System and method for offering a multi-partner delegated platform

US 9,253,254 B2
Filed: 01/14/2014
Issued: 02/02/2016
Est. Priority Date: 01/14/2013
Status: Active Grant

First Claim

Patent Images

1. A method for delegating functionality of a service platform system comprising:

at the service platform system;

the service platform system configuring a partner key of a partner record on the service platform system with a partner, the partner record being stored by a database of the service platform system, the partner key being synchronized with a partner platform system of the partner of the partner record;

responsive to an application programming interface (API) request received by a partner services API of the service platform system, the service platform system creating an account scoped within the partner record, the API request being provided by the partner platform system;

the service platform system receiving a session authentication request that specifies a partner assertion of a partner authenticated session request of the account, the session authentication request specifying an account identifier of the account and a partner identifier of the partner, the session authentication request being provided by the partner platform system;

the service platform system authenticating the session authentication request with the synchronized partner key;

responsive to authentication of the session authentication request with the synchronized partner key, the service platform system rendering an embeddable account portal with a session of the account;

wherein the service platform system authenticating the session authentication request comprises;

verifying partner identity, and verifying that the account of the session authentication request is scoped to the partner of the session authentication request,wherein the session authentication request includes an authentication payload and a first authentication signature, andwherein verifying partner identity at the service platform system comprises the service platform system signing the authentication payload with the synchronized partner key to generate a second authentication signature and confirming partner identity responsive to a determination that the second authentication signature corresponds with the first authentication signature.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for offering a delegated platform that includes configuring a partner key of a partner record on a service platform with a partner; creating an account scoped within the partner record; receiving a session authentication request that specifies a partner assertion of a partner authenticated session request of the account; authenticating the session authentication request with the partner key; and rendering an embeddable account portal with a session of the account.

Citations

17 Claims

1. A method for delegating functionality of a service platform system comprising:
- at the service platform system;
  
  the service platform system configuring a partner key of a partner record on the service platform system with a partner, the partner record being stored by a database of the service platform system, the partner key being synchronized with a partner platform system of the partner of the partner record;
  
  responsive to an application programming interface (API) request received by a partner services API of the service platform system, the service platform system creating an account scoped within the partner record, the API request being provided by the partner platform system;
  
  the service platform system receiving a session authentication request that specifies a partner assertion of a partner authenticated session request of the account, the session authentication request specifying an account identifier of the account and a partner identifier of the partner, the session authentication request being provided by the partner platform system;
  
  the service platform system authenticating the session authentication request with the synchronized partner key;
  
  responsive to authentication of the session authentication request with the synchronized partner key, the service platform system rendering an embeddable account portal with a session of the account;
  
  wherein the service platform system authenticating the session authentication request comprises;
  
  verifying partner identity, and verifying that the account of the session authentication request is scoped to the partner of the session authentication request,wherein the session authentication request includes an authentication payload and a first authentication signature, andwherein verifying partner identity at the service platform system comprises the service platform system signing the authentication payload with the synchronized partner key to generate a second authentication signature and confirming partner identity responsive to a determination that the second authentication signature corresponds with the first authentication signature.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1, wherein the partner platform system configures customization of the partner;
    - and wherein rendering the embeddable account portal comprises rendering the embeddable account portal with the session of the account and service platform customizations of the partner.
  - 3. The method of claim 1, wherein there are a plurality of partner platform systems with individual partner keys.
  - 4. The method of claim 1, wherein rendering an embeddable account portal with a session of the account comprises augmenting the account portal features to permissions of the partner.
  - 5. The method of claim 4, wherein augmenting the account portal features to permissions of the partner comprises redirecting to partner portal for configured components.
  - 6. The method of claim 5, further comprising distributing API credentials of the account through the account portal;
    - and providing the account access to a public API of the service platform when authenticated with the API credentials of the account.
  - 7. The method of claim 1, wherein the service platform system is a communications application platform system.
  - 8. The method of claim 1, wherein the partner platform system configures customization of the embeddable account portal in the partner record of the service platform system, wherein at least one customization is setting a link to a resource of the partner platform system.
  - 9. The method of claim 1, wherein the partner platform system provides the API request responsive to user interaction.
  - 10. The method of claim 1, wherein the partner platform system provides the API request asynchronous to user interaction.
  - 11. The method of claim 1, wherein service platform system functionality comprises executing communication applications.
  - 12. The method of claim 1, wherein the account scoped within the partner record is scoped to the partner of the partner record, and wherein verifying that the account of the session authentication request is scoped to the partner of the session authentication request comprises:
    - verifying that the partner identifier corresponds to the partner of the partner record.
  - 13. The method of claim 1, wherein the account scoped within the partner record is associated with a selected account within an account system of the partner platform system, the partner platform system selecting the selected account for use of the service platform system.
  - 14. The method of claim 13, wherein the partner platform system generates the session authentication request with the synchronized partner key.
  - 15. The method of claim 14, wherein the partner platform system is external to the service platform system.
  - 16. The method of claim 1, wherein the partner platform system embeds the embeddable account portal within a portal of the partner platform system.

17. A system for delegating functionality of a service platform, the system comprising:
- a service platform system, the service platform system constructed to execute computer-readable instructions to control the service platform system to;
  
  configure a partner key of a partner record on the service platform system with a partner, the partner record being stored by a database of the service platform system, the partner key being synchronized with a partner platform system of the partner of the partner record,responsive to an application programming interface (API) request received by a partner services API of the service platform system, create an account scoped within the partner record, the API request being provided by the partner platform system,receive a session authentication request that specifies a partner assertion of a partner authenticated session request of the account, the session authentication request specifying an account identifier of the account and a partner identifier of the partner, the session authentication request being provided by the partner platform system,authenticate the session authentication request with the synchronized partner key, andresponsive to authentication of the session authentication request with the synchronized partner key, render an embeddable account portal with a session of the account; and
  
  the partner platform system, the partner platform system constructed to execute computer-readable instructions to control the partner platform system to;
  
  select an account within an account system of the partner platform system for use of the service platform system, wherein the account scoped within the partner record is associated with the selected account,provide the API request,generate the session authentication request with the synchronized partner key,provide the session authentication request to the service platform system, andembed the embeddable account portal within a portal of the partner platform system,wherein the service platform system authenticating the session authentication request comprises;
  
  verifying partner identity, and verifying that the account of the session authentication request is scoped to the partner of the session authentication request,wherein the session authentication request includes an authentication payload and a first authentication signature, andwherein verifying partner identity at the service platform system comprises the service platform system signing the authentication payload with the synchronized partner key to generate a second authentication signature and confirming partner identity responsive to a determination that the second authentication signature corresponds with the first authentication signature.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Twilio, Inc.
Original Assignee
Twilio, Inc.
Inventors
Nowack, Matthew, Milliron, Timothy, Acosta Amador, Nicolas
Primary Examiner(s)
BAYOU, YONAS A

Application Number

US14/155,223
Publication Number

US 20140201083A1
Time in Patent Office

749 Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 63/061   for key exchange, e.g. in p...

H04L 63/0823   using certificates cryptogr...

H04L 67/104   Peer-to-peer [P2P] networks

System and method for offering a multi-partner delegated platform

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for offering a multi-partner delegated platform

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links