公开(公告)号：US20200021574A1

公开(公告)日：2020-01-16

申请号：US16033445

申请日：2018-07-12

Applicant: VMware, Inc.

Inventor： William Christian Pinner ,  David Shaw ,  Evan Hurst

IPC: H04L29/06

Abstract: Disclosed are various approaches for retrieving contacts from a plurality of federated services. A query is received from a client application executing on a client device, the query comprising a single sign-on token that identifies a user and a character string. A number of federated services that the user has permission to access are then identified. A plurality of authentication tokens are then retrieved from an authentication service, each of the plurality of authentication tokens identifying the user to a respective one of the plurality of federated services. Next, the authentication token and the character string are provided to a respective connector for each of the plurality of federated services that the user has permission to access. A plurality of responses are received, each of the plurality of responses being received from the respective connector corresponding to each of the plurality of federated services that the user has permission to access. Then the plurality of responses are provided to the client application executing on the client device.

公开(公告)号：US11601414B2

公开(公告)日：2023-03-07

申请号：US17468801

申请日：2021-09-08

Applicant: VMware, Inc.

Inventor： William Christian Pinner ,  David Shaw ,  Evan Hurst

IPC: G06F16/951 ,  H04L9/40

Abstract: Disclosed are various approaches for retrieving contacts from a plurality of federated services. In one example, an authentication notification is received from an identity manager. The authentication notification can include an identifier for a user account and a single sign-on token for the user account. A federated service to authenticate on behalf of the user account is identified. The single sign-on token is transmitted to the federated service for authentication. An authentication token and a refresh token are received from the federated service. The authentication token is determined to expire within a threshold time period. A determination is made that the refresh token has not expired. The refresh token is transmitted to the federated service for a replacement authentication token.

公开(公告)号：US20210409394A1

公开(公告)日：2021-12-30

申请号：US17468801

申请日：2021-09-08

Applicant: VMware, Inc.

Inventor： William Christian Pinner ,  David Shaw ,  Evan Hurst

IPC: H04L29/06

Abstract: Disclosed are various approaches for retrieving contacts from a plurality of federated services. In one example, an authentication notification is received from an identity manager. The authentication notification can include an identifier for a user account and a single sign-on token for the user account. A federated service to authenticate on behalf of the user account is identified. The single sign-on token is transmitted to the federated service for authentication. An authentication token and a refresh token is received from the federated service. The authentication token is determined to expire within a threshold time period. The refresh token is has not expired. The refresh token is transmitted to the federated service for a replacement authentication token.

公开(公告)号：US11146543B2

公开(公告)日：2021-10-12

申请号：US16033445

申请日：2018-07-12

Applicant: VMware, Inc.

Inventor： William Christian Pinner ,  David Shaw ,  Evan Hurst

IPC: H04L29/06 ,  G06F16/951

Abstract: Disclosed are various approaches for retrieving contacts from a plurality of federated services. A query is received from a client application executing on a client device, the query comprising a single sign-on token that identifies a user and a character string. A number of federated services that the user has permission to access are then identified. A plurality of authentication tokens are then retrieved from an authentication service, each of the plurality of authentication tokens identifying the user to a respective one of the plurality of federated services. Next, the authentication token and the character string are provided to a respective connector for each of the plurality of federated services that the user has permission to access. A plurality of responses are received, each of the plurality of responses being received from the respective connector corresponding to each of the plurality of federated services that the user has permission to access. Then the plurality of responses are provided to the client application executing on the client device.