| 发明名称 |
AUTHORIZATION MESSAGING WITH INTEGRAL DELEGATION DATA |
| 摘要 |
A computer-implemented method for authorizing access by a client application to a resource of a user maintained on a first server computing system, the client application being implemented on a second server computing system, includes receiving a delegation message from the first server computer system to initiate authorization of the access by the client application, issuing an authorization message to the first server computer system, the authorization message comprising an authorization data package for redemption by the client application, the authorization data package comprising first through fourth integral delegation data indicative of the user, the client application, the resource, and a timestamp, respectively, receiving a redemption message from the second server computing system comprising the authorization data package, conducting an analysis of the authorization data package, and sending an access token to the second server computing system based on the analysis. |
| 申请公布号 |
US2014189797(A1) |
申请公布日期 |
2014.07.03 |
| 申请号 |
US201213727690 |
申请日期 |
2012.12.27 |
| 申请人 |
MICROSOFT CORPORATION |
发明人 |
Nori Vijayavani;Wilson Hervey O.;Baker Caleb G.;Johnson Gregory C.;Satagopan Murli Dharan;Sakhnov Igor;Kwok Samantha |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A computer-implemented method for authorizing access by a client application to a resource of a user maintained on a first server computing system, the client application being implemented on a second server computing system, the method comprising:
receiving a delegation message from the first server computer system to initiate authorization of the access by the client application; issuing, in response to the delegation message, an authorization message to the first server computer system, the authorization message comprising an authorization data package for redemption by the client application, the authorization data package comprising first through fourth integral delegation data indicative of the user, the client application, the resource, and a timestamp, respectively; receiving a redemption message from the second server computing system comprising the authorization data package; conducting, with a processor, an analysis of the authorization data package; and sending an access token to the second server computing system based on the analysis. |
| 地址 |
Redmond WA US |
