Granting permission to act on behalf of a user in a social networking system

US 9,602,541 B2
Filed: 03/06/2014
Issued: 03/21/2017
Est. Priority Date: 03/06/2014
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

storing, in an online system, data describing an organization, wherein the data describing the organization identifies one or more assets maintained by the online system and associated with the organization, each asset associated with a type of asset that is selected from a group of types of assets consisting of;

a page, an advertising account, a source of funding, a list identifying one or more users of the online system, an application, and an event, wherein each type of asset is associated, respectively, with one or more roles that identify one or more actions a user is authorized to perform on behalf of the organization;

receiving, by the online system, a request from a first client device associated with the organization, the request to associate a role with the user of the online system, the role identifying an action the user is authorized to perform on behalf of the organization for a first asset of the one or more assets;

determining, by the online system, a type of the first asset;

determining, by the online system, whether to associate the role with the user according to a connection between the user and the organization maintained by the online system and the determined type of the first asset;

responsive to determining to associate the role with the user;

determining, by the online system, one or more permissions enabling the user to perform the action identified by the role with the connection between the user and the organization, the role determined to be associated according to the determined type of the first asset, determining the one or more permissions comprises;

generating a first persona associated with the user, the first persona including a first subset of information associated with the user by the online system,generating a second persona associated with the user, the second persona including a second subset of information associated with the user by the online system,establishing a connection between the organization and the first persona,establishing a connection between another organization and the second persona,providing the first client device associated with the organization access to the first subset of the information associated with the user included in the first persona, andpreventing the first client device associated with the organization access to the second subset of the information associated with the user included in the second persona, andstoring information describing the one or more permissions enabling the user to perform the action identified by the role in association with the connection between the organization and the first persona;

receiving, from a second client device associated with the user, a user request of the user to perform the action identified by the role associated with the determined type of the first asset; and

authorizing the second client device associated with the user to perform the action according to the information describing the one or more permissions.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A social networking system allows entities to delegate actions performed on behalf of the entity to social networking system users by assigning one or more roles to social networking system users. Roles may be assigned based on information associated with the entity by the social networking system. Different roles are associated with sets of permissions specifying actions a user associated with a role is authorized to perform on behalf of the entity via the social networking system. Certain permissions of a role associated with the user may be associated with additional users by the user. A persona including a subset of information associated with a user by the social networking system may be created for a user assigned a role, allowing the user to limit information accessible to additional users connected to the persona.

11 Citations

View as Search Results

15 Claims

1. A method comprising:
- storing, in an online system, data describing an organization, wherein the data describing the organization identifies one or more assets maintained by the online system and associated with the organization, each asset associated with a type of asset that is selected from a group of types of assets consisting of;
  
  a page, an advertising account, a source of funding, a list identifying one or more users of the online system, an application, and an event, wherein each type of asset is associated, respectively, with one or more roles that identify one or more actions a user is authorized to perform on behalf of the organization;
  
  receiving, by the online system, a request from a first client device associated with the organization, the request to associate a role with the user of the online system, the role identifying an action the user is authorized to perform on behalf of the organization for a first asset of the one or more assets;
  
  determining, by the online system, a type of the first asset;
  
  determining, by the online system, whether to associate the role with the user according to a connection between the user and the organization maintained by the online system and the determined type of the first asset;
  
  responsive to determining to associate the role with the user;
  
  determining, by the online system, one or more permissions enabling the user to perform the action identified by the role with the connection between the user and the organization, the role determined to be associated according to the determined type of the first asset, determining the one or more permissions comprises;
  
  generating a first persona associated with the user, the first persona including a first subset of information associated with the user by the online system,generating a second persona associated with the user, the second persona including a second subset of information associated with the user by the online system,establishing a connection between the organization and the first persona,establishing a connection between another organization and the second persona,providing the first client device associated with the organization access to the first subset of the information associated with the user included in the first persona, andpreventing the first client device associated with the organization access to the second subset of the information associated with the user included in the second persona, andstoring information describing the one or more permissions enabling the user to perform the action identified by the role in association with the connection between the organization and the first persona;
  
  receiving, from a second client device associated with the user, a user request of the user to perform the action identified by the role associated with the determined type of the first asset; and
  
  authorizing the second client device associated with the user to perform the action according to the information describing the one or more permissions.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, further comprising:
    - storing the first persona in the online system.
  - 3. The method of claim 1, wherein the first subset of information associated with the user by the online system is selected from a group consisting of:
    - information in a user profile associated with the user by the online system, connections between the user and one or more additional users of the online system, actions associated with the user by the online system, and any combination thereof.
  - 4. The method of claim 1, wherein the request identifies an asset and the role is associated with the asset.
  - 5. The method of claim 1, wherein the role is selected from a group consisting of:
    - an advertiser, a moderator, a content creator, an administrator, and any combination thereof.
  - 6. The method of claim 1, wherein the one or more permissions are selected from a group consisting of:
    - viewing information associated with the organization, creating content associated with the organization, removing content associated with the organization, authorizing a payment from a funding source associated with the organization, accessing information associated with the organization, accessing resources associated with the organization, and any combination thereof.
  - 7. The method of claim 1, further comprising:
    - responsive to determining not to associate the role with the user, communicating a denial of the request to the first client device associated with the organization.
  - 8. The method of claim 1, wherein the user is an additional organization.

