HTTP AUTHENTICATION AND AUTHORIZATION MANAGEMENT
First Claim
Patent Images
1. A computer implemented method, comprising:
- receiving at a processing node a request for a domain from a client browser;
determining at the processing node whether the request includes domain authorization data for the requested domain;
if the request for the domain includes the domain authorization data, allowing the request;
if the request for the domain does not include the domain authorization data, requesting authorized user data from the client browser;
in response to the request for the authorized user data, determining if the client browser provided the authorized user data;
if the client browser provided the authorized user data, generating at the processing node the domain authorization data, providing the domain authorization data to the client browser, and allowing the request for the domain;
if the client browser did not provide the authorized user data, requesting user authorization from the client browser.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include a state manager that is used to identify and maintain the source associated with a client browser that submits requests to the state manager. The state manager can allow requests that are authorized and request authorization for requests that are not. The state manager can maintain the states associated with each domain to reduce the number of transaction needed to authenticate and/or authorize subsequent requests to the same domain or to different domains.
-
Citations
16 Claims
-
1. A computer implemented method, comprising:
-
receiving at a processing node a request for a domain from a client browser; determining at the processing node whether the request includes domain authorization data for the requested domain; if the request for the domain includes the domain authorization data, allowing the request; if the request for the domain does not include the domain authorization data, requesting authorized user data from the client browser; in response to the request for the authorized user data, determining if the client browser provided the authorized user data; if the client browser provided the authorized user data, generating at the processing node the domain authorization data, providing the domain authorization data to the client browser, and allowing the request for the domain; if the client browser did not provide the authorized user data, requesting user authorization from the client browser. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer implemented method, comprising:
-
receiving at a processing node an http request from a client browser; analyzing at the processing node data associated with the http request; determining if the data associated with the http request included domain authorization data; if the data associated the http request included domain authorization data, allowing the request; if the data associated with the http request did not include domain authorization data, determining if the data associated with the http request included authorized user data; if the data associated with the http request included authorized user data, generating domain authorization data based on the authorized use data; redirecting the client browser to submit a redirected http request to the processing node with the generated domain authorization data. If the data associated with the http request did not include the authorized user data, instructing the client browser to obtain authorization.
-
-
14. Software stored in a computer readable medium and comprising instructions executable by a data processing system and upon such execution cause the data processing system to perform operations comprising:
-
receiving at a processing node a request for a URL at a domain; determining at the processing node whether the request includes domain authorization data for the domain of the request URL; if the request for the domain includes the domain authorization data, allowing the request for the URL; if the request for the domain does not include the domain authorization data, requesting authorized user data from the client browser; in response to the request for the authorized user data, determining if the client browser provided the authorized user data; if the client browser provided the authorized user data, generating at the processing node the domain authorization data, providing the domain authorization data to the client browser, and allowing the request for the URL; if the client browser did not provide the authorized user data, requesting user authorization from the client browser. - View Dependent Claims (15, 16)
-
Specification