US 12,113,903 B2
Long-lasting refresh tokens in self-contained format
Radoslav Ivanov Sugarev, Petrich (BG)
Assigned to SAP SE, Walldorf (DE)
Filed by SAP SE, Walldorf (DE)
Filed on Dec. 30, 2022, as Appl. No. 18/148,935.
Application 18/148,935 is a continuation of application No. 17/158,533, filed on Jan. 26, 2021, granted, now 11,546,159.
Prior Publication US 2023/0138368 A1, May 4, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/32 (2006.01); H04L 9/08 (2006.01)
CPC H04L 9/3213 (2013.01) [H04L 9/0819 (2013.01); H04L 9/3242 (2013.01); H04L 9/3247 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method, the method comprising:
regenerating and storing, by a client application, a new protected version of a refresh token based on a new version of a client key, wherein the new protected version of the refresh token is an encrypted version of the refresh token based on the new version of the client key, wherein the new version of the client key replaces a previous version of the client key persisted at a key store for the client application, wherein a single version of the client key is maintained at any point in time at the key store;
sending, by the client application and to an authorization server, a request to generate a new access token for authorization of the client application with an application server, wherein the request includes the new protected version of the refresh token to authenticate with the authorization server for generating the new access token for authorization of accessing resources at the application server; and
receiving, by the client application and from the authorization server, the new access token, wherein the new access token is successfully validated at the authorization server based on decrypting the new access token using the new version of the client key.