorization parameter within the access control profile of said selected one of said plurality of data objects; and

    granting access to said selected one of said plurality of data objects by said user not listed within said explicit authorization parameter for said selected one of said plurality of data objects in accordance with an authorization level granted to said "public" user identity within said shared authorization list for said selected one of said plurality of data objects.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×