Method and apparatus for multi-domain authentication
First Claim
Patent Images
1. A method comprising:
- receiving credentials for a user at a first domain;
receiving a request from the user at the first domain to redirect to a second domain;
redirecting the user to the second domain;
generating a token based on the user credentials on the first domain;
sending the token to the user and storing the token in a single shared database;
receiving a request from the user at the second domain to access data in the single shared database wherein the first and second domains provide user access to the single shared database, the request including the token;
comparing the received token to the stored token and conditionally authenticating the user at the second domain based on the token comparison; and
providing the requested data from the single shared database to the user upon authenticating the user at the second domain.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for multi-domain authentication is described. In one example, credentials are received for a user accessing a first domain. User access to the first domain and a second domain is confirmed. A token is created for access to the second domain and the is provided with access to the second domain.
-
Citations
18 Claims
-
1. A method comprising:
-
receiving credentials for a user at a first domain; receiving a request from the user at the first domain to redirect to a second domain; redirecting the user to the second domain; generating a token based on the user credentials on the first domain; sending the token to the user and storing the token in a single shared database; receiving a request from the user at the second domain to access data in the single shared database wherein the first and second domains provide user access to the single shared database, the request including the token; comparing the received token to the stored token and conditionally authenticating the user at the second domain based on the token comparison; and providing the requested data from the single shared database to the user upon authenticating the user at the second domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system comprising:
-
a computing device having a memory to store instructions, and a processing device to execute the instructions, the computing device further having a mechanism to; receive credentials for a user at a first domain; receive a request from the user at the first domain to redirect to a second domain; redirect the user to the second domain; generate a token based on the user credentials on the first domain; send the token to the user and store the token in a single shared database; receive a request from the user at the second domain to access data in the single shared database wherein the first and second domains provide user access to the single shared database, the request including the token; compare the received token to the stored token and conditionally authenticate the user at the second domain based on the token comparison; and provide the requested data from the single shared database to the user upon authenticating the user at the second domain. - View Dependent Claims (15)
-
-
16. A non-transitory, computer-readable medium having instruction thereon that when operated on by a computer cause the computer to perform operations comprising:
-
receiving credentials for a user at a first domain; receiving a request from the user at the first domain to redirect to a second domain; redirecting the user to the second domain; generating a token based on the user credentials on the first domain; sending the token to the user and storing the token in a single shared database; receiving a request from the user at the second domain to access data in the single shared database wherein the first and second domains provide user access to a single shared database, the request including the token; comparing the received token to the stored token and conditionally authenticating the user at the second domain based on the token comparison; and providing the requested data from the single shared database to the user upon authenticating the user at the second domain. - View Dependent Claims (17)
-
-
18. A method comprising:
-
receiving credentials for a user that is accessing data through a first domain by accessing a single shared database that contains data that is shared by the first and a second domain to determine whether user credentials for the first domain are stored in the shared database; confirming that the user has access to the first domain and the second domain; creating a token for access to the second domain; and
,providing the user access to the data of the single shared database through the second domain.
-
Specification