Passporting credentials between a mobile app and a web browser
First Claim
Patent Images
1. A system, comprising:
- a non-transitory memory; and
one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising;
in response to receiving authentication credentials associated with a user via a user interface (UI) of a native application, transmitting the authentication credentials to a server to request for a session token;
in response to receiving the session token from the server, initiating a device session between the native application and the server based on the session token;
launching an embedded web browser to provide a web UI within the native application by providing the session token and a web address to the embedded web browser;
transmitting the session token and the web address from the embedded web browser to the server to automatically authenticate the user in a web session between the embedded web browser and the server without requiring the authentication credentials, wherein the session token authorizes the server to share at least a portion of session data associated with the device session with the web session;
in response to intercepting a first communication between the embedded web browser and the server, resuming the device session based on the session token; and
displaying the UI of the native application for the resumed device session.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for passporting credentials provide a mechanism by which a native app on a client device can invoke a service provider'"'"'s core web site web addresses (URL) while keeping the existing session active and shared between the two experiences (native app and web flow) so that the end user does not need to re-login at each context switch. The mechanism can include a unique way for the web flow context to communicate conditions and pass control back to the native app context of the shared session.
18 Citations
20 Claims
-
1. A system, comprising:
-
a non-transitory memory; and one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising; in response to receiving authentication credentials associated with a user via a user interface (UI) of a native application, transmitting the authentication credentials to a server to request for a session token; in response to receiving the session token from the server, initiating a device session between the native application and the server based on the session token; launching an embedded web browser to provide a web UI within the native application by providing the session token and a web address to the embedded web browser; transmitting the session token and the web address from the embedded web browser to the server to automatically authenticate the user in a web session between the embedded web browser and the server without requiring the authentication credentials, wherein the session token authorizes the server to share at least a portion of session data associated with the device session with the web session; in response to intercepting a first communication between the embedded web browser and the server, resuming the device session based on the session token; and displaying the UI of the native application for the resumed device session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method, comprising:
-
in response to receiving authentication credentials associated with a user via a user interface (UI) of a native application, transmitting, by one or more hardware processors, the authentication credentials to a server to request for a session token; in response to receiving the session token from the server, initiating, by the one or more hardware processors, a device session between the native application and the server based on the session token; launching, by the one or more hardware processors, an embedded web browser to provide a web UI within the native application by providing the session token and a web address to the embedded web browser; transmitting, by the one or more hardware processors, the session token and the web address from the embedded web browser to the server to automatically authenticate the user in a web session between the embedded web browser and the server without requiring the authentication credentials, wherein the session token authorizes the server to share at least a portion of session data associated with the device session with the web session; in response to intercepting a first communication between the embedded web browser and the server, resuming, by the one or more hardware processors, the device session based on the session token; and displaying, by the one or more hardware processors, the UI of the native application for the resumed device session. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
-
19. A non-transitory machine readable medium having stored thereon machine-readable instructions executable to cause a machine to perform operations comprising:
-
in response to receiving authentication credentials associated with a user via a user interface (UI) of a native application, transmitting the authentication credentials to a server to request for a session token; in response to receiving the session token from the server, initiating a device session between the native application and the server based on the session token; launching an embedded web browser to provide a web UI within the native application by providing the session token and a web address to the embedded web browser; transmitting the session token and the web address from the embedded web browser to the server to automatically authenticate the user in a web session between the embedded web browser and the server without requiring the authentication credentials, wherein the session token authorizes the server to share at least a portion of session data associated with the device session with the web session; in response to intercepting a first communication between the embedded web browser and the server, resuming the device session based on the session token; and displaying the UI of the native application for the resumed device session. - View Dependent Claims (20)
-
Specification