CPC G06F 21/6218 (2013.01) [G06F 21/31 (2013.01)] | 20 Claims |
1. A method comprising:
identifying, at a service provider, user data requested by a first user and a purpose for the user data;
transmitting, using a federation protocol, a request for the user data from the service provider to an identity provider, wherein the service provider and the identity provider are in an identity federation, wherein the request includes a defined syntax for conveying the purpose for the user data to the identity federation; and
after obtaining user consent from a second user different from the first user for the user data to be used for the purpose identified by the service provider, receiving an authorization token from the identity provider to access the user data.
|