Passporting credentials between a mobile app and a web browser

摘要

Systems and methods for passporting credentials provide a mechanism by which a native app on a client device can invoke a service provider's core web site web addresses (URL) while keeping the existing session active and shared between the two experiences (native app and web flow) so that the end user does not need to re-login at each context switch. The mechanism can include a unique way for the web flow context to communicate conditions and pass control back to the native app context of the shared session. Embodiments may operate by authenticating a device session from a native app executing on a client device producing a device session token; passing the device session token from a native app to an embedded browser to authenticate a user when entering a web flow; and entering the web flow, according to the session token, on an embedded browser driven by the native app so that the user encounters a single shared session (device session and web session) running at least two parallel secure communication interactions with an infrastructure.

主权项

1. A system comprising:
a client device executing a native app and an embedded web browser, wherein: the native app has a device session token that provides a session authentication with a server for an authenticated device session between the native app and the server, wherein the session authentication is based on credentials for authenticating a user; the native app invokes the embedded web browser, providing the embedded web browser with the device session token based on the credentials, wherein the device session token provides authentication for a web flow session on the embedded web browser, wherein the web flow session continues the authenticated device session from the native app based on the authentication provided from the device session token; and the native app refreshes the device session token based on communication back from the web flow session to the authenticated device session between the native app and the server, the communication implemented by the native app monitoring uniform resource locators (URL) requested by the embedded web browser so that the device session between the native app and the server remains active while the web flow session is active.