Patent · US Active

Authentication and authorization across microservices

US11658983B2 · kind B2 · utility

1Cited by

7References

20Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Matthias Leibmann · Woodinville, US
Grigory V. Kaplin · Redmond, US
Vikas Ahuja · Sammamish, US
Kapil Jain · Redwood City, US
Qinxiao Zhou · Bellevue, US
Ran Cheng · Markham, CA

Key dates

Filing date	Feb 7, 2020
Grant date	May 23, 2023
Priority date	—
Expiry date	Dec 25, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/083
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An authorization policy defines permissions that are exposed by a microservice. When a call is made to the microservice, it includes an access token. An application identifier uniquely identifying the calling application is extracted from the token. An access pattern, used by the calling application to obtain the access token and make the call to the microservice, is identified. Permissions that may be granted to the calling application are identified in the authorization policy based upon the application identifier and the access pattern that is identified. An authorization decision is made as to whether to authorize the call, based upon the granted permissions.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.