Authorizing application access to secure resources

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Robert McKee Howard · Seattle, US
• Titus C. Miron · Bellevue, US
• William D. Taylor · Endicott, US
• Shaofeng Zhu · Bellevue, US
• Eray Aydin · Bellevue, US
• Venkatesh Veeraraghavan · Seattle, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2141
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

An application submits a permission request to a resource server. In response to receiving the request, the resource server generates a user interface that asks the user to grant or deny the requested permissions. If the permissions are granted, data is stored indicating that the application has the requested permissions. When a runtime request for a resource is received, the resource server determines whether the request has been made by a user, by an application, or by an application on behalf of a user. If the request is made by an application only, the request is granted only if the application has permission to access the resource by way of a direct call not on behalf of a user. If the request is made by an application on behalf of a user, the request is granted only if both the user and the application have sufficient permission.