| 发明名称 | Application identity design | ||
| 摘要 | Methods and apparatus, including computer program products, implementing and using techniques for providing user credentials over a network to a remote computer application. User credentials for the remote computer application are stored in a central repository that is accessible through the network. A request is sent to a service to perform, on behalf of a user, a particular task involving the remote computer application. It is determined whether the service has been granted permission to act on behalf of the user with respect to the remote computer application. When the service has permission to act on behalf of the user, the service is used to retrieve the user's credentials for the remote computer application from the central repository and to supply the retrieved user credentials to the remote computer application. | ||
| 申请公布号 | US9071594(B2) | 申请公布日期 | 2015.06.30 |
| 申请号 | US201313886209 | 申请日期 | 2013.05.02 |
| 申请人 | salesforce.com, inc. | 发明人 | Boulos Thomas Nabiel;Behera Prasanta Kumar |
| 分类号 | H04L29/06;G06F21/33;G06F21/30;H04L29/08;G06F21/41 | 主分类号 | H04L29/06 |
| 代理机构 | Haynes Beffel & Wolfeld LLP | 代理人 | Haynes Beffel & Wolfeld LLP ;Beffel, Jr. Ernest J. |
| 主权项 | 1. An interoperability network comprising one or more computing devices configured to: receive a request for a first service to perform a particular task involving a second service on behalf of a first user, wherein the first and second services are in communication with an interoperability network and are provided by first and second independent service providers, respectively; determine whether the first user has provided a first set of credentials that defines access information associated with the second service, the first set of credentials being included among a plurality of sets of credentials stored on one or more storage media accessible through the interoperability network; determine whether the first service is authorized to act on behalf of the first user with respect to the second service with reference to one or more of a plurality of permissions stored on the one or more storage media; and where the first user has provided the first set of credentials, and where the first service is authorized to act on behalf of the first user with respect to the second service, authorizing the first service to perform the particular task involving the second service on behalf of the first user. | ||
| 地址 | San Francisco CA US | ||