| CPC G06Q 30/0633 (2013.01) [G06Q 20/383 (2013.01); G06Q 30/0643 (2013.01); G06Q 2220/00 (2013.01)] | 18 Claims |
|
1. A method for securely transferring and merging an electronic shopping cart curated by an affiliate online service comprising an affiliate server and an affiliate graphical user interface (GUI) for purchase on a retailer online service, the method comprising:
the affiliate online service determining that a first user has linked a first account from the affiliate online service to the retailer online service;
a guest security platform (GSP) application programming interface (API) of the retailer online service receiving, over a network, a request for a guest account token from the affiliate online service that includes information regarding a user, upon the affiliate online service determining that the first user has linked the first account from the affiliate online service to the retailer online service, wherein the guest account token is cryptographically signed to prevent forgery;
the GSP API generating the guest account token in response to receiving the request for the guest account token from the affiliate online service, the guest account token generated by the GSP API linked to the first user based on a first guest account of the retailer online service, the guest account token including guest account token information regarding the affiliate online service and the first user, the guest account token information including:
affiliate online service information;
identifying information that links the first user to the first guest account of the retailer online service;
and a guest permission level indicating permitted functionality and restricted functionality of a cart item API of the retailer online service, the permitted functionality including permitting the cart item API to add payment information on behalf of the first user to a first pre-existing electronic shopping cart linked to the first guest account;
the GSP API sending, over the network, the guest account token to the affiliate online service;
the cart item API of the retailer online service receiving, over the network, one or more products from the affiliate online service to add to the first pre-existing electronic shopping cart linked to the first guest account;
the cart item API adding the one or more products to the first pre-existing electronic shopping cart;
the cart item API informing the affiliate online service that the one or more products have been successfully added to the first pre-existing electronic shopping cart;
the affiliate online service receiving a first redirection request from the first user via a first user device;
the first user device being automatically redirected from the affiliate online service to the retailer online service with the guest account token, upon the affiliate online service receiving the first redirection request from the first user via the first user device;
the GSP API validating the guest account token;
upon the GSP API validating the guest account token, the first user, via the first user device, accessing an electronic shopping cart display of a retailer GUI, and the retailer GUI determining whether the first user has already logged onto the retailer online service;
the retailer GUI determining that the first user has not already logged onto the retailer online service;
the retailer GUI requesting the first user to log onto the retailer online service upon the retailer GUI determining that the first user has not already logged onto the retailer online service;
the retailer GUI initiating a shopping cart API to retrieve and display the first pre-existing electronic shopping cart on the first user device;
the affiliate online service determining that a second user has not linked a second account from the affiliate online service to the retailer online service;
the GSP API of the retailer online service receiving, over the network, a request for an anonymous token from the affiliate online service that does not include information regarding the second user, upon the affiliate online service determining that the second user has not linked the second account from the affiliate online service to the retailer online service, wherein the anonymous token is cryptographically signed to prevent forgery;
the GSP API generating the anonymous token in response to receiving the request for the anonymous token from the affiliate online service, the anonymous token generated by the GSP API including affiliate online service information regarding the affiliate online service, the affiliate online service information including an affiliate client identifier and an anonymous permission level different from the guest permission level of the guest account token, wherein the anonymous token does not include the identifying information that links the second user to a second guest account of the retailer online service, and wherein the guest permission level indicates permitted functionality and restricted functionality of the cart item API of the retailer online service, the restricted functionality including restricting the cart item API from adding payment information to an anonymous electronic shopping cart on behalf of the second user;
the GSP API sending, over the network, the anonymous token to the affiliate online service;
the cart item API of the retailer online service receiving, over the network, one or more products to add to the anonymous electronic shopping cart from the affiliate online service;
the cart item API adding the one or more products to the anonymous electronic shopping cart;
the affiliate online service receiving a second redirection request from the second user via a second user device;
the second user device being automatically redirected from the affiliate online service to the retailer online service with the anonymous token, upon the affiliate online service receiving the second redirection request from the second user via the second user device;
the GSP API validating the anonymous token;
upon the GSP API validating the anonymous token, the second user, via the second user device, accessing the electronic shopping cart display of the retailer GUI, and the retailer GUI accessing a cookie associated with the retailer online service and stored in the second user device;
the retailer GUI, based on the cookie, obtaining the identifying information that links the second user to the second guest account of the retailer online service and determining that the second user, via the second guest account, has a second pre-existing electronic shopping cart linked to the second guest account;
upon determining that the second user has the second pre-existing electronic shopping cart linked to the second guest account, a cart-merge API creating a combined electronic shopping cart by transferring and merging one or more products of the second pre-existing electronic shopping cart linked to the second guest account with the one or more products of the anonymous electronic shopping cart without the affiliate online service accessing or being provided the cookie;
upon the cart-merge API creating the combined electronic shopping cart, the retailer GUI initiating the shopping cart API to retrieve and display the combined electronic shopping cart on the second user device without the affiliate online service accessing or being provided the cookie, wherein displaying the combined electronic shopping cart includes the retailer GUI displaying each of the one or more products of the second pre-existing electronic shopping cart and each of the one or more products of the anonymous electronic shopping cart on the second user device.
|