Delegating authorization to applications on a client device in a networked environment
First Claim
1. A non-transitory computer-readable medium encoded with software for execution and, when executed, operable to:
- send to a remote server, from an agent application, a request for a first access credential;
receive from the remote server, the first access credential;
determine, by the agent application monitoring a managed application, that the managed application requires a second access credential;
in response to the determination that the managed application requires the second access credential, sending to the managed application, from the agent application, the second access credential;
store, by the agent application, an identification of a plurality of managed applications to be monitored for a need of the second access credential; and
monitor, by the agent application, the plurality of managed applications for the need of the second access credential.
3 Assignments
0 Petitions
Accused Products
Abstract
A computer-readable medium encoded with software for execution. When executed, the software may be operable to send to a remote server, from an agent application, a request for a first access credential. The software may also be operable to receive from the remote server, the first access credential. The software may further be operable to determine, by the agent application monitoring a managed application, that the managed application requires a second access credential. The software may additionally be operable to, in response to the determination that the managed application requires the second access credential, sending to the managed application, from the agent application, the second access credential.
214 Citations
18 Claims
-
1. A non-transitory computer-readable medium encoded with software for execution and, when executed, operable to:
-
send to a remote server, from an agent application, a request for a first access credential; receive from the remote server, the first access credential; determine, by the agent application monitoring a managed application, that the managed application requires a second access credential; in response to the determination that the managed application requires the second access credential, sending to the managed application, from the agent application, the second access credential; store, by the agent application, an identification of a plurality of managed applications to be monitored for a need of the second access credential; and monitor, by the agent application, the plurality of managed applications for the need of the second access credential. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
sending to a remote server, from an agent application, a request for; a first access credential; and authority to delegate the first access credential by granting at least a second access credential to at least one managed application; receiving from the remote server, the first access credential and an authority to delegate; determining that at least one managed application requires the second access credential; sending to the at least one managed application, from the agent application, the second access credential; store an identification of a plurality of managed applications to be monitored for a need of the second access credential; and monitor the plurality of managed applications for the need of the second access credential. - View Dependent Claims (15, 16)
-
-
17. A system comprising:
a remote server configured to; receive, from an agent application on a client device, a request for a first authorization to access at least one resource on a resource server; determine whether the request should be granted; and send, to the agent application on the client device, in response to a determination that the request should be granted, the first authorization and a second authorization to delegate the first authorization to at least a managed application; initiate storage in the agent application of an identification of a plurality of managed applications to be monitored for a need of a second authorization; and initiate monitoring by the agent application of the plurality of managed applications for the need of the second authorization. - View Dependent Claims (18)
Specification