| 发明名称 | Role-based permissions for accessing computing resources | ||
| 摘要 | Mechanisms for controlling access to a computing resource are disclosed. A request to initiate an action against a computing resource of a plurality of computing resources is received from a user. A plurality of permission definitions that identify a plurality of corresponding permissions that grant access to the plurality of computing resources is accessed. Based on a set of permissions comprising at least one permission associated with the user and at least one permission associated with a team of which the user is a member, it is determined that at least one permission in the set of permissions grants the user access to the computing resource. The request to initiate the action against the computing resource is processed. | ||
| 申请公布号 | US9619631(B1) | 申请公布日期 | 2017.04.11 |
| 申请号 | US201414301849 | 申请日期 | 2014.06.11 |
| 申请人 | Ansible, Inc. | 发明人 | DeHaan Michael P.;Church Christopher S.;Houseknecht Christopher L.;Jones Matthew W. |
| 分类号 | G06F21/31 | 主分类号 | G06F21/31 |
| 代理机构 | Withrow & Terranova, PLLC | 代理人 | Withrow & Terranova, PLLC |
| 主权项 | 1. A method for controlling access to a computing resource, comprising: receiving, by a computing device comprising a processor device from a user, a first request to identify a set of credentials which the user has a right to use; accessing a plurality of credential definitions that comprise authentication information for use in authenticating an action against a computing resource of a plurality of computing resources; determining a set of credential definitions that comprises each credential definition designated as being associated with the user and each credential definition designated as being associated with a team of which the user is a member; and effecting presentation of credential identifiers that identify the credential definitions in the set of credential definitions to the user; receiving, by the computing device, a second request associated with the user to initiate an action against the computing resource; accessing, by the computing device, a plurality of permission definitions that identify a plurality of corresponding permissions that grant access to the plurality of computing resources; based on a set of permissions comprising at least one permission associated with the user and at least one permission associated with the team of which the user is the member, determining that at least one permission in the set of permissions grants the user access to the computing resource; and processing the second request to initiate the action against the computing resource. | ||
| 地址 | Durham NC US | ||