| CPC H04L 63/08 (2013.01) [H04L 9/32 (2013.01)] | 20 Claims |
|
1. A system configured for using JavaScript Object Notation (JSON) Web Tokens for information security for a software-controlled application, the system comprising:
one or more hardware processors configured by machine-readable instructions to:
responsive to receiving, from individual users, login requests that include individual user identifiers, individual hardware identifiers, and individual machine identifiers, provide, to the individual users individual JSON Web Tokens (JWTs) that include individual expiration dates, wherein the individual JWTs grant temporary access and/or use of the software-controlled application;
receive, from a user associated with a client computing platform, a user request for continued access and/or use of the software-controlled application, wherein the user request includes:
(i) a client-provided JSON Web Token (JWT), wherein the client-provided JWT includes a payload, wherein the payload includes a client-provided expiration date,
(ii) a client-provided hardware identifier that identifies the client computing platform, and
(iii) a client-provided machine identifier that identifies a public key;
perform one or more verifications that verify whether the user request for continued access and/or use of the software-controlled application has been accepted; and
responsive to the one or more verifications verifying the user request has been accepted, transfer a first response to the user request, wherein the first response includes a first standard HyperText Transfer Protocol (HTTP) status code that indicates the user request has been accepted.
|