US 11,863,547 B2
Systems and methods for providing authentication in a microservice system
Wei Liu, Beijing (CN); Henning Schmiedehausen, Los Altos, CA (US); and Zhen Wang, Beijing (CN)
Assigned to Zuora, Inc., Redwood City, CA (US)
Filed by Zuora, Inc., Redwood City, CA (US)
Filed on Feb. 28, 2023, as Appl. No. 18/115,471.
Application 18/115,471 is a continuation of application No. 16/891,756, filed on Jun. 3, 2020, granted, now 11,595,378.
Claims priority of provisional application 62/856,717, filed on Jun. 3, 2019.
Prior Publication US 2023/0208830 A1, Jun. 29, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04W 12/06 (2021.01)
CPC H04L 63/083 (2013.01) [H04W 12/06 (2013.01)] 18 Claims
OG exemplary drawing
 
1. A multi-tenant computing system, comprising:
one or more hardware processors; and
memory storing instructions that, when executed by the one or more hardware processors, cause the multi-tenant computing system to perform:
receiving, from a client computer, a request and a particular user interface session token;
determining whether a particular cache entry corresponding to the particular user interface session token is present in a user interface session cache, the user interface cache comprising a plurality of cache entries, each of the plurality of cache entries comprising at least one respective session identifier, a respective tenant identifier, and a respective authentication credential, the respective tenant identifier identifying a respective one of a plurality of tenants of the multi-tenant computing system; and
when the particular cache entry corresponding to the particular user interface session token is present in the user interface session cache:
retrieving, from the user interface session cache, the particular cache entry corresponding to the particular user interface session token, the particular cache entry including a plurality of particular session identifiers, a particular tenant identifier, and a particular authentication credential, and
providing the plurality of particular session identifiers, the particular tenant identifier, and the particular authentication credential to one or more user interface applications, the one or more user interface applications configured to generate a respective session to a respective service based on each of the plurality of particular session identifiers, the one or more user interface applications further configured to transmit the particular tenant identifier and the particular authentication credential over each respective session to the respective service, each respective service configured to perform authentication using the particular authentication credential, retrieve tenant-specific data using the particular tenant identifier, and perform a service process using the retrieved tenant-specific data.