SHARED PORTAL CONTEXT SESSION

US 20150082029A1
Filed: 09/13/2013
Published: 03/19/2015
Est. Priority Date: 09/13/2013
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method executed by one or more processors, the method comprising:

setting a shared session cookie for use in a portal environment, the shared session cookie encrypted with a corresponding key, the shared session cookie storing at least a portion of a session state associated with a current portal session;

providing the encrypted shared session cookie for storage at the client associated with the portal session;

initiating execution of a first portal application within the portal environment, wherein the first portal application is provided with a copy of the encrypted shared session cookie;

providing a copy of the session-specific key associated with the encrypted shared session cookie to the first portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the first portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the first portal application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present disclosure involves systems, software, and computer implemented methods for sharing session state between portal application portlets associated with different domains. One example method includes setting a cookie for use in a portal environment. The cookie is encrypted with a key and stores at least a portion of a session state associated with a current portal session. The encrypted cookie is provided for storage at a client associated with the portal session. Execution of a portal application is initiated within the portal environment. The portal application is provided with a copy of the encrypted cookie. A copy of the key is provided to the portal application. The provided copy of the key is used to decrypt the cookie at the portal application. The session state stored in the cookie is used to set at least a portion of the session state of the portal application.

32 Citations

View as Search Results

20 Claims

1. A computer-implemented method executed by one or more processors, the method comprising:
- setting a shared session cookie for use in a portal environment, the shared session cookie encrypted with a corresponding key, the shared session cookie storing at least a portion of a session state associated with a current portal session;
  
  providing the encrypted shared session cookie for storage at the client associated with the portal session;
  
  initiating execution of a first portal application within the portal environment, wherein the first portal application is provided with a copy of the encrypted shared session cookie;
  
  providing a copy of the session-specific key associated with the encrypted shared session cookie to the first portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the first portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the first portal application.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising:
    - initiating execution of a second portal application within the portal environment, wherein the second portal application is provided with a copy of the encrypted shared session cookie, and wherein the second portal application is associated with a different domain than the first portal application; and
      
      providing a copy of the session-specific key associated with the encrypted shared session cookie to the second portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the second portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the second portal application.
  - 3. The method of claim 1, further comprising:
    - receiving a request to update the shared session cookie from the first portal application based on at least one change to the session state, the at least one change based on a change to the session state associated with execution of the first portal application; and
      
      updating shared session cookie based on the at least one change to the session state.
  - 4. The method of claim 1, further comprising sending an encrypted copy of updated shared session cookie to at least one other portal application executing within the portal environment and associated with the current portal session.
  - 5. The method of claim 1, wherein a version identifier associated with the shared session cookie is increased in response to updating the shared session cookie.
  - 6. The method of claim 1, wherein the shared session cookie includes a payload and a version identifier.
  - 7. The method of claim 6, wherein only the payload is encrypted within the encrypted shared session cookie.
  - 8. The method of claim 6, wherein the payload stores the session state data of the shared session cookie in a JSON format.
  - 9. The method of claim 6, wherein the version identifier defines a version of the shared session cookie, and wherein the version identifier is used by portal applications to determine if an updated shared session state is available.
  - 10. The method of claim 1, wherein the key corresponding to the shared session cookie is associated with two or more portal sessions.

11. A system comprising:
- one or more computers associated with an enterprise portal; and
  
  a computer-readable medium coupled to the one or more computers having instructions stored thereon which, when executed by the one or more computers, cause the one or more computers to perform operations comprising;
  
  setting a shared session cookie for use in a portal environment, the shared session cookie encrypted with a corresponding key, the shared session cookie storing at least a portion of a session state associated with a current portal session;
  
  providing the encrypted shared session cookie for storage at the client associated with the portal session;
  
  initiating execution of a first portal application within the portal environment, wherein the first portal application is provided with a copy of the encrypted shared session cookie; and
  
  providing a copy of the session-specific key associated with the encrypted shared session cookie to the first portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the first portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the first portal application.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The system of claim 11, the operations further comprising:
    - initiating execution of a second portal application within the portal environment, wherein the second portal application is provided with a copy of the encrypted shared session cookie, and wherein the second portal application is associated with a different domain than the first portal application; and
      
      providing a copy of the session-specific key associated with the encrypted shared session cookie to the second portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the second portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the second portal application.
  - 13. The system of claim 11, the operations further comprising:
    - receiving a request to update the shared session cookie from the first portal application based on at least one change to the session state, the at least one change based on a change to the session state associated with execution of the first portal application; and
      
      updating shared session cookie based on the at least one change to the session state.
  - 14. The system of claim 11, the operations further comprising sending an encrypted copy of updated shared session cookie to at least one other portal application executing within the portal environment and associated with the current portal session.
  - 15. The system of claim 11, wherein a version identifier associated with the shared session cookie is increased in response to updating the shared session cookie.

16. A computer program product encoded on a non-transitory storage medium, the product comprising non-transitory, computer readable instructions for causing one or more processors to perform operations comprising:
- setting a shared session cookie for use in a portal environment, the shared session cookie encrypted with a corresponding key, the shared session cookie storing at least a portion of a session state associated with a current portal session;
  
  providing the encrypted shared session cookie for storage at the client associated with the portal session;
  
  initiating execution of a first portal application within the portal environment, wherein the first portal application is provided with a copy of the encrypted shared session cookie;
  
  providing a copy of the session-specific key associated with the encrypted shared session cookie to the first portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the first portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the first portal application.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The product of claim 16, the operations further comprising:
    - initiating execution of a second portal application within the portal environment, wherein the second portal application is provided with a copy of the encrypted shared session cookie, and wherein the second portal application is associated with a different domain than the first portal application; and
      
      providing a copy of the session-specific key associated with the encrypted shared session cookie to the second portal application, wherein the provided copy of the session-specific key is used to decrypt the shared session cookie at the second portal application, and wherein the session state stored in the shared session cookie is used to set at least a portion of the session state of the second portal application.
  - 18. The product of claim 16, the operations further comprising:
    - receiving a request to update the shared session cookie from the first portal application based on at least one change to the session state, the at least one change based on a change to the session state associated with execution of the first portal application; and
      
      updating shared session cookie based on the at least one change to the session state.
  - 19. The product of claim 16, the operations further comprising sending an encrypted copy of updated shared session cookie to at least one other portal application executing within the portal environment and associated with the current portal session.
  - 20. The product of claim 16, wherein a version identifier associated with the shared session cookie is increased in response to updating the shared session cookie.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sap Portals Israel Ltd (SAP SE)
Original Assignee
Sap Portals Israel Ltd (SAP SE)
Inventors
Volchok, Alex

Granted Patent

US 9,225,515 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/164
CPC Class Codes

G06F 21/00   Security arrangements for p...

H04L 63/00   Network architectures or ne...

H04L 63/0428   wherein the data content is...

H04L 63/0815   providing single-sign-on or...

H04L 67/01   Protocols

H04L 67/142   Managing session states for...

H04L 9/0819   Key transport or distributi...

SHARED PORTAL CONTEXT SESSION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

32 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

SHARED PORTAL CONTEXT SESSION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links