OAuth framework
US8935757B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 28, 2012 |
| Grant date | Jan 13, 2015 |
| Priority date | — |
| Expiry date | Sep 28, 2032 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0815
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A framework, which conforms to the OAuth standard, involves a generic OAuth authorization server that can be used by multiple resource servers in order to ensure that access to resources stored on those resource servers is limited to access to which the resource owner consents. Each resource server registers, with the OAuth authorization server, metadata for that resource server, indicating scopes that are recognized by the resource server. The OAuth authorization server refers to this metadata when requesting consent from a resource owner on behalf of a client application, so that the consent will be of an appropriate scope. The OAuth authorization server refers to this metadata when constructing an access token to provide to the client application for use in accessing the resources on the resource server. The OAuth authorization server uses this metadata to map issued access tokens to the scopes to which those access tokens grant access.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.