公开(公告)号：US09781089B2

公开(公告)日：2017-10-03

申请号：US14607625

申请日：2015-01-28

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Adam Cook ,  Stephen Poletto ,  Thomas Wright ,  Luke Faraone

IPC: G06F17/22 ,  H04L29/06 ,  H04W12/06

CPC classification number: H04L63/08 ,  G06F17/2235 ,  H04L63/0815 ,  H04W12/06

Abstract: Systems, methods, and computer-readable storage media for authenticating a user account with a content management system are disclosed. A synchronized content management system may receive an identifier via a first access platform. The identifier may be associated with a device. The content management system can generate a link based on the identifier and the device. The link may be then send to the device by using the identifier. When accessed by the device, the link may authenticate a user account associated with the device at a second access platform.

公开(公告)号：US20160255088A1

公开(公告)日：2016-09-01

申请号：US14634008

申请日：2015-02-27

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Adam Cook ,  Stephen Poletto ,  Thomas Wright ,  Luke Faraone

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L63/102 ,  H04L63/08 ,  H04L67/02 ,  H04L67/1097 ,  H04L67/306

Abstract: Systems, methods, and computer-readable storage media for authenticating a user account with a synchronized content management system are disclosed. A synchronized online content management system may receive a request from a client device to access content in the content management system via a web browser that is running on the client device. The system may identify that a client-side application for the content management system has been installed on the client device and that the client-side application is already logged into a user account with the content management system. The system can cause the web browser to open a local host connection to the client-side application such that the web browser may be able to obtain from the client application some user account identifying information for the user account. The system can then cause the web browser to log into the user account by using the user account identifying information.

Abstract translation: 公开了用于使用同步的内容管理系统认证用户帐户的系统，方法和计算机可读存储介质。 同步的在线内容管理系统可以接收来自客户端设备的请求，以通过在客户端设备上运行的网络浏览器访问内容管理系统中的内容。 该系统可以识别客户端设备上已经安装了内容管理系统的客户端应用程序，并且客户端应用程序已经使用内容管理系统登录到用户帐户。 系统可以使web浏览器打开与客户端应用程序的本地主机连接，使得web浏览器可能能够从客户端应用程序获得用户帐户识别信息的一些用户帐户。 然后，系统可以通过使用用户帐户识别信息来使Web浏览器登录到用户帐户。

公开(公告)号：US20150358328A1

公开(公告)日：2015-12-10

申请号：US14469138

申请日：2014-08-26

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Andrew Bortz ,  David Euresti ,  Sang Tian ,  Alison Kao

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L67/1095 ,  H04L63/08

Abstract: Systems, methods, and non-transitory computer-readable storage media for securely accessing locally stored synchronized content using a local web server. A client application on a client device may receive from a web browser on the client device a request to access a local content stored on a client device. The client application may be configured to synchronize the local content with a remote content stored in an online content management system. The client application may issue a challenge for the web browser. The client application or the online content management system may then receive a response to the challenge. If the response is a valid response to the challenge, the web browser may be allowed to access the local content via the client application.

Abstract translation: 用于使用本地Web服务器安全地访问本地存储的同步内容的系统，方法和非暂时计算机可读存储介质。 客户机设备上的客户端应用可以从客户端设备上的web浏览器接收访问存储在客户端设备上的本地内容的请求。 客户端应用可以被配置为使本地内容与存储在在线内容管理系统中的远程内容同步。 客户端应用程序可能会为Web浏览器发出挑战。 客户端应用程序或在线内容管理系统然后可以接收对挑战的响应。 如果响应是对挑战的有效响应，则可以允许网络浏览器通过客户端应用访问本地内容。

公开(公告)号：US10484383B2

公开(公告)日：2019-11-19

申请号：US15979441

申请日：2018-05-14

Applicant: Dropbox, Inc.

Inventor： Huy Nguyen ,  Josh Kaplan ,  Viraj Mody ,  Ritu Vincent ,  Andrew Bortz ,  David Euresti

IPC: G06F7/04 ,  H04L29/06 ,  H04L29/08 ,  G06F8/61 ,  G06F21/33 ,  G06F21/41 ,  G06F21/62

Abstract: A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system, which can use the identification tag to identify the linked user account and log the client-side application into the user account. The content management system can implement several verification measures such as limiting the number of times and when an identification tag can be used, as well as IP addresses that can use the identification tag. The content management system can also use data cached by the web-browser application to determine if the web-browser application was used to access the user account in the past.

公开(公告)号：US10142309B2

公开(公告)日：2018-11-27

申请号：US14577930

申请日：2014-12-19

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Adam Cook ,  Stephen Poletto ,  Thomas Wright ,  Luke Faraone

IPC: H04L29/06 ,  H04L12/58 ,  G06F21/34

Abstract: Various embodiments of the present technology enable users to sign in to an account without a password. For example, when receiving a request to register a device with an account, a user can be prompted to enter their email address. In response, two tokens are generated. A first token is sent to a client application on the device and the second token is sent to the user's email. The user can then only login to their account with the device if the device has both tokens. Thus, if someone intercepts the email, they will be unable to login from another device since they don't have the first token. If the client token and email token cannot be automatically joined on the same device, a web page showing a code can be displayed on a first device, which can be entered on the second device to finish login process.

