Handling open authentication of an invoked web service in a process

US 9,614,824 B2
Filed: 09/19/2013
Issued: 04/04/2017
Est. Priority Date: 09/29/2012
Status: Active Grant

First Claim

Patent Images

1. A method for handling open authentication (OAuth) of an invoked web service in a process, comprising:

determining whether an OAuth access token has expired, the determining comprising;

sending a hypertext transfer protocol (HTTP) request to the invoked web service; and

deciding whether the OAuth access token has expired based on a returned result from the invoked web service; and

initiating an automatic update of the OAuth access token based on determining that the OAuth access token has expired, the initiating including extracting content from the returned result and constructing a request to update the OAuth access token, the extracted content including computer code executable for updating the OAuth access token, and the request to update the OAuth access token including the extracted content.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments relate to methods, systems, and computer program products for handling open authentication (OAuth) of an invoked web service in a process. An aspect includes determining whether an OAuth access token has expired. Another aspect includes initiating an automatic update of the OAuth access token based on determining that the OAuth access token has expired.

Citations

17 Claims

1. A method for handling open authentication (OAuth) of an invoked web service in a process, comprising:
- determining whether an OAuth access token has expired, the determining comprising;
  
  sending a hypertext transfer protocol (HTTP) request to the invoked web service; and
  
  deciding whether the OAuth access token has expired based on a returned result from the invoked web service; and
  
  initiating an automatic update of the OAuth access token based on determining that the OAuth access token has expired, the initiating including extracting content from the returned result and constructing a request to update the OAuth access token, the extracted content including computer code executable for updating the OAuth access token, and the request to update the OAuth access token including the extracted content.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, wherein sending a HTTP request to the invoked web service comprises:
    - acquiring an address of an endpoint corresponding to the invoked web service;
      
      constructing an address of a description file of the invoked web service with the address of the endpoint; and
      
      sending the HTTP request to the address of the description file of the invoked web service.
  - 3. The method according to claim 2, wherein the address of the description file of the invoked web service is constructed by appending “
    - ?wsdl”
      
      to the address of the endpoint corresponding to the invoked web service.
  - 4. The method according to claim 2, wherein deciding whether the OAuth access token has expired based on the returned result from the invoked web service comprises:
    - checking whether the returned result meets a web service definition language (WSDL) scheme;
      
      determining that the OAuth access token has expired if the returned result does not meet the WSDL scheme.
  - 5. The method according to claim 1, wherein the automatic update of the OAuth access token comprises:
    - sending the request for updating the OAuth access token to the invoked web service; and
      
      receiving an updated OAuth access token.
  - 6. The method according to claim 5, wherein sending the request for updating the OAuth access token to the invoked web service comprises:
    - sending a HTTP request to the invoked web service;
      
      receiving a returned result; and
      
      constructing the request for updating OAuth access token based on the returned result.
  - 7. The method according to claim 6, wherein constructing the request for updating the OAuth access token based on the returned result comprises:
    - extracting content from the returned result related to updating of the OAuth access token; and
      
      constructing the request for updating OAuth access token based on the extracted content.

8. A system for handling OAuth of an invoked web service in a process, the system comprising:
- a memory having computer readable instructions; and
  
  a processor for executing the computer readable instructions, the computer readable instructions including;
  
  determining whether an OAuth access token has expired, the determining comprising;
  
  sending a hypertext transfer protocol (HTTP) request to the invoked web service; and
  
  deciding whether the OAuth access token has expired based on a returned result from the invoked web service; and
  
  initiating an automatic update of the OAuth access token based on determining that the OAuth access token has expired, the initiating including extracting content from the returned result and constructing a request to update the OAuth access token, the extracted content including computer code executable for updating the OAuth access token, and the request to update the OAuth access token including the extracted content.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system according to claim 8, wherein the instructions further include:
    - acquiring an address of an endpoint corresponding to the invoked web service;
      
      constructing an address of a description file of the invoked web service with the address of the endpoint; and
      
      wherein the instructions are further configured to send a HTTP request to the address of the description file of the invoked web service.
  - 10. The system according to claim 9, wherein the construction of the address of the description file of the invoked web service by appending “
    - ?wsdl”
      
      to the address of the endpoint corresponding to the invoked web service.
  - 11. The system according to claim 9, wherein the deciding determines whether the OAuth access token has expired based on the returned result by:
    - checking whether the returned result meets a web service definition language (WSDL) scheme;
      
      determining that the OAuth access token has expired if the returned result does not meet the WSDL scheme.
  - 12. The system according to claim 8, wherein the automatic update of the OAuth access token comprises:
    - sending the request for updating OAuth access token to the invoked web service; and
      
      receiving an updated OAuth access token from the invoked web service.
  - 13. The system according to claim 12, wherein sending the request for updating the OAuth access token to the invoked web service comprises:
    - sending a HTTP request to the invoked web service;
      
      receiving a returned result; and
      
      constructing the request for updating OAuth access token based on the returned result.
  - 14. The system according to claim 13, wherein constructing the request for updating the OAuth access token based on the returned result comprises:
    - extracting content from the returned result related to updating of the OAuth access token; and
      
      constructing the request for updating OAuth access token based on the extracted content.

15. A computer program product for handling open authentication (OAuth) of an invoked web service in a process, the computer program product comprising:
- a non-transitory computer readable storage medium having program code embodied therewith, the program code executable by a processor for;
  
  determining whether an OAuth access token has expired, the determining comprising;
  
  sending a hypertext transfer protocol (HTTP) request to the invoked web service; and
  
  deciding whether the OAuth access token has expired based on a returned result from the invoked web service; and
  
  initiating an automatic update of the OAuth access token based on determining that the OAuth access token has expired, the initiating including extracting content from the returned result and constructing a request to update the OAuth access token, the extracted content including computer code executable for updating the OAuth access token, and the request to update the OAuth access token including the extracted content.
- View Dependent Claims (16, 17)
- - 16. The computer program product according to claim 15, wherein sending a HTTP request to the invoked web service comprises:
    - acquiring an address of an endpoint corresponding to the invoked web service;
      
      constructing an address of a description file of the invoked web service with the address of the endpoint; and
      
      sending the HTTP request to the address of the description file of the invoked web service.
  - 17. The computer program product according to claim 16, wherein the address of the description file of the invoked web service is constructed by appending “
    - ?wsdl”
      
      to the address of the endpoint corresponding to the invoked web service.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Liu, Jian Min, Liu, Ying, Wang, Xi Ning, Yu, Shao
Primary Examiner(s)
PYZOCHA, MICHAEL J

Application Number

US14/031,519
Publication Number

US 20140096224A1
Time in Patent Office

1,293 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/08 for authentication of entit...

H04L 63/0807 using tickets, e.g. Kerbero...

Handling open authentication of an invoked web service in a process

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Handling open authentication of an invoked web service in a process

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links