公开(公告)号：US11997077B2

公开(公告)日：2024-05-28

申请号：US15809621

申请日：2017-11-10

Applicant: Microsoft Technology Licensing, LLC

Inventor： Raja Charu Vikram Kakumani ,  Brandon B. Murdoch ,  Ronald Bjones ,  Muhammad Omer Iqbal ,  Kim Cameron

IPC: H04L9/00 ,  H04L9/40 ,  G06F3/0484

CPC classification number: H04L63/08 ,  G06F3/0484 ,  H04L63/0815 ,  H04L63/20 ,  H04L2463/082

Abstract: Methods for composable user journeys for user authentication via an identity experience framework are performed by systems and apparatuses. Initiating a user authentication process for an application triggers application calls for dynamic invocation of a specific identity policy, required by the application, of a number of identity policies managed by a host of the identity experience framework. User interfaces defined by the identity policies are provided from the host to the application for interaction by the user and entry of identity information needed to authenticate the user according to specified verification providers. Identity claims and token requests are provided from the application to the host which then authenticates the identity claims via the verification providers and mints a token that includes the claims required by the application, according to the identity policy. The application consumes the token to complete the token request and allow the user access to the application.

公开(公告)号：US20240267366A1

公开(公告)日：2024-08-08

申请号：US18639173

申请日：2024-04-18

Applicant: Microsoft Technology Licensing, LLC

Inventor： Raja Charu Vikram Kakumani ,  Brandon B. Murdoch ,  Ronald Jke Bjones ,  Muhammad Omer Iqbal ,  Kim Cameron

IPC: H04L9/40 ,  G06F3/0484

CPC classification number: H04L63/08 ,  G06F3/0484 ,  H04L63/0815 ,  H04L63/20 ,  H04L2463/082

Abstract: Methods for composable user journeys for user authentication via an identity experience framework are performed by systems and apparatuses. Initiating a user authentication process for an application triggers application calls for dynamic invocation of a specific identity policy, required by the application, of a number of identity policies managed by a host of the identity experience framework. User interfaces defined by the identity policies are provided from the host to the application for interaction by the user and entry of identity information needed to authenticate the user according to specified verification providers. Identity claims and token requests are provided from the application to the host which then authenticates the identity claims via the verification providers and mints a token that includes the claims required by the application, according to the identity policy. The application consumes the token to complete the token request and allow the user access to the application.

公开(公告)号：US20200099587A1

公开(公告)日：2020-03-26

申请号：US16213686

申请日：2018-12-07

Applicant: Microsoft Technology Licensing, LLC

Inventor： Prasanna Ramachandran ,  Raja Charu Vikram Kakumani ,  Brandon Brian Murdoch ,  Muhammad Omer Iqbal

IPC: H04L12/24 ,  H04L29/08

Abstract: According to examples, an apparatus may include a processor and a memory on which is stored machine readable instructions. The instructions may cause the processor to receive a call request for a cloud-based service and retrieve a first policy corresponding to the cloud-based service, the first policy identifying a policy reroute. The instructions may also cause the processor to determine which second policy of a plurality of second policies that corresponds to the policy reroute and retrieve the second policy that the corresponds to the policy reroute. The instructions may further cause the processor to apply the second policy on the cloud-based service and respond to the call request following the application of the second policy.

公开(公告)号：US12074878B2

公开(公告)日：2024-08-27

申请号：US17364745

申请日：2021-06-30

Applicant: Microsoft Technology Licensing, LLC

Inventor： Steve Ball ,  Justin Anthony Niles ,  Muhammad Omer Iqbal ,  Sadie Elise Henry ,  Sangeeta Ranjit ,  Sarat Chandra Subramaniam ,  Michael Vincent McLaughlin ,  Rachel Anne Brown Teller

IPC: G06Q20/20 ,  H04L9/40 ,  H04L67/306

CPC classification number: H04L63/102 ,  G06Q20/20 ,  G06Q20/206 ,  H04L63/101 ,  H04L67/306

Abstract: An account provisioning manager is disclosed. A placeholder account is generated with a primary work set attribute and a plurality of enhanced work set attributes. Initially, the primary work set attribute is populated with data to convert the placeholder account into an onboarded operating account. Subsequently, the plurality of enhanced work set attributes are populated via data propagation into the onboarded operating account, wherein an enhanced work set attribute of the plurality of enhanced work set attributes is selectively populated in response to a trigger for the onboarded operating account.