公开(公告)号：US11792199B2

公开(公告)日：2023-10-17

申请号：US16986639

申请日：2020-08-06

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Adam Cook ,  Stephen Poletto ,  Thomas Wright ,  Luke Faraone

IPC: H04L9/40 ,  H04L67/02 ,  H04L67/306 ,  H04L67/1097

CPC classification number: H04L63/102 ,  H04L63/08 ,  H04L67/02 ,  H04L67/1097 ,  H04L67/306

Abstract: Systems, methods, and computer-readable storage media for authenticating a user account with a synchronized content management system are disclosed. A synchronized online content management system may receive a request from a client device to access content in the content management system via a web browser that is running on the client device. The system may identify that a client-side application for the content management system has been installed on the client device and that the client-side application is already logged into a user account with the content management system. The system can cause the web browser to open a local host connection to the client-side application such that the web browser may be able to obtain from the client application some user account identifying information for the user account. The system can then cause the web browser to log into the user account by using the user account identifying information.

公开(公告)号：US20160182479A1

公开(公告)日：2016-06-23

申请号：US14577930

申请日：2014-12-19

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Adam Cook ,  Stephen Poletto ,  Thomas Wright ,  Luke Faraone

IPC: H04L29/06 ,  H04L12/58

CPC classification number: H04L63/08 ,  G06F21/34 ,  H04L51/046 ,  H04L63/0807 ,  H04L63/0853 ,  H04L63/0876 ,  H04L63/105 ,  H04L63/18

Abstract: Various embodiments of the present technology enable users to sign in to an account without a password. For example, when receiving a request to register a device with an account, a user can be prompted to enter their email address. In response, two tokens are generated. A first token is sent to the a client application on the device and the second token is sent to the user's email. The user can then only login to their account with the device if the device has both tokens. Thus, if someone intercepts the email, they will be unable to login from another device since they don't have the first token. If the client token and email token cannot be automatically joined on the same device, a web page showing a code can be displayed on a first device, which can be entered on the second device to finish login process.

Abstract translation: 本技术的各种实施例使得用户能够登录到没有密码的帐户。 例如，当接收到注册具有帐户的设备的请求时，可以提示用户输入他们的电子邮件地址。 作为响应，生成两个令牌。 第一个令牌被发送到设备上的客户端应用程序，第二个令牌被发送到用户的电子邮件。 如果设备有两个令牌，用户只能使用设备登录到他们的帐户。 因此，如果有人拦截电子邮件，他们将无法从另一台设备登录，因为他们没有第一个令牌。 如果客户端令牌和电子邮件令牌不能自动加入同一设备，则可以在第一个设备上显示一个显示代码的网页，该设备可以在第二个设备上输入以完成登录过程。

公开(公告)号：US09258291B2

公开(公告)日：2016-02-09

申请号：US14135332

申请日：2013-12-19

Applicant: Dropbox, Inc.

Inventor： Huy Nguyen ,  Josh Kaplan ,  Viraj Mody ,  Ritu Vincent ,  Andrew Bortz ,  David Euresti

IPC: G06F15/16 ,  H04L29/06 ,  H04L29/08 ,  G06F9/445

CPC classification number: H04L63/10 ,  G06F8/61 ,  G06F21/335 ,  G06F21/41 ,  G06F21/6218 ,  G06F2221/2117 ,  G06F2221/2137 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/102 ,  H04L63/108 ,  H04L67/02 ,  H04L67/34

Abstract: A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system, which can use the identification tag to identify the linked user account and log the client-side application into the user account. The content management system can implement several verification measures such as limiting the number of times and when an identification tag can be used, as well as IP addresses that can use the identification tag. The content management system can also use data cached by the web-browser application to determine if the web-browser application was used to access the user account in the past.

Abstract translation: 内容管理系统可以使用将客户端安装程序链接到用户帐户的信息标签来标记客户端安装程序。 可以将客户端安装程序配置为在客户端设备上安装客户端应用程序，并将标识标签传递到已安装的客户端应用程序。 客户端应用程序可以将识别标签发送到内容管理系统，该内容管理系统可以使用识别标签来识别链接的用户帐户，并将客户端应用程序记录到用户帐户中。 内容管理系统可以实现多个验证措施，例如限制次数和何时可以使用识别标签，以及可以使用识别标签的IP地址。 内容管理系统还可以使用网络浏览器应用程序缓存的数据来确定是否使用网络浏览器应用程序来访问用户帐户。

公开(公告)号：US10757107B2

公开(公告)日：2020-08-25

申请号：US14634008

申请日：2015-02-27

Applicant: Dropbox, Inc.

Inventor： Josh Kaplan ,  Adam Cook ,  Stephen Poletto ,  Thomas Wright ,  Luke Faraone

IPC: H04L29/06 ,  H04L29/08

Abstract: Systems, methods, and computer-readable storage media for authenticating a user account with a synchronized content management system are disclosed. A synchronized online content management system may receive a request from a client device to access content in the content management system via a web browser that is running on the client device. The system may identify that a client-side application for the content management system has been installed on the client device and that the client-side application is already logged into a user account with the content management system. The system can cause the web browser to open a local host connection to the client-side application such that the web browser may be able to obtain from the client application some user account identifying information for the user account. The system can then cause the web browser to log into the user account by using the user account identifying information.

公开(公告)号：US20180262508A1

公开(公告)日：2018-09-13

申请号：US15979441

申请日：2018-05-14

Applicant: Dropbox, Inc.

Inventor： Huy Nguyen ,  Josh Kaplan ,  Viraj Mody ,  Ritu Vincent ,  Andrew Bortz ,  David Euresti

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/33 ,  G06F21/41 ,  G06F8/61 ,  G06F21/62

Abstract: A content management system can tag a client installer with an information tag linking the client installer to a user account. The client installer can be configured to install the client-side application on the client device and pass the identification tag to the installed client-side application. The client-side application can transmit the identification tag to the content management system, which can use the identification tag to identify the linked user account and log the client-side application into the user account. The content management system can implement several verification measures such as limiting the number of times and when an identification tag can be used, as well as IP addresses that can use the identification tag. The content management system can also use data cached by the web-browser application to determine if the web-browser application was used to access the user account in the past.