×

User authentication for intermediate representational state transfer (REST) client via certificate authority

  • US 9,021,552 B2
  • Filed: 04/05/2011
  • Issued: 04/28/2015
  • Est. Priority Date: 04/05/2011
  • Status: Active Grant
First Claim
Patent Images

1. A computer-readable storage device including executable code that, when executed, is configured to cause at least one data processing apparatus to:

  • receive, by an intermediate representational state transfer (REST) client and from a separate user computer, a request for a resource stored on a REST server, the resource request including a user ID associated with a user;

    determine, by the intermediate REST client and responsive to the resource request, that a key pair associated with the user ID is not stored on the intermediate REST client;

    based on determining that a keypair associated with the user ID is not stored on the intermediate REST client;

    generate, by the intermediate REST client, a public key and a corresponding private key, the generated public key and the corresponding generated private key included in a keypair associated with the user ID; and

    store the generated keypair on the intermediate REST client in association with the user ID;

    obtain, by the intermediate REST client, a certificate associated with the user ID that is signed by a certificate authority and based on at least the user ID and the generated public key associated with the user ID;

    establish a connection between the intermediate REST client and the REST server using the certificate and the generated private key associated with the user ID; and

    access, by the intermediate REST client on behalf of the user of the user computer, using a stateless protocol with the REST server, the requested resource.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×