Method and system for terminating an authentication session upon user sign-off
First Claim
1. A method for terminating an authentication session following a user'"'"'s indication that the user intends to terminate the user'"'"'s interaction with an application comprising:
- monitoring, by a computer, transactions between the user and the application to detect a request which serves as a predefined termination indication, wherein the monitoring is performed by an authentication component which receives requests from the user and relays them to the application;
detecting the request which serves as the termination indication in one of the monitored transactions;
marking an authentication session as termination pending in a session table;
communicating the request which serves as the termination indication to the application;
presenting in response to receiving the termination indication a preconfigured logoff page provided by the authentication component to the user that includes additional options for the user;
intercepting one or more transactions from the user after presenting the preconfigured logoff page;
responding to the one or more transactions before terminating the authentication session;
continuing to monitor the transactions between the user and the application until the application replies with a response to the termination indication;
terminating the authentication session in response to detecting the termination indication, the terminating is performed by the authentication component, and wherein only predetermined transactions are permitted between the detecting and the terminating;
after detecting the response which serves as the termination indication, blocking, by the authentication component, any further response from the application; and
relaying to the application any request made between the detecting and the terminating which is in a pre-defined set of requests.
2 Assignments
0 Petitions
Accused Products
Abstract
An authentication component resides between a server and a client, or on a server, and monitors one or more transactions communicated between the server and the client. When the authentication component detects a transaction that contains a termination indication, the authentication session is terminated, forcing the client to re-authenticate the next time a transaction with the server is desired. The termination indication may have been provided by an application running on the server, or alternatively, the termination indication may be provided by the authentication component.
31 Citations
36 Claims
-
1. A method for terminating an authentication session following a user'"'"'s indication that the user intends to terminate the user'"'"'s interaction with an application comprising:
-
monitoring, by a computer, transactions between the user and the application to detect a request which serves as a predefined termination indication, wherein the monitoring is performed by an authentication component which receives requests from the user and relays them to the application; detecting the request which serves as the termination indication in one of the monitored transactions; marking an authentication session as termination pending in a session table; communicating the request which serves as the termination indication to the application; presenting in response to receiving the termination indication a preconfigured logoff page provided by the authentication component to the user that includes additional options for the user; intercepting one or more transactions from the user after presenting the preconfigured logoff page; responding to the one or more transactions before terminating the authentication session; continuing to monitor the transactions between the user and the application until the application replies with a response to the termination indication; terminating the authentication session in response to detecting the termination indication, the terminating is performed by the authentication component, and wherein only predetermined transactions are permitted between the detecting and the terminating; after detecting the response which serves as the termination indication, blocking, by the authentication component, any further response from the application; and relaying to the application any request made between the detecting and the terminating which is in a pre-defined set of requests. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computing device comprising:
-
a processor; and a memory coupled to the processor, the memory comprising computer-program instructions executable by the processor for; monitoring transactions between a user and an application to detect a request which serves as a predefined termination indication, wherein the monitoring is performed by an authentication component which receives requests from the user and relays them to the application; detecting the request which serves as the termination indication in one of the monitored transactions; marking an authentication session as termination pending in a session table; communicating the request which serves as the termination indication to the application; presenting in response to receiving the termination indication a preconfigured logoff page provided by the authentication component to the user that includes additional options for the user; intercepting one or more transactions from the user after presenting the preconfigured logoff page; responding to the one or more transactions before terminating the authentication session; continuing to monitor the transactions between the user and the application until the application replies with a response to the termination indication; terminating the authentication session in response to detecting the termination indication, the terminating is performed by the authentication component, and wherein only predetermined transactions are permitted between the detecting and the terminating; after detecting the response which serves as the termination indication, blocking, by the authentication component, any further response from the application; and relaying to the application any request made between the detecting and the terminating which is in a pre-defined set of requests. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. One or more processor-accessible storage media comprising processor-executable instructions that, when executed, cause a device to perform actions comprising:
-
monitoring transactions between a user and an application to detect a request which serves as a predefined termination indication, wherein the monitoring is performed by an authentication component which receives requests from the user and relays them to the application; detecting the request which serves as the termination indication in one of the monitored transactions; marking an authentication session as termination pending in a session table;
communicating the request which serves as the termination indication to the application;presenting in response to receiving the termination indication a preconfigured logoff page provided by the authentication component to the user that includes additional options for the user; intercepting one or more transactions from the user after presenting the preconfigured logoff page; responding to the one or more transactions before terminating the authentication session; continuing to monitor the transactions between the user and the application until the application replies with a response to the termination indication; terminating the authentication session in response to detecting the termination indication, the terminating is performed by the authentication component, and wherein only predetermined transactions are permitted between the detecting and the terminating; after detecting the response which serves as the termination indication, blocking, by the authentication component, any further response from the application; and relaying to the application any request made between the detecting and the terminating which is in a pre-defined set of requests. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
Specification