CPC G06Q 10/10 (2013.01) [G06F 9/44505 (2013.01); G06F 9/54 (2013.01); G06F 9/547 (2013.01); G06F 16/258 (2019.01); G06F 16/9558 (2019.01); G06F 16/9562 (2019.01); G06F 18/24 (2023.01); G06F 21/53 (2013.01); G06F 21/602 (2013.01); G06F 21/604 (2013.01); G06F 21/6227 (2013.01); G06F 21/6245 (2013.01); G06F 40/103 (2020.01); G06F 40/174 (2020.01); G06F 40/18 (2020.01); G06N 3/02 (2013.01); G06N 5/025 (2013.01); G06N 20/00 (2019.01); G06Q 20/382 (2013.01); G06Q 20/4014 (2013.01); G06Q 30/0185 (2013.01); G06Q 30/0206 (2013.01); G06Q 30/0601 (2013.01); G06Q 30/0613 (2013.01); G06Q 30/0619 (2013.01); G06Q 30/0637 (2013.01); G06Q 30/0643 (2013.01); G06Q 40/02 (2013.01); G06Q 40/03 (2023.01); H04L 9/0825 (2013.01); H04L 63/0435 (2013.01); H04L 63/08 (2013.01); H04L 63/0815 (2013.01); H04L 63/102 (2013.01); H04L 63/123 (2013.01); H04L 63/166 (2013.01); H04L 63/168 (2013.01); H04L 67/01 (2022.05); G06F 8/65 (2013.01); G06F 8/71 (2013.01); G06F 2221/2107 (2013.01); G06K 7/1417 (2013.01); G06Q 50/265 (2013.01); G06Q 2220/00 (2013.01); H04L 9/0822 (2013.01)] | 20 Claims |
1. A method of authentication, the method comprising:
receiving by a service provider, based on an attempt by a user device to access a resource, an authentication request from the user device that indicates an identity provider and an entity associated with the user device;
redirecting the authentication request to the identity provider;
receiving from the identity provider, based on the authentication request, an authentication token and user information associated with the user device;
validating the authentication token against internal configuration information of the service provider,
wherein the internal configuration information includes information corresponding to information included in at least one of the authentication token or the user information, and information absent from the authentication token and the user information;
generating, based on the authentication token, the user information, and the internal configuration information, an identity ID; and
enabling, based on the identity ID, the user device to access the resource.
|