Methods systems and articles of manufacture for implementing user access to remote resources
First Claim
1. A computer implemented method for implementing user access to a plurality of remote resources, comprising:
- receiving, at the first computer, a single click on a user interface element of a user computing device through a first network for accessing the plurality of remote resources, wherein the plurality of remote resources reside on a second computer accessible by the first computer through a second network;
performing, at the first computer;
automatic logon for the user, without human intervention other than the single click, using centrally stored user credentials that are used to authenticate or authorize the user access to the plurality of remote resources each requiring a separate authentication or authorization on the second computer, whereinthe user computing device includes no login logic for authenticating or authorizing the user access to the plurality of remote resources and is authenticated or authorized to access the plurality of remote resources on the second computer, without transmitting the centrally stored user credentials from the user computing device or using a single-sign-on mechanism where at least one ticket is passed between the first computer and the second computer to service at least one of the plurality of remote resources to the user;
initiation or identification of a new session between the first computer and the second computer through the second network, andauthentication or authorization of the user on the first computer granting the user access to the plurality of remote resources on the second computer; and
enabling, by the first computer, the user to access the plurality of remote resources by using the new session in response to the single click on the user interface element.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems, and articles of manufacture for implementing user access to remote resources residing on an external domain. Various implementations include authenticating and authorizing a user on a first system and receiving user request to access remote resources. The first system invokes processes or modules to initiate a new session to perform auto logon on behalf of the user on a second system by using stored user'"'"'s credentials and subdomain delegation techniques without user intervention. The second system authenticates and authorizes this new session to allow user access to remote resources residing thereupon. The first system further prepares the user'"'"'s system to take over the new session by setting cookie(s) and also by redirecting the URL so the user may continue to use the new session to access the desired remote resources residing on the second system.
46 Citations
31 Claims
-
1. A computer implemented method for implementing user access to a plurality of remote resources, comprising:
-
receiving, at the first computer, a single click on a user interface element of a user computing device through a first network for accessing the plurality of remote resources, wherein the plurality of remote resources reside on a second computer accessible by the first computer through a second network; performing, at the first computer; automatic logon for the user, without human intervention other than the single click, using centrally stored user credentials that are used to authenticate or authorize the user access to the plurality of remote resources each requiring a separate authentication or authorization on the second computer, wherein the user computing device includes no login logic for authenticating or authorizing the user access to the plurality of remote resources and is authenticated or authorized to access the plurality of remote resources on the second computer, without transmitting the centrally stored user credentials from the user computing device or using a single-sign-on mechanism where at least one ticket is passed between the first computer and the second computer to service at least one of the plurality of remote resources to the user; initiation or identification of a new session between the first computer and the second computer through the second network, and authentication or authorization of the user on the first computer granting the user access to the plurality of remote resources on the second computer; and enabling, by the first computer, the user to access the plurality of remote resources by using the new session in response to the single click on the user interface element. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
- 12. A system for implementing user access to a remote resource, comprising a first computer that communicates with a user through a first network and is configured to at least receive, at the first computer, a single click on a user interface element of a user computing device through a first network for accessing the plurality of remote resources, wherein the plurality of remote resources reside on a second computer accessible by the first computer through a second network, perform, at the first computer, automatic logon for the user without human intervention other than the single click, using centrally stored user credentials that are used to authenticate or authorize the user access to the plurality of remote resources each requiring a separate authentication or authorization on the second computer, wherein the user computing device includes no login logic for authenticating or authorizing the user access to the plurality of remote resources and is authenticated or authorized to access the plurality of remote resources on the second computer without transmitting the stored user credentials from the user computing device or using a single-sign-on mechanism where at least one ticket is passed between the first computer and the second computer to service at least one of the plurality of remote resources to the user, initiation or identification of a new session between the first computer and the second computer through the second network, and authentication or authorization of the user on the first computer granting the user access to the plurality of remote resources on the second computer, and enable, by the first computer, the user to access the plurality of remote resources by using the new session in response to the single click on the user interface element.
-
22. An article of manufacture comprising a non-transitory computer accessible storage medium having one or more instructions which, when executed by at least one processor, cause the at least one processor to perform a set of acts for implementing user access to a plurality of remote resources, the process comprising:
- receiving, at the first computer, a single click on a user interface element of a user computing device through a first network for accessing the plurality of remote resources, wherein the plurality of remote resources reside on a second computer accessible by the first computer through a second network;
performing, at the first computer;
automatic logon for the user, without human intervention other than the single click, using centrally stored user credentials that are used to authenticate or authorize the user access to the plurality of remote resources each requiring a separate authentication or authorization on the second computer, wherein the user computing device includes no login logic for authenticating or authorizing the user access to the plurality of remote resources and is authenticated or authorized to access the plurality of remote resources on the second computer without transmitting the stored user credentials from the user computing device or using a single-sign-on mechanism where at least one ticket is passed between the first computer and the second computer to service at least one of the plurality of remote resources to the user;
initiation or identification of a new session between the first computer and the second computer through the second network, and authentication or authorization of the user on the first computer granting the user access to the plurality of remote resources on the second computer; and
enabling, by the first computer, the user to access the plurality of remote resources by using the new session in response to the single click on the user interface element. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31)
- receiving, at the first computer, a single click on a user interface element of a user computing device through a first network for accessing the plurality of remote resources, wherein the plurality of remote resources reside on a second computer accessible by the first computer through a second network;
Specification