Communication system, client apparatus, relay apparatus, and computer-readable medium
First Claim
Patent Images
1. A communication system comprising:
- a client apparatus; and
a relay apparatus,wherein the client apparatus includesa first processor;
an acquisition unit configured to use the first processor to transmit a user token to a service provider apparatus and acquire an access token from the service provider apparatus, the user token indicating user authentication and the access token indicating permission to access the service provider apparatus; and
a request unit configured to use the first processor to transmit the access token acquired by the acquisition unit and a first user identification information which has been input, to the relay apparatus so as to request access to the service provider apparatus, andwherein the relay apparatus includesa second processor;
an authenticating unit configured to use the second processor to authenticate by using a second user identification information which is different from the first user identification information;
a storage controller configured to use the second processor to, in condition of being in authentication success for the second user identification information by the authenticating unit, store the access token and the first user identification information which are received from the client apparatus, in a storage unit in such a manner that the access token and the first user identification information are associated with each other; and
an access unit configured to use the second processor to access, when receiving a request to access to the service provider apparatus from the client apparatus in condition of being in authentication success for the second user identification information by the authenticating unit, the service provider apparatus by using the access token stored in the storage unit.
2 Assignments
0 Petitions
Accused Products
Abstract
A communication system includes a client apparatus and a relay apparatus. The client apparatus includes an acquisition unit and a request unit. The acquisition unit acquires permission information indicating permission to access a service provider apparatus, from the service provider apparatus. The request unit transmits the permission information and user identification information which has been input, to the relay apparatus so as to request access to the service provider apparatus. The relay apparatus includes a storage controller and an access unit. The storage controller stores the permission information and the user identification information which are received from the client apparatus, in a storage unit in such a manner that the permission information and the user identification information are associated with each other. The access unit accesses the service provider apparatus by using the permission information stored in the storage unit.
23 Citations
6 Claims
-
1. A communication system comprising:
-
a client apparatus; and a relay apparatus, wherein the client apparatus includes a first processor; an acquisition unit configured to use the first processor to transmit a user token to a service provider apparatus and acquire an access token from the service provider apparatus, the user token indicating user authentication and the access token indicating permission to access the service provider apparatus; and a request unit configured to use the first processor to transmit the access token acquired by the acquisition unit and a first user identification information which has been input, to the relay apparatus so as to request access to the service provider apparatus, and wherein the relay apparatus includes a second processor; an authenticating unit configured to use the second processor to authenticate by using a second user identification information which is different from the first user identification information; a storage controller configured to use the second processor to, in condition of being in authentication success for the second user identification information by the authenticating unit, store the access token and the first user identification information which are received from the client apparatus, in a storage unit in such a manner that the access token and the first user identification information are associated with each other; and an access unit configured to use the second processor to access, when receiving a request to access to the service provider apparatus from the client apparatus in condition of being in authentication success for the second user identification information by the authenticating unit, the service provider apparatus by using the access token stored in the storage unit. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
transmitting, by a client apparatus using a first processor, a user token to a service provider apparatus and acquiring an access token from the service provider apparatus, the user token indicating user authentication and the access token indicating permission to access the service provider apparatus; transmitting, by the client apparatus, the acquired access token and a first user identification information which has been input, to a relay apparatus so as to request access to the service provider apparatus; authenticating, by the relay apparatus using a second processor, by using a second user identification information which is different from the first user identification information; in condition of being in authentication success for the second user identification information, storing, by the relay apparatus, the access token and the first user identification information which are received from the client apparatus, in such a manner that the access token and the first user identification information are associated with each other; and when receiving a request to access to the service provider apparatus from the client apparatus in condition of being in authentication success for the second user identification information, the relay apparatus accessing the service provider apparatus by using the stored access token.
-
-
6. A non-transitory computer-readable medium storing a program causing a computer to execute a process comprising:
-
transmitting, by a client apparatus, a user token to a service provider apparatus and acquiring an access token from the service provider apparatus, the user token indicating user authentication and the access token indicating permission to access the service provider apparatus; transmitting, by the client apparatus, the acquired access token and a first user identification information which has been input, to a relay apparatus so as to request access to the service provider apparatus; authenticating, by the relay apparatus, by using a second user identification information which is different from the first user identification information; in condition of being in authentication success for the second user identification information, storing, by the relay apparatus, the access token and the first user identification information which are received from the client apparatus, in such a manner that the access token and the first user identification information are associated with each other; and when receiving a request to access to the service provider apparatus from the client apparatus in condition of being in authentication success for the second user identification information, the relay apparatus accessing the service provider apparatus by using the stored access token.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeFujifilm Business Innovation Corp. (Fujifilm Holdings Corporation)
-
Original AssigneeFuji Xerox Company Limited (Xerox Holdings Corp.)
-
InventorsShinoda, Kazumoto
-
Primary Examiner(s)Hirl, Joseph P
-
Assistant Examiner(s)BEHESHTI SHIRAZI, SAYED ARESH
-
Application NumberUS13/874,011Publication NumberTime in Patent Office924 DaysField of Search726/2, 726/3, 726/4, 726/9, 709/225, 709/242US Class Current1/1CPC Class CodesG06F 21/41 where a single sign-on prov...G06F 21/44 Program or device authentic...
