×

Authentication system, authentication method, and storage medium for realizing a multitenant service

  • US 8,935,770 B2
  • Filed: 06/19/2012
  • Issued: 01/13/2015
  • Est. Priority Date: 06/24/2011
  • Status: Active Grant
First Claim
Patent Images

1. An authentication system comprising:

  • a reception unit configured to receive an access allowance or denial confirmation with respect to a resource and receive an authentication token associated with user identification information;

    an identification unit configured to identify role information associated with the user identification information based on the authentication token received by the reception unit;

    a Uniform Resource Locator (URL) verification unit configured to verify, if a resource type corresponding to the access allowance or denial confirmation received by the reception unit is a URL resource, whether access is permitted based on the role information identified by the identification unit and role information of the URL resource;

    a provision unit configured to provide a screen corresponding to the URL resource if the access is permitted by the URL verification unit;

    an application program interface (API) verification unit configured to verify, if a resource type corresponding to the access allowance or denial confirmation received by the reception unit is execution of an API, whether access is permitted based on the role information identified by the identification unit and role information of execution authority of the API;

    an execution unit configured to execute the API if it is determined that the access is permitted by the API verification unit;

    a data distribution verification unit configured to verify, if a resource type corresponding to the access allowance or denial confirmation received by the reception unit is distribution of data, whether access is permitted based on the role information identified by the identification unit and role information of distribution of the data; and

    a distribution unit configured to distribute the data if it is identified that the access is permitted by the data distribution verification unit,wherein the authentication system including the URL verification unit, the API verification unit and the data distribution verification unit executes three verifications, which are a verification of whether a screen corresponding to a URL can be provided, a verification of whether an API can be executed, and a verification of whether data can be distributed based on the role information associated with the user identification information.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×