9. A method comprising:
- storing, in an online system, data describing an organization, wherein the data describing the organization identifies one or more assets maintained by the online system and associated with the organization, each asset associated with a type of asset that is selected from a group of types of assets consisting of;
  
  a page, an advertising account, a source of funding, a list identifying one or more users of the online system, an application, and an event, wherein each type of asset is associated, respectively, with one or more roles that identify one or more actions a user is authorized to perform on behalf of the organization;
  
  receiving, by the online system, a request from a first client device associated with the user, the request to associate a role with the user of the online system, the role identifying an action the user is authorized to perform on behalf of the organization for a first asset of the one or more assets;
  
  determining, by the online system, a type of the first asset;
  
  determining, by the online system, whether to associate the role with the user according to a connection between the user and the organization maintained by the online system and the determined type of the first asset;
  
  responsive to determining to associate the role with the user;
  
  determining, by the online system, one or more permissions enabling the user to perform the action identified by the role with the connection between the user and the organization, the role determined to be associated according to the determined type of the first asset, determining the one or more permissions comprises;
  
  generating a first persona associated with the user, the first persona including a first subset of information associated with the user by the online system,generating a second persona associated with the user, the second persona including a second subset of information associated with the user by the online system,establishing a connection between the organization and the first persona,establishing a connection between another organization and the second persona,providing a second client device associated with the organization access to the first subset of the information associated with the user included in the first persona, andpreventing the second client device associated with the organization access to the second subset of the information associated with the user included in the second persona, andstoring information describing the one or more permissions enabling the user to perform the action identified by the role in association with the connection between the organization and the first persona;
  
  receiving, from the first client device associated with the user, a user request of the user to perform the action identified by the role associated with the type of the first asset; and
  
  authorizing the first client device associated with the user to perform the action according to the information describing the one or more permissions.
- View Dependent Claims (10, 11, 12, 13, 14)
- - 10. The method of claim 9, further comprising:
    - storing the first persona in the online system.
  - 11. The method of claim 9, wherein the first subset of information associated with the user by the online system is selected from a group consisting of:
    - information in a user profile associated with the user by the online system, connections between the user and one or more additional users of the online system, actions associated with the user by the online system, and any combination thereof.
  - 12. The method of claim 9, wherein the request identifies an asset and the role is associated with the asset.
  - 13. The method of claim 9, wherein the role is selected from a group consisting of:
    - an advertiser, a moderator, a content creator, an administrator, and any combination thereof.
  - 14. The method of claim 9, wherein the one or more permissions are selected from a group consisting of:
    - viewing information associated with the organization, creating content associated with the organization, removing content associated with the organization, authorizing a payment from a funding source associated with the organization, accessing information associated with the organization, accessing resources associated with the organization, and any combination thereof.

15. A non-transitory computer-readable storage medium having instructions encoded thereon that, when executed by a processor of an online system, cause the processor to:
- store, in the online system, data describing a user, the data identifying one or more assets associated with the user, each asset associated with a type, wherein the data describing the user identifies one or more assets maintained by the online system and associated with the user, each asset associated with a type of asset that is selected from a group of types of assets consisting of;
  
  a page, an advertising account, a source of funding, a list identifying one or more users of the online system, an application, and an event, wherein each type of asset is associated, respectively, with one or more roles that identify one or more actions a target user is authorized to perform on behalf of the user;
  
  receive, by the online system, a request from a first client device associated with a requesting user, the request to associate a role with the target user of the online system, the role associated with an asset and identifying an action the target user is authorized to perform on behalf of the user for a first asset of the one or more assets;
  
  determine, by the online system, a type of the first asset;
  
  determine, by the online system, whether to associate the role with the target user according to a connection between the target user and the user maintained by the online system and the determined type of the first asset;
  
  responsive to determining to associate the role with the target user;
  
  determine, by the online system, one or more permissions in association with the connection between the target user and the user, the one or more permissions associated with the determined type of the first asset and enabling the target user to perform the action identified by the role, the role determined to be associated according to the determined type of the first asset,determining the one or more permissions comprises;
  
  generating, by the online system, a first persona associated with the target user, the first persona including a first subset of information associated with the target user by the online system,generating, by the online system, a second persona associated with the target user, the second persona including a second subset of information associated with the target user by the online system,establishing, by the online system, a connection between the user and the first persona,establishing, by the online system, a connection between another user and the second persona,providing, by the online system, a second client device associated with the user access to the first subset of the information associated with the target user included in the first persona, andpreventing, by the online system, the second client device associated with the user access to the second subset of the information associated with the target user included in the second persona, andstore, by the online system, information describing the one or more permissions enabling the target user to perform the action identified by the role in association with the connection between the user and the first persona;
  
  receive, from a third client device associated with the target user, a user request of the target user to perform the action identified by the role associated with the type of the first asset; and
  
  authorize the third client device associated with the target user to perform the action according to the information describing the one or more permissions.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Original Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Inventors
Wong, Mark Kar Hong, Billings, Benjamin K., Williams, Joshua D., Wu, Cameron Chuk Hing, Triolo, Christopher
Primary Examiner(s)
Najjar, Saleh
Assistant Examiner(s)
TENG, LOUIS C

Application Number

US14/198,810
Publication Number

US 20150256557A1
Time in Patent Office

1,111 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06Q 50/01   Social networking

H04L 63/08   for authentication of entit...

H04L 63/20   for managing network securi...

H04L 67/306   User profiles

H04L 67/53   using third party service p...

Granting permission to act on behalf of a user in a social networking system

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

11 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Granting permission to act on behalf of a user in a social networking system

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links