System and method for facilitating federated user provisioning through a cloud-based system
First Claim
1. A non-transitory computer readable medium storing computer-readable instructions that, when executed by one or more processors of a cloud server, cause the cloud server to:
- obtain, by a pre-registration module, registration information associated with a user, wherein the registration information comprises an activation key;
generate, by the pre-registration module, a tokenized resource identifier in a tokenized URL element based on the registration information, the tokenized resource identifier identifying the location of one or more resources in the cloud server, wherein the tokenized resource identifier comprises an embedded pre-registration token that is used to grant access to the one or more resources in the cloud server, the pre-registration token comprising the activation key used to verify the user and grant access to the one or more resources;
provide, by the pre-registration module, the tokenized URL element with the tokenized resource identifier to the user in the form of a link;
obtain, by a registration module, the pre-registration token embedded in the tokenized URL element with the tokenized resource identifier when the user accesses the one or more resources in the cloud server using the link;
determine, by the registration module, whether to grant access to the one or more resources based on the pre-registration token by comparing and verifying the obtained pre-registration token from the registration module to the pre-registration token in generated tokenized resource identifier from the pre-registration module;
grant, by the registration module, access to the one or more resources based on the determination and verification that access to the one or more resources should be granted based on the pre-registration token; and
register, by the registration module, the user with the cloud server using the one or more resources.
4 Assignments
0 Petitions
Accused Products
Abstract
The disclosure relates to systems and methods for provisioning a new user to a cloud-based system through a pre-registration process where the cloud-based system generates a tokenized resource identifier based on the user'"'"'s registration information provided by an external service provider and through a registration process where the user accesses the cloud-based system using the tokenized resource identifier and the cloud-based system completes the registration of the user when the user'"'"'s registration information in the cloud-based system is verified against the corresponding registration information maintained by the external service provider. Once the registration is complete, data related to the registered user may be synchronized between the cloud-based system and the external service provider.
98 Citations
18 Claims
-
1. A non-transitory computer readable medium storing computer-readable instructions that, when executed by one or more processors of a cloud server, cause the cloud server to:
-
obtain, by a pre-registration module, registration information associated with a user, wherein the registration information comprises an activation key; generate, by the pre-registration module, a tokenized resource identifier in a tokenized URL element based on the registration information, the tokenized resource identifier identifying the location of one or more resources in the cloud server, wherein the tokenized resource identifier comprises an embedded pre-registration token that is used to grant access to the one or more resources in the cloud server, the pre-registration token comprising the activation key used to verify the user and grant access to the one or more resources; provide, by the pre-registration module, the tokenized URL element with the tokenized resource identifier to the user in the form of a link; obtain, by a registration module, the pre-registration token embedded in the tokenized URL element with the tokenized resource identifier when the user accesses the one or more resources in the cloud server using the link; determine, by the registration module, whether to grant access to the one or more resources based on the pre-registration token by comparing and verifying the obtained pre-registration token from the registration module to the pre-registration token in generated tokenized resource identifier from the pre-registration module; grant, by the registration module, access to the one or more resources based on the determination and verification that access to the one or more resources should be granted based on the pre-registration token; and register, by the registration module, the user with the cloud server using the one or more resources. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method implemented in a computer that includes one or more processors configured to execute one or more computer program instructions, the method comprising:
-
obtaining registration information associated with a user; generating an activation key associated with the user based on the registration information; obtaining a tokenized resource identifier in a tokenized URL element that identifies the location of one or more resources in a cloud server, wherein the tokenized resource identifier comprises an embedded pre-registration token that is used to grant access to the one or more resources in the cloud server, the pre-registration token comprising the activation key used to authenticate the user and grant access to the one or more resources; providing the tokenized URL element with the tokenized resource identifier and embedded pre-registration token to the user in the form of a link; granting access to the one or more resources when the user accesses the one or more resources using the link by authenticating the activation key of the pre-registration token; and registering the user using the one or more resources. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A method implemented in a computer that includes one or more processors configured to execute one or more computer program instructions, the method comprising:
-
obtaining at least a portion of a first user record associated with a user, wherein the at least a portion of the first user record comprises an activation key generated by an external service provider; generating a second user record based on the at least a portion of the first user record; generating a tokenized resource identifier in a tokenized URL element based on the activation key, the tokenized resource identifier identifying the location of one or more resources in a cloud server, wherein the tokenized resource identifier comprises an embedded pre-registration token that is used to grant access to the one or more resources in the cloud server, the pre-registration token comprising the activation key used to verify the user and grant access to the one or more resources; providing the tokenized URL element with the tokenized resource identifier to the user in the form of a link; granting access to the user who uses the link with the tokenized resource identifier to access the one or more resources in the cloud server; providing at least a portion of the second user record to the external service provider to verify the at least a portion of the second user record against the first user record stored in a data storage coupled to the external service provider; receiving an indication that the at least a portion of the second user record has been verified against the first user record; and registering the user with the cloud server based on the indication.
-
Specification