Claims
- 1. A computer system comprising:
a client having an application program interface (API) having functions for controlling resources of the client; a walled garden having at least one walled garden site for sending a message to the client, the message containing code for calling a function in the API; and a proxy server in communication with the client and the walled garden for receiving the message from the walled garden site, stripping one or more improper headers off the message to protect against an improperly identified walled garden site, and passing the message to the client.
- 2. The system of claim 1, wherein the walled garden server adds permissions to a header in the message comprising:
a value identifying API functions that can be executed by the server module.
- 3. The system of claim 1, wherein the walled garden server adds permissions to a header in the message comprising:
a value restricting the API functions that can be executed by the server module of the message based on time.
- 4. The system of claim 1, wherein the walled garden server adds permissions to a header in the message comprising:
a value restricting the API functions that can be executed by the server module of the message based on a television channel.
- 5. The system of claim 1, wherein the walled garden server adds permissions to a header in the message comprising:
a value restricting the API functions that can be executed by the server module of the message based on a television network.
- 6. A method in a computer system, comprising the steps of:
controlling resources for a client with an application program interface (API); sending a message to the client, the message containing code for calling a function in the API; and receiving the message intended for the client; stripping one or more improper headers off the message to protect against an improperly identified walled garden site; and sending the message to the client.
- 7. The method of claim 6, further comprising:
adding permissions to a header in the message comprising a value identifying API functions that can be executed by the server module.
- 8. The method of claim 6, further comprising:
adding permissions to a header in the message comprising a value restricting the API functions that can be executed by the server module of the message based on time.
- 9. The method of claim 6, further comprising:
adding permissions to a header in the message comprising a value restricting the API functions that can be executed by the server module of the message based on a television channel.
- 10. The method of claim 6, further comprising:
adding permissions to a header in the message comprising a value identifying API functions that can be executed by the server module.
- 11. The computer program product of claim 6, further comprising:
adding permissions to a header in the message comprising a value restricting the API functions that can be executed by the server module of the message based on a television network
CROSS-REFERENCE TO RELATED APPLICATIONS
[0001] This application is: a continuation of U.S. patent application Ser. No. 09/427,778, entitled METHOD AND SYSTEM FOR RESTRICTING ACCESS TO USER RESOURCES which is a continuation-in-part to U.S. patent application Ser. No. 08/811,586, entitled SYSTEM AND METHOD FOR DELIVERING HIGH-PERFORMANCE ONLINE MULTIMEDIA SERVICES, filed on Mar. 5, 1997 by Milo S. Medin; and is related to U.S. patent application Ser. No. 09/428,235, now U.S. Pat. No. 6,678,733, entitled METHOD AND SYSTEM FOR AUTHENTICATING AND AUTHORIZING USERS, filed on Oct. 26, 1999 by Ralph W. Brown, Robert Keller, and Milo S. Medin, the entire contents of each being herby incorporated by reference herein.
Continuations (1)
|
Number |
Date |
Country |
Parent |
09427778 |
Oct 1999 |
US |
Child |
10836544 |
Apr 2004 |
US |
Continuation in Parts (1)
|
Number |
Date |
Country |
Parent |
08811586 |
Mar 1997 |
US |
Child |
09427778 |
Oct 1999 |
US |