| CPC H04L 9/3213 (2013.01) [H04L 9/088 (2013.01); H04L 9/3226 (2013.01); H04L 63/105 (2013.01); H04L 63/1433 (2013.01); H04L 67/306 (2013.01)] | 18 Claims |
|
1. A computer-implemented method comprising:
transmitting an access token, wherein the access token is associated with a security profile, and wherein when the access token is received at a first service, the first service generates an access request that includes the access token;
receiving the access request regarding access to account data associated with a second service, wherein the security profile indicates permission to access the account data;
permitting access to the account data based on validation of the access token, wherein when the access is permitted to the account data, a display of a web application associated with the first service is populated with the account data;
receiving a follow-up request to perform one or more additional actions associated with the account data, wherein the follow-up request includes the access token, and wherein the security profile indicates that the one or more additional actions require additional authentication data associated with a user device;
receiving the additional authentication data;
transmitting a new access token after validation of the additional authentication data, wherein the new access token is associated with an updated security profile that indicates permission to perform the one or more additional actions; and
permitting the one or more additional actions to be performed based on the new access token, wherein when the one or more additional actions are permitted, the display of the web application is dynamically modified to include one or more interface elements corresponding to the one or more additional actions.
|