Securely passing user credentials for access to an application through a network portal
First Claim
Patent Images
1. A method comprising:
- receiving, at a portal server, a request for an application;
retrieving, at the portal server, a template associated with the application, the template used to generate a network address locating the application at an application server;
generating, at the portal server, the network address including first user credentials in a query portion of the network address, the network address generated using a template including at least one value specific to a user of the application and at least another value specific to the application, the network address configured, such that when the network address is sent to a browser at a client, the browser launches the application using the at least one value specific to the user of the application and the at least one other value specific to the application;
generating, at the portal server, source code without including the first user credentials, when the browser does not include a frame to render an output of the application, the source code without the first user credentials configured to redirect the browser to the portal server after generating, using the source code, the frame at the browser, the redirection causing the portal server to restore the network address including first user credentials; and
transmitting, by the portal server to the browser, the network address including first user credentials to generate, at the browser, a post request to log, at the application server, the query portion and without logging, at the application server, the first user credentials.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and techniques to enable access of an application through a network portal to integrate that network application into the portal services provided to a user. In general, in one implementation, the technique includes generating a network address including user credentials in a query portion of the network address. The technique also includes generating an encrypted network request using a command which causes a network server to not log the query portion of the network address and causing a redirect at a network browser after employing the network address in the network request.
-
Citations
30 Claims
-
1. A method comprising:
-
receiving, at a portal server, a request for an application; retrieving, at the portal server, a template associated with the application, the template used to generate a network address locating the application at an application server; generating, at the portal server, the network address including first user credentials in a query portion of the network address, the network address generated using a template including at least one value specific to a user of the application and at least another value specific to the application, the network address configured, such that when the network address is sent to a browser at a client, the browser launches the application using the at least one value specific to the user of the application and the at least one other value specific to the application; generating, at the portal server, source code without including the first user credentials, when the browser does not include a frame to render an output of the application, the source code without the first user credentials configured to redirect the browser to the portal server after generating, using the source code, the frame at the browser, the redirection causing the portal server to restore the network address including first user credentials; and transmitting, by the portal server to the browser, the network address including first user credentials to generate, at the browser, a post request to log, at the application server, the query portion and without logging, at the application server, the first user credentials. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14)
-
-
12. The method of claim I wherein the network address comprises a uniform resource locator (“
- URL”
) and the first user credentials comprise an account name and password to authenticate the user for a service.
- URL”
-
13. The method of claim I wherein the source code comprises hypertext markup language (“
- HTML”
) or extensible markup language (“
XML”
).
- HTML”
-
15. A system comprising:
-
a processor; and a memory, wherein the processor and the memory are configured to provide a method comprising; receiving, at an integration component at a portal server, a request for an application; retrieving, at the integration component at the portal server, a template associated with the application, the template used to generate a network address locating the application at an application server; generating, at the integration component at the portal server, a network address including first user credentials in a query portion of the network address, the network address generated using a template including at least one value specific to a user of the application and at least another value specific to the application, the network address configured, such that when the network address is sent to a browser at a client, the browser launches the application using the at least one value specific to the user of the application and the at least one other value specific to the application; generating, at the integration component at the portal server, source code without including the first user credentials, when the browser does not include a frame to render an output of the application, the source code without the first user credentials configured to redirect the browser to the portal server after generating, using the source code, the frame at the browser, the redirection causing the portal server to restore the network address including first user credentials; and transmitting, by the portal server to the browser, the network address including first user credentials to generate, at the browser, a post request to log, at the application server, the query portion and without logging, at the application server, the first user credentials. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. An article comprising a machine-readable medium storing instructions operable to cause one or more machines to perform operations comprising:
-
receiving, at an integration component at a portal server, a request for an application; retrieving, at the integration component at the portal server, a template associated with the application, the template used to generate a network address locating the application at an application server; generating, at the integration component at the portal server, the network address including first user credentials in a query portion of the network address, the network address generated using a template including at least one value specific to a user of the application and at least another value specific to the application, the network address configured, such that when the network address is sent to a browser at a client, the browser launches the application using the at least one value specific to the user of the application and the at least one other value specific to the application; generating, at the integration component at the portal server, source code without including the first user credentials, when the browser does not include a frame to render an output of the application, the source code without the first user credentials configured to redirect the browser to the portal server after generating, using the source code, the frame at the browser, the redirection causing the portal server to restore the network address including first user credentials; and transmitting, by the portal server to the browser, the network address including first user credentials to generate, at the browser, a cost request to log, at the application server, the query portion and without logging, at the application server, the first user credentials. - View Dependent Claims (30)
-
Specification