US 12,475,211 B2
Basic authentication using identity and access manager with API key
Manoj Aswani, Indore (IN); Hemant Sharma, Indore (IN); Ayus Kumar, Indore (IN); and Tejaswini Malli, Indore (IN)
Assigned to RAKUTEN SYMPHONY, INC., Tokyo (JP)
Appl. No. 18/012,084
Filed by Rakuten Symphony, Inc., Tokyo (JP)
PCT Filed Nov. 21, 2022, PCT No. PCT/US2022/050556
§ 371(c)(1), (2) Date Dec. 21, 2022,
PCT Pub. No. WO2024/112318, PCT Pub. Date May 30, 2024.
Prior Publication US 2024/0311465 A1, Sep. 19, 2024
Int. Cl. G06F 21/45 (2013.01); H04L 9/08 (2006.01)
CPC G06F 21/45 (2013.01) [H04L 9/08 (2013.01)] 15 Claims
OG exemplary drawing
 
1. A method, performed by at least one processor, for authenticating a client application using two-factor authentication, the method comprising:
receiving, from the client application, a request to access an application programming interface (API);
validating, using a first authentication method, the client application for accessing the API, wherein the first authentication method comprises a basic authentication method;
based on a result of the validating using the first authentication method, validating the client application for accessing the API using a second authentication method, wherein the second authentication method comprises validating using an API Key, and the validating using the API Key comprises determining whether the API Key is expired in response to determining that a valid subscription exists for the API and validating the client application using the first authentication method;
based on a result of validating using the first authentication method and the second authentication method, sending a service request to a backend service provider; and
providing a response to the client application based on the validating using the first authentication method and the second authentication method.