公开(公告)号：US11522701B2

公开(公告)日：2022-12-06

申请号：US16684780

申请日：2019-11-15

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/40

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.

公开(公告)号：US20200084036A1

公开(公告)日：2020-03-12

申请号：US16684780

申请日：2019-11-15

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.

公开(公告)号：US20190097802A1

公开(公告)日：2019-03-28

申请号：US15714460

申请日：2017-09-25

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.