Method and apparatus of web application server for blocking a client session based on a threshold number of service calls
First Claim
1. A client session blocking method performed by a client session blocking apparatus, the method comprising:
- receiving a first request of a client for a service executable by one of a first application and a second application, from a web server;
in response to a session of the client being a session of the first application, performing a first determination regarding whether the session of the client for the first application is valid;
in response to the first determination indicating that the session of the first application is valid, performing a second determination regarding whether a number of consecutive calls for the session of the first application is equal to or greater than a predetermined threshold number of calls for the service; and
in response to the second determination indicating that the number of the consecutive calls is equal to or greater than the predetermined threshold number, blocking the session of the first application, and maintaining a session of the second application,wherein the receiving of the first request comprises determining whether a type of a network from which the first request was received is an Internet,wherein the performing of the second determination comprises;
in response to determining that the type of the network is the Internet, determining a first threshold number corresponding to an intranet;
generating a second threshold number based on the determined first threshold number, wherein the second threshold number is smaller than the first threshold number by a predetermined value, andperforming the second determination based on the second threshold number.
1 Assignment
0 Petitions
Accused Products
Abstract
A client session blocking method performed by a client session blocking apparatus includes receiving a first request of a client for a service from a web server, performing a first determination regarding whether a session of the client for the service is valid, in response to the first determination indicating that the session is valid, performing a second determination regarding whether a number of consecutive calls for the service is equal to or greater than a predetermined threshold number of calls for the service and in response to the second determination indicating that the number of the consecutive calls is equal to or greater than the predetermined threshold number, and blocking the session of the client for the service.
28 Citations
10 Claims
-
1. A client session blocking method performed by a client session blocking apparatus, the method comprising:
-
receiving a first request of a client for a service executable by one of a first application and a second application, from a web server; in response to a session of the client being a session of the first application, performing a first determination regarding whether the session of the client for the first application is valid; in response to the first determination indicating that the session of the first application is valid, performing a second determination regarding whether a number of consecutive calls for the session of the first application is equal to or greater than a predetermined threshold number of calls for the service; and in response to the second determination indicating that the number of the consecutive calls is equal to or greater than the predetermined threshold number, blocking the session of the first application, and maintaining a session of the second application, wherein the receiving of the first request comprises determining whether a type of a network from which the first request was received is an Internet, wherein the performing of the second determination comprises; in response to determining that the type of the network is the Internet, determining a first threshold number corresponding to an intranet; generating a second threshold number based on the determined first threshold number, wherein the second threshold number is smaller than the first threshold number by a predetermined value, and performing the second determination based on the second threshold number. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A client session blocking apparatus comprising:
-
one or more processors; a network interface; a memory configured to load a computer program to be executed by the processors; and a storage which stores the computer program, wherein the computer program comprises instructions to perform; an operation of receiving a first request of a client for a service, executable by one of a first application and a second application, from a web server; an operation of performing a first determination regarding whether a session of the first application is valid in response to a session of the client being the session of the first application an operation of performing a second determination regarding whether a number of consecutive calls for the session of the first application is equal to or greater than a predetermined threshold number in response to the first determination indicating that the session of the first application is valid; and an operation of blocking the session of the first application and maintaining a session of the second application in response to the second determination indicating that the number of the consecutive calls is equal to or greater than the predetermined threshold number, wherein the receiving of the first request comprises determining whether a type of a network from which the first request was received is an Internet, wherein the performing of the second determination comprises; in response to determining that the type of the network is the Internet, determining a first threshold number corresponding to an intranet; generating a second threshold number based on the determined first threshold number, wherein the second threshold number is smaller than the first threshold number by a predetermined value, and performing the second determination based on the second threshold number.
-
-
10. A non-transitory computer-readable medium configured to store a computer program which, when executed, causes a computing apparatus to:
-
receive a first request of a client for a service, executable by one of a first application and a second application, from a web server; in response to a session of the client being a session of the first application, perform a first determination regarding whether the session of the first application is valid; in response to the first determination indicating that the session of the first application is valid, perform a second determination regarding whether a number of consecutive calls for a session of the first application is equal to or greater than a predetermined threshold number and in response to the second determination indicating that the number of the consecutive calls is equal to or greater than the predetermined threshold number, block the session of the first application, and maintaining the session of the second application, wherein the receiving of the first request comprises determining whether a type of a network from which the first request was received is an Internet, wherein the performing of the second determination comprises; in response to determining that the type of the network is the Internet, determining a first threshold number corresponding to an intranet; generating a second threshold number based on the determined first threshold number, wherein the second threshold number is smaller than the first threshold number by a predetermined value, and performing the second determination based on the second threshold number.
-
Specification