USER AUTHENTICATION
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention authenticates a user for multiple resources distributed across multiple domains through the performance of a single authentication. User access requests for a protected resource in a first domain are received and redirected to a second domain. User authentication is performed at the second domain. In one embodiment, the system transmits an authentication cookie for the second domain to the user after authentication at the second domain. In another embodiment, the system further redirects subsequent resource requests for resources in the first domain or a third domain to the second domain. The second domain confirms the user'"'"'s authentication for applicable portions of the first, second, and third domains using the cookie.
-
Citations
53 Claims
-
1-36. -36. (canceled)
-
37. An apparatus, comprising:
-
a communication interface;
one or more storage devices; and
one or more processors in communication with said one or more storage devices and said communication interface, said one or more processors programmed to perform a method comprising the steps of;
receiving a user request for a protected resource, said resource is in a first domain, redirecting said request to a second domain, and authenticating said user at said second domain. - View Dependent Claims (38, 42, 44, 45, 46, 53)
-
- 39. (canceled)
-
41. (canceled)
-
47. A method for authenticating a user for a plurality of domains in a network-based system, comprising the steps of:
-
receiving a request for a protected resource, said resource is in a first domain;
determining whether said network-based system protects only said first domain or whether it protects multiple domains;
if said network-based system only protects said first domain, authenticating said user for said first domain at said first domain;
if said network-based system protects multiple domains, determining whether each of said multiple domains are on a single server;
if said multiple domains are on said single server;
determining whether said first domain is a preferred domain of said multiple domains, authenticating said user for said first domain at said first domain if said first domain is said preferred domain, and redirecting said request to said preferred domain and authenticating said user for said first domain at said preferred domain if said first domain is not said preferred domain; and
if said multiple domains are not on said single server;
determining whether said first domain is a master domain, authenticating said first user for said first domain at said first domain if said first domain is said master domain, and redirecting said request to said master domain and authenticating said user for said first domain at said master domain if said first domain is not said master domain. - View Dependent Claims (48, 49, 50)
-
-
51-52. -52. (canceled)
Specification