| CPC G06F 21/44 (2013.01) [G06F 21/45 (2013.01)] | 15 Claims |
|
15. A non-transitory computer-readable medium storing instructions for a unified plug-in micro-service access control for role-based authorization and tenant-based authorization, the instructions comprising: one or more instructions that, when executed by one or more processors, cause the one or more processors to:
receive an access token in a first format, wherein the access token includes tenant-specific information associated with a userand role-specific information associated with the user, the role-specific information associated with the user and the tenant-specific information associated with the user correspond to a respective shared resource;
validate the access token;
generate a mapping of roles associated with the user based on a common authorization library; and
set a security context for the user based on the mapping of roles associated with the user;
generate a secure access token based on the security context for the user; and
transmit, to a respective application programming interface, the secure access token,
wherein the secure access token is in the first format, the secure access token comprises a mapping of permissions associated with the user, the mapping of permissions associated with the user based on the mapping of roles associated with the user and the security context for the user, and wherein the respective application programming interface allows the user with the permissions to access the respective shared resource.
|