×

Multiparty authorization for controlling resource access

  • US 9,231,955 B1
  • Filed: 03/26/2014
  • Issued: 01/05/2016
  • Est. Priority Date: 03/26/2014
  • Status: Active Grant
First Claim
Patent Images

1. A method in a computer network or computer system, the method comprising:

  • receiving, from a client, a request for an operation on a resource associated with a server to form a requested operation;

    upon receiving the request, automatically determining, by an authorization mechanism associated with the server, whether the resource is associated with access control metadata, the access control metadata indicates the resource is multiparty access controlled and a multiparty authorization is required for the requested operation on the resource;

    on condition that the resource is not associated with the access control metadata, allowing the requested operation on the resource; and

    on condition the resource is associated with the access control metadata, checking a token cache, by an authorization module of the server, to determine whether one or more tokens associated with one or more entities and configured to authorize the requested operation are present in the token cache and valid,on condition that the one or more tokens configured to authorize the requested operation are present in the token cache and valid, granting the multiparty authorization and allowing the requested operation; and

    on condition that the one or more tokens configured to authorize the requested operation are not present in the token cache and valid, obtaining the multiparty authorization before allowing the requested operation on the resource.

View all claims
  • 9 Assignments
Timeline View
Assignment View
    ×
    ×