Generating and managing a composite identity token for multi-service use

Assignee

• Citrix Systems, Inc. · US

Inventors

• Bradley Markus Rowe · Boca Raton, US
• Ricardo Fernando Feijoo · Fort Lauderdale, US
• Tom Kludy · Pembroke Pines, US
• Ayush Jain · Hyderabad, IN
• Gerald Haagsma · Fort Lauderdale, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2463/082
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.