Cross-native application authentication application
US-9374361-B2 · Jun 21, 2016 · US
Cross-application authentication on a content management system
US10282522B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10282522-B2 |
| Application number | US-201816031363-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 10, 2018 |
| Priority date | Feb 27, 2015 |
| Publication date | May 7, 2019 |
| Grant date | May 7, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Systems, methods, and computer-readable media for cross-application authentication on a content management system. A client application running at a client device that is not authenticated with a content management system can receive, from a website associated with the content management system, a request to authenticate with the content management system under a user account used to authenticate a current session between a browser application at the client device and the website with the content management system. The client application can then obtain a uniform resource locator (URL) with a nonce associated with the client application, and send a command to the browser application including the URL and nonce. The command can trigger the browser application to use the URL and nonce to authenticate the client application with the content management system under the user account with which the current session between the browser application and the website is currently authenticated.
First claim
Opening claim text (preview).
What is claimed is: 1. A method comprising: establishing a communication channel through a content management system, between a client application at a client device and a website associated with the content management system, wherein establishing the communication channel comprises: sending, from the client application to the content management system, a message comprising a nonce that identifies an association between the client application and at least one of a browser application at the client device or a user account used by the client application to authenticate with the content management system, wherein the association enables the content management system to relay one or more communications between the client application and the website; when the browser application at the client device is not authenticated with the content management system, receiving, by the client application from the content management system via the communication channel, a request for the user account used by the client application to authenticate with the content management system; receiving, by the client application, an instruction to authenticate the browser application with the content management system under the user account; and sending, from the client application to the browser application, a command instructing the browser application to open a web page to verify the browser application is associated with the client device at the content management system, wherein the browser application is authenticated with the content management system under the user account via a communication session between the browser application and the website. 2. The method of claim 1 , further comprising: after sending the message to the content management system, obtaining, by the client application from the content management system, a uniform resource locator (URL) associated with the web page, wherein the command triggers the browser application to use the URL and the nonce to authenticate with the content management system. 3. The method of claim 2 , wherein the command triggers a script associated with the web page, wherein the script is configured to instruct the content management system to authenticate the browser application based on the nonce and validate a session associated with the browser application under the user account based on credentials used to authenticate a current session between the client application and the content management system. 4. The method of claim 1 , wherein the command comprises an operating system (OS) command. 5. The method of claim 1 , wherein the nonce is associated with a client identifier at the content management system, the client identifier being associated with at least one of the client application or the browser application. 6. The method of claim 1 , wherein the request for the user account used by the client application to authenticate with the content management system is received by the client application from the website via the communication channel. 7. The method of claim 1 , wherein the web page comprises a local web page file on the client device generated by the client application. 8. A system comprising: one or more processors; and at least one computer-readable medium storing computer-readable instructions that, when executed by the one or more processors, cause the system to: establish a communication channel through a content management system, between a client application at a client device and a website associated with the content management system, wherein establishing the communication channel comprises: sending, from the client application to the content management system, a message comprising a nonce that identifies an association between the client application and at least one of a browser application at the client device or a user account used by the client application to authenticate with the content management system, wherein the association enables the content management system to relay one or more communications between the client application and the website; when the browser application at the client device is not authenticated with the content management system, receive, by the client application from the content management system via the communication channel, a request for the user account used by the client application to authenticate with the content management system; receive, by the client application, an instruction to authenticate the browser application with the content management system under the user account; and send, from the client application to the browser application, a command instructing the browser application to open a web page to verify the browser application is associated with the client device at the content management system, wherein the browser application is authenticated with the content management system under the user account via a communication session between the browser application and the website. 9. The system of claim 8 , the at least one computer-readable medium storing computer-readable instructions that, when executed by the one or more processors, cause the system to: obtain, by the client application from the content management system, a uniform resource locator (URL) associated with the web page, wherein the command triggers the browser application to use the URL and the nonce to authenticate with the content management system. 10. The system of claim 9 , wherein the command triggers a script associated with the web page, wherein the script is configured to instruct the content management system to authenticate the browser application based on the nonce and validate a session associated with the browser application under the user account based on credentials used to authenticate a current session between the client application and the content management system. 11. The system of claim 8 , wherein the nonce is associated with a client identifier at the content management system, the client identifier being associated with the client application. 12. The system of claim 8 , wherein the command comprises an operating system (OS) command. 13. The system of claim 8 , wherein the request for the user account used by the client application to authenticate with the content management system is received by the client application from the website via the communication channel. 14. The system of claim 8 , wherein the web page comprises a local web page file on the client device generated by the client application. 15. A non-transitory computer-readable storage medium comprising: computer-readable instructions stored thereon, wherein the computer-readable instructions, when executed by one or more processors, cause the one or more processors to: establish a communication channel through a content management system, between a client application at a client device and a website associated with the content management system, wherein establishing the communication channel comprises: sending, from the client application to the content management system, a message comprising a nonce that identifies an association between the client application and at least one of a browser application at the client device or a user account used by the client application to authenticate with the content management system, wherein the association enables the content management system to relay one or more communications between the client application and the website; when the browser application at the client device is not authenticated with the content management system, receive, by the client application from the content management system via the communicat
Assignees
Inventors
Classifications
Electricity · mapped topic
Filtering by address, protocol, port number or service, e.g. IP-address or URL · CPC title
Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity · CPC title
based on web technology, e.g. hypertext transfer protocol [HTTP] · CPC title
Information retrieval; Database structures therefor; File system structures therefor · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10282522B2 cover?
- Systems, methods, and computer-readable media for cross-application authentication on a content management system. A client application running at a client device that is not authenticated with a content management system can receive, from a website associated with the content management system, a request to authenticate with the content management system under a user account used to authentica…
- Who is the assignee on this patent?
- Dropbox Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/10. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue May 07 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).