	US 12,149,531 B2
	Access control in microservice architectures
Vincent Burckhardt, Clonee (IE); Andre Fischer, Hamburg (DE); Olgierd Pieczul, Castleknock (IE); Jürgen Schmidt, Hamburg (DE); and Xiao F. Yu, Shanghai (CN)
Assigned to International Business Machines Corporation, Armonk, NY (US)
Filed by International Business Machines Corporation, Armonk, NY (US)
Filed on Jun. 30, 2022, as Appl. No. 17/854,222.
Application 17/854,222 is a continuation of application No. 15/795,048, filed on Oct. 26, 2017, granted, now 11,457,014.
Prior Publication US 2022/0337593 A1, Oct. 20, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06F 21/60 (2013.01); G06F 21/62 (2013.01); H04L 41/28 (2022.01); H04W 12/08 (2021.01)

CPC H04L 63/101 (2013.01) [G06F 21/604 (2013.01); G06F 21/6218 (2013.01); H04L 41/28 (2013.01); H04W 12/08 (2013.01)]

20 Claims

1. A computer program product for supporting management of an application for clients, the computer program product comprising one or more computer readable storage mediums having program code embodied therewith, the program code comprising programming instructions for:

receiving a request by a client to access a resource provided by the application in order to perform a function;

computing a set of effective permissions from an intersection of a set of actor permissions, a set of client permissions and a set of resource permissions; and

granting or denying the request conditional on the effective permissions being at least a subset of the permissions required to be given by any of the application's microservices that are needed for the resource being requested.