| CPC H04L 63/0861 (2013.01) [H04L 41/22 (2013.01); H04L 63/083 (2013.01); H04L 63/20 (2013.01); H04L 67/02 (2013.01)] | 20 Claims |
|
1. A non-transitory machine-readable medium having executable instructions to cause one or more processing units to perform a method to authorize a device for a service provided by an application, the method comprises:
detecting, on the device, an authorization request by the application executing on the device for the service, the authorization request destined for a service provider server, wherein the service is one of a plurality of services and each of the plurality of services has a different native login mechanism;
in response to detecting the authorization request, performing a local authorization, on the device, for consent to use a single sign on service for the application, the local authorization using at least data including a set of user credentials;
in response to the local authorization, negotiating an authorization token with an authorization server for the service, wherein the authorization token can authorize each of the plurality of services as a result of the local authorization, the authorization token is used for the authorization server to authorize each of the plurality of services, and the authorization token allows the device to access the service without having the device to provide the set of user credentials; and
returning the authorization token to the application.
|