Query string processing
First Claim
Patent Images
1. A method for providing access to a resource on a network, comprising the steps of:
- receiving an identification of said resource, said identification includes an absolute portion and a query portion;
using said query portion to identify a first access rule;
applying said first access rule; and
allowing access to said resource, said step of allowing access is not performed if said first access rule is not satisfied.
5 Assignments
0 Petitions
Accused Products
Abstract
A system is disclosed that is used to provide access management for resources on a network. The system makes use of query data from a URL (or another identification or request) to identify the appropriate access rule. Examples of an access rule include an authentication rule, an authorization rule, or an audit rule. The system can be configured to require the query data to match order dependent variables or order independent variables. In one option, the system can include two levels of rules and the query data can be used to identify first level rules, second level rules or both.
225 Citations
57 Claims
-
1. A method for providing access to a resource on a network, comprising the steps of:
-
receiving an identification of said resource, said identification includes an absolute portion and a query portion;
using said query portion to identify a first access rule;
applying said first access rule; and
allowing access to said resource, said step of allowing access is not performed if said first access rule is not satisfied. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method for providing access to a resource on a network, comprising the steps of:
-
transmitting an identification of said resource, said identification includes an absolute portion and a query portion, said query portion is used by a remote server to identify a first access rule;
participating in performing said first access rule; and
receiving access to said resource, said step of receiving access is not performed if said first access rule is not satisfied. - View Dependent Claims (22, 23, 24, 25, 26, 28, 29, 30, 31, 32)
-
-
27. A method for creating access criteria, comprising the steps of:
-
creating a first access rule for one or more resources;
identifying a set of one or more query variables to be associated with said first access rule; and
identifying one or more values for said one or more query variables.
-
-
33. On e or more processor readable storage devices having processor readable code embodied on said processor readable storage devices, said processor readable code for programming one or more processors to perform a method comprising the steps of:
-
receiving an identification of a resource, said identification including an absolute portion and a query portion;
using said query portion to identify a first access rule;
applying said first access rule; and
allowing access to said resource, said step of allowing access is not performed if said first access rule is not satisfied. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. An apparatus, comprising:
-
a communication interface;
one or more storage devices; and
one or more processors in communication with said one or more storage devices and said communication interface, said one or more processors programmed to preform a method comprising the steps of;
receiving an identification of said resource, said identification including an absolute portion and a query portion, using said query portion to identify a first access rule, applying said first access rule, and allowing access to said resource, said step of allowing access is not performed if said first access rule is not satisfied. - View Dependent Claims (44, 45, 46, 48, 49, 50, 51, 52)
-
-
47. One or more processor readable storage devices having processor readable code embodied on said processor readable storage devices, said processor readable code for programming one or more processors to perform a method comprising the steps of:
-
providing for creation of a first access rule for one or more resources;
receiving and storing a set of one or more query variables to be associated with said first access rule; and
receiving and storing one or more values for said one or more query variables.
-
-
53. An apparatus, comprising:
-
a communication interface;
one or more storage devices; and
one or more processors in communication with said one or more storage devices and said communication interface, said one or more processors programmed to preform a method comprising the steps of;
providing for creation of a first access rule for one or more resources, receiving and storing a set of one or more query variables to be associated with said first access rule, and receiving and storing one or more values for said one or more query variables. - View Dependent Claims (54, 55, 56, 57)
-
Specification