US 12,170,672 B1
Mutable access tokens
Mayank Shah, East Windsor, NJ (US); Gayathri Sundar, Irving, TX (US); Vernon Miller, Jacksonville, FL (US); and Abhishek Acharya, Irving, TX (US)
Assigned to CITICORP CREDIT SERVICES, INC. (USA), Jacksonville, FL (US)
Filed by CITICORP CREDIT SERVICES, INC. (USA), Jacksonville, FL (US)
Filed on Jul. 6, 2023, as Appl. No. 18/218,973.
Application 18/218,973 is a continuation of application No. 17/888,939, filed on Aug. 16, 2022, granted, now 11,736,493.
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06F 21/00 (2013.01); G06F 21/60 (2013.01)
CPC H04L 63/102 (2013.01) [G06F 21/604 (2013.01); H04L 63/0807 (2013.01); H04L 63/105 (2013.01)] 18 Claims
OG exemplary drawing
 
1. A system to utilize mutable access tokens, comprising:
a storage device; and
a processor in a network system communicatively coupled to the storage device, wherein the processor executes application code instructions that are stored in the storage device to cause the system to:
communicate an access token to a partner server;
receive a data request from the partner server with the access token;
determine that a claim associated with the access token has been updated to a changed claim to allow a greater level of permissions to the partner server than an original level of permissions;
provide, responsive to the data request, data that does not exceed the original level of permissions allowed by the access token, the data received in response to the data request further comprising instructions to the partner server to obtain an updated access token based on the changed claim; and
communicate an instance of the updated access token to the partner server.