SYSTEM AND METHOD FOR EMBEDDING FIRST PARTY WIDGETS IN THIRD-PARTY APPLICATIONS
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems provide embeddable user interface widgets to third-party applications so that the widgets can be securely embedded in, and securely used from within, the third-party applications. An embeddable widget may be authorized to access a first-party cloud storage system from a third-party application based on the cloud storage system authenticating a request received from the widget. The authentication may be based on an application identifier, an origin identifier, and/or one or more document identifiers received from the third-party application through the embedded widget. The disclosed methods and systems may significantly mitigate security concerns caused by embedding software in third-party sites, such as clickjacking.
15 Citations
40 Claims
-
1-20. -20. (canceled)
-
21. A method for providing access to files stored on a server, the method comprising:
-
receiving, from a browser at a client device, a request for a file stored on the server, wherein the request includes; a document identifier associated with the file, an application identifier, and an origin identifier; determining that the origin identifier and the document identifier are both associated with the application identifier; and based on the determining, granting the browser access to the file. - View Dependent Claims (22, 23, 24, 25)
-
-
26. A method for providing access to files stored on a server, the method comprising:
-
receiving, from a browser at a client device, a first request for a file stored on the server; sending a second request to the server, wherein the second request includes; a document identifier associated with the file, an application identifier, and an origin identifier; and receiving access to the file. - View Dependent Claims (27, 28, 29, 30)
-
-
31. A system for providing access to files stored on a server, the system comprising:
-
one or more processors; and memory storing one or more programs for execution by the one or more processors, the one or more programs comprising instructions for; receiving, from a browser at a client device, a request for a file stored on the server, wherein the request includes; a document identifier associated with the file, an application identifier, and an origin identifier; determining that the origin identifier and the document identifier are both associated with the application identifier; and based on the determining, granting the browser access to the file. - View Dependent Claims (32, 33, 34, 35)
-
-
36. A system for providing access to files stored on a server, the system comprising:
-
one or more processors; and memory storing one or more programs for execution by the one or more processors, the one or more programs comprising instructions for; receiving, from a browser at a client device, a first request for a file stored on the server; sending a second request to the server, wherein the second request includes; a document identifier associated with the file, an application identifier, and an origin identifier; and receiving access to the file. - View Dependent Claims (37, 38, 39, 40)
-
Specification