Modeled authorization check implemented with UI framework
US9158932B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | May 8, 2013 |
| Grant date | Oct 13, 2015 |
| Priority date | — |
| Expiry date | Mar 1, 2034 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/6218
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Access by a user to a database layer, is governed by modeled authorization checking implemented with authorization objects present in an overlying application layer. At design time, the authorization checking is modeled as part of an existing user interface (UI) model, which may conform to a Model, View, and Control (MVC) design pattern. Authorization objects created during design time, are stored in a meta data repository. At runtime, an authorization engine references the authorization objects and the operations supported by those authorization objects. The authorization check is thus implemented centrally in the UI framework itself using this modeled information. Embodiments avoid complexity, potential lack of internal consistency, and low visibility of conventional de-centralized authorization checking schemes that rely upon a plurality of enforcement points hard-coded at multiple locations within application logic.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.