主权项 |
1. A system for creating switchable desktops each having a separate user authorization comprising:
a) a custom authentication and authorization (A&A) data store configured to stores roles assigned to each user; b) a custom virtual desktop manager configured to enable creating, switching, and destroying virtual desktops and to specify custom process tokens for each virtual desktop, said process tokens defining different permissions within a single session, and are obtained from a Local Security Authority (LSA) module that requests and assigns process tokens to an executing process; wherein said A&A data store and virtual desktop manager operate cooperatively to generate a plurality of data structures, each representing a virtual desktop with an associated custom process token. |