| CPC G06F 21/54 (2013.01) [G06F 2221/033 (2013.01)] | 20 Claims |
|
8. A computer-readable storage medium having computer-executable instructions stored thereupon which, when executed by a computing device, cause the computing device to:
execute an access token broker within a first iFrame, the first iFrame associated with a first origin;
execute a fully trusted application in a second iFrame within the first iFrame, the second iFrame associated with a second origin different from the first origin;
execute a partially trusted application in a third iFrame within the second iFrame, the third iFrame associated with a third origin different from the second origin;
receive a request for an access token at the access token broker executing within the first iFrame from the second iFrame or the third iFrame;
responsive to receiving the request for the access token at the access token broker, determine, by way of the access token broker, whether the request for the access token is to be granted; and
responsive to determining that the request for the access token is to be granted,
request the access token from an application hosting the first iFrame,
receive the access token from the application, and
provide the access token in response to the request.
|