| CPC H04L 63/083 (2013.01) [H04L 63/0869 (2013.01)] | 20 Claims |
|
1. A system comprising:
an authentication token generator comprising:
a first memory configured to store:
a group associated with each user; and
user credentials for each user; and
a first processor communicatively coupled to the first memory, wherein the first processor is configured to:
receive first user credentials of a first user from a first user device;
compare the first user credentials to stored user credentials for the first user;
in response to the first user credentials matching the stored user credentials for the first user, authenticate the first user;
determine a first group of the first user based on the first user credentials;
send the first group to a computing cluster;
in response to sending the first group, receive first access information for the first user from the computing cluster, wherein the first access information comprises a first set of uniform resource locators (URLs) associated with the first group, and wherein each URL of the first set of URLs corresponds to a respective user interface (UI) of the computing cluster that is accessible to the first group;
generate a first authentication token based on the first user credentials and the first access information;
send a first copy of the first authentication token to the first user device; and
send a second copy of the first authentication token to the computing cluster; and
the first user device communicatively coupled to the authentication token generator, wherein the first user device comprises:
a second memory configured to store a first browser application; and
a second processor communicatively coupled to the second memory, wherein the second processor is configured to:
receive the first copy of the first authentication token from the authentication token generator;
assign the first copy of the first authentication token to a first session variable of the first browser application;
input a first URL into the first browser application to attempt accessing a first UI of the computing cluster; and
send the first URL and the first session variable to the computing cluster; and
the computing cluster communicatively coupled to the first user device and the authentication token generator, wherein the computing cluster comprises:
a third memory configured to store respective access information for each user; and
a third processor communicatively coupled to the third memory, wherein the third processor is configured to:
receive the second copy of the first authentication token from the authentication token generator;
receive the first URL and the first session variable from the first user device;
compare the first session variable to the second copy of the first authentication token; and
in response to the first session variable matching the second copy of the first authentication token, compare the first URL to the first set of URLs, wherein the second processor is further configured to:
in response to the first URL being one of the first set of URLs and the first session variable matching the second copy of the first authentication token, access the first UI of the computing cluster using the first browser application.
|