| 发明名称 |
METHODS, SYSTEMS, AND COMPUTER READABLE MEDIA FOR AUTHORIZATION FRAMEWORKS FOR WEB-BASED APPLICATIONS |
| 摘要 |
Methods, systems, and computer readable media for authorization frameworks for web-based applications. In one example, a server executes an application tier of an enterprise software application. The enterprise software application receives API calls from a user device. The user device presents a GUI for a presentation tier of the enterprise software application and sends API calls based on user interaction with the GUI. The sever executes an application tier security controller for checking the API calls against a mapping that maps each API call into a respective group with a respective user interface (UI) element of the GUI and a respective security key, and for controlling user access to the application tier based on checking the API calls against the mapping. |
| 申请公布号 |
US2016373455(A1) |
申请公布日期 |
2016.12.22 |
| 申请号 |
US201514745317 |
申请日期 |
2015.06.19 |
| 申请人 |
Oracle International Corporation |
发明人 |
Shokhrin Anton;Carter Kapono David |
| 分类号 |
H04L29/06;G06F21/62;G06F3/0484;H04L12/24;G06F3/0482 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method performed by a server comprising one or more computers, the method comprising:
executing an application tier of an enterprise software application for receiving a plurality of Application Programming Interface (API) calls from a user device presenting a graphical user interface (GUI) for a presentation tier of the enterprise software application in a web browser, and for responding to the API calls; and executing an application tier security controller for checking the API calls against a mapping that maps each API call into a respective group with a respective user interface (UI) element of the GUI and a respective security key, and for authorizing user access to the application tier based on checking the API calls against the mapping. |
| 地址 |
Redwood Shores CA US |
