FACILITATING SINGLE SIGN-ON (SSO) ACROSS MULTIPLE BROWSER INSTANCE
First Claim
1. A computing system comprising:
- an authentication server to authenticate users; and
a plurality of server systems to host a plurality of protected resources, which are accessible only to authenticated users,each server system to receive a request for accessing a protected resource of said plurality of protected resources and if the request is identified as not being from an authenticated user, redirecting the received request to said authentication server for authentication of the user by said authentication server,wherein said authentication server and said plurality of server systems operate to enable a single user to access said plurality of protected resources from different browser instances based on a single authentication provided in one browser instance corresponding to said single user.
1 Assignment
0 Petitions
Accused Products
Abstract
Facilitating single sign-on (SSO) across multiple browser instances such that user authentication at one browser instance is used as a basis to permit access to protected resources (hosted on server systems) from other browser instances. In an embodiment, the different browser instances are executing on different client systems. An authentication server may maintain a registration data indicating the different client systems/browser instances registered by a user for SSO feature. After a user is authenticated for a first session from one browser instance, the authentication server enables the user to access any protected resource from registered client systems/browser instances without requiring further authentication (based on the presence of the authenticated first session).
91 Citations
19 Claims
-
1. A computing system comprising:
-
an authentication server to authenticate users; and a plurality of server systems to host a plurality of protected resources, which are accessible only to authenticated users, each server system to receive a request for accessing a protected resource of said plurality of protected resources and if the request is identified as not being from an authenticated user, redirecting the received request to said authentication server for authentication of the user by said authentication server, wherein said authentication server and said plurality of server systems operate to enable a single user to access said plurality of protected resources from different browser instances based on a single authentication provided in one browser instance corresponding to said single user. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of facilitating single sign-on (SSO) across multiple client systems when accessing a plurality of protected resources, wherein said plurality of protected resources are accessible only to users authenticated by an authentication server, said method being performed in said authentication server, said method comprising:
-
maintaining a registration data indicating which ones of a plurality of client systems are registered for which ones of a plurality of users for accessing said plurality of protected resources; receiving, from a first client system, a first request from a first user to access a first protected resource of said plurality of protected resources, said first user being contained in said plurality of users, said first client system being contained in said plurality of client systems; allowing access to said first protected resource from said first client system after an authentication of said first user; receiving, from a second client system, a second request to access a second protected resource of said plurality of protected resource, said second client system being contained in said plurality of client systems; determining that said second client system is registered for said first user based on said registration data; and allowing access to said second protected resource from said second client system based on said authentication of said first user with respect to accessing of said first protected resource, wherein said first user is enabled to access said plurality of protected resources from different client systems based on said authentication provided from said first client system. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A non-transitory machine readable medium storing one or more sequences of instructions for causing an authentication server to facilitate single sign-on (SSO) across multiple client systems when accessing protected resources, wherein each protected resource is accessible only to users authenticated by said authentication server, wherein execution of said one or more sequences of instructions by one or more processors contained in said authentication server causes said authentication server to perform the actions of:
-
receiving, from a first client system, a first request from a first user to access a first protected resource; allowing access to said first protected resource from said first client system after an authentication of said first user; receiving, from a second client system, a second request from said first user to access a second protected resource; and allowing access to said second protected resource from said second client system based on said authentication of said first user at said first client system, wherein said first user is enabled to access the protected resources from different client systems based on said authentication provided from said first client system. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification