System and method of extending a host website
First Claim
1. A method of providing access control, the method comprising:
- a memory;
at least one processor;
a module stored in the memory including computer instruction code that is executable by the at least one processor and structured to cause the at least one processor to be configured to;
receive a request to access an extension module from a browsing device, the browsing device is for maintaining a browsing session with a host website, and the extension module is for extending the host website by exchanging data with the host website;
generate a first authorization token that is associated with the browsing session;
send, to the browsing device, the first authorization token;
receive, at the extension module, a second authorization token from the browsing device;
receive the second authorization token from the extension module and verify that the second authorization token matches the first authorization token;
if verification is successful, allow the extension module to exchange data with the host website and communicate with the browsing device;
receive, from the extension module, a request to access host website data from the host website;
determine if the extension module is authorized to access the host website data from the host website; and
if the extension module is authorized to access the host website data from the host website, transmit at least one credential to the extension module;
wherein the extension module is configured to transmit the at least one credential to the host website when accessing the host website data from the host website, andwherein the host website provides a primary set of information, and the data exchanged by the extension module with the host website provides a secondary set of information that is related to the primary set of information.
1 Assignment
0 Petitions
Accused Products
Abstract
Some embodiments of the present disclosure provide a system for providing access control. The system may include an extension module for extending a host website; and a marketplace server that is configured to: receive a request to access the extension module from a browsing device, the browsing device is for maintaining a browsing session with the host website, and the extension module is for exchanging data with the host website; generate a first authorization token that is associated with the browsing session; and send, to the browsing device, the first authorization token. The extension module may be configured to receive a second authorization token from the browsing device. One of the extension module or the marketplace server may then be further configured to: verify that the second authorization token matches the first authorization token; and if verification is successful, the extension module can be allowed to exchange data with the host website and communicate with the browsing device.
30 Citations
15 Claims
-
1. A method of providing access control, the method comprising:
-
a memory; at least one processor; a module stored in the memory including computer instruction code that is executable by the at least one processor and structured to cause the at least one processor to be configured to; receive a request to access an extension module from a browsing device, the browsing device is for maintaining a browsing session with a host website, and the extension module is for extending the host website by exchanging data with the host website; generate a first authorization token that is associated with the browsing session; send, to the browsing device, the first authorization token; receive, at the extension module, a second authorization token from the browsing device; receive the second authorization token from the extension module and verify that the second authorization token matches the first authorization token; if verification is successful, allow the extension module to exchange data with the host website and communicate with the browsing device; receive, from the extension module, a request to access host website data from the host website; determine if the extension module is authorized to access the host website data from the host website; and if the extension module is authorized to access the host website data from the host website, transmit at least one credential to the extension module; wherein the extension module is configured to transmit the at least one credential to the host website when accessing the host website data from the host website, and wherein the host website provides a primary set of information, and the data exchanged by the extension module with the host website provides a secondary set of information that is related to the primary set of information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
Specification