US 11,930,038 B2
Processing refresh token request at application programming interface (API) gateway
Satyendra Singh, Bangalore (IN); Ganesh Valluru Ramakrishnappa, Bangalore (IN); Tathagata Roy, Bangalore (IN); Ravinder Reddy Bommineni, Bangalore (IN); and Sharan Chaitanya Potturu, Bangalore (IN)
Assigned to Hewlett Packard Enterprise Development LP, Spring, TX (US)
Filed by HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP, Houston, TX (US)
Filed on Jul. 15, 2021, as Appl. No. 17/376,386.
Prior Publication US 2023/0018767 A1, Jan. 19, 2023
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1458 (2013.01) [H04L 2463/142 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, by an application programming interface (API) gateway, a refresh token request from a client application for generation of a new access token;
determining, by the API gateway, a first time associated with receipt of the refresh token request and a second time associated with generation of a current access token;
determining, by the API gateway, whether a difference between the first time and the second time is within a pre-defined threshold duration, wherein the pre-defined threshold duration is set based on a validity of the current access token or the backend service associated with the current access token; and
denying, by the API gateway, the refresh token request for generating the new access token in response to determining that the difference between the first time and the second time is within the pre-defined threshold duration.