Managing access to an on-demand service
First Claim
Patent Images
1. A method comprising:
- receiving, from a client device, a first request to access a database system, the first request including authentication information of a user of the database system and information identifying the client device;
validating the authentication information of the user;
responsive to validating the authentication information of the user, determining whether the information identifying the client device is associated with a user account associated with the authentication information based at least in part on stored information associated with a plurality of client devices; and
responsive to determining that the information identifying the client device is not associated with the user account associated with the authentication information;
sending a token to an electronic location associated with the user account,receiving, from the client device, a second request to access the database system, the second request including the token sent to the electronic location associated with the user account, andresponsive to receiving the token from the client device, granting the client device access to the database system.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided are mechanisms and methods for managing a risk of access to an on-demand service as a condition of permitting access to the on-demand service. These mechanisms and methods for providing such management can enable embodiments to help prohibit an unauthorized user from accessing an account of an authorized user when the authorized user inadvertently loses login information. The ability of embodiments to provide such management may lead to an improved security feature for accessing on-demand services.
310 Citations
17 Claims
-
1. A method comprising:
-
receiving, from a client device, a first request to access a database system, the first request including authentication information of a user of the database system and information identifying the client device; validating the authentication information of the user; responsive to validating the authentication information of the user, determining whether the information identifying the client device is associated with a user account associated with the authentication information based at least in part on stored information associated with a plurality of client devices; and responsive to determining that the information identifying the client device is not associated with the user account associated with the authentication information; sending a token to an electronic location associated with the user account, receiving, from the client device, a second request to access the database system, the second request including the token sent to the electronic location associated with the user account, and responsive to receiving the token from the client device, granting the client device access to the database system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 16, 17)
-
-
12. A non-transitory machine-readable medium storing one or more instructions which, when executed by one or more processors, cause the one or more processors to:
-
receive, from a client device, a first request to access a database system, the first request including authentication information of a user of the database system and information identifying the client device; validate the authentication information of the user;
responsive to validating the authentication information of the user, determine whether the information identifying the client device is associated with a user account associated with the authentication information based at least in part on stored information associated with a plurality of client devices; andresponsive to determining that the information identifying the client device is not associated with the user account associated with the authentication information;
send a token to an electronic location associated with the user account,receive, from the client device, a second request to access the database system, the second request including the token sent to the electronic location associated with the user account, and responsive to receiving the token from the client device, grant the client device access to the database system.
-
-
13. An apparatus comprising:
-
a processor; and a non-transitory computer-readable storage medium storing instructions which, when executed by the processor, cause the processor to; receive, from a client device, a first request to access a database system, the first request including authentication information of a user of the database system and information identifying the client device; validate the authentication information of the user; responsive to validating the authentication information of the user, determine whether the information identifying the client device is associated with a user account associated with the authentication information based at least in part on stored information associated with a plurality of client devices; and responsive to determining that the information identifying the client device is not associated with the user account associated with the authentication information; send a token to an electronic location associated with the user account, receive, from the client device, a second request to access the database system, the second request including the token sent to the electronic location associated with the user account, and responsive to receiving the token from the client device, grant the client device access to the database system.
-
-
14. A method comprising:
-
receiving, from a client device, a first request to access a database system, the first request including user credential of a user of the database system and information identifying the client device; validating the user credentials of the user; responsive to validating the user credentials of the user, determining whether the information identifying the client device is associated with a user account associated with the user credentials based at least in part on stored information associated with a plurality of client devices; and responsive to determining that the information identifying the client device is not associated with the user account associated with the user credentials; sending a token to an electronic location associated with the user credentials, receiving, from the client device, a second request to access the database system, the second request including the token sent to the electronic location associated with the user credentials, and responsive to receiving the token from the client device, granting the client device access to the database system. - View Dependent Claims (15)
-
Specification