| CPC H04L 9/3234 (2013.01) [G06F 9/5011 (2013.01); H04L 9/3247 (2013.01); H04L 9/3297 (2013.01)] | 20 Claims |
|
1. A method comprising:
receiving, at a multi-tenant platform, a request from a first entity of a first tenant of the multi-tenant platform to access a second entity, among multiple second-tenant entities of a second tenant of the multi-tenant platform, to process a transaction between the first entity and the second entity, the request including authentication information usable to authenticate the transaction with the first tenant, the first tenant comprising a first identity provider for the first entity, the second tenant comprising a second identity provider for the second entity and one or more others of the multiple second-tenant entities;
generating, based at least on the authentication information and by a multi-tenant identity provider of the multi-tenant platform, an access token that includes information usable to authenticate the transaction with the first entity and the second entity, wherein the multi-tenant platform is configured for accessing, via the multi-tenant identity provider, a portion of entity data associated with one or more of the first entity and the second entity;
exchanging, by the multi-tenant platform, the access token for a tenant token for authenticating the transaction with the second tenant, the tenant token useable to authenticate the transaction with the second tenant, the tenant token being in a format of the second tenant, wherein the exchanging includes sending the access token to the second identity provider and receiving the tenant token from the second identity provider; and
communicating, by the multi-tenant platform, the tenant token with the second tenant to perform the transaction.
|