System and method for offering a multi-partner delegated platform
First Claim
Patent Images
1. A method for delegating functionality of a service platform system comprising:
- at the service platform system;
the service platform system configuring a partner key of a partner record on the service platform system with a partner, the partner record being stored by a database of the service platform system, the partner key being synchronized with a partner platform system of the partner of the partner record;
responsive to an application programming interface (API) request received by a partner services API of the service platform system, the service platform system creating an account scoped within the partner record, the API request being provided by the partner platform system;
the service platform system receiving a session authentication request that specifies a partner assertion of a partner authenticated session request of the account, the session authentication request specifying an account identifier of the account and a partner identifier of the partner, the session authentication request being provided by the partner platform system;
the service platform system authenticating the session authentication request with the synchronized partner key;
responsive to authentication of the session authentication request with the synchronized partner key, the service platform system rendering an embeddable account portal with a session of the account;
wherein the service platform system authenticating the session authentication request comprises;
verifying partner identity, and verifying that the account of the session authentication request is scoped to the partner of the session authentication request,wherein the session authentication request includes an authentication payload and a first authentication signature, andwherein verifying partner identity at the service platform system comprises the service platform system signing the authentication payload with the synchronized partner key to generate a second authentication signature and confirming partner identity responsive to a determination that the second authentication signature corresponds with the first authentication signature.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for offering a delegated platform that includes configuring a partner key of a partner record on a service platform with a partner; creating an account scoped within the partner record; receiving a session authentication request that specifies a partner assertion of a partner authenticated session request of the account; authenticating the session authentication request with the partner key; and rendering an embeddable account portal with a session of the account.
-
Citations
17 Claims
-
1. A method for delegating functionality of a service platform system comprising:
- at the service platform system;
the service platform system configuring a partner key of a partner record on the service platform system with a partner, the partner record being stored by a database of the service platform system, the partner key being synchronized with a partner platform system of the partner of the partner record; responsive to an application programming interface (API) request received by a partner services API of the service platform system, the service platform system creating an account scoped within the partner record, the API request being provided by the partner platform system; the service platform system receiving a session authentication request that specifies a partner assertion of a partner authenticated session request of the account, the session authentication request specifying an account identifier of the account and a partner identifier of the partner, the session authentication request being provided by the partner platform system; the service platform system authenticating the session authentication request with the synchronized partner key; responsive to authentication of the session authentication request with the synchronized partner key, the service platform system rendering an embeddable account portal with a session of the account; wherein the service platform system authenticating the session authentication request comprises;
verifying partner identity, and verifying that the account of the session authentication request is scoped to the partner of the session authentication request,wherein the session authentication request includes an authentication payload and a first authentication signature, and wherein verifying partner identity at the service platform system comprises the service platform system signing the authentication payload with the synchronized partner key to generate a second authentication signature and confirming partner identity responsive to a determination that the second authentication signature corresponds with the first authentication signature. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- at the service platform system;
-
17. A system for delegating functionality of a service platform, the system comprising:
-
a service platform system, the service platform system constructed to execute computer-readable instructions to control the service platform system to; configure a partner key of a partner record on the service platform system with a partner, the partner record being stored by a database of the service platform system, the partner key being synchronized with a partner platform system of the partner of the partner record, responsive to an application programming interface (API) request received by a partner services API of the service platform system, create an account scoped within the partner record, the API request being provided by the partner platform system, receive a session authentication request that specifies a partner assertion of a partner authenticated session request of the account, the session authentication request specifying an account identifier of the account and a partner identifier of the partner, the session authentication request being provided by the partner platform system, authenticate the session authentication request with the synchronized partner key, and responsive to authentication of the session authentication request with the synchronized partner key, render an embeddable account portal with a session of the account; and the partner platform system, the partner platform system constructed to execute computer-readable instructions to control the partner platform system to; select an account within an account system of the partner platform system for use of the service platform system, wherein the account scoped within the partner record is associated with the selected account, provide the API request, generate the session authentication request with the synchronized partner key, provide the session authentication request to the service platform system, and embed the embeddable account portal within a portal of the partner platform system, wherein the service platform system authenticating the session authentication request comprises;
verifying partner identity, and verifying that the account of the session authentication request is scoped to the partner of the session authentication request,wherein the session authentication request includes an authentication payload and a first authentication signature, and wherein verifying partner identity at the service platform system comprises the service platform system signing the authentication payload with the synchronized partner key to generate a second authentication signature and confirming partner identity responsive to a determination that the second authentication signature corresponds with the first authentication signature.
-
Specification