Secure URL update for HTTP redirects
First Claim
1. A method to securely update references to a request-URI, comprising:
- responsive to receipt of a protocol-compliant redirect, determining whether the protocol-compliant redirect is authentic; and
responsive to a determination that the protocol-compliant redirect is authentic, updating at least one reference to the request-URI to a new reference returned with the protocol-compliant redirect.
1 Assignment
0 Petitions
Accused Products
Abstract
A technique to update URLs is provided in an HTTP-based client upon receipt of an HTTP redirect in response to a request-URI. One or more references to the request-URI are saved in or in association with the client. Upon receipt of an HTTP 301 (permanent) redirect, the client automatically re-links the one or more stored references to the request-URI to one or more new references returned by the server (as identified in the HTTP redirect) when the redirect can be verified to originate from the application to which the client is attempting to connect. Preferably, the automatic re-linking is accomplished using a link editing capability for permanent (e.g., HTTP 301) redirects.
25 Citations
23 Claims
-
1. A method to securely update references to a request-URI, comprising:
-
responsive to receipt of a protocol-compliant redirect, determining whether the protocol-compliant redirect is authentic; and responsive to a determination that the protocol-compliant redirect is authentic, updating at least one reference to the request-URI to a new reference returned with the protocol-compliant redirect. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
9. Apparatus, comprising:
-
a processor; computer memory holding computer program instructions that when executed by the processor securely update references to a request-URI, the computer program instructions comprising; code responsive to receipt of a protocol-compliant redirect to determine whether the protocol-compliant redirect is authentic; and code responsive to a determination that the protocol-compliant redirect is authentic to update at least one reference to the request-URI to a new reference returned with the protocol-compliant redirect. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A computer program product in a non-transitory computer readable storage medium for use in a data processing system, the computer program product holding computer program instructions which, when executed by the data processing system, securely update references to a request-URI, the code comprising:
-
code responsive to receipt of a protocol-compliant redirect to determine whether the protocol-compliant redirect is authentic; and code responsive to a determination that the protocol-compliant redirect is authentic to update at least one reference to the request-URI to a new reference returned with the protocol-compliant redirect. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
-
23. Apparatus, comprising:
-
a processor; computer memory; a user-agent that issues a request-URI and receives a response to the request-URI; and computer program instructions executed by the processor upon receipt of an HTTP permanent redirect to automatically re-link one or more stored references to the request-URI to one or more new references returned in the HTTP redirect when the HTTP redirect can be verified to originate from an application to which the client directed the request-URI.
-
Specification