Selective cache flushing in identity and access management systems
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides cache flushing of selected data while leaving remaining cached data intact. Data can be flushed from caches distributed across various components of a network-based computer system. These caches can contain various types of data. In one embodiment, the caches exist in an Access System and contain user identity profile information. In another embodiment, the caches exist in an Access Management System and contain authentication, authorization, or auditing rules. A system in accordance with the invention detects a change to data residing on a server and transmits a synchronization record to a component of the system. The synchronization record identifies the changed data. The system flushes the changed data identified by the synchronization record from caches of the component.
-
Citations
77 Claims
-
1-28. -28. (canceled)
-
29. A method for flushing cache memories in an Access System, comprising the steps of:
-
detecting a change to data residing on an LDAP directory server;
assigning a first global sequence number to said detected change;
transmitting a synchronization record to an Access Server of said system, said synchronization record identifying said changed data;
flushing said changed data identified by said synchronization record from caches of said Access Server;
storing said first global sequence number in said Access Server;
storing said synchronization record in said Access Server;
transmitting said first global sequence number from said Access Server to a component of said system, said component storing a second global sequence number;
comparing said first global sequence number to said second global sequence number;
requesting all synchronization records comprising global sequence numbers generated after said second global sequence number;
requesting all synchronization records identified by a list of synchronization records stored by said component;
transmitting synchronization records to said component;
flushing from caches of said component all data identified by said synchronization records transmitted to said component; and
storing said first global sequence number in said component.
-
-
30-39. -39. (canceled)
-
40. A method for flushing cache memories in a network-based system, the method comprising:
-
detecting at an administration server for said system a change to data residing on a directory server;
transmitting a synchronization record to a component of said system, said synchronization record identifying said data, wherein a web server comprises said component; and
flushing said data identified in said synchronization record from caches of said component. - View Dependent Claims (41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65)
-
-
66. One or more processor readable storage devices having processor readable code embodied on said processor readable storage devices, said processor readable code for programming one or more processors, said processor readable code comprising:
-
code for detecting a change to data residing on a server;
code for transmitting a synchronization record to a component of said system, said synchronization record identifying said data, wherein a web server comprises said component; and
code for flushing said data identified in said synchronization record from caches of said component. - View Dependent Claims (67)
-
-
71. An apparatus, comprising:
-
a communication interface;
one or more storage devices; and
one or more processors in communication with said one or more storage devices and said communication interface, said one or more storage devices comprising processor readable code for programming said one or more processors, said processor readable code comprising;
code for detecting a change to data residing on a server, code for transmitting a synchronization record to a component of said system, said synchronization record identifying said data, wherein a web server comprises said component; and
code for flushing said data identified in said synchronization record from caches of said component. - View Dependent Claims (72, 73, 74, 75)
-
-
76. A system, comprising:
-
a web server comprising a component;
a directory server in communication with the web server; and
an administration server in communication with the web server and the directory server, wherein the administration server comprises computer readable code executable by the administration server, the computer readable code comprising;
code for detecting a change to data residing on the directory server; and
code for transmitting a synchronization record for reception by the web server, wherein the synchronization record identifies a set of data to be flushed from a cache at the web server;
wherein the web server is configured to flush from one or more caches of the component the set of data identified in the synchronization record. - View Dependent Claims (77)
-
Specification