logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8060932 B1

PDFFull Text
Date of Patent:
Nov. 15, 2011

Filed:

Nov. 03, 2006

Modular enterprise authorization solution

Applicants:

Mannan Mohammed, Gilbert, AZ (US);

Saivendra Kayal, Irvine, CA (US);

Ron Tielke, Phoenix, AZ (US);

Mark Brown, Chandler, AZ (US);

Nathan Dolly, Battle Ground, WA (US);

Inventors:

Mannan Mohammed, Gilbert, AZ (US);

Saivendra Kayal, Irvine, CA (US);

Ron Tielke, Phoenix, AZ (US);

Mark Brown, Chandler, AZ (US);

Nathan Dolly, Battle Ground, WA (US);

Assignee:

Microsoft Corporation, Redmond, WA (US);

Attorney:

Vierra Magen Marcus & DeNiro LLP

Primary Examiner:

David J Pearson

Assistant Examiner:

Angela Holmes

Int. Cl.
CPC ...
G06F 7/04 (2006.01);
U.S. Cl.
CPC ...
Abstract

An authorization framework located external to an application may be invoked to determine user authorization for a requested application component. Small amounts of supplemental authentication code are added to application code to invoke provider modules within the authentication framework. The provider modules perform authorization functions outside of the application and return authorization results to the application. The functions include determining a user role, determining the permissions associated with the user role, comparing the role permissions to the security defined on the requested application component by a rule, and returning an authorization state to the authentication framework. The supplemental authentication code may invoke one or more providers through provider interfaces that translate requests to a particular provider. Using the provider based authorization framework, authorization for an application component is achieved externally without hard-coding authorization code within the application itself.

Find Patent Forward Citations

Loading…