×

Web-based interface integration for single sign-on

  • US 10,225,244 B2
  • Filed: 09/22/2014
  • Issued: 03/05/2019
  • Est. Priority Date: 09/20/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method for web-based access management through a single sign-on service system, the method comprising:

  • receiving, by a first tunnel proxy of a computer system that includes a data manager that manages data access to different types of repositories transparently, from a second tunnel proxy of a single sign-on gateway, a first request, for a first single sign-on service of a plurality of single sign on services to perform a management operation on first single sign-on data of a plurality of single sign-on data, wherein;

    the first request is initiated as a second request, wherein the second request is a credential management request, defined according to a first protocol, by a client device via a web interface associated with the first single sign-on service,the second tunnel proxy of the single sign-on gateway converts the second request from the first protocol to an access protocol to generate the first request,the management operation is one of creating, updating, or deleting the first single sign-on data, andthe single sign-on service system provides the plurality of single sign-on services for a plurality of single sign-on access control types using the plurality of single sign-on data stored in a plurality of data repositories;

    in response to receiving the first request, converting, by the first tunnel proxy of the computer system, the first request from the access protocol to the first protocol to obtain the second request;

    in response to converting the first request to obtain the second request, providing the second request to the first single sign-on service;

    in response to receiving the second request, performing, by the first single sign-on service of the computer system, the management operation, wherein performing the management operation comprises;

    generating an operation request based on the second request to perform the management operation,providing the operation request to the data manager of the single sign-on service system,determining, by the data manager, that the first single sign-on data is associated with a first data repository of the plurality of data repositories,transmitting the operation request to the first data repository, and generating a first response to the second request based on transmitting the operation request to the first data repository, wherein the first response is defined according to the first protocol;

    converting, by the first tunnel proxy of the computer system, the first response from the first protocol to the access protocol to generate a second response; and

    sending, by the first tunnel proxy of the computer system, to the second tunnel proxy of the single sign-on gateway, the second response that facilitates providing the first response to the client device via the web interface.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×