Multi-platform single sign-on database driver
First Claim
1. A method of automatically providing access to a database from a client application based on prior authentication of a user, the method comprising:
- obtaining a login credential created responsive to input provided by the user during the prior authentication;
using the login credential to create a security context; and
using the security context to establish a secure connection to the database for communication between the client application and the database.
7 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods of performing single sign-on authentication from multiple platforms when establishing a connection to a database are described. An application can securely access a database based on user credentials provided during a prior authentication. In an embodiment, single sign-on is accomplished by relying on existing and emerging authentication, security service, security mechanism, and wire protocols, enabling the creation of drivers to accommodate various platforms and databases. In another embodiment, a pure type 4 Java Driver is used, eliminating dependencies on native operating functionality.
91 Citations
29 Claims
-
1. A method of automatically providing access to a database from a client application based on prior authentication of a user, the method comprising:
-
obtaining a login credential created responsive to input provided by the user during the prior authentication;
using the login credential to create a security context; and
using the security context to establish a secure connection to the database for communication between the client application and the database. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 29)
-
-
11. A system for authenticating a client application to a database based on prior authentication of a client user using a security mechanism, the system comprising:
-
an authentication module for performing authentication of an instance of the client user to the security mechanism based on a client user credential generated during the prior authentication;
a client security services module for facilitating a secure connection for communications between the database and client application consistent with the security mechanism; and
a driver for creating a wire protocol connection to the database from the application and for communicating requests from the client application to the database using the secure connection facilitated by the client security services module. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method of supplying automatic access to a database from a client application based on prior authentication of a user, the method comprising:
-
creating a connection object for connecting the client application to the database;
using the connection object to create a secure connection based on a user credential generated during prior authentication of the user;
initializing the secure connection; and
communicating with the database over the initialized secure connection, wherein the client application operates in a client environment and the database operates in a database environment, and the client environment comprises a different type of environment than the database environment. - View Dependent Claims (21, 22, 23, 24)
-
-
25. A method of automatically providing access to a database to a user based on prior authentication of the user, the method comprising:
-
receiving a log on request from a driver, wherein the log on request includes a client token and is received subsequent to establishment of a security context, the establishment of the security context accomplished using a user credential generated during prior authentication of the user;
extracting the client token from the log on request;
sending the client token to a security services module for authentication of the client token;
and sending an acknowledgement of the log on request to the driver. - View Dependent Claims (26, 27, 28)
-
Specification