Method, apparatus and system for obtaining user information
First Claim
1. A method for obtaining user information in an identity proxy, comprising:
- obtaining an interactive state of a service requester in a service request process, wherein the interactive state indicates a service execution state of the service request during the process of interaction between the service requester and a service;
determining whether the interactive state of the service requester meets a preset access-authorized-policy of the user information requested by the service; and
sending an one-off authorization instruction for obtaining user information to a User Profile when the interactive state of the service requester in the service request process meets the access-authorized-policy of the user information;
obtaining the user information included in a request response from the User Profile; and
forwarding the received request response comprising the user information to the service.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, apparatus and system for obtaining user information are disclosed by the present invention. The present invention solves the problem of lower security of user information. The method includes: obtaining the interactive state of the service requester in the service request process, wherein the interactive state is used for indicating the specific state in which the service requester and its service are during the process of interaction with each other; determining if the interactive state of the service requester, in the process of requesting the service, meets the preset access-authorized-policy of the user information in the service request; when the interactive state of the service requester, in the process of requesting the service, meets the preset access-authorized-policy of the user information in said service request, obtaining the user information and sending the user information to the service.
-
Citations
5 Claims
-
1. A method for obtaining user information in an identity proxy, comprising:
-
obtaining an interactive state of a service requester in a service request process, wherein the interactive state indicates a service execution state of the service request during the process of interaction between the service requester and a service; determining whether the interactive state of the service requester meets a preset access-authorized-policy of the user information requested by the service; and sending an one-off authorization instruction for obtaining user information to a User Profile when the interactive state of the service requester in the service request process meets the access-authorized-policy of the user information; obtaining the user information included in a request response from the User Profile; and forwarding the received request response comprising the user information to the service. - View Dependent Claims (2)
-
-
3. An identity proxy, comprising:
-
a first obtaining module configured to obtain an interactive state of a service requester in a service request process, wherein the interactive state indicates a service execution state of the service request during the process of interaction between the service requester and a service; a judging module configured to determine whether the interactive state of the service requester obtained by the first obtaining module meets a preset access-authorized-policy of the user information requested by the service; a second obtaining module configured to send a user information obtaining request to a User Profile when the judging module determines that the interactive state of the service requester in the service request process meets the access-authorized-policy of the user information and obtain the user information included in a request response from the User Profile; and a first sending module configured to forward the received request response comprising the user information obtained by the second obtaining module to the service. - View Dependent Claims (4)
-
-
5. A method implemented in a communication system, comprising:
-
obtaining an interactive state of a service requester in a service request process, wherein the interactive state indicates a specific state in which the service requester and the service are during the process of interaction with each other; determining whether the interactive state of the service requester in the service request process meets a preset access-authorized-policy of user information in the service request; generating an one-off authorization instruction for obtaining user information when the interactive state of the service requester in the service request process meets the access-authorized-policy of user information in the service request; and sending the one-off authorization instruction for obtaining user information to the service.
-
Specification