METHOD AND APPARATUS FOR SECURELY INVOKING A REST API
First Claim
1. A method for enabling a user to securely invoke a REST (Representational State Transfer) API (Application Programmer Interface) at an application server, the method comprising:
- establishing a first secure communication channel with an application server;
sending a first request to the application server to invoke the REST API, wherein the first request is sent using the first secure communication channel;
receiving a security token from an authentication system in response to authenticating the user with the authentication system;
receiving a nonce and a timestamp from the application server;
determining a security token digest using the security token, the nonce, and the timestamp;
sending a second request to the application server to invoke the REST API, wherein the second request includes the security token digest, and wherein the second request is sent using the first secure communication channel;
receiving data from the application server which is associated with the request to invoke the REST API; and
storing the data.
1 Assignment
0 Petitions
Accused Products
Abstract
An embodiment of the present invention provides a system that enables a user to securely invoke a REST (Representational State Transfer) API (Application Programming Interface) at an application server. A client can establish a secure communication channel with an application server, and can send a request to the application server to invoke the REST API. The client can then receive a security token from an authentication system in response to authenticating the user with the authentication system. Next, the client can receive a nonce and a timestamp from the application server. The client can then determine a security token digest using the security token, the nonce, and the timestamp. Next, the client can resend the request to the application server to invoke the REST API with the security token digest. The application server can invoke the REST API if the security token digest is valid.
302 Citations
20 Claims
-
1. A method for enabling a user to securely invoke a REST (Representational State Transfer) API (Application Programmer Interface) at an application server, the method comprising:
-
establishing a first secure communication channel with an application server; sending a first request to the application server to invoke the REST API, wherein the first request is sent using the first secure communication channel; receiving a security token from an authentication system in response to authenticating the user with the authentication system; receiving a nonce and a timestamp from the application server; determining a security token digest using the security token, the nonce, and the timestamp; sending a second request to the application server to invoke the REST API, wherein the second request includes the security token digest, and wherein the second request is sent using the first secure communication channel; receiving data from the application server which is associated with the request to invoke the REST API; and storing the data. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method for enabling a user to securely invoke a REST (Representational State Transfer) API (Application Programmer Interface) at an application server, the method comprising:
-
establishing a first secure communication channel with an application server; sending a first request to the application server to invoke the REST API, wherein the first request is sent using the first secure communication channel; receiving a security token from an authentication system in response to authenticating the user with the authentication system; receiving a nonce and a timestamp from the application server; determining a security token digest using the security token, the nonce, and the timestamp; sending a second request to the application server to invoke the REST API, wherein the second request includes the security token digest, and wherein the second request is sent using the first secure communication channel; receiving data from the application server which is associated with the request to invoke the REST API; and storing the data. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A method for enabling a user to securely invoke a REST (Representational State Transfer) API (Application Programming Interface) at an application server, the method comprising:
-
establishing a first secure communication channel with a client; receiving a first request from the client to invoke the REST API, wherein the first request is received using the first secure communication channel; sending a nonce and a timestamp to the client; receiving a security token digest from the client; validating the security token digest; generating output data by invoking the REST API in response to determining that the security token digest is valid; and sending the output data to the client. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method for enabling a user to securely invoke a REST (Representational State Transfer) API (Application Programming Interface) at an application server, the method comprising:
-
establishing a first secure communication channel with a client; receiving a first request from the client to invoke the REST API, wherein the first request is received using the first secure communication channel; sending a nonce and a timestamp to the client; receiving a security token digest from the client; validating the security token digest; generating output data by invoking the REST API in response to determining that the security token digest is valid; and sending the output data to the client. - View Dependent Claims (17, 18, 19, 20)
-
Specification