METHOD AND SYSTEM FOR MULTI-PROTOCOL SINGLE LOGOUT
First Claim
1. A method for multi-protocol logout, comprising:
- receiving, by a first identity provider, a logout request from a user agent, wherein the first identity provider executes in a federation manager;
initiating a logout on a service provider associated with the first identity provider based on the logout request by the first identity provider;
identifying, by the federation manager, a plurality of identity providers associated with the user agent, wherein the plurality of identity providers communicate using heterogeneous federation protocols;
initiating, by the federation manager, a logout on each of the plurality of identity providers based on the logout request using the plurality of heterogeneous federation protocols;
initiating, by the plurality of identity providers, a logout of each service provider corresponding to the plurality of identity providers;
identifying a status of each logout; and
sending the status to the user agent.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for multi-protocol logout. The method includes receiving, by a first identity provider, a logout request from a user agent, wherein the first identity provider executes in a federation manager, and initiating a logout on a service provider associated with the first identity provider based on the logout request by the first identity provider. The method further includes identifying, by the federation manager, a plurality of identity providers associated with the user agent, wherein the plurality of identity providers communicate using heterogeneous federation protocols, and initiating, by the federation manager, a logout on each of the plurality of identity providers based on the logout request using the plurality of heterogeneous federation protocols. The method further includes initiating, by the plurality of identity providers, a logout of each service provider corresponding to the plurality of identity providers, identifying a status of each logout, and sending the status to the user agent.
-
Citations
20 Claims
-
1. A method for multi-protocol logout, comprising:
-
receiving, by a first identity provider, a logout request from a user agent, wherein the first identity provider executes in a federation manager; initiating a logout on a service provider associated with the first identity provider based on the logout request by the first identity provider; identifying, by the federation manager, a plurality of identity providers associated with the user agent, wherein the plurality of identity providers communicate using heterogeneous federation protocols; initiating, by the federation manager, a logout on each of the plurality of identity providers based on the logout request using the plurality of heterogeneous federation protocols; initiating, by the plurality of identity providers, a logout of each service provider corresponding to the plurality of identity providers; identifying a status of each logout; and sending the status to the user agent. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A federation manager for multi-protocol logout, comprising:
-
a multi-federation protocol manager; a plurality of identity providers in a circle of trust; wherein the federation manager when executed by a processor is configured to; receive a notification from a first identity provider of the plurality of identity providers that a user agent has requested to logout of a service provider associated with the first identity provider, wherein the first identity provider uses a first federation protocol; identify, in response to the notification, a second federation protocol used by the circle of trust; determine whether the user agent has an open session with a second identity provider of the plurality of identity providers in the circle of trust, wherein the second identity provider uses the second protocol; initiate a logout of the user agent on the second identity provider; initiate, in response to the logout, a logout of the user agent on a second service provider associated with the second identity provider; and send a status of the logout to the user agent. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A computer readable medium comprising computer readable program code embodied therein for causing a computer system to:
-
receive, by a first identity provider, a logout request from a user agent, wherein the first identity provider executes in a federation manager; initiate a logout on a service provider associated with the first identity provider based on the logout request by the first identity provider; identify, by the federation manager, a plurality of identity providers associated with the user agent, wherein the plurality of identity providers communicate using heterogeneous federation protocols; initiate, by the federation manager, a logout on each of the plurality of identity providers based on the logout request using the plurality of heterogeneous federation protocols; initiate, by the plurality of identity providers, a logout of each service provider corresponding to the plurality of identity providers; identify a status of each logout; and send the status to the user agent. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification