公开(公告)号：US20150180846A1

公开(公告)日：2015-06-25

申请号：US14135332

申请日：2013-12-19

Applicant: Dropbox, Inc.

Inventor： Huy Nguyen ,  Josh Kaplan ,  Viraj Moody ,  Ritu Vincent ,  Andrew Bortz ,  David Euresti

IPC: H04L29/06

CPC classification number: H04L63/10 ,  G06F8/61 ,  G06F21/335 ,  G06F21/41 ,  G06F21/6218 ,  G06F2221/2117 ,  G06F2221/2137 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/102 ,  H04L63/108 ,  H04L67/02 ,  H04L67/34

Abstract: A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system, which can use the identification tag to identify the linked user account and log the client-side application into the user account. The content management system can implement several verification measures such as limiting the number of times and when an identification tag can be used, as well as IP addresses that can use the identification tag. The content management system can also use data cached by the web-browser application to determine if the web-browser application was used to access the user account in the past.

Abstract translation: 内容管理系统可以使用将客户端安装程序链接到用户帐户的信息标签来标记客户端安装程序。 可以将客户端安装程序配置为在客户端设备上安装客户端应用程序，并将标识标签传递到已安装的客户端应用程序。 客户端应用程序可以将识别标签发送到内容管理系统，该内容管理系统可以使用识别标签来识别链接的用户帐户，并将客户端应用程序记录到用户帐户中。 内容管理系统可以实现多个验证措施，例如限制次数和何时可以使用识别标签，以及可以使用识别标签的IP地址。 内容管理系统还可以使用网络浏览器应用程序缓存的数据来确定是否使用网络浏览器应用程序来访问用户帐户。

公开(公告)号：US20240106902A1

公开(公告)日：2024-03-28

申请号：US18526017

申请日：2023-12-01

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Sang Tian ,  Joshua Kaplan ,  Devdatta Akhawe

IPC: H04L67/141 ,  H04L9/40 ,  H04L67/02 ,  H04L67/1095 ,  H04L67/306 ,  H04L67/51

CPC classification number: H04L67/141 ,  H04L63/08 ,  H04L67/02 ,  H04L67/1095 ,  H04L67/306 ,  H04L67/51

Abstract: In some embodiments, a client application at a client device can receive, from a browser application at the client device, a first message including a unique identifier associated with a session of the browser application at a website associated with a content management system. The client application can extract the unique identifier from the first message, and establish a connection between the client application and the content management system by sending, from the client application to the content management system, a second message including the unique identifier. The client application can then receive, from the content management system through the connection, a third message relayed by the content management system from the website, where the third message is associated with the unique identifier.

公开(公告)号：US11848994B2

公开(公告)日：2023-12-19

申请号：US16896819

申请日：2020-06-09

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Sang Tian ,  Joshua Kaplan ,  Devdatta Akhawe

IPC: G06F21/00 ,  H04L67/141 ,  H04L67/02 ,  H04L67/306 ,  H04L9/40 ,  H04L67/1095 ,  H04L67/51

CPC classification number: H04L67/141 ,  H04L63/08 ,  H04L67/02 ,  H04L67/1095 ,  H04L67/306 ,  H04L67/51

Abstract: In some embodiments, a client application at a client device can receive, from a browser application at the client device, a first message including a unique identifier associated with a session of the browser application at a website associated with a content management system. The client application can extract the unique identifier from the first message, and establish a connection between the client application and the content management system by sending, from the client application to the content management system, a second message including the unique identifier. The client application can then receive, from the content management system through the connection, a third message relayed by the content management system from the website, where the third message is associated with the unique identifier.

公开(公告)号：US10686888B2

公开(公告)日：2020-06-16

申请号：US15867514

申请日：2018-01-10

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Sang Tian ,  Joshua Kaplan ,  Devdatta Akhawe

IPC: G06F21/00 ,  H04L29/08 ,  H04L29/06

Abstract: In some embodiments, a client application at a client device can receive, from a browser application at the client device, a first message including a unique identifier associated with a session of the browser application at a website associated with a content management system. The client application can extract the unique identifier from the first message, and establish a connection between the client application and the content management system by sending, from the client application to the content management system, a second message including the unique identifier. The client application can then receive, from the content management system through the connection, a third message relayed by the content management system from the website, where the third message is associated with the unique identifier.

公开(公告)号：US10565402B2

公开(公告)日：2020-02-18

申请号：US14513841

申请日：2014-10-14

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Bo Hu ,  David Goldstein ,  Alex Allain ,  Emil Ibrishimov

IPC: G06F17/22 ,  G06F40/134 ,  H04L29/08 ,  G06F16/955 ,  H04L29/06

Abstract: Systems, methods, and non-transitory computer-readable storage media for serving content stored in an online synchronized content management system from a sandbox domain via a temporary address. The online synchronized content management system may receive a first request from a user to access a content item stored in the system. The first request may be received at a first domain via a first address that is directed to the first domain. The system may generate a second address that is directed to a second domain such as a sandbox domain. Then, the second address can be associated with the content item for direct access. When the system receives, at the second domain via the second address, a second request to access the content item, the content item can be served from the second domain. After the system receives the second request, it can generate and issue a session identifier for the second address to verify any subsequent requests to access the content item via the second address.

