US Patent 10305913 Authentication control device and authentication control method

The resolution of the problem is achieved by performing a first determination process in which when request information is received, validity of the request information is determined on the basis of identification information of the interface included in the request information and a second determination process in which validity of the request information is determined on the basis of key information or authentication token information for an interface included in the request information and that permits a user who made the application to utilize the interface or the authentication token information that determines the validity of the user; and transmitting to a transmission source of the request information and regardless of a result of the first determination process, error information indicating that an access is not allowed when the request information is determined to be not valid as a result of the second determination process.