×

Method and system for a single-sign-on mechanism within application service provider (ASP) aggregation

  • US 7,530,099 B2
  • Filed: 09/27/2001
  • Issued: 05/05/2009
  • Est. Priority Date: 09/27/2001
  • Status: Expired due to Term
First Claim
Patent Images

1. A method for access management in a distributed data processing system, the method comprising:

  • receiving from a client a request to access a net-sourced application hosted by an application service provider (ASP), wherein access for the client to the net-sourced application is controlled by the ASP on a subscription basis and wherein the ASP pulls authentication information from an aggregator using tokens that have been presented by the client to the ASP;

    extracting a logon resource identifier from an aggregator token that accompanies the request, wherein the aggregator token originated from an ASP aggregator service, wherein the ASP aggregator service provides single-sign-on functionality for a plurality of net-sourced applications, wherein at least one of the net-sourced applications is the net-sourced application hosted by the ASP, wherein a logon resource identified by the logon resource identifier prompts the client or a user of the client to complete an authentication operation, wherein the logon resource identifier is a Uniform Resource Locator, and the logon resource is a logon Web page;

    determining that the request was not accompanied with a valid application authentication token;

    determining that the client or a user of the client has not been properly authenticated prior to sending a response to the client; and

    sending to the client a response indicating the logon resource identifier as a redirectable destination.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×