PASSPORTING CREDENTIALS BETWEEN A MOBILE APP AND A WEB BROWSER
    1.
    发明申请
    PASSPORTING CREDENTIALS BETWEEN A MOBILE APP AND A WEB BROWSER 有权
    在移动应用程序和网络浏览器之间进行验证

    公开(公告)号:US20120324556A1

    公开(公告)日:2012-12-20

    申请号:US13162842

    申请日:2011-06-17

    IPC分类号: H04L9/32 G06F21/00

    摘要: Systems and methods for passporting credentials provide a mechanism by which a native app on a client device can invoke a service provider's core web site web addresses (URL) while keeping the existing session active and shared between the two experiences (native app and web flow) so that the end user does not need to re-login at each context switch. The mechanism can include a unique way for the web flow context to communicate conditions and pass control back to the native app context of the shared session. Embodiments may operate by authenticating a device session from a native app executing on a client device producing a device session token; passing the device session token from a native app to an embedded browser to authenticate a user when entering a web flow; and entering the web flow, according to the session token, on an embedded browser driven by the native app so that the user encounters a single shared session (device session and web session) running at least two parallel secure communication interactions with an infrastructure.

    摘要翻译: 用于护照凭证的系统和方法提供了一种机制,通过该机制,客户端设备上的本机应用程序可以调用服务提供商的核心网站网址(URL),同时保持现有会话在两种体验(本机应用和Web流)之间活动并共享, 以便最终用户不需要在每个上下文切换时重新登录。 该机制可以包括用于web流上下文传达条件并将控制传回给共享会话的本地应用程序上下文的独特方式。 实施例可以通过从产生设备会话令牌的客户端设备上执行的本机应用认证设备会话来进行操作; 将设备会话令牌从本机应用传递到嵌入式浏览器,以便在输入Web流程时验证用户; 并根据会话令牌在由本机应用程序驱动的嵌入式浏览器上输入Web流,以便用户遇到与基础设施运行至少两个并行安全通信交互的单个共享会话(设备会话和Web会话)。

    Passporting credentials between a mobile app and a web browser
    2.
    发明授权
    Passporting credentials between a mobile app and a web browser 有权
    在移动应用和网络浏览器之间传送凭据

    公开(公告)号:US08881250B2

    公开(公告)日:2014-11-04

    申请号:US13162842

    申请日:2011-06-17

    摘要: Systems and methods for passporting credentials provide a mechanism by which a native app on a client device can invoke a service provider's core web site web addresses (URL) while keeping the existing session active and shared between the two experiences (native app and web flow) so that the end user does not need to re-login at each context switch. The mechanism can include a unique way for the web flow context to communicate conditions and pass control back to the native app context of the shared session. Embodiments may operate by authenticating a device session from a native app executing on a client device producing a device session token; passing the device session token from a native app to an embedded browser to authenticate a user when entering a web flow; and entering the web flow, according to the session token, on an embedded browser driven by the native app so that the user encounters a single shared session (device session and web session) running at least two parallel secure communication interactions with an infrastructure.

    摘要翻译: 用于护照凭证的系统和方法提供了一种机制,通过该机制,客户端设备上的本机应用程序可以调用服务提供商的核心网站网址(URL),同时保持现有会话在两种体验(本机应用和Web流)之间活动并共享, 以便最终用户不需要在每个上下文切换时重新登录。 该机制可以包括用于web流上下文传达条件并将控制传回给共享会话的本地应用程序上下文的独特方式。 实施例可以通过从产生设备会话令牌的客户端设备上执行的本机应用认证设备会话来进行操作; 将设备会话令牌从本机应用传递到嵌入式浏览器,以便在输入Web流程时验证用户; 并根据会话令牌在由本机应用程序驱动的嵌入式浏览器上输入Web流,以便用户遇到与基础设施运行至少两个并行安全通信交互的单个共享会话(设备会话和Web会话)。