Method and system of integrating third party authentication into internet browser code
First Claim
1. In a networked computing environment, a method of authenticating a client request utilizing HTTP-based authentication, comprising:
- requesting content from a remote server;
receiving an HTTP redirect response from the remote server identifying a first URL corresponding to a first login server of an authentication service;
providing a login request to the first login server in response to the HTTP redirect response;
receiving a domain authority redirect response from the first login server, the domain authority redirect response identifying a second URL of a second login server of the authentication service;
providing a login request to the second login server in response to the domain authority redirect response; and
receiving an authentication ticket from the second login server, wherein the authentication ticket provides access to the requested content on the remote server.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for using an Internet client'"'"'s local authentication mechanism in systems having updated browser code, so as to enable third party authentication according to an authentication scheme specified by a participating server on clients with updated browser code, while not breaking clients with legacy browser code. A redirect response from a server has authentication data added thereto such that updated browser code can detect the data'"'"'s presence and enable the use of local security mechanisms for authentication purposes with the server-specified authentication scheme, including local credential entry for verification at a third party login server. At the same time, if such a redirect response is received by prior browser code, the added data is ignored while conventional redirection occurs, such that third party authentication may be performed via redirection to a third party'"'"'s Internet page that provides a form for credential entry.
53 Citations
20 Claims
-
1. In a networked computing environment, a method of authenticating a client request utilizing HTTP-based authentication, comprising:
-
requesting content from a remote server; receiving an HTTP redirect response from the remote server identifying a first URL corresponding to a first login server of an authentication service; providing a login request to the first login server in response to the HTTP redirect response; receiving a domain authority redirect response from the first login server, the domain authority redirect response identifying a second URL of a second login server of the authentication service; providing a login request to the second login server in response to the domain authority redirect response; and receiving an authentication ticket from the second login server, wherein the authentication ticket provides access to the requested content on the remote server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-readable storage medium having computer-executable instructions for performing a method of authenticating a client request utilizing HTTP-based authentication, comprising:
-
requesting content from a remote server; receiving an HTTP redirect response from the remote server identifying a first URL corresponding to a first login server of an authentication service; providing a login request to the first login server in response to the HTTP redirect response; receiving a domain authority redirect response from the first login server, the domain authority redirect response identifying a second URL of a second login server of the authentication service; providing a login request to the second login server in response to the domain authority redirect response; and receiving an authentication ticket from the second login server, wherein the authentication ticket provides access to the requested content on the remote server. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method of authenticating a client in order to provide the client access to content on a remote server within a domain authority, comprising:
-
receiving a login request at a first login server within the domain authority, wherein the login request is directed to the first login server by the client following redirection by the remote server; determining that the first login server is unable to handle the login request; redirecting the login request to a second login server within the domain authority; authenticating client credentials at the second login server; and providing an authentication ticket from the second login server to the client, wherein the authentication ticket allows the client to access the content on the remote server. - View Dependent Claims (20)
-
Specification