公开(公告)号：US20200007529A1

公开(公告)日：2020-01-02

申请号：US16024455

申请日：2018-06-29

Applicant: salesforce.com, inc.

Inventor： Matthew Bahrenburg ,  Alan Vangpat ,  Anupam Jain ,  Koson Thambundit ,  Sanjay Thakkar

IPC: H04L29/06 ,  G06F17/30 ,  H04L29/08

Abstract: Disclosed are some implementations of systems, apparatus, methods and computer program products for facilitating the authentication of computing system requests with an unknown destination across tenants of at least one multi-tenant database system. Authentication is facilitated using an intermediate system that is accessible by and independent from the tenants of the multi-tenant database system.

公开(公告)号：US10021089B2

公开(公告)日：2018-07-10

申请号：US14682324

申请日：2015-04-09

Applicant: salesforce.com, inc.

Inventor： William Charles Mortimore, Jr. ,  Sergio Isaac Koren ,  Paul Anthony Mason ,  Alan Vangpat

IPC: H04L29/06

CPC classification number: H04L63/083 ,  H04L63/0838 ,  H04L63/102 ,  H04L2463/082

Abstract: Mechanisms and techniques for customized user validation. A login attempt is received from a remote electronic device with one or more computing devices that provide access to one or more resources. The login attempt is analyzed to determine a profile from a plurality of profiles corresponding to the login attempt. The one or more computing devices support the plurality profiles with each profile having a corresponding flow. The flow corresponding to the profile is performed prior to allowing continuation of the login attempt. The login attempt is continued, via the one or more computing devices, after the flow corresponding to the profile is completed. Access is granted to the one or more resources, via the one or more computing devices, in response to a successful completion of the login attempt.

公开(公告)号：US20160301679A1

公开(公告)日：2016-10-13

申请号：US14682324

申请日：2015-04-09

Applicant: salesforce.com, inc.

Inventor： William Charles Mortimore, JR. ,  Sergio Isaac Koren ,  Paul Anthony Mason ,  Alan Vangpat

IPC: H04L29/06

CPC classification number: H04L63/083 ,  H04L63/0838 ,  H04L63/102 ,  H04L2463/082

Abstract: Mechanisms and techniques for customized user validation. A login attempt is received from a remote electronic device with one or more computing devices that provide access to one or more resources. The login attempt is analyzed to determine a profile from a plurality of profiles corresponding to the login attempt. The one or more computing devices support the plurality profiles with each profile having a corresponding flow. The flow corresponding to the profile is performed prior to allowing continuation of the login attempt. The login attempt is continued, via the one or more computing devices, after the flow corresponding to the profile is completed. Access is granted to the one or more resources, via the one or more computing devices, in response to a successful completion of the login attempt.

Abstract translation: 定制用户验证的机制和技术。 从具有提供对一个或多个资源的访问的一个或多个计算设备的远程电子设备接收登录尝试。 分析登录尝试以从对应于登录尝试的多个简档确定简档。 一个或多个计算设备支持多个轮廓，每个轮廓具有对应的流。 在允许继续登录尝试之前执行与简档对应的流程。 在对应于简档的流程完成之后，通过一个或多个计算设备继续登录尝试。 响应于登录尝试的成功完成，经由一个或多个计算设备向一个或多个资源授予访问权限。

公开(公告)号：US08844013B2

公开(公告)日：2014-09-23

申请号：US13633521

申请日：2012-10-02

Applicant: salesforce.com, inc.

Inventor： Alan Vangpat ,  Prathima Rao ,  Charles Mortimore

IPC: G06F17/30 ,  G06F21/00 ,  H04L9/32 ,  H04L29/06 ,  G06F21/41 ,  G06F15/16

CPC classification number: H04L9/3213 ,  G06F21/41 ,  H04L63/0815 ,  H04L63/102

Abstract: A method for logging a user into an online host system begins by receiving a login request from a web browser application of a client device, wherein the login request identifies the online host system. The method continues by initiating a single sign-on routine that involves an online third party system and by obtaining third party user data from the online third party system, wherein the obtained third party user data is associated with the user and is maintained by the online third party system. Host system records maintained by the online host system are modified in accordance with the obtained third party user data. Thereafter, the user is automatically logged into the online host system.

Abstract translation: 将用户登录到在线主机系统的方法是从客户端设备的web浏览器应用接收登录请求开始的，其中登录请求标识在线主机系统。 该方法通过启动涉及在线第三方系统的单一登录例程并通过从在线第三方系统获得第三方用户数据而继续，其中所获得的第三方用户数据与用户相关联并由在线维护 第三方制度。 在线主机系统维护的主机系统记录根据获得的第三方用户数据进行修改。 此后，用户将自动登录到在线主机系统。

公开(公告)号：US20140013387A1

公开(公告)日：2014-01-09

申请号：US14024486

申请日：2013-09-11

Applicant: salesforce.com, inc.

Inventor： Alan Vangpat ,  Harsimranjit Chabbewal

IPC: G06F21/31

CPC classification number: G06F21/31 ,  G06F21/41 ,  H04L63/0815

Abstract: Various techniques and procedures related to user authentication, identity providers, and single sign-on (SSO) are presented here. One approach creates an SSO link between two organizations in a streamlined manner using an internal cross-user systemwide digital certificate, and without processing any user-created, user-uploaded, or user-assigned digital certificates. Another approach presented here configures an identity provider service for an entity or organization by processing a single user command. The identity provider service is automatically configured in the background without processing any additional user commands, user instructions, or user-entered data.

Abstract translation: 这里介绍了与用户认证，身份提供商和单点登录（SSO）相关的各种技术和过程。 一种方法使用内部跨用户系统范围的数字证书，并且不处理任何用户创建的，用户上传的或用户分配的数字证书，以简化的方式在两个组织之间创建SSO链接。 此处提供的另一种方法通过处理单个用户命令来为实体或组织配置身份提供商服务。 身份提供商服务在后台自动配置，无需处理任何其他用户命令，用户指令或用户输入的数据。