GLOBAL UNIFIED SESSION IDENTIFIER ACROSS MULTIPLE DATA CENTERS
First Claim
1. A method comprising:
- determining, by a computer system, a first identifier identifying a first session associated with a user at a first data center, the first session comprising at least a first authentication state of the user with respect to a first resource;
determining, by the computer system, a second identifier identifying a second session associated with the user at a second data center, the second session comprising at least a second authentication state of the user with respect to a second resource, wherein the second data center is different from the first data center;
based on determining the second identifier identifying the second session at the second data center, assigning, by the computer system, at the first data center, the second identifier as a global identifier that is associated with any session that is associated with the user, wherein execution of one or more session actions that reference the global identifier is performed to the first session at the first data center and to the second session at the second data center; and
based on assigning the second identifier as the global identifier, associating the first identifier to the global identifier to associate the first session with the global identifier.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques are disclosed for using a global unified session identifier across data centers. Upon creating an initial session in the data center for a user first accessing the data center, a session identifier is generated for the user session. Because the initial session is the first session created for that user, the initial session identifier is designated as the global unified session identifier for all sessions that may be created for the user in other data centers within the enterprise network. Data centers may then map the global unified session identifiers to locally generated session identifiers for the user. A global unified session identifier enables various user session actions to be performed globally across the data centers, including global logout, global session termination, global session updates, and/or the like. A global unified session identifier prevents the risk of collision that can occur between randomly generated numbers of different data centers.
-
Citations
20 Claims
-
1. A method comprising:
-
determining, by a computer system, a first identifier identifying a first session associated with a user at a first data center, the first session comprising at least a first authentication state of the user with respect to a first resource; determining, by the computer system, a second identifier identifying a second session associated with the user at a second data center, the second session comprising at least a second authentication state of the user with respect to a second resource, wherein the second data center is different from the first data center; based on determining the second identifier identifying the second session at the second data center, assigning, by the computer system, at the first data center, the second identifier as a global identifier that is associated with any session that is associated with the user, wherein execution of one or more session actions that reference the global identifier is performed to the first session at the first data center and to the second session at the second data center; and based on assigning the second identifier as the global identifier, associating the first identifier to the global identifier to associate the first session with the global identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
one or more processors; and a memory accessible to the one or more processors, wherein the memory stores one or more instructions that, upon execution by the one or more processors, causes the one or more processors to; determine a first identifier identifying a first session associated with a user at a first data center, the first session comprising at least a first authentication state of the user with respect to a first resource; determine a second identifier identifying a second session associated with the user at a second data center, the second session comprising at least a second authentication state of the user with respect to a second resource, wherein the second data center is different from the first data center; based on determining the second identifier identifying the second session at the second data center, assign, at the first data center, the second identifier as a global identifier that is associated with any session that is associated with the user, wherein execution of one or more session actions that reference the global identifier is performed to the first session at the first data center and to the second session at the second data center; and based on assigning the second identifier as the global identifier, associate the first identifier to the global identifier to associate the first session with the global identifier. - View Dependent Claims (14, 15, 16)
-
-
17. A method comprising:
-
determining, by a computer system, a first identifier identifying a first session associated with a user at a first data center, the first session comprising at least a first authentication state of the user with respect to a first resource; determining, by the computer system, a second identifier identifying a second session associated with the user at a second data center, the second session comprising at least a second authentication state of the user with respect to a second resource, wherein the second data center is different from the first data center; assigning the first identifier as a global identifier that is associated with any session that is associated with the user, wherein execution of one or more session actions that reference the global identifier is performed to any session that associated with the user at the first data center and the second data center; and based on assigning the first identifier as the global identifier, associating the second identifier to the global identifier to associate the second session with the global identifier. - View Dependent Claims (18, 19, 20)
-
Specification