Mapping policies to messages
First Claim
1. In a Web services environment for exchanging messages in a distributed system, a method of identifying policies mapped to messages associated with an application, without having to have code within the application for determining what policies may apply to the messages, the method comprising the acts of:
- receiving a message at a Web service engine associated with an application that is external to the Web service engine, the application configured to exchange messages in a distributed system;
based on the contents of the received message, determining at least;
a particular destination endpoint identifier related to the received message, wherein the particular destination endpoint identifier includes at least an address of a destination endpoint for the message;
a particular request action identifier; and
a particular request-reply property related to the received message;
accessing a policy mapping file that includes;
at least one endpoint section, wherein each of the at least one endpoint sections are related to a different destination endpoint identifier;
at least one operation section, wherein each of the at least one operation sections is hierarchically within one of the at least one endpoint sections, wherein each of the at least one operation sections is related to a different operation and is represented by a corresponding different request action identifier; and
at least one operation element, wherein each of the at least one operation elements is hierarchically within one of the at least one operation sections, wherein each of the at least one operation elements is related to a different request-reply property, and wherein each of the at least one operation elements indicates a type of interaction pattern for messages, wherein one or more of the at least one operation elements identifies one or more policy expressions with one or more policy assertions representing policies associated with exchanging messages with the application;
scanning the policy mapping file for identifying an endpoint section relating to the address of the particular destination endpoint identifier, the scanning being performed by a processing unit of a computing device;
after identifying the endpoint section relating to the particular destination endpoint identifier, scanning the identified endpoint section for identifying an operation section hierarchically within the identified endpoint section and which is represented by the particular request action identifier; and
after identifying the operation section represented by the particular request action identifier, scanning the identified operation section for an operation element hierarchically within the identified operation section and which relates to the particular request-reply property, such that the identified operation element relates to, and is dependent upon, each of the address of the particular destination endpoint identifier, the particular request action identifier, and the particular request-reply property.
2 Assignments
0 Petitions
Accused Products
Abstract
Within a distributed system, e.g., Web service environment, the present invention provides a way for identifying policies mapped to messages associated with an application, without having to have code within the application for determining what policies should apply to the messages. A centralized Web service engine is provided that receives incoming and outgoing messages associated with an application. The messages have associated with them destination endpoint identifiers and request-reply properties, which the Web service engine can access. The Web service engine can then use at least the identifiers and properties for scanning policy message files corresponding to the applications in order to identify what policies, if any, should be applied to the messages.
18 Citations
38 Claims
-
1. In a Web services environment for exchanging messages in a distributed system, a method of identifying policies mapped to messages associated with an application, without having to have code within the application for determining what policies may apply to the messages, the method comprising the acts of:
-
receiving a message at a Web service engine associated with an application that is external to the Web service engine, the application configured to exchange messages in a distributed system; based on the contents of the received message, determining at least; a particular destination endpoint identifier related to the received message, wherein the particular destination endpoint identifier includes at least an address of a destination endpoint for the message; a particular request action identifier; and a particular request-reply property related to the received message; accessing a policy mapping file that includes; at least one endpoint section, wherein each of the at least one endpoint sections are related to a different destination endpoint identifier; at least one operation section, wherein each of the at least one operation sections is hierarchically within one of the at least one endpoint sections, wherein each of the at least one operation sections is related to a different operation and is represented by a corresponding different request action identifier; and at least one operation element, wherein each of the at least one operation elements is hierarchically within one of the at least one operation sections, wherein each of the at least one operation elements is related to a different request-reply property, and wherein each of the at least one operation elements indicates a type of interaction pattern for messages, wherein one or more of the at least one operation elements identifies one or more policy expressions with one or more policy assertions representing policies associated with exchanging messages with the application; scanning the policy mapping file for identifying an endpoint section relating to the address of the particular destination endpoint identifier, the scanning being performed by a processing unit of a computing device; after identifying the endpoint section relating to the particular destination endpoint identifier, scanning the identified endpoint section for identifying an operation section hierarchically within the identified endpoint section and which is represented by the particular request action identifier; and after identifying the operation section represented by the particular request action identifier, scanning the identified operation section for an operation element hierarchically within the identified operation section and which relates to the particular request-reply property, such that the identified operation element relates to, and is dependent upon, each of the address of the particular destination endpoint identifier, the particular request action identifier, and the particular request-reply property. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 24, 25)
