Passporting credentials between a mobile app and a web browser
First Claim
Patent Images
1. A system, comprising:
- a non-transitory memory; and
one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising;
in response to receiving a user selection of an application and authentication credentials associated with the application, transmitting the authentication credentials to a server to request a session token;
in response to receiving the session token, initiating a device session between the application and the server based on the session token;
displaying a user interface (UI) of the application for the device session;
in response to the application launching a web view within the application, providing the session token and a web address to the web view;
transmitting the session token and the web address from the web view to a Common Gateway Interface (CGI) to authenticate a web session between the web view and the CGI that continues the device session;
displaying a web flow on the web view for the web session without requiring the authentication credentials;
in response to receiving a user selection of a button for returning to the UI of the application, resuming the device session based on the session token; and
displaying the UI of the application for the resumed device session.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for passporting credentials provide a mechanism by which a native app on a client device can invoke a service provider'"'"'s core web site web addresses (URL) while keeping the existing session active and shared between the two experiences (native app and web flow) so that the end user does not need to re-login at each context switch. The mechanism can include a unique way for the web flow context to communicate conditions and pass control back to the native app context of the shared session.
-
Citations
20 Claims
-
1. A system, comprising:
-
a non-transitory memory; and one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising; in response to receiving a user selection of an application and authentication credentials associated with the application, transmitting the authentication credentials to a server to request a session token; in response to receiving the session token, initiating a device session between the application and the server based on the session token; displaying a user interface (UI) of the application for the device session; in response to the application launching a web view within the application, providing the session token and a web address to the web view; transmitting the session token and the web address from the web view to a Common Gateway Interface (CGI) to authenticate a web session between the web view and the CGI that continues the device session; displaying a web flow on the web view for the web session without requiring the authentication credentials; in response to receiving a user selection of a button for returning to the UI of the application, resuming the device session based on the session token; and displaying the UI of the application for the resumed device session. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method, comprising:
-
in response to receiving a user selection of an application and authentication credentials associated with the application, initiating a device session between the application and a server by; transmitting the authentication credentials to the server; and receiving a session token for the device session from the server; presenting a user interface (UI) of the application for the device session on a user device; in response to the application launching a web view as a part of the application, initiating a web session that continues from the device session by; providing the session token and a web address to the web view; and transmitting the session token and the web address from the web view to a Common Gateway Interface (CGI) to authenticate the web session between the web view and the CGI; presenting a web flow on the web view for the web session on the user device without requiring the authentication credentials; in response to receiving a user selection for returning to the UI of the application, resuming the device session based on the session token; and presenting the UI of the application for the resumed device session on the user device. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory machine-readable medium having stored thereon machine-readable instructions executable to cause a machine to perform operations comprising:
-
determining authentication credentials associated with an application; in response to determining the authentication credentials, initiating a device session between the application and a server by; transmitting the authentication credentials to the server; and receiving a session token for the device session from the server; presenting a user interface (UI) of the application for the device session; in response to the application launching a web view as a part of the application, initiating a web session that continues from the device session by; providing the session token and a web address to the web view; and transmitting the session token and the web address from the web view to a Common Gateway Interface (CGI) to authenticate the web session between the web view and the CGI; presenting a web flow on the web view for the web session without requiring the authentication credentials; in response to receiving a user selection to return to the UI of the application, resuming the device session based on the session token; and presenting the UI of the application for the resumed device session. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification