System and method for delegating a user authentication process for a networked application to an authentication agent
First Claim
1. A method for authenticating a user of a networked application, wherein the networked application has a client side and a server side, the method comprising:
- the server side of the networked application receiving authentication information for the user from the client side of the networked application;
the server side of the networked application determining an appropriate authentication agent to contact for authenticating the user;
the server side of the networked application passing the authentication information to the authentication agent;
the authentication agent using the authentication information to attempt to authenticate the user;
the authentication agent communicating the results of the authentication attempt to the server side of the networked application;
the server side of the networked application authorizing the user to access the networked application if the authentication attempt was successful.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method for delegating a user authentication process for a networked application to an authentication proxy. A networked application may request a user to provide authentication information in order to access the application. Upon receiving this authentication information from the user, the client side of the networked application sends the information to the server side of the networked application. The server side of the application may then determine an appropriate authentication agent associated with the user to delegate the authentication process to. For example, for each application user, the server side of the application may maintain information associated with the user, such as the user'"'"'s employer. The application may then match this employer information to an authentication agent running in the employer'"'"'s network domain, and the authentication process may then be delegated to this authentication agent.
-
Citations
14 Claims
-
1. A method for authenticating a user of a networked application, wherein the networked application has a client side and a server side, the method comprising:
-
the server side of the networked application receiving authentication information for the user from the client side of the networked application;
the server side of the networked application determining an appropriate authentication agent to contact for authenticating the user;
the server side of the networked application passing the authentication information to the authentication agent;
the authentication agent using the authentication information to attempt to authenticate the user;
the authentication agent communicating the results of the authentication attempt to the server side of the networked application;
the server side of the networked application authorizing the user to access the networked application if the authentication attempt was successful. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for authenticating a user of a networked application, the system comprising:
-
a first computer system running software associated with a client side of a networked application;
a second computer system connected to the first computer system via a network, wherein the second computer system runs software associated with a server side of the detworked application;
a third computer system connected to the second computer system via a network, wherein the third computer system runs an authentication agent;
wherein the software associated with the server side of the networked application is operable to;
receive authentication information for the user from the software, associated with the client side of the networked application;
determine that the authentication agent running on the third computer system should be contacted in order to authenticate the user;
pass the authentication information to the authentication agent;
wherein the authentication agent is operable to;
use the authentication information to attempt to authenticate the user;
communicate the results of the authentication attempt to the software associated with the server side of the networked application;
wherein the software associated with the server side of the networked application is operable to authorize the user to access the networked application if the authentication attempt was successful. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
Specification