×

Accessing an application through application clients and web browsers

  • US 10,484,385 B2
  • Filed: 06/04/2015
  • Issued: 11/19/2019
  • Est. Priority Date: 06/04/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • deploying an authorization server to control access of one or more application clients to a plurality of protected applications;

    receiving, at a protected application of the plurality of protected applications, a request comprising an access token from an application client of the one or more application clients which is associated with a user, wherein the access token is issued by the authorization server during authorization of the application client for accessing the protected application;

    upon determining that the access token is valid at the protected application, retrieving, from the authorization server, grant information comprising intersecting scopes of rights between Open Authorization (OAuth) rights requested to be granted to the application client at the authorization server, rights mapped to a Java role of the user at the authorization server, and rights mapped to the protected application, wherein the intersecting scopes of rights comprises an overlap between corresponding scopes of the rights of the OAuth rights requested to the granted, the rights mapped to the Java role of the user, and the rights mapped to the protected application; and

    establishing a direct session between the application client and the protected application based on the intersecting scopes of rights.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×