Data transfer using hyper-text transfer protocol (HTTP) query strings
First Claim
Patent Images
1. A method comprising:
- receiving a request from an application server redirected through a client that does not support execution of scripts to create Hyper-Text Protocol (HTTP) Post messages;
determining a security token in response to the request;
determining that the security token must be sent in a query string;
in response to determining that the security token must be sent in a query string;
partitioning the security tokens into sections;
determining an identifier indicating the length of the security token;
generating a query string containing the identifier and at least one section of the security token;
generating a cookie containing the security token;
including the cookie in an HTTP message; and
sending the HTTP message with a location identifier for the application server to the client so that the client can redirect the message to the application server, the HTTP message including the query string containing the identifier and at least one section of the security token, the HTTP message further including the cookie for storing on the client; and
receiving a second HTTP message from the client, the second HTTP message including the cookie containing the security token and a second query string containing an index;
identifying a current section of the security token indicated by the index;
generating a third query string containing the current section of the security token; and
sending a third HTTP message with the location identifier for the application server to the client, the third HTTP message including the third query string.
2 Assignments
0 Petitions
Accused Products
Abstract
The described systems, methods, and data structures are directed at data transfer using Hyper-Text Transfer Protocol (HTTP) query strings. A block of data is partitioned into sections. Each section is encoded in a query string of a HTTP message. Each HTTP message is sent to a server by redirecting through a client. Multiple redirected messages are sent until the entire block of data is transferred to the server. The data block may be stored as a cookie on the client so that the data block does not have to persist on any server. Data transfer using HTTP query strings may be implemented to transfer a security token from a security token service (STS) server to an application server.
100 Citations
28 Claims
-
1. A method comprising:
-
receiving a request from an application server redirected through a client that does not support execution of scripts to create Hyper-Text Protocol (HTTP) Post messages; determining a security token in response to the request; determining that the security token must be sent in a query string; in response to determining that the security token must be sent in a query string; partitioning the security tokens into sections; determining an identifier indicating the length of the security token; generating a query string containing the identifier and at least one section of the security token; generating a cookie containing the security token; including the cookie in an HTTP message; and sending the HTTP message with a location identifier for the application server to the client so that the client can redirect the message to the application server, the HTTP message including the query string containing the identifier and at least one section of the security token, the HTTP message further including the cookie for storing on the client; and receiving a second HTTP message from the client, the second HTTP message including the cookie containing the security token and a second query string containing an index; identifying a current section of the security token indicated by the index; generating a third query string containing the current section of the security token; and sending a third HTTP message with the location identifier for the application server to the client, the third HTTP message including the third query string. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method comprising:
-
receiving a request from a client; in response to the request from the client, determining that the client does not support execution of scripts to create Hyper-Text Transfer Protocol (HTTP) Post messages; in response to determining that the client does not support execution of scripts to create HTTP Post messages, sending a first HTTP message to the client with a location identifier for a security token service (STS) server, the first HTTP message including a request to transfer a security token using query strings; receiving a second HTTP message from the STS server redirected through the client, the second HTTP message including a query string with a first section of a security token; and sending a third HTTP message to the client with the location identifier for the STS server, the third HTTP message including a request for a second section of the security token. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A method for transferring a data block to a server through a client, comprising:
-
determining that the data block must be sent using query strings; in response to determining that the data block must be sent in a query string; partitioning the data block into sections; determining an identifier indicating the length of the data block; generating a first query string including the length identifier and a first section of the data block; creating a cookie containing the block; and sending a first message with a location identifier for the server to the client, the first message including a first Hyper-Text Transfer Protocol (HTTP) request containing the query string and the cookie for storing on the client, the query string including the length identifier and the first section of the data block, wherein the client does not support execution of scripts to create HTTP Post messages; and receiving a second message from the server redirected through the client, the second message including a second HTTP request and the cookie; identifying an index in the second HTTP message; determining a next section of the data block based, at least in part, on the index; generating a second query string containing the next section; and sending a third message with the location identifier for the server to the client, the third message including a HTTP request containing the second query string.
-
-
16. A computer system comprising:
-
a processing unit configured to execute computer readable instructions; a computer storage medium with computer readable instructions that when executed by the processing unit cause the processing unit to; receive a request from an application server redirected through a client that does not support execution of scripts to create Hyper-Text Transfer Protocol (HTTP) Post messages; determine a security token in response to the request; determine that the security token must be sent in a query string; in response to determining that the security token must be sent in a query string; partition the security token into sections; determining an identifier indicating the length of the security token; generate a query string containing at least one section of the security token and the identifier; generate a cookie containing the security token; and include the cookie in an HTTP message; and send the HTTP message with a location identifier for the application server to the client, the HTTP message including the query string containing the identifier and at least one section of the security token, the HTTP message further including the cookie for storing on the client; and receive a second HTTP message from the client, the second HTTP message including the cookie containing the security token and a second query string containing an index; identify a current section of the security token indicated by the index;
generate a third query string containing the current section of the security token; andsend a third HTTP message with the location identifier for the application server to the client, the third HTTP message including the third query string. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
-
24. A computer system comprising:
-
a processing unit configured to execute computer readable instructions; a computer storage medium storing computer readable instructions that when executed by the processing unit cause the processing unit to; receive a request from a client; in response to the request from the client, determine that the client does not support execution of scripts to create Hyper-Text Transfer Protocol (HTTP) Post messages; in response to determining that the client does not support execution of scripts to create HTTP, send a first HTTP message to the client with a location identifier for a security token service (STS) server, the first HTTP message including a request to transfer a security token using query strings; receive a second HTTP message from the STS server redirected through the client, the second HTTP message including a query string with a first section of the security token; and send a third HTTP message to the to the client with the location identifier for the STS server, the third HTTP message including a request for a second section of the security token. - View Dependent Claims (25, 26, 27, 28)
-
Specification