	US 12,126,623 B1
	Aggregated authorization token
Abhishek Gupta, Irving, TX (US); Mohan Madala, New York, NY (US); Rasabihari Rath, Irving, TX (US); Simranjit Singh Rekhi, New York, NY (US); Prashant Sharma, Irving, TX (US); and Marina Trost, New York, NY (US)
Assigned to Citibank, N.A., New York, NY (US)
Filed by Citibank, N.A., New York, NY (US)
Filed on Apr. 30, 2024, as Appl. No. 18/651,556.
Int. Cl. H04L 9/40 (2022.01)

CPC H04L 63/102 (2013.01) [H04L 63/105 (2013.01); H04L 63/20 (2013.01)]

20 Claims

1. A system, comprising:

one or more processors; and

memory storing computer-executable instructions that, as a result of execution by the one or more processors, cause the system to at least:

receive an application programming interface (API) call to obtain an access data object that includes a permission of an application provider to access a first resource of an entity;

identify a previous permission to access a second resource of the entity;

in response to receiving the API call, generate the access data object to include at least the permission and the previous permission;

receive an additional API call requesting to revoke the permission or the previous permission;

provide a notification to the entity that includes a confirmation request to confirm that the additional API call is approved;

receive a confirmation to the confirmation request; and

modify the access data object to remove the permission or the previous permission requested to be revoked by the additional API call.