Determining a user's groups
First Claim
1. A method of identifying groups within an Identity System of which a user of the Identity System is a member, the method comprising:
- determining with the Identity System a set of groups of which the user is a static member based on a group identity profile for each of one or more groups within the Identity System, wherein the group identity profile for each of the one or more groups within the Identity System defines static members of the group;
determining with the Identity System a set of groups of which the user is a dynamic member based on a rule for determining dynamic members of the group;
combining with the Identity System the set of groups of which the user is a static member and the set of groups of which the user is a dynamic member;
determining with the Identity System a set of groups of which the user is a nested member based on the combined set of groups of which the user is a static member and set of groups of which the user is a dynamic member by recursively finding one or more containing groups for the combined set of groups of which the user is a static member and set of groups of which the user is a dynamic member to a predetermined level of nesting; and
reporting with the Identity System the set of groups of which the user is a static member, the set of groups of which the user is a dynamic member, and the set of groups of which the user is a nested member.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention is directed to technology for determining the set of groups of which a user is a member. A user can be a static member, dynamic member or nested member of a group. A user is a nested member of a first group if that user is a member of a second group and the second group is a member of the first group. There can be multiple levels of nesting. For example, an entity can be a nested member of a first group if that entity is a member of a second group, which is a member of a third group, which is a member of a fourth group, which is a member of the first group. The present invention can determine the groups of which the user is a static member, dynamic member or nested member.
-
Citations
31 Claims
-
1. A method of identifying groups within an Identity System of which a user of the Identity System is a member, the method comprising:
-
determining with the Identity System a set of groups of which the user is a static member based on a group identity profile for each of one or more groups within the Identity System, wherein the group identity profile for each of the one or more groups within the Identity System defines static members of the group; determining with the Identity System a set of groups of which the user is a dynamic member based on a rule for determining dynamic members of the group; combining with the Identity System the set of groups of which the user is a static member and the set of groups of which the user is a dynamic member; determining with the Identity System a set of groups of which the user is a nested member based on the combined set of groups of which the user is a static member and set of groups of which the user is a dynamic member by recursively finding one or more containing groups for the combined set of groups of which the user is a static member and set of groups of which the user is a dynamic member to a predetermined level of nesting; and reporting with the Identity System the set of groups of which the user is a static member, the set of groups of which the user is a dynamic member, and the set of groups of which the user is a nested member. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An Identity System comprising:
-
one or more processors; and one or more storage devices in communicate on with said processor and having processor readable code stored thereon, said processor readable code for programming the one or more processors to perform a method for identifying groups within an Identity System of which a user of the Identity System is a member, the method comprising; identifying groups within an Identity System of which a user of the Identity System is a member, the method comprising; determining a set of groups of which the user is a static member based on a group identity profile for each of one or more groups within the Identity System, wherein the group identity profile for each of the one or more groups within the Identity System defines static members of the group; determining a set of groups of which the user is a dynamic member based on a rule for determining dynamic members of the group; combining the set of groups of which the user is a static member and the set of groups of which the user is a dynamic member; determining a set of groups of which the user is a nested member based on the combined set of groups of which the user is a static member and set of groups of which the user is a dynamic member; and reporting the set of groups of which the user is a static member, the set of groups of which the user is a dynamic member, and the set of groups of which the user is a nested member. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. One or more processor-readable storage devices having processor readable code stored thereon, said processor readable code for programming one or more processors to perform a method for identifying groups within an Identity System of which a user of the Identity System is a member, the method comprising:
-
determining a set of groups of which the user is a static member based on a group identity profile for each of one or more groups within the Identity System, wherein the group identity profile for each of the one or more groups within the Identity System defines static members of the group; determining a set of groups of which the user is a dynamic member based on a rule for determining dynamic members of the group; combining the set of groups of which the user is a static member and the set of groups of which the user is a dynamic member; determining a set of groups of which the user is a nested member based on the combined set of groups of which the user is a static member and set of groups of which the user is a dynamic member; and reporting the set of groups of which the user is a static member, the set of groups of which the user is a dynamic member, and the set of groups of which the user is a nested member. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
-
Specification