公开(公告)号：US20180131773A1

公开(公告)日：2018-05-10

申请号：US15867514

申请日：2018-01-10

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Sang Tian ,  Joshua Kaplan ,  Devdatta Akhawe

IPC: H04L29/08 ,  H04L29/06

Abstract: In some embodiments, a client application at a client device can receive, from a browser application at the client device, a first message including a unique identifier associated with a session of the browser application at a website associated with a content management system. The client application can extract the unique identifier from the first message, and establish a connection between the client application and the content management system by sending, from the client application to the content management system, a second message including the unique identifier. The client application can then receive, from the content management system through the connection, a third message relayed by the content management system from the website, where the third message is associated with the unique identifier.

公开(公告)号：US20160103801A1

公开(公告)日：2016-04-14

申请号：US14513841

申请日：2014-10-14

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Bo Hu ,  David Goldstein ,  Alex Allain ,  Emil Ibrishimov

IPC: G06F17/22 ,  H04L29/06 ,  H04L29/08

CPC classification number: G06F17/2235 ,  G06F16/9558 ,  H04L63/08 ,  H04L67/02 ,  H04L67/146 ,  H04L67/2814

Abstract: Systems, methods, and non-transitory computer-readable storage media for serving content stored in an online synchronized content management system from a sandbox domain via a temporary address. The online synchronized content management system may receive a first request from a user to access a content item stored in the system. The first request may be received at a first domain via a first address that is directed to the first domain. The system may generate a second address that is directed to a second domain such as a sandbox domain. Then, the second address can be associated with the content item for direct access. When the system receives, at the second domain via the second address, a second request to access the content item, the content item can be served from the second domain. After the system receives the second request, it can generate and issue a session identifier for the second address to verify any subsequent requests to access the content item via the second address.

Abstract translation: 用于通过临时地址从沙盒域服务于存储在在线同步的内容管理系统中的内容的系统，方法和非暂时的计算机可读存储介质。 在线同步内容管理系统可以接收来自用户的访问存储在系统中的内容项的第一请求。 可以经由指向第一域的第一地址在第一域处接收第一请求。 系统可以生成指向第二域（例如沙箱域）的第二地址。 然后，第二地址可以与用于直接访问的内容项相关联。 当系统经由第二地址在第二域接收访问内容项的第二请求时，可以从第二域提供内容项。 在系统接收到第二请求之后，它可以生成并发出用于第二地址的会话标识符，以验证经由第二地址访问内容项目的任何后续请求。

公开(公告)号：US09258291B2

公开(公告)日：2016-02-09

申请号：US14135332

申请日：2013-12-19

Applicant: Dropbox, Inc.

Inventor： Huy Nguyen ,  Josh Kaplan ,  Viraj Mody ,  Ritu Vincent ,  Andrew Bortz ,  David Euresti

IPC: G06F15/16 ,  H04L29/06 ,  H04L29/08 ,  G06F9/445

CPC classification number: H04L63/10 ,  G06F8/61 ,  G06F21/335 ,  G06F21/41 ,  G06F21/6218 ,  G06F2221/2117 ,  G06F2221/2137 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/102 ,  H04L63/108 ,  H04L67/02 ,  H04L67/34

Abstract: A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system, which can use the identification tag to identify the linked user account and log the client-side application into the user account. The content management system can implement several verification measures such as limiting the number of times and when an identification tag can be used, as well as IP addresses that can use the identification tag. The content management system can also use data cached by the web-browser application to determine if the web-browser application was used to access the user account in the past.

Abstract translation: 内容管理系统可以使用将客户端安装程序链接到用户帐户的信息标签来标记客户端安装程序。 可以将客户端安装程序配置为在客户端设备上安装客户端应用程序，并将标识标签传递到已安装的客户端应用程序。 客户端应用程序可以将识别标签发送到内容管理系统，该内容管理系统可以使用识别标签来识别链接的用户帐户，并将客户端应用程序记录到用户帐户中。 内容管理系统可以实现多个验证措施，例如限制次数和何时可以使用识别标签，以及可以使用识别标签的IP地址。 内容管理系统还可以使用网络浏览器应用程序缓存的数据来确定是否使用网络浏览器应用程序来访问用户帐户。

公开(公告)号：US20140223527A1

公开(公告)日：2014-08-07

申请号：US13760587

申请日：2013-02-06

Applicant: Dropbox, Inc.

Inventor： Andrew Bortz ,  Ambrus Csaszar ,  David Euresti ,  Dwayne Litzenberger

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L9/3213 ,  H04L9/3228 ,  H04L63/0807 ,  H04L63/0815 ,  H04L63/0884 ,  H04L67/02

Abstract: Some systems allow a user to access content using both a native client application and a web interface. In these systems, the client application authorized to access a user account can assist with automatically logging a user into the web interface through the use of authentication tokens. In response to an authentication request, the client application can select a token and split it into multiple parts. One piece can be embedded in a URL and a second piece can be stored in a file. The file can also contain browser executable instructions that when executed combine the two pieces to re-create the token and send the re-created token to a server to authenticate the user. The client application can forward the URL to the browser, which can direct the browser to the file. The browser can execute the instructions thereby authenticating the user.

Abstract translation: 一些系统允许用户使用本机客户端应用程序和Web界面访问内容。 在这些系统中，授权访问用户帐户的客户端应用程序可以通过使用身份验证令牌来帮助用户自动登录到Web界面。 响应于认证请求，客户端应用程序可以选择令牌并将其拆分成多个部分。 一件可以嵌入到一个URL中，第二件可以存储在一个文件中。 该文件还可以包含浏览器可执行指令，当执行时，组合两个部分来重新创建令牌，并将重新创建的令牌发送到服务器以验证用户。 客户端应用程序可以将URL转发到浏览器，这可以将浏览器引导到文件。 浏览器可以执行指令，从而认证用户。