Permissions for hybrid distributed network resources

Assignee

• AMAZON TECHNOLOGIES, INC. · US

Inventors

• Wesley Marlin Sutton · San Francisco, US
• Apolak Borthakur · Palo Alto, US
• Derek Avery Lyon · San Francisco, US
• Raviprasad Venkatesha Murthy Mummidi · Mountain View, US
• Karthikeyan Natarajan · Kanchinakote, IN

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/0815
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A computing resource service provider may receive, from a user client connected to an on-premises network, a security document specifying one or more user roles defining a level of access to customer resources within the on-premises network. In response, the service provider may generate and provide the user client with a cookie specifying the user roles and including an address for an interface within the service provider network. The service provider may receive a request from the user client to access one or more customer resources hosted by the service provider. The request may include the cookie previously provided to the user client. Accordingly, the service provider may extract the user roles from the cookie and determine, based at least in part on these user roles, whether to fulfill the user client request.