SECREGATING ANONYMOUS ACCESS TO DYNAMIC CONTENT ON A WEB SERVER, WITH CACHED LOGONS
First Claim
1. Apparatus for serving content from multiple websites, the apparatus comprising:
- one or more computer servers executing a plurality of web server instances to serve content of multiple websites;
a single database, external to the one or more computer serves and shared among the plurality of web server instances, for mapping between a request for a content item of a website and a user account to be used to process the request;
wherein the user account is configured with permission to access content of the website associated with the dynamic content item, but not content of another website among the multiple websites.
0 Assignments
0 Petitions
Accused Products
Abstract
A system and method are provided for segregating access to dynamic content on multiple websites hosted by a web server. When a request is received for dynamic content from a website, a UserRetriever module identifies a path to the content and retrieves a username and password corresponding to the website, from a database that is separate from the web server and used for other purposes (e.g., billing). A UserImpersonator module requests a logon handle for that username from a logon cache manager. The logon handle is used to associate the request with the impersonated user account instead of the default anonymous user account with which the request was initially associated. The dynamic content is retrieved and served under the context of the restricted impersonated user account session, after which the applied logon handle is stripped off and the request is re-associated with the default anonymous user account.
-
Citations
20 Claims
-
1. Apparatus for serving content from multiple websites, the apparatus comprising:
-
one or more computer servers executing a plurality of web server instances to serve content of multiple websites; a single database, external to the one or more computer serves and shared among the plurality of web server instances, for mapping between a request for a content item of a website and a user account to be used to process the request; wherein the user account is configured with permission to access content of the website associated with the dynamic content item, but not content of another website among the multiple websites. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method of serving content, the method comprising:
-
receiving a content request at a first web server of a plurality of web server instances executing on one or more computer servers, wherein the content request is for content of a first website of multiple websites hosted by the plurality of web server instances; associating the content request with a default anonymous user account on the first web server, wherein virtually all anonymous content requests received at the first web server are associated with the default anonymous user account; querying a central database separate from the one or more computer servers for a custom user account corresponding to the first website; associating the content request with the custom user account instead of the default anonymous user account, wherein the custom user account is configured with permission to access the first website but not another website hosted by the plurality of web server instances; and serving the requested content. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification