发明名称 |
METHOD AND SYSTEM TO PROVIDE ADDITIONAL SECURITY MECHANISM FOR PACKAGED WEB APPLICATIONS |
摘要 |
A method for authenticating a client application attempting to access a protected resource on a resource server includes receiving a request to access the protected resource at an authorization server. The request is received from the client application authorized by a resource owner of the protected resource. Further, the method includes redirecting the request to the resource server using a redirect identifier corresponding to a redirect endpoint of the client application. The redirect identifier is intercepted by a web run time engine prior to the redirect. Furthermore, the method includes determining a match between the intercepted redirect identifier and a pre-assigned redirect identifier with the client application stored at the web run time engine to authenticate the client application prior to providing access to the protected resource. |
申请公布号 |
US2015180850(A1) |
申请公布日期 |
2015.06.25 |
申请号 |
US201414578090 |
申请日期 |
2014.12.19 |
申请人 |
Samsung Electronics Co., Ltd. |
发明人 |
Venkataramana Balaji Nerella;Das Kaushik;Jamadagni Satish Nanjunda Swamy;Perumal Prabhavathi |
分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
1. A method for authenticating a client application attempting to access a protected resource stored on a resource server, the method comprising:
receiving, by an authorization server, a request to access the protected resource, wherein the request is received from the client application authorized by a resource owner of the protected resource; and redirecting, by the authorization server, the request to the resource server using a redirect identifier corresponding to a redirect endpoint of the client application, wherein the redirect identifier is intercepted by a web runtime engine prior to the redirect. |
地址 |
Gyeonggi-do KR |