	US 11,736,292 B2
	Access token management method, terminal, and server
Sishan Wang, Beijing (CN); and Jingqing Mei, Shenzhen (CN)
Assigned to HUAWEI TECHNOLOGIES CO., LTD., Shenzhen (CN)
Appl. No. 16/758,095
Filed by Huawei Technologies Co., Ltd., Shenzhen (CN)
PCT Filed Oct. 23, 2017, PCT No. PCT/CN2017/107287 § 371(c)(1), (2) Date Apr. 22, 2020, PCT Pub. No. WO2019/079928, PCT Pub. Date May 2, 2019.
Prior Publication US 2020/0336309 A1, Oct. 22, 2020
Int. Cl. H04L 29/06 (2006.01); H04L 9/32 (2006.01); H04L 9/08 (2006.01); H04L 9/40 (2022.01)

CPC H04L 9/3213 (2013.01) [H04L 9/0861 (2013.01); H04L 9/0891 (2013.01); H04L 63/0876 (2013.01); H04L 63/102 (2013.01); H04L 63/108 (2013.01)]

20 Claims

1. An access token management method, implemented by a server, wherein the access token management method comprises:

receiving an access token generation request from a terminal, wherein the access token generation request comprises user information of a first account, wherein the first account is used to log in to a first application on the terminal, wherein the first application comprises an open authorization function configured to authorize a second application on the terminal to access a protected resource by the access token;

generating the access token in response to the access token generation request;

sending the access token to the terminal;

receiving the access token from the terminal and authorizing the second application to access the protected resource;

obtaining login information of the first account;

marking the access token state when the obtained login information indicates the first account state is non-logged in;

performing invalidation processing on the access token when the login information is marked as in a non-login state on the terminal; and

denying the access to the protected resource of the second application of the terminal when the access token is invalid.