Authentication and entitlement for users of web based data management programs
First Claim
1. A Web-based centralized authentication and entitlement administration system for enabling a customer to enter orders over the Internet from a client terminal for one or more application services available at an enterprise, the system comprising:
- a client browser application located at the client terminal and providing an integrated interface to the one or more application services, the client browser application interacting with the customer;
an order entry server located at the enterprise, the order entry server for communicating over the Internet with the client browser application to provide authentication and entitlement information associated with the customer, wherein the client browser application obtains the authentication and entitlement information associated with the customer and applies the authentication information in validating the customer before enabling the customer to access the enterprise, the client browser application enabling the customer to access only those application services to which the customer is entitled; and
an order entry object, initiated by the client browser application, for enabling presentation of entry options for the customer, the entry options including adding a new order, modifying an existing order, and canceling an order, the order entry object presenting the entry options in a tree format, where a first tree level represents an enterprise, a second tree level represents users under the enterprise, and a third tree level represents application services accessible by the users, the order entry object further communicating customer entry of a specific entry option to the order entry server, whereby the customer is enabled via the integrated interface to enter new orders, modify existing orders, and cancel orders for the application services within the customer entitlements.
7 Assignments
0 Petitions
Accused Products
Abstract
An Internet Web-based order entry and system administration system is provided for ordering and fulfilling a suite of Web enabled applications. The system includes a capability for enabling customers to order and administer via the Internet, service products running on back-end systems. The system further communicates with the/back-end systems for synchronizing data associated with the customers. The system also accepts and processes security requests from the front-end and back-end servers associated with the suite of Web enabled applications. The system is easily accessed and invoked from a generic, off-the-shelf Web browser and at the same time a system infrastructure is provided that enables the secure initiation of order entry and system administration to customers from any computer terminal having a browser located anywhere in the world.
-
Citations
25 Claims
-
1. A Web-based centralized authentication and entitlement administration system for enabling a customer to enter orders over the Internet from a client terminal for one or more application services available at an enterprise, the system comprising:
-
a client browser application located at the client terminal and providing an integrated interface to the one or more application services, the client browser application interacting with the customer;
an order entry server located at the enterprise, the order entry server for communicating over the Internet with the client browser application to provide authentication and entitlement information associated with the customer, wherein the client browser application obtains the authentication and entitlement information associated with the customer and applies the authentication information in validating the customer before enabling the customer to access the enterprise, the client browser application enabling the customer to access only those application services to which the customer is entitled; and
an order entry object, initiated by the client browser application, for enabling presentation of entry options for the customer, the entry options including adding a new order, modifying an existing order, and canceling an order, the order entry object presenting the entry options in a tree format, where a first tree level represents an enterprise, a second tree level represents users under the enterprise, and a third tree level represents application services accessible by the users, the order entry object further communicating customer entry of a specific entry option to the order entry server, whereby the customer is enabled via the integrated interface to enter new orders, modify existing orders, and cancel orders for the application services within the customer entitlements. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
a customer profile database for storing the authentication and entitlement information.
-
-
3. The system as claimed in claim 2, wherein the order entry server further comprises a fulfillment process for retrieving from customer profile information associated with newly added customers, and wherein the fulfillment process notifies and electronically transmits the information to a fulfillment house responsible for sending subscription packages to new customers.
-
4. The system as claimed in claim 3, wherein the fulfillment process runs periodically on a predefined time basis.
-
5. The system as claimed in claim 3, wherein the fulfillment process further sends the subscription packages with a welcome message to a message center created for and associated with the new customers.
-
6. The system as claimed in claim 2, wherein the order entry server further comprises a reconciliation process for updating and synchronizing data stored in the customer profile database with data stored in mainframe systems.
-
7. The system as claimed in claim 6, wherein the reconciliation process runs periodically on a predefined time basis.
-
8. The system as claimed in claim 6, wherein the reconciliation process further updates and synchronizes data in the customer profile database with data stored in servers associated with the application services.
-
9. The system as claimed in claim 8, wherein the reconciliation process updates and synchronizes the data in real time, wherein the application services use real time data when processing requests by the customer.
-
10. The system as claimed in claim 2, wherein the order entry server further comprises a billing process for automatically directing customer bills to a billing stream specified in the customer profile database.
-
11. The system as claimed in claim 1, wherein the order entry object further comprises a first object for communicating new orders, modified orders, and canceled orders in response to customer entry of a specific option, and wherein the order entry server further comprises a second object for accepting and storing the customer entries.
-
12. The system as claimed in claim 11, wherein the first object for communicating comprises a plurality of messaging classes, the plurality of messaging classes including:
-
base message classes for encapsulating standards required for communicating between the client browser application and the order entry server;
request and response classes derived from the base message classes for handling a plurality of request and response transactions communicated between the client browser application and the order entry server, the request and response transactions including the new orders, modified orders, and canceled orders associated with the customer selection of a specific option.
-
-
13. The system as claimed in claim 1, wherein the order entry object includes an entry application downloaded from the enterprise, the entry application running in its own window frame.
-
14. The system as claimed in claim 1, wherein the second tree level further comprises a new user node for enabling addition of a new user under the enterprise.
-
15. The system as claimed in claim 1, wherein the users are associated with a corp, and the application services include toll free numbers subscribed to by the corp.
-
16. The system as claimed in claim 1, wherein the order entry object enables modification of entries associated with a node in the tree when the node is selected.
-
17. The system as claimed in claim 16, wherein the modification of entries includes modifying reporting options for toll free numbers.
-
18. The system as claimed in claim 16, wherein the modification of entries includes modifying user access levels associated with the application services.
-
19. The system as claimed in claim 16, wherein the modification of entries includes modifying target billing streams where customer bills are transmitted.
-
20. A method of providing Internet enabled centralized authentication and entitlement administration services for enabling a customer to enter orders over the Internet from a client workstation for one or more application services available from an enterprise, the method comprising:
-
presenting to a customer a client browser application having an integrated interface to the one or more application services;
communicating authentication requests and responses over the Internet to an order entry server located at the enterprise;
authenticating the customer at the client workstation with authentication information received from the order entry server;
enabling the customer to access predetermined application services according to an entitlement response received from the order entry server;
enabling presentation of entry options for the customer in a tree format, a first tree level representing an enterprise, a second tree level representing users under the enterprise, and a third tree level representing application services accessible by the users, the entry options further including adding a new order, modifying an existing order, and canceling an order; and
communicating customer selected entry options to the order entry server, wherein the customer is enabled via the integrated interface to enter new orders, modify existing orders, and cancel orders for the application services within the customer entitlements. - View Dependent Claims (21, 22, 23, 24, 25)
storing authentication and entitlement information in a customer profile database at the enterprise.
-
-
22. The method according to claim 21, wherein the method further comprises updating and synchronizing the customer profile database with data in at least one mainframe system providing an,application service to the customer.
-
23. The method according to claim 21, wherein the method further comprises directing customer bills to billing streams specified in the customer profile database.
-
24. The method according to claim 20, wherein the method further comprises transmitting data associated with a customer selected entry option to a server associated with a respective application service.
-
25. The method according to claim 20, wherein the method further comprises presenting entry entitlements to the customer in a tree format.
Specification