DELEGATING AUTHORIZATIONS
First Claim
1. A method for authenticating a sink device to access a service provided through a service webpage of a service without requiring the sink device to input a username and password combination to the service webpage and without requiring the sink device to provide an access token to the service provider, the method comprising:
- receiving a credential from the service provider in response to the sink device generating an input to the service webpage, the input being sufficient to indicate a desire to access the service through the service webpage;
associating the access token with at least one of a plurality of control devices, the plurality of control devices each having been previously associated with a uniquely identifying client ID;
identifying a control device of the plurality of control devices associated with one of the uniquely identifying client IDs matching with a client ID included within the credential;
transmitting an alert to the control device indicating the sink device desiring access to the service through the service webpage;
receiving an alert response from the control device indicating an acceptance or a denial from a user thereof to permit transmission of the access token to the service provider on behalf of the sink device;
transmitting the access token to the service provider to facilitate the sink device accessing the service through the service webpage when the acceptance is determined; and
transmitting a denial of service to the service provider instead of the access token when the denial is determined.
1 Assignment
0 Petitions
Accused Products
Abstract
Delegating authorizations sufficient to access services is contemplate. The authorization may be delegated in the form of a token or other transmissible construct relied upon to authenticate access to services, such as but not necessarily limited to conferring a user identity established via authenticated device for the purposes of enabling an unauthenticated or unsecured device to access a service associated with the user identity.
-
Citations
20 Claims
-
1. A method for authenticating a sink device to access a service provided through a service webpage of a service without requiring the sink device to input a username and password combination to the service webpage and without requiring the sink device to provide an access token to the service provider, the method comprising:
-
receiving a credential from the service provider in response to the sink device generating an input to the service webpage, the input being sufficient to indicate a desire to access the service through the service webpage; associating the access token with at least one of a plurality of control devices, the plurality of control devices each having been previously associated with a uniquely identifying client ID; identifying a control device of the plurality of control devices associated with one of the uniquely identifying client IDs matching with a client ID included within the credential; transmitting an alert to the control device indicating the sink device desiring access to the service through the service webpage; receiving an alert response from the control device indicating an acceptance or a denial from a user thereof to permit transmission of the access token to the service provider on behalf of the sink device; transmitting the access token to the service provider to facilitate the sink device accessing the service through the service webpage when the acceptance is determined; and transmitting a denial of service to the service provider instead of the access token when the denial is determined. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for authenticating a sink device to access a service provided through a service webpage of a service without requiring the sink device to input a username and password combination to the service webpage and without requiring the sink device to provide an access token to the service provider, the method comprising:
-
transmitting the access token from the service provider to a server prior to the sink device attempting to access the service webpage, the server associating the access token with at least one of a plurality of control devices, the plurality of control devices each having been previously associated with a uniquely identifying client ID; transmitting a credential from the service provider to the server upon receipt of a client ID from the sink device, the credential indicating the service desired for access through the service webpage and the client ID; receiving an access message from the server in response to the credential, the access message; i) including the access token and an authentication indicator when a control device of the plurality of control devices having the uniquely identifying client ID matching the client ID in the credential indicates an acceptance to access the service; and ii) omitting the access token and including an unauthenticated indicator when the control device indicates a denial to access the service is determined; and permitting the sink device access to the service through the service webpage upon receipt of the authentication indicator and verification of the access token; and denying the sink device access to the service upon receipt of the unauthenticated indicator. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer-readable medium having a plurality of non-transitory instructions operable with a processor to facilitate access to a service of a service provider, the non-transitory instructions being sufficient for:
-
receiving a credential from the service provider in response to a sink device generating an input to a service webpage used to access the service, the input being sufficient to indicate a desire to access the service through the service webpage; associating an access token used to confer access to the service with at least one of a plurality of control devices, the plurality of control devices each having been previously associated with a uniquely identifying client ID; identifying a control device of the plurality of control devices associated with one of the uniquely identifying client IDs matching with a client ID included within the credential; transmitting the access token to the service provider to facilitate the sink device accessing the service through the service webpage when an acceptance from the control device to access the service is determined; and transmitting a denial of service to the service provider instead of the access token when a denial from the control device to access the service is determined. - View Dependent Claims (17, 18, 19, 20)
-
Specification