Method for trapping HTTP logout events and for calling an application specific logout handler
First Claim
Patent Images
1. A method for trapping an HTTP logout event comprising:
- receiving an HTTP request;
checking if a URI of the HTTP request matches an entry in a first map comprising a plurality of logout URI entries for a set of applications;
if the URI of the HTTP request matches an entry in the first map, then triggering a logout event for one of the applications in the set of applications corresponding to the matching entry in the first map;
if the URI of the HTTP request does not match an entry in the first map, then looking for an entry in a second map;
wherein looking for an entry in a second map comprises looking for an entry in a logout parameter map comprising a plurality of logout parameter values for the set of applications that matches a logout request in a list of query parameters in the received HTTP request;
checking for a logout parameter in a list of request query parameters if an entry is found in the logout parameter map;
checking for a logout parameter in a header of the HTTP request if a logout parameter is not found in the list of request query parameters;
checking for permission to inspect a body of the HTTP request if a logout parameter is not found in the header of the HTTP request;
searching for a logout handler in a third map;
calling the logout handler if the logout hander is found in the third map and synchronizing an HTTP session; and
calling a global logout handler if a logout handler is not found in the third map.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of trapping a logout event includes receiving an HTTP request, checking if a URI of the HTTP request matches an entry in a first map, looking for an entry in a second map, checking for a logout parameter in a list of request query parameters, checking for a logout parameter in a header of the HTTP request, checking for a logout parameter in a body of the HTTP request, and triggering a logout event when the first of the entries or parameters if found. The method can be extended to call a logout handler and can be used in a wide range of web-based computing environments and in particular with policy/web/j2ee agents.
-
Citations
15 Claims
-
1. A method for trapping an HTTP logout event comprising:
-
receiving an HTTP request; checking if a URI of the HTTP request matches an entry in a first map comprising a plurality of logout URI entries for a set of applications; if the URI of the HTTP request matches an entry in the first map, then triggering a logout event for one of the applications in the set of applications corresponding to the matching entry in the first map; if the URI of the HTTP request does not match an entry in the first map, then looking for an entry in a second map;
wherein looking for an entry in a second map comprises looking for an entry in a logout parameter map comprising a plurality of logout parameter values for the set of applications that matches a logout request in a list of query parameters in the received HTTP request;checking for a logout parameter in a list of request query parameters if an entry is found in the logout parameter map; checking for a logout parameter in a header of the HTTP request if a logout parameter is not found in the list of request query parameters; checking for permission to inspect a body of the HTTP request if a logout parameter is not found in the header of the HTTP request; searching for a logout handler in a third map; calling the logout handler if the logout hander is found in the third map and synchronizing an HTTP session; and calling a global logout handler if a logout handler is not found in the third map. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method of trapping a logout event sequentially comprising:
-
(a) receiving an HTTP request; (b) checking if a URI of the HTTP request matches one of a plurality of logout URIs mapped to one of a set of applications; (c) checking for a logout parameter in a list of request query parameters for the set of applications that matches a query parameter in the HTTP request; (d) checking for a logout parameter in a header of the HTTP request; (e) checking for a logout parameter in a body of the HTTP request; (f) triggering a logout event for a corresponding one of the applications in the set of applications after step (b) if the HTTP request matches one of the plurality of logout URIs or after one of steps (c), (d), or (e) if a logout parameter is found; (g) seeking an application specific logout handler after a logout event is triggered for the corresponding one of the set of applications associated with the HTTP request, wherein the seeking comprises accessing a local logout handler map mapping each application in the set of applications to a logout handler for synchronizing HTTP sessions for the corresponding one of the set of applications; and (h) continuing processing the HTTP request with a policy agent if a logout event is not triggered. - View Dependent Claims (14, 15)
-
Specification