Single sign on for applications
First Claim
Patent Images
1. A method comprising:
- intercepting, at a client device, an Application Programming Interface (API) request made by an application executing at the client device, the API request used for signing on a user of the client device to access the application, wherein the API request is intercepted at a layer between the application layer and the operating system layer of the client device;
instructing an operating system of the client device to hide or not display a login window form associated with the API request;
sending, from the client device via a network interface of the client device, the intercepted API request to a remote system from the client device;
receiving, at the client device via the network interface of the client device, user credentials for signing on the user to access the application from the remote system, the user credentials determined using the intercepted API request; and
without prompting the user for input and at the client device, signing on the user to access the application executing at the client device using the received user credentials by populating at least one field in the hidden or not displayed login window form with the user credentials and then activating a submit button of the login window form;
further comprising, at the client device;
inspecting a plurality of API requests of a plurality of applications executing at the client device;
intercepting API requests of the plurality of API requests used for signing on the user to access the plurality of applications;
receiving, from the remote system, a plurality of user credentials for accessing the plurality of applications based on the API requests;
agnostically signing on the user to access the plurality of applications using the plurality of user credentials.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and method for providing single sign on access to an application executing at a client device. An API request is intercepted at the client device for signing on a user of the client device for accessing the application. The API request is sent to a remote system where user credentials are determined based on the intercepted API request. The user credentials are returned to the client device where they are used to agnostically sign on the user for accessing the application.
10 Citations
18 Claims
-
1. A method comprising:
-
intercepting, at a client device, an Application Programming Interface (API) request made by an application executing at the client device, the API request used for signing on a user of the client device to access the application, wherein the API request is intercepted at a layer between the application layer and the operating system layer of the client device; instructing an operating system of the client device to hide or not display a login window form associated with the API request; sending, from the client device via a network interface of the client device, the intercepted API request to a remote system from the client device; receiving, at the client device via the network interface of the client device, user credentials for signing on the user to access the application from the remote system, the user credentials determined using the intercepted API request; and without prompting the user for input and at the client device, signing on the user to access the application executing at the client device using the received user credentials by populating at least one field in the hidden or not displayed login window form with the user credentials and then activating a submit button of the login window form; further comprising, at the client device; inspecting a plurality of API requests of a plurality of applications executing at the client device; intercepting API requests of the plurality of API requests used for signing on the user to access the plurality of applications; receiving, from the remote system, a plurality of user credentials for accessing the plurality of applications based on the API requests; agnostically signing on the user to access the plurality of applications using the plurality of user credentials. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system comprising:
-
a client device having one or more processors and memory, the client device including; an API request interception engine configured to intercept an Application Programming Interface (API) request made by an application executing at the client device and configured to instruct an operating system of the client device to hide or not display a login window form associated with the API request, wherein the API request is intercepted at a layer between an application layer and an operating system layer of the client device; an on-device communication engine configured to; send the intercepted API request to a remote system from the client device; receive user credentials for signing on the user to access the application from the remote system, the user credentials determined using the intercepted API request; a sign on engine configured to, without prompting the user for input, sign on the user to access the application executing at the client device using the received user credentials by populating at least one field in the hidden or not displayed login window form with the user credentials and then activating a submit button of the login window form; the API request interception engine is further configured to; inspect a plurality of API requests of a plurality of applications executing at the client device; intercept API requests of the plurality of API requests used for signing on the user to access the plurality of applications; the on-device communication engine further configured to receive, from the remote system, a plurality of user credentials for accessing the plurality of applications based on the API requests; the sign on engine further configured to agnostically sign on the user to access the plurality of applications using the plurality of user credentials. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A system comprising:
-
means, at a client device, for intercepting, at a layer between an application layer and an operating system layer of the client device, an Application Programming Interface (API) request made by the application executing at the client device, the API request used for signing on a user of the client device to access the application, and for instructing an operating system of the client device to hide or not display a login window form associated with the API request; a network interface, at the client device, for sending the intercepted API request to a remote system from the client device and means for receiving user credentials for signing on the user to access the application from the remote system, the user credentials determined using the intercepted API request; and means, at the client device, for signing on the user to access the application at the client device using the user credentials without prompting the user for input by populating at least one field in the hidden or not displayed login window form with the user credentials and then activating a submit button of the login window form; further comprising, at the client device, means for; inspecting a plurality of API requests of a plurality of applications executing at the client device; intercepting API requests of the plurality of API requests used for signing on the user to access the plurality of applications; receiving, from the remote system, a plurality of user credentials for accessing the plurality of applications based on the API requests; agnostically signing on the user to access the plurality of applications using the plurality of user credentials. - View Dependent Claims (18)
-
Specification