Aggregator technology without usernames and passwords
First Claim
1. A method of providing access of web applications over a network to a remote user computer, the method comprising:
- providing access to an aggregator application from the remote computer via a social login identity provider;
receiving a username associated with the social login identity provider at a lightweight directory access protocol (LDAP) server sent from a data source associated with the aggregator application over the Internet, the LDAP server comprising a microprocessor and a memory that stores the user'"'"'s informational data;
identifying the stored user'"'"'s informational data by comparing the received username to a private username and/or private password previously stored for said user but is inaccessible to said user;
generating a challenge question having an associated answer, request for biometric or social information from the user, or a request for other relevant stored data about the user, each of which indicates the identity of the user;
formatting the challenge or requests into data blocks according to a format associated with said social login identity provider; and
transmitting the formatted challenge or requests over a communication channel to the remote computer intended for the user to answer,wherein when the user provides a correct response to the challenge or requests, the LDAP server causing the aggregator application, on the remote computer, to activate, display, and provide access to all of the web applications on which the user has accounts;
wherein the LDAP server causes the aggregator application to activate and display on the remote computer also web applications on which the user does not have accounts and subsequently are not enabled and wherein the aggregator application is configured to display a visual indicator to indicate that the applications do not have an account for the user and subsequently are not enabled.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques are described in which to access a user'"'"'s web applications, the user registers and signs on to an aggregator system using any supported login identity provider username and password. When the user registers for the first time, the system collects additional information to verify the user for a subsequent access to the system. The system also automatically creates a system secret username and secret, highly securely generated password, both of which are unknown and inaccessible to the user. The secret username and password are stored in a lightweight directory access protocol (LDAP) server or database or in a distributed cloud database system. The system also maps the login identity provider user name to the secret user name and password for subsequent usage.
-
Citations
7 Claims
-
1. A method of providing access of web applications over a network to a remote user computer, the method comprising:
-
providing access to an aggregator application from the remote computer via a social login identity provider; receiving a username associated with the social login identity provider at a lightweight directory access protocol (LDAP) server sent from a data source associated with the aggregator application over the Internet, the LDAP server comprising a microprocessor and a memory that stores the user'"'"'s informational data; identifying the stored user'"'"'s informational data by comparing the received username to a private username and/or private password previously stored for said user but is inaccessible to said user; generating a challenge question having an associated answer, request for biometric or social information from the user, or a request for other relevant stored data about the user, each of which indicates the identity of the user; formatting the challenge or requests into data blocks according to a format associated with said social login identity provider; and transmitting the formatted challenge or requests over a communication channel to the remote computer intended for the user to answer, wherein when the user provides a correct response to the challenge or requests, the LDAP server causing the aggregator application, on the remote computer, to activate, display, and provide access to all of the web applications on which the user has accounts; wherein the LDAP server causes the aggregator application to activate and display on the remote computer also web applications on which the user does not have accounts and subsequently are not enabled and wherein the aggregator application is configured to display a visual indicator to indicate that the applications do not have an account for the user and subsequently are not enabled. - View Dependent Claims (2, 3)
-
-
4. A system, comprising:
-
a processor; and non-transitory computer-readable storage medium coupled to the processor and having instructions stored thereon, which, when executed by the processor, cause the processor to perform operations comprising; providing access to an aggregator application from the remote computer via a social login identity provider; receiving a username associated with the social login identity provider at a lightweight directory access protocol (LDAP) server sent from a data source associated with the aggregator application over the Internet, the LDAP server comprising a microprocessor and a memory that stores the user'"'"'s informational data; identifying the stored user'"'"'s informational data by comparing the received username to a private username and/or private password previously stored for said user but is inaccessible to said user; generating a challenge question having an associated answer, request for biometric or social information from the user, or request other relevant stored data about the user, each of which indicates the identity of the user; formatting the challenge or requests into data blocks according to a format associated with said social login identity provider; and transmitting the formatted challenge or requests over a communication channel to the remote computer intended for the user to answer, wherein when the user provides a correct response to the challenge or requests, the LDAP server causing the aggregator application, on the remote computer, to activate, display, and provide access to all of the web applications on which the user has accounts; wherein the LDAP server causes the aggregator application to activate and display on the remote computer also web applications on which the user does not have accounts and subsequently are not enabled and wherein the aggregator application is configured to display a visual indicator to indicate that the applications do not have an account for the user and subsequently are not enabled. - View Dependent Claims (5, 6)
-
-
7. A non-transitory computer-readable storage medium having stored thereon a computer program comprising a program code for performing, when running on a computer, a method comprising:
-
providing access to an aggregator application from the remote computer via a social login identity provider; receiving a username associated with the social login identity provider at a lightweight directory access protocol (LDAP) server sent from a data source associated with the aggregator application over the Internet, the LDAP server comprising a microprocessor and a memory that stores the user'"'"'s informational data; identifying the stored user'"'"'s informational data by comparing the received username to a private username and/or private password previously stored for said user but is inaccessible to said user; generating a challenge question having an associated answer, request for biometric or social information from the user, or a request for other relevant stored data about the user, each of which indicates the identity of the user; formatting the challenge or requests into data blocks according to a format associated with said social login identity provider; and transmitting the formatted challenge or requests over a communication channel to the remote computer intended for the user to answer, wherein when the user provides a correct response to the challenge or requests, the LDAP server causing the aggregator application, on the remote computer, to activate, display, and provide access to all of the web applications on which the user has accounts, wherein the LDAP server causes the aggregator application to activate and display on the remote computer also web applications on which the user does not have accounts and subsequently are not enabled and wherein the aggregator application is configured to display a visual indicator to indicate that the applications do not have an account for the user and subsequently are not enabled.
-
Specification