Method, apparatus, and system for searching based on search visibility rules
First Claim
1. A computer implemented method comprising:
- defining a set of search visibility rules associated with a set of organizations and a set of records, each search visibility rule being used to determine whether a particular organization is allowed to access a particular record;
associating a set of categories with a set of records via a set of category visibility rules, each category visibility rule being used to determine whether a record belongs to a particular category;
associating the set of categories with a set of organizations via a set of category access control visibility rules, each category access control visibility rule being used to determine;
whether members of an organization are granted an access to a particular category, and a nature of access to the members of the organization for the category;
associating the set of organizations with a set of users, via a set of organizational visibility rules, each visibility rule being used to determine whether a user is a member of a particular organization;
receiving a search request containing one or more search criteria from a first user, the first user having a respective organizational identifier indicating a corresponding organization to which the first user belongs;
in response to the search request, identifying one or more records based on the search criteria, the search visibility rules, the category visibility rules, the category access control visibility rules, the organizational visibility rules and the respective organizational identifier; and
identifying whether the first user has access to the identified record.
0 Assignments
0 Petitions
Accused Products
Abstract
According to one aspect of the present invention, a method is provided in which a search request containing search criteria is received from a first user. A search is performed based upon the search criteria and the first user'"'"'s organizational identifier to identify data records that match the search criteria and to which the first user is allowed to access based upon the first user'"'"'s organizational identifier. In another embodiment, a search is performed based upon the search criteria and a list of categories to which the first user is authorized to access to identify records that match the search criteria and to which the first user is allowed to access based upon the list of categories.
-
Citations
49 Claims
-
1. A computer implemented method comprising:
-
defining a set of search visibility rules associated with a set of organizations and a set of records, each search visibility rule being used to determine whether a particular organization is allowed to access a particular record; associating a set of categories with a set of records via a set of category visibility rules, each category visibility rule being used to determine whether a record belongs to a particular category; associating the set of categories with a set of organizations via a set of category access control visibility rules, each category access control visibility rule being used to determine; whether members of an organization are granted an access to a particular category, and a nature of access to the members of the organization for the category; associating the set of organizations with a set of users, via a set of organizational visibility rules, each visibility rule being used to determine whether a user is a member of a particular organization; receiving a search request containing one or more search criteria from a first user, the first user having a respective organizational identifier indicating a corresponding organization to which the first user belongs; in response to the search request, identifying one or more records based on the search criteria, the search visibility rules, the category visibility rules, the category access control visibility rules, the organizational visibility rules and the respective organizational identifier; and identifying whether the first user has access to the identified record. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A system comprising:
-
a processor and a memory storing instructions executed by the processor for, said instructions perform operations comprising; defining a set of search visibility rules associated with a set of organizations and a set of records, each search visibility rule being used to determine whether a particular organization is allowed to access a particular record; defining a set of category visibility rules associated with a set of records and a set of categories, each category visibility rule being used to determine whether a particular record belongs to particular category; defining a set of category access control visibility rules, each category access control visibility rule being used to determine;
whether members of an organization are granted an access to a particular category, and a nature of access to the members of the organization for the category;defining a set of organization visibility rules associated with a set of users and a set of organization, each organization visibility rule being used to determine whether a particular user belongs to particular organization; receiving a search request containing one or more search criteria from a first user, the first user having a respective organizational identifier indicating a corresponding organization to which the first user belongs; identifying one or more records based on the search criteria, the search visibility rules, the category visibility rules, the category access control visibility rules, the organizational visibility rules and the respective organizational identifier responsive to the search request; and identifying whether the first user has access to the identified record. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A machine-readable storage medium comprising instructions which, when executed by a machine, cause the machine to perform operations comprising:
-
