公开(公告)号：US11381571B2

公开(公告)日：2022-07-05

申请号：US16773526

申请日：2020-01-27

Applicant: Microsoft Technology Licensing, LLC

Inventor： Anshul Dube ,  Parul Manek ,  Steven Mark Silverberg ,  Shankaranand Arunachalam ,  Jason Craig Nelson ,  Andrew Burke Ryan ,  Robert A. Lowe ,  Ganesh Pandey

IPC: H04L9/40

Abstract: A client application is specified by a target tenant and represented in an OAuth provider, along with a corresponding secret. A source tenant consents to permissions to be executed by the client application on a resource of the source tenant. A target service uses the secret to obtain an access token from an authorization server coupled to the source tenant and uses the access token to obtain access, specified by the permissions, to the resource served by a source service acting on behalf of the source tenant.

公开(公告)号：US11750612B2

公开(公告)日：2023-09-05

申请号：US17511820

申请日：2021-10-27

Applicant: Microsoft Technology Licensing, LLC

Inventor： Anshul Dube ,  Xiaoqin Zhu ,  Andrew Burke Ryan ,  Shankaranand Arunachalam ,  Gokay Hurmali ,  Dmitri Gavrilov ,  Ganesh Pandey ,  Parul Manek

IPC: H04L9/40

CPC classification number: H04L63/10 ,  H04L63/08

Abstract: A service computing system receives an API call in which an authorization token, that contains an identifier in the content of the authorization token, is included in a header of the API call. The identifier is also included as a parameter passed in with the API call. The service computing system parses the API call to obtain the authorization token, and the identifier included in the authorization token. It also obtains the identifier passed in as a parameter of the API call. The service computing system compares the identifier obtained from the authorization token to the identifier passed in as a parameter of the API call to determine whether they match. If they do not match, the API call is processed as an unauthorized API call. A security system in the service computing system authorizes the API call based on the comparison.

公开(公告)号：US11973827B2

公开(公告)日：2024-04-30

申请号：US17201927

申请日：2021-03-15

Applicant: Microsoft Technology Licensing, LLC

Inventor： Md Mainul Mizan ,  Kamil Krzywicki ,  Anshul Dube ,  Brian Alan Day ,  Robert Allen Lowe ,  Shankaranand Arunachalam

IPC: H04L67/1095 ,  G06F16/21 ,  H04L9/40 ,  H04L51/42

CPC classification number: H04L67/1095 ,  G06F16/214 ,  H04L51/42 ,  H04L63/1458

Abstract: Examples of the present disclosure describe systems and methods for migrating mailbox identities. In aspects, a system may receive one or more requests to perform tasks for migrating identities of a plurality of mailboxes included in a security group created at a source tenant to a plurality of mail users created at a target tenant that correspond to the plurality of mailboxes. Based on the one or more requests, the system may copy the identities to a data store associated with the target tenant, upload mapping data to the data store, and use that mapping data to map the identities copied to the data store to the corresponding plurality of mail users in the target tenant. For each of the identities mapped, the system may copy at least one or more attributes of the respective identity from the data store to the respective corresponding mail user in the target tenant.

公开(公告)号：US11190514B2

公开(公告)日：2021-11-30

申请号：US16443236

申请日：2019-06-17

Applicant: Microsoft Technology Licensing, LLC

Inventor： Anshul Dube ,  Xiaoqin Zhu ,  Andrew Burke Ryan ,  Shankaranand Arunachalam ,  Gokay Hurmali ,  Dmitri Gavrilov ,  Ganesh Pandey ,  Parul Manek

IPC: H04L29/06

Abstract: A service computing system receives an API call in which an authorization token, that contains an identifier in the content of the authorization token, is included in a header of the API call. The identifier is also included as a parameter passed in with the API call. The service computing system parses the API call to obtain the authorization token, and the identifier included in the authorization token. It also obtains the identifier passed in as a parameter of the API call. The service computing system compares the identifier obtained from the authorization token to the identifier passed in as a parameter of the API call to determine whether they match. If they do not match, the API call is processed as an unauthorized API call. A security system in the service computing system authorizes the API call based on the comparison.

公开(公告)号：US12135698B2

公开(公告)日：2024-11-05

申请号：US17201866

申请日：2021-03-15

Applicant: Microsoft Technology Licensing, LLC

Inventor： Md Mainul Mizan ,  Kamil Krzywicki ,  Anshul Dube ,  Brian Alan Day ,  Robert Allen Lowe ,  Shankaranand Arunachalam

IPC: G06F16/215 ,  G06F16/242 ,  G06F16/2457 ,  G06F16/248 ,  G06F16/28

Abstract: Examples of the present disclosure describe systems and methods for migrating mailbox identities. In aspects, a system may receive one or more requests to perform tasks for migrating identities of a plurality of mailboxes included in a security group created at a source tenant to a plurality of mail users created at a target tenant that correspond to the plurality of mailboxes. Based on the one or more requests, the system may copy the identities to a data store associated with the target tenant, upload mapping data to the data store, and use that mapping data to map the identities copied to the data store to the corresponding plurality of mail users in the target tenant. For each of the identities mapped, the system may copy at least one or more attributes of the respective identity from the data store to the respective corresponding mail user in the target tenant.

公开(公告)号：US11930016B2

公开(公告)日：2024-03-12

申请号：US17749761

申请日：2022-05-20

Applicant: Microsoft Technology Licensing, LLC

Inventor： Anshul Dube ,  Parul Manek ,  Steven Mark Silverberg ,  Shankaranand Arunachalam ,  Jason Craig Nelson ,  Andrew Burke Ryan ,  Robert A. Lowe ,  Ganesh Pandey

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/0884

Abstract: A client application is specified by a target tenant and represented in an OAuth provider, along with a corresponding secret. A source tenant consents to permissions to be executed by the client application on a resource of the source tenant. A target service uses the secret to obtain an access token from an authorization server coupled to the source tenant and uses the access token to obtain access, specified by the permissions, to the resource served by a source service acting on behalf of the source tenant.