Method and apparatus providing distributed authorization management of communication sessions
First Claim
1. A computer-readable medium carrying one or more sequences of instructions for authorizing a data communication session between a client and a first server, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
- receiving a request to establish the session, wherein the request is associated with a particular entity that is associated with the client;
determining whether authorization of the session can be performed locally at a second server;
if authorization of the session can be performed locally at the second server, theninforming the first server that the session may be established between the client and the first server for the particular entity;
and after informing the first server, informing a third server that is associated with the particular entity that the session has been authorized to be established for the particular entity.
1 Assignment
0 Petitions
Accused Products
Abstract
A mechanism for authorizing a data communication session between a client and a first server is disclosed. When a request is received to establish a session with a particular entity that is associated with the client, it is determined whether authorization of the session can be performed locally at a second server. If it is determined that authorization of the session can be performed locally at the second server then, the first server is informed that the session may be established between the client and the first server for the particular entity. A third server that is associated with the particular entity is identified and once the first server is informed that the session may be established, the third server is informed that the session has been authorized to be established for the particular entity. However, if authorization of the session cannot be performed locally at the second server then, the third server is requested to authorize the session between the client and the first server. Thereafter, based on the response that is received from the third server, the first server is informed as to whether the session may be authorized.
-
Citations
46 Claims
-
1. A computer-readable medium carrying one or more sequences of instructions for authorizing a data communication session between a client and a first server, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
receiving a request to establish the session, wherein the request is associated with a particular entity that is associated with the client; determining whether authorization of the session can be performed locally at a second server; if authorization of the session can be performed locally at the second server, then informing the first server that the session may be established between the client and the first server for the particular entity; and after informing the first server, informing a third server that is associated with the particular entity that the session has been authorized to be established for the particular entity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer-readable medium carrying one or more sequences of instructions for broadcasting session information to one or more servers, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
receiving a message from a first server, wherein the message indicates that a session has been authorized for a particular entity; determining whether one or more other servers have previously authorized sessions for the particular entity; and if one or more other servers have previously authorized sessions for the particular entity, then informing the one or more other servers that another session has been authorized for the particular entity. - View Dependent Claims (18)
-
-
19. A computer-readable medium carrying one or more sequences of instructions for authorizing a data communication session between a client and a server in a network, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
receiving a connection request at a distributed session counter for authorization to establish a session between the client and the server, wherein the connection request is associated with a particular entity; determining whether authorization of the session can be performed locally at the distributed session counter; if authorization of the session can be performed locally at the distributed session counter, then sending an authorization granted message to the server to indicate that the session may be established between the client and the server for the particular entity; identifying an authoritative distributed session counter that is associated with the particular entity; and after sending the authorization granted message to the server, sending an authorization update message to the authoritative distributed session counter, wherein the authorization update message notifies the authoritative distribution counter that the session has been authorized to be established for the particular entity. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A computer-readable medium carrying one or more sequences of instructions for broadcasting session update information to distributed session counters, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
receiving an authorization update message from a distributed session counter, wherein the authorization update message indicates that a session has been authorized for a particular entity; determining whether other distributed session counters have previously authorized sessions for the particular entity; and if other distributed session counters have previously authorized sessions for the particular entity, then broadcasting an update message to the other distributed session counters, wherein the update message notifies the other distributed session counters that another session has been authorized for the particular entity. - View Dependent Claims (36)
-
-
37. A computer apparatus comprising:
-
a processor; and a memory coupled to the processor, the memory containing one or more sequences of instructions for authorizing a data communication session between a client and a server in a network, wherein execution of the one or more sequences of instructions by the processor causes the processor to perform the steps of; receiving a connection request at a distributed session counter for authorization to establish a session between the client and the server, wherein the connection request is associated with a particular entity; determining whether authorization of the session can be performed locally at the distributed session counter; if authorization of the session can be performed locally at the distributed session counter, then sending an authorization granted message to the server to indicate that the session may be established between the client and the server for the particular entity; identifying an authoritative distributed session counter that is associated with the particular entity; and after sending the authorization granted message to the server, sending an authorization update message to the authoritative distributed session counter, wherein the authorization update message notifies the authoritative distribution counter that the session has been authorized to be established for the particular entity. - View Dependent Claims (38, 39, 40, 41)
-
-
42. A computer apparatus comprising:
-
a processor; and a memory coupled to the processor, the memory containing one or more sequences of instructions for broadcasting session update information to distributed session counters, wherein execution of the one or more sequences of instructions by the processor causes the processor to perform the steps of; receiving an authorization update message from a distributed session counter, wherein the authorization update message indicates that a session has been authorized for a particular entity; determining whether other distributed session counters have previously authorized sessions for the particular entity; and if other distributed session counters have previously authorized sessions for the particular entity, then broadcasting an update message to the other distributed session counters, wherein the update message notifies the other distributed session counters that another session has been authorized for the particular entity.
-
-
43. An apparatus for authorizing a data communication session between a client and a first server, the apparatus comprising:
-
means for receiving a request to establish the session, wherein the request is associated with a particular entity that is associated with the client; means for determining whether authorization of the session can be performed locally at a second server; if authorization of the session can be performed locally at the second server, then means for informing the first server that the session may be established between the client and the first server for the particular entity; and means for informing a third server that is associated with the particular entity that the session has been authorized to be established for the particular entity after informing the first server.
-
-
44. An apparatus for broadcasting session information to one or more servers, the apparatus comprising:
-
means for receiving a message from a first server, wherein the message indicates that a session has been authorized for a particular entity; means for determining whether one or more other servers have previously authorized sessions for the particular entity; and if one or more other servers have previously authorized sessions for the particular entity, then means for informing the one or more other servers that another session has been authorized for the particular entity.
-
-
45. An apparatus for authorizing a data communication session between a client and a server in a network, the apparatus comprising:
-
means for receiving a connection request at a distributed session counter for authorization to establish a session between the client and the server, wherein the connection request is associated with a particular entity; means for determining whether authorization of the session can be performed locally at the distributed session counter; if authorization of the session can be performed locally at the distributed session counter, then means for sending an authorization granted message to the server to indicate that the session may be established between the client and the server for the particular entity; means for identifying an authoritative distributed session counter that is associated with the particular entity; and means for sending an authorization update message to the authoritative distributed session counter, wherein the authorization update message notifies the authoritative distribution counter that the session has been authorized to be established for the particular entity after sending the authorization granted message to the server.
-
-
46. An apparatus for broadcasting session update information to distributed session counters, the apparatus comprising:
-
means for receiving an authorization update message from a distributed session counter, wherein the authorization update message indicates that a session has been authorized for a particular entity; means for determining whether other distributed session counters have previously authorized sessions for the particular entity; and if other distributed session counters have previously authorized sessions for the particular entity, then means for broadcasting an update message to the other distributed session counters, wherein the update message notifies the other distributed session counters that another session has been authorized for the particular entity.
-
Specification