Web service provision system, server device, and method

摘要

A web application server includes a user information management unit that manages user IDs and attributes such that each of the user IDs is associated with corresponding one of the attributes, a security policy management unit that manages security policies such that each of security policies is associated with corresponding one of the attributes, a security policy acquisition unit that acquires one of the security policies based on one of the attributes associated with one of the user IDs, and an HTML file generation unit that generates an HTML file in which a script to acquire personal data of corresponding one of users from an intra-company database server is embedded based on one of the security policies of the corresponding one of the users.

主权项

1. A web service provision system, comprising:
a web application server that executes at least one or more web applications; a web browser installed on a client terminal through which a web service provided by the web application server is utilized; a user information management unit that manages user IDs and attributes such that each of the user IDs is associated with at least one of the attributes; and a storage destination management unit that manages a first storage destination of personal data of at least one user such that the first storage destination is associated with at least one of the attributes, wherein the web browser acquires, based on at least one of the attributes associated with a user ID of the user that is transmitted from the web browser to utilize the web service, information identifying a second storage destination connected to an internet or the first storage destination connected to an intranet, from which personal data of a user is to be acquired, and accesses the first storage destination connected to the internet or the second storage destination connected to the intranet to acquire the personal data of the user, based on the acquired information, the acquired information including information identifying whether to access the first storage destination connected to the intranet managed by the storage destination management unit or the second storage destination connected to the internet.