What technology area does this patent fall under?

Primary CPC classification H04L63/10. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Nov 19 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).

Pre-authorizing a client application to access a user account on a content management system

US10484383B2 · US · B2

Patent metadata
Field	Value
Publication number	US-10484383-B2
Application number	US-201815979441-A
Country	US
Kind code	B2
Filing date	May 14, 2018
Priority date	Dec 19, 2013
Publication date	Nov 19, 2019
Grant date	Nov 19, 2019

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system, which can use the identification tag to identify the linked user account and log the client-side application into the user account. The content management system can implement several verification measures such as limiting the number of times and when an identification tag can be used, as well as IP addresses that can use the identification tag. The content management system can also use data cached by the web-browser application to determine if the web-browser application was used to access the user account in the past.

First claim

Opening claim text (preview).

The invention claimed is: 1. A method comprising: while a client device is authorized to access a user account on a content management system, transmitting, by the client device, an installation request to install a client-side application on the client device; receiving a client installer tagged with an identification tag and an identifier identifying the client device from which the installation request originated, wherein the client installer is configured to: install the client-side application on the client device; generate an authentication key; and upon the client-side application being successfully installed on the client device, the client device transmitting an authorization message to the content management system, the authorization message including: data associated with a first application cached on the client device; the identification tag; and the authentication key; and receiving from the content management system, a confirmation that the content management system has authorized the client-side application to access the user account on the content management system based on the transmitted authorization message. 2. The method of claim 1 , further comprising: prior to transmitting the installation request by the client device, receiving, from the first application running on the client device, login credentials associated with an authenticated user account; based on the login credentials: receiving authentication of the user account associated with the login credentials to yield the authenticated user account; and logging the first application into the content management system via the authenticated user account; receiving verification that the first application associated with the installation request is logged in via the authenticated user account; and upon receiving verification that the first application associated with the installation request is logged in via the authenticated user account, transmitting the installation request associated with the authenticated user account to the content management system. 3. The method of claim 1 , further comprising: receiving an entry, the entry including: the identification tag, a creation time of the identification tag, an account identifier identifying an authenticated user account, and an IP address. 4. The method of claim 2 , wherein the first application comprises a web-browser application and a second application comprises the client-side application, the method further comprising: installing the client-side application on the client device prior to an expiration of a predetermined period of time associated with the identification tag; in response to the client-side application being installed on the client device, causing the web-browser application to transmit the authentication key to the content management system; receiving the authorization message and authentication key; and in response to the authentication key matching a respective authentication key associated with the identification tag, logging the client-side application on to the content management system via the authenticated user account. 5. The method of claim 4 , further comprising: receiving a determination regarding a number of times the identification tag has been previously used to pre-authorize the second application, to yield a previous-usage determination; and based on the previous-usage determination, using a pre-authorization to authorize the second application. 6. The method of claim 5 , further comprising: transmitting a pre-authorization request including an IP address to the content management system; and receive, from the content management system, an indication that the IP address matches an authorized IP address. 7. The method of claim 2 , further comprising: transmitting, to the content management system, login credentials by a web-browser application; receiving a determination that the login credentials are associated with the user account; and authorizing the web-browser application to access the user account. 8. A client device associated with a content management system comprising: one or more processors; and at least one memory containing instructions that, when executed by the one or more processors, cause the client device to: transmit, from a first application on the client device, an installation request to install a second application on the client device; receive a client installer tagged with an identification tag and an identifier identifying the client device from which the installation request originated, wherein the client installer is configured to: install the second application on the client device, generate an authentication key, and upon the second application being successfully installed on the client device, the client device transmitting an authorization message to the content management system, the authorization message including: data associated with the first application cached on the client device, the identification tag, and the authentication key; receive from the content management system, a confirmation that the content management system has authorized the second application to access a user account on the content management system based on the transmitted authorization message. 9. The client device of claim 8 , the at least one memory containing instructions which, when executed by the one or more processors, cause the client device to: receive, from the first application running on the client device prior to transmitting the installation request from the first application, login credentials associated with an authenticated user account; based on the login credentials: receive authentication of the user account associated with the login credentials to yield the authenticated user account; and log the first application into the content management system via the authenticated user account; receive verification that the first application associated with the installation request is logged in via the authenticated user account; and upon receiving verification that the first application associated with the installation request is logged in via the authenticated user account, transmit the installation request associated with the authenticated user account to the content management system. 10. The client device of claim 9 , the at least one memory containing instructions which, when executed by the one or more processors, further cause the client device to: receive an entry in a pre-authorization index, the entry including: the identification tag, an account identifier identifying the authenticated user account, a creation time for the identification tag, and an IP address. 11. The client device of claim 9 , wherein the first application comprises a web-browser application and the second application comprises a client-side application, the at least one memory containing additional instructions which, when executed by the one or more processors, further cause the client device to: install the client-side application on the client device prior to an expiration of a predetermined period of time associated with the identification tag; in response to the client-side application being installed on the client device, cause the web-browser application to transmit the authentication key to the content management system; receive the authorization message; and in response to authorization message matching a respective authentication key associated with the identification tag, log the client-side application on to the content management system via the authenticated user account. 12. The client device of claim 9 , the at

Assignees

Dropbox Inc

Inventors

Classifications

H04L63/10Primary
for controlling access to devices or network resources · CPC title
G06F2221/2137
Time limited access, e.g. to a computer or data · CPC title
H04L63/08
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
H04L63/108
when the policy decisions are valid for a limited amount of time · CPC title
H04L63/102
Entity profiles · CPC title

Patent family

Related publications grouped by family.

View patent family 52355164

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US10484383B2 cover?: A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system,…
Who is the assignee on this patent?: Dropbox Inc
What technology area does this patent fall under?: Primary CPC classification H04L63/10. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Nov 19 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).