Virtualized data storage and management of policy and credential data sources
First Claim
1. A method comprising:
- receiving, at a computer system, using an interface for accessing a plurality of storage systems, a data request for credential information from a single sign-on service of one or more single sign-on services, wherein the credential information is stored at one of the plurality of storage systems, and wherein the data request includes one or more criteria for obtaining the credential information from the single sign-on service;
identifying, using one or more credential criteria identified in the data request based on the one or more criteria, a storage system associated with the data request, wherein the one or more credential criteria are generated for the credential information;
selecting, from a plurality of plug-ins, a plug-in corresponding to the identified storage system, wherein the plug-in is selected based on a type of storage system, and wherein the plug-in converts the data request according to the type of storage system; and
sending, to the single sign-on service for which the data request is received, data associated with the data request, the data being obtained from the identified storage system.
1 Assignment
0 Petitions
Accused Products
Abstract
Web-based single sign-on can enable a user to log in to a single interface (such as through a web browser or thin client) and then provide SSO services to the user for one or more web applications. The web-based SSO system can be extended to support one or more different access control methods, such as form-fill, Federated (OIF), SSO Protected (OAM), and other policies. The web-based SSO system can include a user interface through which the user can access different web applications, systems, etc. and manage their credentials. Each SSO service can be associated with a web interface allowing the SSO services to be accessed over the web. The web interfaces can provide CRUD (create, read, update, delete) functionality for each SSO service. To support different access policy types, the web-based SSO system can include an extensible data manager that can manage data access to different types of repositories transparently.
-
Citations
20 Claims
-
1. A method comprising:
-
receiving, at a computer system, using an interface for accessing a plurality of storage systems, a data request for credential information from a single sign-on service of one or more single sign-on services, wherein the credential information is stored at one of the plurality of storage systems, and wherein the data request includes one or more criteria for obtaining the credential information from the single sign-on service; identifying, using one or more credential criteria identified in the data request based on the one or more criteria, a storage system associated with the data request, wherein the one or more credential criteria are generated for the credential information; selecting, from a plurality of plug-ins, a plug-in corresponding to the identified storage system, wherein the plug-in is selected based on a type of storage system, and wherein the plug-in converts the data request according to the type of storage system; and sending, to the single sign-on service for which the data request is received, data associated with the data request, the data being obtained from the identified storage system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A non-transitory computer-readable medium storing one or more instructions that, upon execution by one or more processors, cause the one or more processors to:
-
receive using an interface for accessing a plurality of storage systems, a data request for credential information from a single sign-on service of one or more single sign-on services, wherein the credential information is stored at one of the plurality of storage systems, and wherein the data request includes one or more criteria for obtaining the credential information from the single sign-on service; identify, using one or more credential criteria identified in the data request based on the one or more criteria, a storage system associated with the data request, wherein the one or more credential criteria are generated for the credential information; select, from a plurality of plug-ins, a plug-in corresponding to the identified storage system, wherein the plug-in is selected based on a type of storage system, and wherein the plug-in converts the data request according to the type of storage system; and send, to the single sign-on service for which the data request is received, data associated with the data request, the data being obtained from the identified storage system. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A system comprising:
-
one or more processors; and a memory accessible to the one or more processors, the memory storing one or more instructions that, upon execution by the one or more processors, causes the one or more processors to; receive using an interface for accessing a plurality of storage systems, a data request for credential information from a single sign-on service of one or more single sign-on services, wherein the credential information is stored at one of the plurality of storage systems, and wherein the data request includes one or more criteria for obtaining the credential information from the single sign-on service; identify, using one or more credential criteria identified in the data request based on the one or more criteria, a storage system associated with the data request, wherein the one or more credential criteria are generated for the credential information; select, from a plurality of plug-ins, a plug-in corresponding to the identified storage system, wherein the plug-in is selected based on a type of storage system, and wherein the plug-in converts the data request according to the type of storage system; and send, to the single sign-on service for which the data request is received, data associated with the data request, the data being obtained from the identified storage system. - View Dependent Claims (18, 19, 20)
-
Specification