摘要 |
PROBLEM TO BE SOLVED: To provide means for invalidating a refresh token which has flown out in order to prevent a token from being updated by an unintended system, and a cooperation destination system from being continuously used illegally in the case of approving the update of the token or issuing a refresh token for updating a token to transfer access authority to a cooperation destination system to a cooperation source system in the cooperation of mutual cloud services.SOLUTION: In an access management system for managing authentication and approval, a refresh token issued in first approval processing is stored in association with a reissued token in the case of performing token issue processing using a series of refresh tokens. When the refresh token issued first is designated, all refresh tokens associated with the refresh token issued first are invalidated. |