Method and Apparatus for Upgrading Open Authentication (OAUTH) Credentials

US 20150163215A1
Filed: 02/17/2015
Published: 06/11/2015
Est. Priority Date: 04/17/2013
Status: Abandoned Application

First Claim

Patent Images

1. A method for upgrading an open authentication (OAuth) credential, comprising:

receiving, by an open platform, a service request from a third party application requesting a service from the open platform, wherein the service request carries an OAuth credential representing an authorization granted to the third party application by a resource owner;

determining, by the open platform, whether the OAuth credential carried in the service request is of an old version OAuth protocol;

prompting, by the open platform, the third party application to perform a version upgrade operation if the OAuth credential carried in the service calling request is of the old version OAuth protocol;

receiving, by the open platform, a version upgrade request from the third application, wherein the version upgrade request carries an identifier of the third party application, an identifier of the resource owner and the old version OAuth credential;

validating, by the open platform, the old version OAuth credential carried in the version upgrade request;

issuing, by the open platform, a new version OAuth credential to the third party application if the old version OAuth credential is valid; and

returning, by the open platform, the new version OAuth credential to the third party application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to an example, after the open platform upgrades its OAuth protocol version, if receiving a service request carrying an old version OAuth credential, the open platform prompts the third party application to upgrade its OAuth credential. The third party application starts the OAuth credential upgrade process initiatively by transmitting a version upgrade request to the open platform.

Citations

12 Claims

1. A method for upgrading an open authentication (OAuth) credential, comprising:
- receiving, by an open platform, a service request from a third party application requesting a service from the open platform, wherein the service request carries an OAuth credential representing an authorization granted to the third party application by a resource owner;
  
  determining, by the open platform, whether the OAuth credential carried in the service request is of an old version OAuth protocol;
  
  prompting, by the open platform, the third party application to perform a version upgrade operation if the OAuth credential carried in the service calling request is of the old version OAuth protocol;
  
  receiving, by the open platform, a version upgrade request from the third application, wherein the version upgrade request carries an identifier of the third party application, an identifier of the resource owner and the old version OAuth credential;
  
  validating, by the open platform, the old version OAuth credential carried in the version upgrade request;
  
  issuing, by the open platform, a new version OAuth credential to the third party application if the old version OAuth credential is valid; and
  
  returning, by the open platform, the new version OAuth credential to the third party application.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, further comprising:
    - after issuing the new version OAuth credential to the third party application, establishing, by the open platform, an association relationship which associates the new version OAuth credential with the identifier of the third party application and the identifier of the resource owner, and saving the association relationship; and
      
      revoking, by the open platform, the old version OAuth credential.
  - 3. The method of claim 1, wherein the old version OAuth credential is an OAuth 1.0 credential, and the new version OAuth credential is an OAuth 2.0 credential.
  - 4. The method of claim 1, wherein the OAuth credential is an OAuth access token.

5. A method for upgrading an open authentication (OAuth) credential, comprising:
- transmitting, by a third party application, a service request to an open platform requesting a service from the open platform, wherein the service request carries an OAuth credential representing an authorization granted to the third party application by a resource owner;
  
  receiving, by the third party application, from the open platform prompt information indicating that the OAuth credential carried in the service request is of an old version OAuth protocol;
  
  transmitting, by the third party application, a version upgrading request to the open platform, such that the open platform issues a new version OAuth credential to the third party application;
  
  wherein the version upgrade request carries an identifier of the third party application, an identifier of the resource owner and the old version OAuth credential; and
  
  receiving, by the third party application, the new version OAuth credential issued by the open platform.
- View Dependent Claims (6, 7, 8)
- - 6. The method of claim 5, further comprising:
    - after receiving the new version OAuth credential, binding, by the third party application, the new version OAuth credential and the identifier of the resource owner and recording a binding relationship.
  - 7. The method of claim 5, wherein the old version OAuth credential is an OAuth 1.0 credential, and the new version OAuth credential is an OAuth 2.0 credential.
  - 8. The method of claim 5, wherein the OAuth credential is an OAuth access token.

9. A non-transitory computer-readable storage medium comprising a set of instructions for upgrading an open authentication (OAuth) credential, the set of instructions to direct at least one processor to perform acts of:
- receiving a service request from a third party application requesting a service from the open platform, wherein the service request carries an OAuth credential representing an authorization granted to the third party application by a resource owner;
  
  determining whether the OAuth credential carried in the service request is of an old version OAuth protocol;
  
  prompting, by the open platform, the third party application to perform a version upgrade operation if the OAuth credential carried in the service calling request is of the old version OAuth protocol;
  
  receiving a version upgrade request from the third application, wherein the version upgrade request carries an identifier of the third party application, an identifier of the resource owner and the old version OAuth credential;
  
  validating the old version OAuth credential carried in the version upgrade request;
  
  issuing, by the open platform, a new version OAuth credential to the third party application if the old version OAuth credential is valid; and
  
  returning the new version OAuth credential to the third party application.
- View Dependent Claims (10, 11, 12)
- - 10. The non-transitory computer-readable storage medium of claim 9, further comprising:
    - after receiving the new version OAuth credential, binding, by the third party application, the new version OAuth credential and the identifier of the resource owner and recording a binding relationship.
  - 11. The non-transitory computer-readable storage medium of claim 9, wherein the old version OAuth credential is an OAuth 1.0 credential, and the new version OAuth credential is an OAuth 2.0 credential.
  - 12. The non-transitory computer-readable storage medium of claim 9, wherein the OAuth credential is an OAuth access token.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tencent Technology Shenzhen Company Limited (Tencent Holdings Limited)
Original Assignee
Tencent Technology Shenzhen Company Limited (Tencent Holdings Limited)
Inventors
Qin, Jiangwei

Application Number

US14/623,676
Publication Number

US 20150163215A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 63/08 for authentication of entit...

H04L 63/102 Entity profiles

Method and Apparatus for Upgrading Open Authentication (OAUTH) Credentials

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Method and Apparatus for Upgrading Open Authentication (OAUTH) Credentials

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links