公开(公告)号：US20230007004A1

公开(公告)日：2023-01-05

申请号：US17364745

申请日：2021-06-30

Applicant: Microsoft Technology Licensing, LLC

Inventor： Steve Ball ,  Justin Anthony Niles ,  Muhammad Omer Iqbal ,  Sadie Elise Henry ,  Sangeeta Ranjit ,  Sarat Chandra Subramaniam ,  Michael Vincent McLaughlin ,  Rachel Anne Brown Teller

IPC: H04L29/06 ,  H04L29/08

Abstract: An account provisioning manager is disclosed. A placeholder account is generated with a primary work set attribute and a plurality of enhanced work set attributes. Initially, the primary work set attribute is populated with data to convert the placeholder account into an onboarded operating account. Subsequently, the plurality of enhanced work set attributes are populated via data propagation into the onboarded operating account, wherein an enhanced work set attribute of the plurality of enhanced work set attributes is selectively populated in response to a trigger for the onboarded operating account.

公开(公告)号：US11328115B2

公开(公告)日：2022-05-10

申请号：US16039755

申请日：2018-07-19

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC.

Inventor： John Araya ,  Muhammad Omer Iqbal ,  Raja Chau Vikram Kakumani

IPC: G06F40/143 ,  G06F21/45 ,  G06F9/50 ,  G06F21/33

Abstract: A business-to-consumer (B2C) cloud service hosts web applications of various businesses as an instance of a cloud service. The B2C cloud service provides an identity management engine that manages the sign-in of consumers of the businesses to a respective cloud service. The identity management engine dynamically creates a security token for the sign-in request that includes claims customized for the hosted cloud service. The claims are based on directives provided by the business and obtained from the consumer via a user interface dynamically created by the identity management engine at a sign-in request.

公开(公告)号：US11303523B2

公开(公告)日：2022-04-12

申请号：US16213686

申请日：2018-12-07

Applicant: Microsoft Technology Licensing, LLC

Inventor： Prasanna Ramachandran ,  Raja Charu Vikram Kakumani ,  Brandon Brian Murdoch ,  Muhammad Omer Iqbal

IPC: H04L12/24 ,  H04L29/08 ,  H04L41/0893 ,  H04L41/5054 ,  H04L67/60 ,  H04L67/00 ,  H04L41/0859

Abstract: According to examples, an apparatus may include a processor and a memory on which is stored machine readable instructions. The instructions may cause the processor to receive a call request for a cloud-based service and retrieve a first policy corresponding to the cloud-based service, the first policy identifying a policy reroute. The instructions may also cause the processor to determine which second policy of a plurality of second policies that corresponds to the policy reroute and retrieve the second policy that the corresponds to the policy reroute. The instructions may further cause the processor to apply the second policy on the cloud-based service and respond to the call request following the application of the second policy.

公开(公告)号：US10719618B2

公开(公告)日：2020-07-21

申请号：US15916238

申请日：2018-03-08

Applicant: Microsoft Technology Licensing, LLC

Inventor： Raja Charu Vikram Kakumani ,  John Erik Araya ,  Muhammad Omer Iqbal

IPC: G06F21/62 ,  H04L29/06 ,  G06F16/22 ,  H04L29/08

Abstract: A system includes a processor and a computer-readable medium configured to store instructions for execution by the processor. The instructions include receiving a first document corresponding to a first application hosted by a distributed computing provider. The instructions include parsing the first document into a first data structure according to a data structure definition. The data structure definition describes an inheritance property. The instructions include, in response to presence of a first inheritance property in the first data structure: identifying an inherited document based on the first inheritance property; obtaining the inherited document; reading the inherited document; determining inheritance permissions from the inherited document; and, in response to the inheritance permissions permitting the first document to inherit the inherited document, selectively modifying the first data structure based on the inherited document. The instructions include controlling authentication of a user to the first application according to the first data structure.

公开(公告)号：US20180137091A1

公开(公告)日：2018-05-17

申请号：US15413392

申请日：2017-01-23

Applicant: Microsoft Technology Licensing, LLC

Inventor： Muhammad Omer Iqbal ,  Swaroop Krishnamurthy ,  Srinivas Nadimpalli ,  Brandon Brian Murdoch ,  Muhammad Zaman

IPC: G06F17/22 ,  G06F17/28 ,  G06F17/21 ,  G06F17/30

CPC classification number: G06F17/2288 ,  G06F9/454 ,  G06F16/957 ,  G06F16/958 ,  G06F17/2229 ,  G06F17/2247

Abstract: A method and system is provided for customizing a web page of an application of an application provider. A host (e.g., cloud service), which hosts the application, provides the web page to a user of the application provider on behalf of the application provider. A customization system receives from a user of the application provider a request for the web page, which has content. The customization system identifies a preferred language for the content of the web page. When the application provider has specified content for the preferred language for the web page, the customization system adds to the web page the specified content. When the application provider has not specified content for the preferred language for the web page, the customization system adds to the web page default content in the preferred language provided by the host.