Systems and methods for authenticating a user to a web server
First Claim
Patent Images
1. A method for providing browser access to network resources protected by a web server, the method comprising:
- intercepting a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication having been sent in response to a request by the browser for access to resources protected by the web server;
determining whether the device has the requested authentication data;
providing the authentication data from the server to the web server if the device has the requested authentication data;
requesting the authentication data from the browser if the device does not include the authentication data;
receiving the authentication data from a user through a web browser interface;
providing the authentication data from the web browser to the server; and
providing the authentication data from the server to the web server.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for automatically and transparently providing access to resources associated with a web server which requires authentication. A server is provided for a web browser, which intercepts and responds to authentication requests from web servers. The method and system allows a user to access multiple network resources with a single initial authentication procedure.
-
Citations
30 Claims
-
1. A method for providing browser access to network resources protected by a web server, the method comprising:
-
intercepting a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication having been sent in response to a request by the browser for access to resources protected by the web server; determining whether the device has the requested authentication data; providing the authentication data from the server to the web server if the device has the requested authentication data; requesting the authentication data from the browser if the device does not include the authentication data; receiving the authentication data from a user through a web browser interface; providing the authentication data from the web browser to the server; and providing the authentication data from the server to the web server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for providing browser access to network resources protected by a web server, the method comprising:
-
detecting an access denial issued by a web server in response to an access request by a browser to resources protected by the web server, the access denial including an authentication header; adding a supplemental authentication header to the authentication header; intercepting a request for authentication data from the web server to the browser at a server located on the same device as the browser, the request for authentication data being associated with the denial and including the supplemental authentication header; detecting the supplemental authentication header; determining whether the device has the requested authentication data; and responding to the supplemental authentication header by extracting the authentication data, and forwarding the authentication data to the web server in an authorization header.
-
-
10. A method for providing browser access to network resources protected by a web server, the method comprising:
-
intercepting a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication having been sent in response to a request by the browser for access to resources protected by the web server; determining whether the device has the requested authentication data; providing the authentication data from the server to the web server if the device has the requested authentication data; intercepting a request for authentication data from a second web server to the browser at the server, the second request for authentication data having been sent in response to a request by the browser for access to resources protected by the second web server; determining whether the device has the authentication data for the second web server; and providing the authentication data from the server to the second web server if the device has the requested authentication data.
-
-
11. A system for providing browser access to network resources protected by a web server, the system comprising:
-
means for intercepting a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication sent in response to a request for access by the browser to resources protected by the web server; means for determining whether the device has the requested authentication data; means for providing the authentication data from the server to the web server if the device has the requested authentication data; means for requesting the authentication data from the browser if the device does not include the authentication data; means for receiving the authentication data from a user through a web browser interface; means for providing the authentication data from the web browser to the server; and means for providing the authentication data from the server to the web server. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A system for providing browser access to network resources protected by a web server, the system comprising:
-
means for detecting an access denial issued by a web server in response to an access request by a browser to resources protected by the web server, the access denial including an authentication header; means for adding a supplemental authentication header to the authentication header; means for intercepting a request for authentication data from the web server to the browser at a server located on the same device as the browser, the request for authentication data being associated with the denial and including the supplemental authentication header; means for detecting the supplemental authentication header; means for determining whether the device has the requested authentication data; and means for responding to the supplemental authentication header by extracting the authentication data, and forwarding the authentication data to the web server in an authorization header.
-
-
20. A system for providing browser access to network resources protected by a web server, the system comprising:
-
means for intercepting a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication sent in response to a request for access by a browser to resources protected by the web server; means for determining whether the device has the requested authentication data; means for providing the authentication data from the server to the web server if the device has the requested authentication data; means for requesting access by the browser to resources protected by a second web server; means for intercepting a request for authentication data from the second web server to the browser at the server; means for determining whether the device has the authentication data for the second web server; and means for providing the authentication data from the server to the second web server if the device has the requested authentication data.
-
-
21. An information storage media comprising:
-
information that intercepts a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication sent in response to a request for access by the browser to resources protected by the web server; information that determines whether the requested authentication data is available; and information that provides the authentication data from the server to the web server if the requested authentication data is available; information that requests the authentication data from the browser if the device does not include the authentication data; information that receives the authentication data from a user through a web browser interface; information that provides the authentication data from the web browser to the server; and information that provides the authentication data from the server to the web server. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28)
-
-
29. An information storage media comprising:
-
information that detects an access denial issued by web server in response to an access request by a browser to resources protected by the web server, the access denial including an authentication header;
information that adds a supplemental authentication header to the authentication header;information that intercepts a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication data being associated with the denial and including the supplemental authentication header; information that detects the supplemental authentication header; information that determines whether the requested authentication data is available; and information that responds to the supplemental authentication header by extracting the authentication data, and forwards the authentication data to the web server in an authorization header.
-
-
30. An information storage media comprising:
-
information that intercepts a request for authentication data from a web server to a browser at a server located on the same device as the browser, the request for authentication sent in response to a request for access by the browser to resources protected by the web server; information that determines whether the requested authentication data is available; and information that provides the authentication data from the server to the web server if the requested authentication data is available; information that requests access by the browser to resources protected by a second web server; information that intercepts a request for authentication data from the second web server to the browser at the server; information that determines whether the device has the authentication data for the second web server; and information that provides the authentication data from the server to the second web server if the device has the requested authentication data.
-
Specification