-
-
14. In a Web services environment for exchanging messages in a distributed system, a method of identifying policies mapped to messages associated with an application, without having code within the application for determining what policies may apply to the messages, the method comprising:
-
receiving a message at a Web service engine associated with an application that is external to the Web service engine, the application configured to exchange messages in a distributed system; based on the contents of the received message, determining at least; a particular destination endpoint identifier relating to the received message, wherein the particular destination endpoint identifier includes a URI of a destination endpoint for the message; a particular request action identifier associated with the received message and associated with a particular operation requested in the received message; and a particular request-reply property associated with the received message and associated with a particular type of message; accessing a policy mapping file that includes; at least one endpoint section, wherein each of the at least one endpoint sections are related to a different URI; at least one operation section, wherein each of the at least one operation sections is hierarchically within the at least one endpoint section, and wherein each of the at least one operation sections is related to a different operation; and at least one operation element, wherein each of the at least one operation elements is hierarchically within the at least one operation section, wherein each of the at least one operation elements is related to a different request-reply property, and wherein each operation element indicates a type of interaction pattern for messages, wherein one or more of the at least one operation elements identifies one or more policy expressions with one or more policy assertions representing policies associated with exchanging messages with the application; scanning the policy mapping file for identifying an endpoint section relating to the URI of the particular destination endpoint identifier, the scanning being performed by a processing unit of a computing device; after identifying the endpoint section relating to the particular destination endpoint identifier, scanning the identified endpoint section for identifying an operation section hierarchically within the identified endpoint section and which is represented by the particular request action identifier; and after identifying the operation section represented by the particular request action identifier, scanning the identified operation section for an operation element hierarchically within the identified operation section and which relates to the particular request-reply property, such that the identified operation element relates to, and is dependent upon, each of the URI of the particular destination endpoint identifier, the particular request action identifier, and the particular request-reply property. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
26. In a Web services environment for exchanging messages in a distributed system, a computer program product for implementing a method of identifying policies mapped to messages associated with an application, without having to have code within the application for determining what policies may apply to the messages, the computer program product comprising one or more computer storage devices having stored thereon computer executable instructions that, when executed by a processor, can cause the distributed computing system to perform the following:
-
receive a message at a Web service engine associated with an application that is external to the Web service engine, the application configured to exchange messages in a distributed system; based on the contents of the received message, determine at least; a particular destination endpoint identifier relating to the received message, wherein the particular destination endpoint identifier includes at least an address of a destination endpoint for the message; a particular request action identifier associated with the received message; and a particular request-reply property associated with the received message; access a policy mapping file that includes; at least one endpoint section, wherein each of the at least one endpoint sections is represented by a different destination endpoint identifier; a plurality of operation sections, wherein each of the plurality of operation sections is hierarchically within the at least one endpoint section, and wherein each of the plurality of operation sections represents a different operation; and at least one operation element hierarchically within each of the plurality of operation sections, wherein each of the at least one operation elements is represented by a different request-reply property, and wherein each operation element indicates a type of interaction pattern for messages, wherein one or more of the at least one operation elements identifies a policy expression with one or more policy assertions representing policies associated with exchanging messages with the application; scan the policy mapping file for identifying an endpoint section relating to the address in the particular destination endpoint identifier; after identifying the endpoint section relating to the particular destination endpoint identifier, scan the identified endpoint section for identifying an operation section represented by the particular request action identifier, which identified operation section is hierarchically within the identified endpoint section; and after identifying the operation section represented by the particular request action identifier, scan the identified operation section for identifying an operation element relating to the particular request-reply property, which identified operation element is hierarchically within the identified operation section and is such that the identified operation element relates to, and is dependent upon, each of the address of the particular destination endpoint identifier, the particular request action identifier, and the particular request-reply property. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
Specification