ENFORCEMENT OF CONDITIONAL POLICY ATTACHMENTS
First Claim
1. A method comprising:
- detecting, by a computer system, occurrence of a runtime event at a web service endpoint;
updating, by the computer system, a runtime context component based on the runtime event, the runtime context component specifying a set of data regarding a current runtime context of the web service endpoint;
determining, by the computer system based on the runtime context component and an association between a web service policy and a constraint expression, whether the web service policy should be attached to the web service endpoint, the constraint expression being dependent on one or more runtime values specified by the runtime context component, the determining comprising evaluating the constraint expression in view of the one or more runtime values; and
if the web service policy should be attached to the web service endpoint, enforcing, by the computer system, the web service policy at the web service endpoint with respect to the detected runtime event.
1 Assignment
0 Petitions
Accused Products
Abstract
Framework for conditionally attaching web service policies to a policy subject (e.g., a web service client or service endpoint) at subject runtime. In one set of embodiments, a constraint expression can be defined that specifies one or more runtime conditions under which a policy should be attached to a policy subject. The constraint expression can be associated with the policy and the policy subject via policy attachment metadata. The constraint expression can then be evaluated at runtime of the policy subject to determine whether attachment of the policy to the policy subject should occur. If the evaluation indicates that the policy should be attached, the attached policy can be processed at the policy subject (e.g., enforced or advertised) as appropriate. Using these techniques, the policy subject can be configured to dynamically exhibit different behaviors based on its runtime context.
-
Citations
16 Claims
-
1. A method comprising:
-
detecting, by a computer system, occurrence of a runtime event at a web service endpoint; updating, by the computer system, a runtime context component based on the runtime event, the runtime context component specifying a set of data regarding a current runtime context of the web service endpoint; determining, by the computer system based on the runtime context component and an association between a web service policy and a constraint expression, whether the web service policy should be attached to the web service endpoint, the constraint expression being dependent on one or more runtime values specified by the runtime context component, the determining comprising evaluating the constraint expression in view of the one or more runtime values; and if the web service policy should be attached to the web service endpoint, enforcing, by the computer system, the web service policy at the web service endpoint with respect to the detected runtime event. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium having stored thereon program code executable by a computer system, the program code comprising:
-
code that causes the computer system to detect occurrence of a runtime event at a web service endpoint; code that causes the computer system to update a runtime context component based on the runtime event, the runtime context component specifying a set of data regarding a current runtime context of the web service endpoint; code that causes the computer system to determine, based on the runtime context component and an association between a web service policy and a constraint expression, whether the web service policy should be attached to the web service endpoint, the constraint expression being dependent on one or more runtime values specified by the runtime context component, the determining comprising evaluating the constraint expression in view of the one or more runtime values; and if the web service policy should be attached to the web service endpoint, code that causes the computer system to enforce the web service policy at the web service endpoint with respect to the detected runtime event.
-
-
16. A system comprising:
a processor configured to; detect occurrence of a runtime event at a web service endpoint; update a runtime context component based on the runtime event, the runtime context component specifying a set of data regarding a current runtime context of the web service endpoint; determine, based on the runtime context component and an association between a web service policy and a constraint expression, whether the web service policy should be attached to the web service endpoint, the constraint expression being dependent on one or more runtime values specified by the runtime context component, the determining comprising evaluating the constraint expression in view of the one or more runtime values; and if the web service policy should be attached to the web service endpoint, enforce the web service policy at the web service endpoint with respect to the detected runtime event.
Specification