摘要 |
PROBLEM TO BE SOLVED: To solve the problem that, there is conventionally a technique for delegating user's authority, to access service by using a permission token, to a client, however, there is a following problem in the conventional technique that the permission token may be leaked when accessing the service, if a user access every service by using the permission token and when illegal service is designated.SOLUTION: An application for accessing service by using a permission token holds service information, and collates the service information with service information included in a request to the application, then, leakage of the permission token is prevented by accessing the service by using the permission token only in a case that the service is correct service. |