International Business Machines Corporation
Secure delegation of a refresh token for long-running operations

Abstract:

A computer-implemented method for a token-based authorization in a data processing environment comprising a user system, an application server and an authorization server may be provided. The method comprises accessing the application via the user agent, sending an access token and a refresh token from the authorization server to the application, triggering an execution of the service providing the long-running operation by the application. The triggering comprises requesting and receiving a transferable refresh token, starting an execution of the service providing the long-running operation by passing the transferable refresh token together with the identifier from the application to the service providing the long-running operation, passing the transferable refresh token from the long-running service to the authorization server, receiving an access and refresh token, and continuing the long running service.