Secure transfer of web application client persistent state information into a new domain
First Claim
Patent Images
1. Apparatus operating as a client computer, comprising:
- a hardware processor;
computer memory holding computer program instructions executed by the hardware processor and operative to;
store, by a browser run on the client computer, a first Uniform Resource Locator (URL) that identifies a first application server domain;
connect, by the browser, in data communication to a first application server domain using the first URL;
receive, by the browser, a redirect command that identifies a second application server domain as a redirect target; and
securely transfer, by the client browser, persistent state information associated with the client computer from the first application server domain to the second application server domain.
1 Assignment
0 Petitions
Accused Products
Abstract
A technique to reassign one or more stored elements of web application client state information is provided in an HTTP-based client upon receipt of an HTTP redirect in response to a request-URI. One or more stored elements associated to the request-URI are saved in or in association with the client. Upon receipt of an HTTP 301 (permanent) redirect, the client automatically reassigns (re-associates) the one or more stored elements to the redirect domain when the redirect can be verified as authentic (e.g., to originate from the application to which the client is attempting to connect).
-
Citations
16 Claims
-
1. Apparatus operating as a client computer, comprising:
-
a hardware processor; computer memory holding computer program instructions executed by the hardware processor and operative to; store, by a browser run on the client computer, a first Uniform Resource Locator (URL) that identifies a first application server domain; connect, by the browser, in data communication to a first application server domain using the first URL; receive, by the browser, a redirect command that identifies a second application server domain as a redirect target; and securely transfer, by the client browser, persistent state information associated with the client computer from the first application server domain to the second application server domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer program product in a non-transitory computer readable medium for use in a data processing system as a client computer, the computer program product holding computer program instructions executed in the data processing system and operative to:
-
store, by a browser run on the client computer, a first Uniform Resource Locator (URL) that identifies a first application server domain; connect, by the browser, in data communication to a first application server domain using the first URL; receive, by the browser, a redirect command that identifies a second application server domain as a redirect target; and securely transfer, by the client browser, persistent state information associated with the client computer from the first application server domain to the second application server domain. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification