Method and System for Access to Material on a Web Site
First Claim
1. A method under control of a computer system for giving a user access to a plurality of services provided by a computer system, comprising the steps ofobtaining identity data of the user from the user;
- validating the user to access a first service of the computer system by analyzing the identity data;
storing validating data indicating that the user is authorized to access the first service;
providing the first service to the user, giving access based on the validating data;
displaying an activation unit arranged to activate an invoke to a second service embedded in a display of the first service;
passing the validating data to the second service upon activation of the activation unit; and
providing the second service to the user, giving access based on the validating data.
1 Assignment
0 Petitions
Accused Products
Abstract
A user connected to a first service mounted on a remote server is enabled to connect to a second service, on the same or another server, without new steps required for log-in, and optionally including the passing of parameters from the first to the second service that enable the second service to open in a manner appropriate to the state of the user'"'"'s interaction with the first service at the moment of requesting the connection. In the case of the second service being provided from a second server, authentication is provided by means of an authentication broker, which provides a token that the operating system of the user'"'"'s computer is induced (via its normal response to received messages) to embed in a request for service to the second server, which verifies the token by an exchange with the broker. In either case, once the connection with the second server is achieved, later repeated access may be enabled without the user having to go through the procedure required to enable such access from scratch.
105 Citations
25 Claims
-
1. A method under control of a computer system for giving a user access to a plurality of services provided by a computer system, comprising the steps of
obtaining identity data of the user from the user; -
validating the user to access a first service of the computer system by analyzing the identity data; storing validating data indicating that the user is authorized to access the first service; providing the first service to the user, giving access based on the validating data; displaying an activation unit arranged to activate an invoke to a second service embedded in a display of the first service; passing the validating data to the second service upon activation of the activation unit; and providing the second service to the user, giving access based on the validating data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer program product for giving, to a user already connected to a first server, access to content or a service on a web site provided by a second server, including a computer usable medium having computer program logic stored therein to enable a computer system to perform the steps of:
-
mounting on the first server a first remote service for a user; in the display of the first remote service, showing the icon of a second service on the second server; if the user clicks the icon, the first remote server requesting a token from an authentication broker; the first remote server receiving a token from the authentication broker; the first server sending the token to the user'"'"'s system, embedded in a construct to which the normal functioning of the user'"'"'s system responds by; sending a message from the user'"'"'s system to the second server, in which is embedded a request for initiation of service and a copy of the token; verifying the token in the request for initiation of service by an exchange between the second server and the authentication broker; providing the said second service to the user, with no new request to the user for authentication data.
-
-
22. A computer comprising a control unit and a memory wherein a computer program product is stored in the memory arranged to be executed on the control unit, wherein the control unit is arranged to perform the steps of;
-
obtaining identity data of a user from the user; validating the user to access a first service of the computer by analyzing the identity data; storing validating data indicating that the user is authorized to access the first data; providing the first service to the user, giving access based on the validating data; displaying an activation unit, embedded in a display presenting the first service, arranged to activate a request to access second service; and passing the validating data to the second service upon activation of the activation unit for enabling provision of the second service to the user, granting access based on the validating data. - View Dependent Claims (23, 24)
-
-
25. A computer program product including a computer usable medium having computer program logic stored therein to enable a computer system to perform the steps of
obtaining identity data of the user from the user; -
validating the user to access a first service of the computer system by analyzing the identity data; storing validating data indicating that the user is authorized to access the first service; providing the first service to the user, giving access based on the validating data; displaying an activation unit, embedded in a display presenting the first service, arranged to activate and invoke the second service; passing the validating data to the second service upon activation of the activation unit; and providing the second service to the user, giving access based on the validating data.
-
Specification