Authorization for access to web service resources
First Claim
Patent Images
1. A computing system for controlling access to a protected Web service resource, the computing system comprising:
- a communication device for communicating across a communication network;
a processor communicatively connected to the communication device; and
memory storing program instructions, which when executed by the processor cause the computing system to perform operations comprising;
receiving a request to access a protected Web service resource from the communication network;
generating and storing a request resource associated with the request in memory, the request resource containing data that identifies whether the request has been authorized, the request resource including a request element storing a copy of a status element, a details element, an approval processes element, and a data element;
determining whether the request to access the protected Web service resource has been authorized;
if the request has not been authorized, denying access to the protected Web service resource; and
if the request has been authorized, permitting access to the protected Web service resource.
2 Assignments
0 Petitions
Accused Products
Abstract
A web service includes a protected resource. A requester requests access to the protected resource by sending a request to the web service. The web service prevents access to the web service until the request has been authorized by an authorizer. After the request has been authorized by the authorizer, the web service allows the requester to access the protected resource.
-
Citations
18 Claims
-
1. A computing system for controlling access to a protected Web service resource, the computing system comprising:
-
a communication device for communicating across a communication network; a processor communicatively connected to the communication device; and memory storing program instructions, which when executed by the processor cause the computing system to perform operations comprising; receiving a request to access a protected Web service resource from the communication network; generating and storing a request resource associated with the request in memory, the request resource containing data that identifies whether the request has been authorized, the request resource including a request element storing a copy of a status element, a details element, an approval processes element, and a data element; determining whether the request to access the protected Web service resource has been authorized; if the request has not been authorized, denying access to the protected Web service resource; and if the request has been authorized, permitting access to the protected Web service resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of authorizing access to a Web service resource, the method comprising:
-
receiving a request from a requester identifying a Web service resource; determining, with a computing device, that authorization is required to access the Web service resource; generating and storing a request resource associated with the request in memory, the request resource containing data that identifies whether the request has been authorized, the request resource including a request element storing a copy of a status element, a details element, an approval processes element, and a data element; receiving authorization from an authorizer which authorizes the requester to access the Web service resource; and communicating the authorization to the requester. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A computer readable storage medium containing computer executable instructions which when executed by a computer perform a method of authorizing access to a protected resource, the method comprising:
-
receiving a request from a requester identifying the protected resource of a Web service; generating and storing a request resource associated with the request in memory wherein the request resource is defined by an extensible markup language, the request resource containing data that identifies whether the request has been authorized, the request resource including a request element storing a copy of a status element storing a status of the request, a details element storing a description of the request, an approval processes element storing identifiers of approval processes associated with the request, and a data element storing data to be retrieved by the request; receiving an authorization which authorizes use of the protected resource of the Web service; determining that the request has been authorized; and communicating the authorization to the requester. - View Dependent Claims (15, 16, 17, 18)
-
Specification