SECURED REST EXECUTION INSIDE HEADLESS WEB APPLICATION
First Claim
1. A method for securely connecting a client application with a data provider, the method comprising:
- storing one or more credentials associated with a client application as security configuration information that is accessible to a server via a security gateway, wherein the one or more credentials are usable to access data from a data provider;
receiving a request message and token from the client application;
loading security information associated with the client application based on analysis of the request message and token, wherein the token includes information that indicates a web application that is used by the client application; and
using the security information to selectively retrieve and deliver data from the data provider to the client application based on the request message and information associated with the web application.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for facilitating establishing a secure connection between a client application and a content provider. An example method includes employing a security gateway to authenticate a client for communications therewith; maintaining, for the client, security credentials for a data provider via a security configuration module, wherein the security credentials are associated with a description of data, which is associated with a data provider; using the gateway to determine which of the security credentials to use to fulfill the request message received by the security gateway from the client based on the request; and employing the selected security credentials to selectively retrieve data from and deliver the data to the client application. The example method may further include generating the request message when a User Interface (UI) control displayed in a UI display screen of a browser client is selected or activated.
9 Citations
20 Claims
-
1. A method for securely connecting a client application with a data provider, the method comprising:
-
storing one or more credentials associated with a client application as security configuration information that is accessible to a server via a security gateway, wherein the one or more credentials are usable to access data from a data provider; receiving a request message and token from the client application; loading security information associated with the client application based on analysis of the request message and token, wherein the token includes information that indicates a web application that is used by the client application; and using the security information to selectively retrieve and deliver data from the data provider to the client application based on the request message and information associated with the web application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A tangible processor-readable storage device including instructions executable by one or more processors for:
-
storing one or more credentials associated with a client application as security configuration information that is accessible to a server via a security gateway, wherein the one or more credentials are usable to access data from a data provider; receiving a request message and token from the client application; loading security information associated with the client application based on analysis of the request message and token, wherein the token includes information that indicates a web application that is used by the client application; and using the security information to selectively retrieve and deliver data from the data provider to the client application based on the request message and information associated with the web application. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. An apparatus for facilitating authenticating a client application for securely connecting a client application with a data provider, the apparatus comprising:
-
one or more processors; a tangible processor-readable storage device including instructions for; storing one or more credentials associated with a client application as security configuration information that is accessible to a server via a security gateway, wherein the one or more credentials are usable to access data from a data provider; receiving a request message and token from the client application; loading security information associated with the client application based on analysis of the request message and token, wherein the token includes information that indicates a web application that is used by the client application; and using the security information to selectively retrieve and deliver data from the data provider to the client application based on the request message and information associated with the web application.
-
Specification