METHODS AND SYSTEMS FOR AUTHORIZING WEB SERVICE REQUESTS

摘要

Systems and methods for authorizing web service requests. In some embodiments, a computer-implemented method includes receiving a web service request having an authorization header and business code, authenticating a Security Assertion Markup Language (SAML) token included in the authorization header and constructing a security context based on attributes of the SAML token. The process also includes passing the security context to an authorization interceptor to interact with a policy information point (PIP) and a policy decision point (PDP), receiving a permit response, and then authorizing the web services request. In some implementations, the requested web service is then transmitted to the client computer that requested the web service.

主权项

1. A computer-implemented method, comprising:
receiving a web service request comprising an authorization header and business code; passing the web services request to an authentication interceptor to authenticate a Security Assertion Markup Language (SAML) token included in the authorization header; receiving an authentication indication; constructing a security context based on attributes of the SAML token; passing the security context to an authorization interceptor to interact with a policy information point (PIP) and a policy decision point (PDP); receiving a permit response; and authorizing the web services request.