白丝美女被狂躁免费视频网站,500av导航大全精品,yw.193.cnc爆乳尤物未满,97se亚洲综合色区,аⅴ天堂中文在线网官网

Identity experience framework

專利號(hào)
US11997077B2
公開日期
2024-05-28
申請(qǐng)人
Microsoft Technology Licensing, LLC(US WA Redmond)
發(fā)明人
Raja Charu Vikram Kakumani; Brandon B. Murdoch; Ronald Bjones; Muhammad Omer Iqbal; Kim Cameron
IPC分類
H04L9/00; H04L9/40; G06F3/0484
技術(shù)領(lǐng)域
policy,identity,ui,ief,provider,user,token,journeys,providers,composable
地域: WA WA Redmond

摘要

Methods for composable user journeys for user authentication via an identity experience framework are performed by systems and apparatuses. Initiating a user authentication process for an application triggers application calls for dynamic invocation of a specific identity policy, required by the application, of a number of identity policies managed by a host of the identity experience framework. User interfaces defined by the identity policies are provided from the host to the application for interaction by the user and entry of identity information needed to authenticate the user according to specified verification providers. Identity claims and token requests are provided from the application to the host which then authenticates the identity claims via the verification providers and mints a token that includes the claims required by the application, according to the identity policy. The application consumes the token to complete the token request and allow the user access to the application.

說明書

The described IEF utilizes trustframework policies (e.g., identity policies) that allow an identity expert to compose an identity system with desired, identity-specific user journeys. Within the IEF, a single trustframework policy may provide a basis for some or all of business-to-consumer functionality, business-to-business functionality, business-to-employee functionality, and/or the like. In this way, different identity protocols are leveraged to provide a seamless, centralized solution. The IEF may include commonly-used verification providers “out of the box” to be invoked via the trustframework policy. For instance, these verification providers may include, but are not limited to, an email address validation provider, an identity provider (IdP) for local accounts, a multi-factor authentication provider, a self-asserted provider, Azure? Active Directory? from Microsoft Corporation of Redmond, Wash. (as a user directory provider), etc. A relying party, e.g., an application or application service provider, calls an identity policy for invocation and subsequent execution of a user authentication process. In embodiments, any identity policy of an included identity provider may be designated or identified as a default policy if no specific policy is specified in a call from an application to the IEF. Accordingly, the relying party chooses the user journey to enforce for the current request, and chooses the list of claims the application requires as part of the token needed to authenticate the user and allow access.

權(quán)利要求

1
微信群二維碼
意見反饋