Dynamic proxy server
First Claim
Patent Images
1. A method for facilitating access to a plurality of resources, the method comprising:
- receiving, at a proxy server, a modified message from a gateway in communication with both a client and the proxy server, wherein the modified message includes a context resource identifier inserted by the gateway into a message received from the client;
determining, by the proxy server, whether an application programming interface referenced by the context resource identifier requires an authorization for a user;
in response to a determination that the application programming interface requires the authorization for the user, determining, by the proxy server, whether a profile for the user is present within a cache that is in communication with the proxy server;
in response to a determination that the profile for the user is not present within the cache;
dynamically discovering, by the proxy server, a plurality of application programming interfaces that are in communication with the proxy server;
obtaining, by the proxy server, a plurality of resource profiles from the plurality of application programming interfaces, wherein each resource profile includes a set of endpoint references and authorization information; and
dynamically building, by the proxy server, the profile for the user that includes at least a portion of the authorization information in each of the plurality of resource profiles and a set of context resource identifiers for the plurality of application programming interfaces; and
controlling, by the proxy server, access to a resource associated with the application programming interface that is referenced by the context resource identifier using the profile for the user.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for facilitating access to a plurality of resources is provided. A message that includes a context resource identifier is received at a proxy server from a client through a gateway in communication with both the client and the proxy server. Access to a resource associated with an interface that is referenced by the context resource identifier is controlled by the proxy server using a profile that is dynamically built for a user of the client based on a plurality of resource profiles received from a plurality of interfaces in communication with the proxy server.
102 Citations
18 Claims
-
1. A method for facilitating access to a plurality of resources, the method comprising:
-
receiving, at a proxy server, a modified message from a gateway in communication with both a client and the proxy server, wherein the modified message includes a context resource identifier inserted by the gateway into a message received from the client; determining, by the proxy server, whether an application programming interface referenced by the context resource identifier requires an authorization for a user; in response to a determination that the application programming interface requires the authorization for the user, determining, by the proxy server, whether a profile for the user is present within a cache that is in communication with the proxy server; in response to a determination that the profile for the user is not present within the cache; dynamically discovering, by the proxy server, a plurality of application programming interfaces that are in communication with the proxy server; obtaining, by the proxy server, a plurality of resource profiles from the plurality of application programming interfaces, wherein each resource profile includes a set of endpoint references and authorization information; and dynamically building, by the proxy server, the profile for the user that includes at least a portion of the authorization information in each of the plurality of resource profiles and a set of context resource identifiers for the plurality of application programming interfaces; and controlling, by the proxy server, access to a resource associated with the application programming interface that is referenced by the context resource identifier using the profile for the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus comprising:
-
a plurality of resources; and a proxy server in communication with the plurality of resources, wherein the proxy server is configured; to receive a modified message from a gateway in communication with both a client and the proxy server, wherein the modified message includes a context resource identifier inserted by the gateway into a message received from the client; to determine whether an application programming interface referenced by the context resource identifier requires an authorization for a user; in response to a determination that the application programming interface requires the authorization for the user, to determine whether a profile for the user is present within a cache that is in communication with the proxy server; in response to a determination that the profile for the user is not present within the cache; to dynamically discover a plurality of application programming interfaces that are in communication with the proxy server; to obtain a plurality of resource profiles from the plurality of application programming interfaces, wherein each resource profile includes a set of endpoint references and authorization information; and to dynamically build the profile for the user that includes at least a portion of the authorization information in each of the plurality of resource profiles and a set of context resource identifiers for the plurality of application programming interfaces; and to control access to a resource associated with the application programming interface that is referenced by the context resource identifier using the profile for the user. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
Specification