公开(公告)号：US09118657B1

公开(公告)日：2015-08-25

申请号：US14160553

申请日：2014-01-22

申请人： Sachin Shekar Shetty

发明人： Sachin Shekar Shetty

IPC分类号： H04L29/06 ,  G06F21/41

CPC分类号： H04L63/0815 ,  G06F21/41 ,  H04L63/0884

摘要： A secure single sign on is extended to a legacy web application that does not support the specific user authentication technique being used, such as SAML or OAuth. A proxy intercepts a request by a client computer to access the legacy application, and forwards the intercepted request to a single sign on identity provider. The identity provider authenticates the user, using the specific authentication technique not supported by the legacy application, and provides an indication of success to the proxy. The proxy transmits a user id and master password wrapped in an HTTP request to the legacy web application, which authenticates the request, creates a session and provides corresponding cookies to the proxy. The proxy forwards the cookies to the client, which utilizes them to continue the session with the legacy application.

摘要翻译： 一个安全的单一登录扩展到不支持正在使用的特定用户认证技术（如SAML或OAuth）的旧版Web应用程序。 代理人拦截客户端计算机访问遗留应用程序的请求，并将截获的请求转发到身份提供者上的单一签名。 身份提供者使用遗留应用程序不支持的特定认证技术来验证用户，并向代理提供成功的指示。 该代理将包含在HTTP请求中的用户ID和主密码传送到遗留Web应用程序，后者对该请求进行身份验证，创建会话并向代理提供相应的Cookie。 代理将cookie转发到客户端，利用它们继续与旧应用的会话。