主权项 |
1. A method, comprising:
authenticating a user of a device, having a single sign-on client, with a single sign-on server associated with the single sign-on client; subsequent to the authenticating, receiving, by the single sign-on client, a request for an authentication token from an application operating on the device; determining, by the single sign-on client, whether an application lock flag for the application is set; and responsive to the determining, providing, by single sign-on client, the authentication token when the application lock flag is not set and withholding the authentication token from the application when the application lock flag is set. |