CPC H04L 63/102 (2013.01) [H04L 63/08 (2013.01)] | 20 Claims |
1. A method comprising:
receiving, at an online system, information describing a request from a requesting user of a client device to perform a requested action within a guest application on the client device and information identifying a host application on the client device to be used to determine whether the requesting user is allowed to perform the requested action within the guest application;
communicating, to the host application, the information describing the request for comparison to a set of permissions, wherein the information describing the request comprises user-identifying information for the requesting user, information describing the requested action, and information identifying the guest application and each of the set of permissions identifies a user of the guest application allowed to perform a type of action within the guest application;
responsive to receiving, at the online system, information indicating that the information describing the request matches a permission of the set of permissions, communicating, to the host application, a message for display to the requesting user via the host application, the message comprising a selectable option to allow the requested action to be performed by the requesting user within the guest application;
responsive to receiving, at the host application, a selection of the option to allow the requested action to be performed by the requesting user within the guest application, receiving, at the online system, a token that allows the requesting user to perform the requested action within the guest application; and
communicating the token to the guest application.
|