Identity management over multiple identity providers
First Claim
Patent Images
1. A method comprising:
- requesting a backend service from multiple backend services by a requesting device; and
exposing the requested backend service though a call in by a gateway service using a token mapped to the requested backend service, without exposing any of the backend services directly to the requesting device,wherein;
the device calls into the gateway service to expose the requested backend service;
the gateway service obtains the token and a token template from an identity service configured to host an identity service tool;
the gateway service calls into the requested backend service to expose the backend service directly to the gateway service;
the requested backend service is provided to the device from the gateway service;
the identity service inspects a service that is being called and determines which service template should be used to map the token to the backend service; and
a single token is passed in order to retrieve proper credentials using the gateway service.
3 Assignments
0 Petitions
Accused Products
Abstract
Systems and processes of advanced identity management over multiple identity providers deployable through mobile applications are provided. The process, e.g., method, includes requesting a backend service from multiple backend services by a requesting device. The method further includes exposing the requested backend service though a call in by a gateway service using a token mapped to the requested backend service, without exposing any of the backend services directly to the requesting device.
20 Citations
13 Claims
-
1. A method comprising:
-
requesting a backend service from multiple backend services by a requesting device; and exposing the requested backend service though a call in by a gateway service using a token mapped to the requested backend service, without exposing any of the backend services directly to the requesting device, wherein; the device calls into the gateway service to expose the requested backend service; the gateway service obtains the token and a token template from an identity service configured to host an identity service tool; the gateway service calls into the requested backend service to expose the backend service directly to the gateway service; the requested backend service is provided to the device from the gateway service; the identity service inspects a service that is being called and determines which service template should be used to map the token to the backend service; and a single token is passed in order to retrieve proper credentials using the gateway service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer program product comprising a computer readable storage medium having program instructions embodied therewith, wherein the computer readable storage medium is not a transitory signal per se, and the program instructions are readable by a computing device to cause the computing device to perform a method comprising:
-
mapping a token to parameters in a service call to a requested backend service; making the service call to a requested backend service, from a service provider; exposing the requested backend service only to the service provider; and providing a service of the requested backend service to a device, directly from the the service provider while not exposing the backend service to the device, wherein; the device calls into a gateway service to expose the requested backend service; the gateway service obtains the token and a token template from an identity service configured to host an identity service tool; the gateway service calls into the requested backend service to expose the backend service directly to the gateway service; the requested backend service is provided to the device from the gateway service; the identity service inspects a service that is being called and determines which service template should be used to map the token to the backend service; and a single token is passed in order to retrieve proper credentials using the gateway service. - View Dependent Claims (10, 11, 12, 13)
-
Specification