defining a set of search visibility rules associated with a set of organizations and a set of records, each search visibility rule being used to determine whether a particular organization is allowed to access a particular record; associating a set of categories with a set of records via a set of category visibility rules, each category visibility rule being used to determine whether a record belongs to a particular category; associating the set of categories with a set of organizations via a set of category access control visibility rule, each category access control visibility rule being used to determine; whether members of an organization are granted an access to a particular category, and a nature of access to the members of the organization for the category; associating the set of organizations with a set of users, via a set of organizational visibility rules, each visibility rule being used to determine whether a user is a member of a particular organization; receiving a search request containing one or more search criteria from a first user, the first user having a respective organizational identifier indicating a corresponding organization to which the first user belongs; in response to the search request, identifying one or more records based on the search criteria, the search visibility rules, the category visibility rules, the category access control visibility rules, the organizational visibility rules and the respective organizational identifier; and identifying whether the first user has access to the identified record. - View Dependent Claims (28, 29, 30)
-
-
31. A computer implemented method comprising:
-
defining a set of search visibility rules associated with a set of organizations and a set of records, each search visibility rule being used to determine whether a particular organization is allowed to access records that are associated with a particular record; associating the set of categories with a set of records via a set of category visibility rules, each category visibility rule being used to determine whether a record belongs to a particular category; associating the set of categories with a set of organizations via category access control visibility rule, each category access control visibility rule being used to determine; whether members of an organization are granted an access to a particular category, and a nature of access to the members of the organization for the category; associating the set of organizations with a set of users, via a set of organizational visibility rules, each visibility rule being used to determine whether a user is a member of a particular organization, receiving a search request containing search criteria from a first user, the first user being associated with one or more user groups; in response to the search request, identifying one or more records based on the search criteria, the category visibility rules, the category access control visibility rules, the search visibility rules, the organizational visibility rules and the one or more user groups to which the first user is associated; and identifying whether the first user has access to the identified record. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38)
-
-
39. A system comprising:
-
a processor and a memory storing instructions executed by the processor, said instructions operations comprising; defining a set of category visibility rules associated with a set of records and a set of categories, each category visibility rule being used to determine whether a whether a particular record belongs to particular category; defining a set of search visibility rules associated with a set of organizations and a set of categories, each search visibility rule being used to determine whether a particular organization is allowed to access a particular category; defining a set of category access control visibility rules, each category access control visibility rule being used to determine;
whether members of an organization are granted an access to a particular category, and a nature of access to the members of the organization for the category;defining a set of organization visibility rules associated with a set of users and a set of organization, each organization visibility rule being used to determine whether a particular user belongs to particular organization; receiving a search request containing search criteria from a first user, the first user being associated with one or more user groups; identifying one or more records based on the search criteria responsive to the search request, the category visibility rules, the category access control visibility rules, the search visibility rules, the organizational visibility rules and the one or more user groups to which the first user is associated; and identifying whether the first user has access to the identified record. - View Dependent Claims (40, 41, 42, 43, 44)
-
-
45. A machine-readable storage medium comprising instructions which, when executed by a machine, cause the machine to perform operations comprising:
-
defining a set of search visibility rules associated with a set of organizations and a set of categories, each search visibility rule being used to determine whether a particular organization is allowed to access a particular category; defining a set of category visibility rules associated with a set of records and a set of categories, each category visibility rule being used to determine whether a particular user group is allowed to access records that are associated with a particular category; defining a set of category access control visibility rule associated with a set of categories and a set of organizations, each category access control visibility rule being used to determine whether members a particular organization are granted an access to a particular category, and the nature of access to the category granted to the members of the organization; defining a set of organizational visibility rules associated with a set of users and a set of organizations, each visibility rule being used to determine whether a user is a member of a particular organization; receiving a search request containing search criteria from a first user, the first user being associated with one or more user groups; in response to the search request, identifying one or more records based on the search criteria, the category visibility rules, the category access control visibility rules, the search visibility rules, and the organizational visibility rules and the one or more user groups to which the first user is associated; and identifying whether the first user has access to the identified record. - View Dependent Claims (46, 47, 48, 49)
-
Specification