Passporting credentials between a mobile app and a web browser
First Claim
1. A system comprising:
- a client device executing a native app and an embedded web browser, wherein;
the native app has a device session token that provides a session authentication with a server for an authenticated device session between the native app and the server, wherein the session authentication is based on credentials for authenticating a user;
the native app invokes the embedded web browser, providing the embedded web browser with the device session token based on the credentials, wherein the device session token provides authentication for a web flow session on the embedded web browser, wherein the web flow session continues the authenticated device session from the native app based on the authentication provided from the device session token; and
the native app refreshes the device session token based on communication back from the web flow session to the authenticated device session between the native app and the server, the communication implemented by the native app monitoring uniform resource locators (URL) requested by the embedded web browser so that the device session between the native app and the server remains active while the web flow session is active.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for passporting credentials provide a mechanism by which a native app on a client device can invoke a service provider'"'"'s core web site web addresses (URL) while keeping the existing session active and shared between the two experiences (native app and web flow) so that the end user does not need to re-login at each context switch. The mechanism can include a unique way for the web flow context to communicate conditions and pass control back to the native app context of the shared session. Embodiments may operate by authenticating a device session from a native app executing on a client device producing a device session token; passing the device session token from a native app to an embedded browser to authenticate a user when entering a web flow; and entering the web flow, according to the session token, on an embedded browser driven by the native app so that the user encounters a single shared session (device session and web session) running at least two parallel secure communication interactions with an infrastructure.
33 Citations
20 Claims
-
1. A system comprising:
-
a client device executing a native app and an embedded web browser, wherein; the native app has a device session token that provides a session authentication with a server for an authenticated device session between the native app and the server, wherein the session authentication is based on credentials for authenticating a user; the native app invokes the embedded web browser, providing the embedded web browser with the device session token based on the credentials, wherein the device session token provides authentication for a web flow session on the embedded web browser, wherein the web flow session continues the authenticated device session from the native app based on the authentication provided from the device session token; and the native app refreshes the device session token based on communication back from the web flow session to the authenticated device session between the native app and the server, the communication implemented by the native app monitoring uniform resource locators (URL) requested by the embedded web browser so that the device session between the native app and the server remains active while the web flow session is active. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method comprising:
-
authenticating a device session from a native app executing on a client device; producing a device session token from the authenticated device session; passing the device session token to authenticate a user when entering a web flow; and entering the web flow on an embedded browser driven by the native app, wherein; a web flow session continues the authenticated device session from the native app based on the authentication provided from the device session token; and the native app refreshes the device session token based on communication back from the web flow session to the authenticated device session between the native app and the server, the communication implemented by the native app monitoring uniform resource locators (URL) requested by the embedded web browser so that the device session between the native app and the server remains active while the web flow session is active. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A computer program product comprising a non-transitory computer readable medium having computer readable and executable code for instructing a processor to perform a method, the method comprising:
-
authenticating a device session from a native app executing on a client device; producing a device session token from the authentication; passing the device session token to authenticate a user when entering a web flow; and entering the web flow on an embedded browser invoked by the native app, wherein; a web flow session continues the authenticated device session from the native app based on the authentication provided from the device session token; and the native app refreshes the device session token based on communication back from the web flow session to the authenticated device session between the native app and the server, the communication implemented by the native app monitoring uniform resource locators (URL) requested by the embedded web browser so that the device session between the native app and the server remains active while the web flow session is active. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification