AUTHORIZATION SERVER, AUTHENTICATION COOPERATION SYSTEM, AND STORAGE MEDIUM STORING PROGRAM
First Claim
Patent Images
1. An authorization server comprising:
- a unit configured to receive an authorization token generation request along with representative authorization token information and local user information from a client device, the client device receiving transfer of an authority for using an application server based on an authorization operation performed by a user, the client device registering a first authorization token issued based on the transfer as representative authorization token information;
a unit configured to, in a case where the client device is authenticated successfully on the basis of the representative authorization token information received along with an authorization token generation request, respond a second authorization token to the client device and generate and store authorization token information by associating the local user information received along with the authorization token generation request with the second authorization token; and
a responding unit configured to receive an authorization token verification request including the second authorization token from an application server that received a processing request along with the second authorization token from the client device, and, in the case that the authorization token is verified successfully on the basis of the received second authorization token and the authorization token information, respond with the local user information included in the authorization token information to the application server.
1 Assignment
0 Petitions
Accused Products
Abstract
An authorization token verification request including a second authorization token is received from an application server having received a processing request along with the second authorization token from a client device, and, in a case where the authorization token is verified successfully on basis of the received second authorization token and the authorization token information, the local user information included in the authorization token information is responded to the application server.
21 Citations
7 Claims
-
1. An authorization server comprising:
-
a unit configured to receive an authorization token generation request along with representative authorization token information and local user information from a client device, the client device receiving transfer of an authority for using an application server based on an authorization operation performed by a user, the client device registering a first authorization token issued based on the transfer as representative authorization token information; a unit configured to, in a case where the client device is authenticated successfully on the basis of the representative authorization token information received along with an authorization token generation request, respond a second authorization token to the client device and generate and store authorization token information by associating the local user information received along with the authorization token generation request with the second authorization token; and a responding unit configured to receive an authorization token verification request including the second authorization token from an application server that received a processing request along with the second authorization token from the client device, and, in the case that the authorization token is verified successfully on the basis of the received second authorization token and the authorization token information, respond with the local user information included in the authorization token information to the application server. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification