Method and system for restricting access to user resources
First Claim
1. A computer program product comprising:
- a non-transitory computer usable storage medium having computer executable instructions embodied therein for managing access to an application program interface (API) comprising a plurality of functions, the computer executable instructions comprising instructions for;
receiving a message containing code calling a function in the API and data indicating API function execution rights for the message;
determining whether the data indicate that the message has a right to execute the called function;
executing the called function responsive to the data indicating that the message has the right to execute the called function; and
sending a response to an originator of the message indicating whether the code successfully executed the function in the API.
0 Assignments
0 Petitions
Accused Products
Abstract
A user'"'"'s set top box (STB), or other client, executes a shell and has an application program interface (API) by which certain features of the client can be controlled. The client is in communication with a walled garden proxy server (WGPS). The client sends a request to the WGPS to access a service provided by a site in the garden. The site sends the client a message containing code calling a function in the API. The WGPS traps the message from the site and looks up the site in a table to determine the access control list (ACL) for the site. The WGPS includes the ACL in the header of the hypertext transport protocol (HTTP) message to the client. The shell receives the message and extracts the ACL. If the code lacks permission, the shell stops execution.
129 Citations
20 Claims
-
1. A computer program product comprising:
a non-transitory computer usable storage medium having computer executable instructions embodied therein for managing access to an application program interface (API) comprising a plurality of functions, the computer executable instructions comprising instructions for; receiving a message containing code calling a function in the API and data indicating API function execution rights for the message; determining whether the data indicate that the message has a right to execute the called function; executing the called function responsive to the data indicating that the message has the right to execute the called function; and sending a response to an originator of the message indicating whether the code successfully executed the function in the API. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
8. A computer for managing access to an application program interface (API) comprising a plurality of functions, the computer comprising:
-
a processor for executing computer program instructions; and a non-transitory computer usable storage medium having computer program instructions embodied therein, the computer program instructions comprising instructions for; receiving a message containing code calling a function in the API and data indicating API function execution rights for the message; determining whether the data indicate that the message has a right to execute the called function; executing the called function responsive to the data indicating that the message has the right to execute the called function; and sending a response to an originator of the message indicating whether the code successfully executed the function in the API. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method of using a computer processor to manage access to an application program interface (API) comprising a plurality of functions, comprising:
-
receiving a message containing code calling a function in the API and data indicating API function execution rights for the message; determining, by the computer processor, whether the data indicate that the message has a right to execute the called function; executing the called function responsive to the data indicating that the message has the right to execute the called function; and sending a response to an originator of the message indicating whether the code successfully called the function in the API. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification