Specializing support for a federation relationship
First Claim
1. A method for providing federated functionality within a data processing system, the method comprising:
- receiving a first request at a first computing system for federation services from an identity provider, wherein the first request is made by a first requester;
initializing a first specialized runtime which provides requested federation services for the first requestor according to configuration data of a federation relationship of the first requestor with the identity provider, wherein the configuration data is dynamically retrieved during initialization of the runtime; and
providing the requested federation services using the specialized runtime.
2 Assignments
0 Petitions
Accused Products
Abstract
The invention provides federated functionality within a data processing system by means of a set of specialized runtimes. Each of the plurality of specialized runtimes provides requested federation services for selected ones of the requestors according to configuration data of respective federation relationships of the requestors with the identity provider. The configuration data is dynamically retrieved during initialization of the runtimes which allows the respective runtime to be specialized for a given federation relationship. Requests are routed to the appropriate specialized runtime using the first requestor identity and the given federation relationship. The data which describes each federation relationship between the identity provider and each of the plurality of requesters is configured prior to initialization of the runtimes. Configuration data is structured into global specified data, federation relationship data and requestor specific data to minimize data change, making the addition or deletion of requesters very scalable.
187 Citations
12 Claims
-
1. A method for providing federated functionality within a data processing system, the method comprising:
-
receiving a first request at a first computing system for federation services from an identity provider, wherein the first request is made by a first requester;
initializing a first specialized runtime which provides requested federation services for the first requestor according to configuration data of a federation relationship of the first requestor with the identity provider, wherein the configuration data is dynamically retrieved during initialization of the runtime; and
providing the requested federation services using the specialized runtime. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system including memory and processor for providing federated functionality within a data processing system, the system comprising:
-
means for receiving a first request at a first computing system for federation services from an identity provider, wherein the first request is made by a first requester;
means for initializing a first specialized runtime which provides requested federation services for the first requestor according to configuration data of a federation relationship of the first requestor with the identity provider, wherein the configuration data is dynamically retrieved during initialization of the runtime; and
means for providing the requested federation services using the specialized runtime.
-
-
12. A computer program product in a computer readable medium for providing federated functionality within a data processing system, the product comprising:
-
means for receiving a first request at a first computing system for federation services from an identity provider, wherein the first request is made by a first requestor;
means for initializing a first specialized runtime which provides requested federation services for the first requestor according to configuration data of a federation relationship of the first requestor with the identity provider, wherein the configuration data is dynamically retrieved during initialization of the runtime; and
means for providing the requested federation services using the specialized runtime.
-
Specification