Systems and methods for single sign-in for multiple accounts
First Claim
1. A method comprising:
- receiving bridge server user credentials of a user of a client;
validating, at a bridge server, said client with said bridge server based on said received bridge server user credentials;
storing, at said bridge server, first application user credentials for validating said client to a first application and second application user credentials for validating said client to a second application;
issuing, by said bridge server, a first authentication string to said client, upon validating said client with said first application, wherein said first authentication string is used by said client to access said first application;
issuing, by said bridge server, a second authentication string to said client, upon validating said client with said second application, wherein said second authentication string is used by said client to access said second application, and wherein said first authentication string is different from said second authentication string;
establishing a session between said client and at least one of said first application and said second application;
storing a conversation record in association with said session; and
managing, by said bridge server, said session by using at least one of said first authentication string and said second authentication string to reference said at least one stored conversation record.
5 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods which facilitate single user sign-in for multiple accounts are shown. Embodiments create a single user base which maps users to multiple accounts. The use of a single set of credentials by the user is provided for according to embodiments irrespective of the applications associated with the various accounts having very different security protocols. A system hosting the shared user base preferably provides a single authentication point for multiple services. Embodiments an authenticator string, as may be passed between a client and bridge server and/or client and application, in order to enable user access, detect attacks with respect to a client conversation, etcetera. In addition to providing a shared user base for single sign-in, embodiments provide additional shared functionality and/or functionality not available from the applications themselves.
87 Citations
27 Claims
-
1. A method comprising:
-
receiving bridge server user credentials of a user of a client; validating, at a bridge server, said client with said bridge server based on said received bridge server user credentials; storing, at said bridge server, first application user credentials for validating said client to a first application and second application user credentials for validating said client to a second application; issuing, by said bridge server, a first authentication string to said client, upon validating said client with said first application, wherein said first authentication string is used by said client to access said first application; issuing, by said bridge server, a second authentication string to said client, upon validating said client with said second application, wherein said second authentication string is used by said client to access said second application, and wherein said first authentication string is different from said second authentication string; establishing a session between said client and at least one of said first application and said second application; storing a conversation record in association with said session; and managing, by said bridge server, said session by using at least one of said first authentication string and said second authentication string to reference said at least one stored conversation record. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
a bridge server configured to communicate with at least one client, a first application, and a second application and operable to store; at least one conversation record, said conversation record associated with a user session between said client and at least one of said first application and said second application; bridge server user credentials of a user of said client, wherein said bridge server uses said bridge server user credentials to validate said client with said bridge server; first application user credentials of said user, wherein said bridge server uses said first application user credentials to validate said client with said first application; and second application user credentials of said user, wherein said bridge server uses said second application user credentials to validate said client with said second application; a first authentication string, issued by said bridge server to said client upon said bridge server validating said client with said first application, wherein said first authentication string is used by said client to access said first application; and a second authentication string, issued by said bridge server to said client upon said bridge server validating said client with said second application, wherein said second authentication string is used by said client to access said second application, and wherein said first authentication string is different from said second authentication string; wherein said bridge server is further operable to manage said user session by using at least one of said first authentication string and said second authentication string to reference said at least one stored conversation record. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
Specification