Delivery of authentication information to a RESTful service using token validation scheme

  • US 9,300,653 B1
  • Filed: 04/21/2014
  • Issued: 03/29/2016
  • Est. Priority Date: 08/20/2012
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of authenticating an entity, comprising:

  • receiving, by an authentication component of a RESTful service, a service request from an entity agent;

    redirecting, by the authentication component, the entity agent to a relying party;

    redirecting, by the relying party, the entity agent to an identity provider, wherein the identity provider authenticates the entity using entity-supplied information;

    accepting, by the relying party, a service ticket and a SAML assertion from the identity provider;

    sending, by the relying party, the service ticket to the authentication component, wherein the sending is via the entity agent through an HTTP redirect; and

    retrieving, by the authentication component, entity-related information from the relying party, wherein the retrieved entity-related information is encoded in the SAML assertion and transferred via a back channel.

View all claims
  • 3 Assignments
Timeline View
Assignment View