User initiated and controlled identity federation establishment and revocation mechanism
A method for single sign-on with established federation includes triggering a single sign-on operation from a first service to a second service, retrieving, by the first service, an associated federation key and pseudo identification for a user agent, generating, by the first service, a token signed...
Saved in:
Main Authors | , , , , |
---|---|
Format | Patent |
Language | English |
Published |
28.10.2014
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | A method for single sign-on with established federation includes triggering a single sign-on operation from a first service to a second service, retrieving, by the first service, an associated federation key and pseudo identification for a user agent, generating, by the first service, a token signed with a federation key for the user agent based on the pseudo identification, redirecting, by the first service, the user agent to the second service, wherein the user agent transfers the token to the second service, verifying, by the second service, the token and determining an associated identification in the second service, and returning, by the second service, a resource to the user agent. |
---|---|
Bibliography: | Application Number: US201113033029 |