| CPC H04L 63/101 (2013.01) [G06F 21/6218 (2013.01); H04L 63/104 (2013.01)] | 16 Claims |
|
1. A method, comprising:
receiving, by a content management system, a first request from a service executing on a computing system associated with the content management system, the first request to access a first data item stored on a first server of the content management system;
determining, by the content management system, a first data type associated with the first data item;
accessing, by the content management system, an access control list to determine whether the service has permission to access data associated with the first data type;
based on a first determination that the service has permission to access data associated with the first data type, processing, by the content management system, the first request;
receiving, by the content management system, a second request from the service executing on the computing system to access a second data item stored on the first server of the content management system;
determining, by the content management system, a second data type associated with the second data item;
accessing, by the content management system, the access control list to determine whether the service has permission to access data associated with the second data type; and
based on a second determination that the service does not have permission to access data associated with the second data type, rejecting, by the content management system, the second request.
|