US 11,856,102 B2
Proxy-based identity and access management for web applications
Saeed Javed Akhter, Redmond, WA (US); and Steven Soneff, Bellevue, WA (US)
Assigned to MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US)
Filed by Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed on Jul. 29, 2021, as Appl. No. 17/388,807.
Prior Publication US 2023/0033907 A1, Feb. 2, 2023
Int. Cl. H04L 9/32 (2006.01); H04L 9/08 (2006.01); H04L 9/40 (2022.01); H04L 67/02 (2022.01)
CPC H04L 9/3213 (2013.01) [H04L 9/0891 (2013.01); H04L 63/08 (2013.01); H04L 63/10 (2013.01); H04L 67/02 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system, comprising:
a processor circuit;
a memory that stores program code executable by the processor circuit, the program code comprising:
a first network proxy communicatively coupled with a web application and an application programming interface (API), wherein the first network proxy:
receives, from a second network proxy, a first access token associated with a user of the web application, the second network proxy communicatively coupled with a browser application utilized by the user, the web application, and the first network proxy;
stores the first access token in a data structure that maps the first access token to the associated user;
receives an anonymous API call from the web application;
obtains the first access token;
generates a first request for data based on the anonymous API call, the first request including the first access token; and
sends the first request to the API.