Caching public objects with private connections
First Claim
Patent Images
1. In a computing environment, a method comprising:
- receiving at a web proxy server a request from a client for web content, in which the client has an existing authenticated connection to a web server that serves the content;
selecting to use an unauthenticated connection instead of the existing authenticated connection to determine whether the web content is private or public;
forwarding the request to the web server over the unauthenticated connection, and1) if the web content is received in response to the request, determining that the web content is public, caching the content and returning the content to the client, or2) if the requested content is not received because of a need for authentication, determining that the web content is private, re-requesting the web content over the existing authenticated connection, receiving the web content via the existing authenticated connection, and returning the content to the client without storing the content in a cache local to the web proxy, content stored in the cache local to the web proxy available for subsequent client requests.
2 Assignments
0 Petitions
Accused Products
Abstract
Described is a technology by which a web proxy server forwards a client request for content to a web server over an unauthenticated connection, including when the client already has an authenticated connection to that web server. If the web content is received in response, the content is public, whereby the web proxy server caches the content and returns the content to the client. If the requested content is not received because of a need for authentication, the content is re-requested over the client'"'"'s authenticated connection, or if one does not yet exist, returns the response to the client to complete the authentication process to establish an authenticated connection. A learning mechanism (e.g., that persists known private URLs) may be coupled to the selection mechanism to maintain references to objects that are private, and thereby avoid redundant retrieval attempts for known private objects over unauthenticated connections.
16 Citations
15 Claims
-
1. In a computing environment, a method comprising:
-
receiving at a web proxy server a request from a client for web content, in which the client has an existing authenticated connection to a web server that serves the content; selecting to use an unauthenticated connection instead of the existing authenticated connection to determine whether the web content is private or public; forwarding the request to the web server over the unauthenticated connection, and 1) if the web content is received in response to the request, determining that the web content is public, caching the content and returning the content to the client, or 2) if the requested content is not received because of a need for authentication, determining that the web content is private, re-requesting the web content over the existing authenticated connection, receiving the web content via the existing authenticated connection, and returning the content to the client without storing the content in a cache local to the web proxy, content stored in the cache local to the web proxy available for subsequent client requests. - View Dependent Claims (2, 3, 4)
-
- 5. In a computing environment, a system comprising, a web proxy server configured to cache at least some public objects received from web servers, and to return a cached object in response to a client request when the object is cached and valid, and to otherwise forward the client request for the object to a web server, and a selection mechanism coupled to the web proxy server that forwards the client request for an object that may or may not be private via an unauthenticated connection even if an authenticated connection exits to determine based on the web server response whether the object is private or public in the absence of a specific cache directive, if the web server response does not include an authentication request, wherein the web server returns the requested object in response to the request via the unauthenticated connection, and wherein the web proxy server caches the object and returns the object to the client, and, if the web server response includes an authentication request, wherein the selection mechanism requests the object over the authenticated connection, the web proxy server receives the object and returns the object to the client without storing the object in a cache local to the web proxy, objects stored in the cache local to the web proxy available for subsequent client requests.
-
10. A non-transitory computer-readable storage medium having computer-executable instructions, comprising:
-
receiving at a web proxy server a request from a client for web content; determining whether the request is to be forwarded to a web server, and if so, selecting as a selected connection an unauthenticated connection or an authenticated connection for forwarding the request to the web server, and forwarding the request via the selected connection, wherein selecting comprises, selecting the unauthenticated connection as the selected connection when no prior attempt to request the content was made for this client and web page via an unauthenticated connection even if an authenticated connection exits; receiving a response from the web server in response to the request, and 1) if the selected connection was an unauthenticated connection and web content is received in response to the request and is cacheable, caching the content and returning the content to the client;
or2) if the selected connection was an unauthenticated connection and requested content is not received because of a need for authentication, determining whether the client has an authenticated connection to the web server, and if so, selecting the authenticated connection, re-requesting the web content over the authenticated connection, and returning the content to the client without storing the content in a cache local to the web proxy, or if not, allowing the client to complete the authentication process to establish an authenticated connection, content stored in the cache local to the web proxy available for subsequent client requests. - View Dependent Claims (11, 12, 13, 14, 15)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeMicrosoft Technology Licensing LLC (Microsoft Corporation)
-
Original AssigneeMicrosoft Corporation
-
InventorsAlmog, Itai, Shiran, Tomer
-
Primary Examiner(s)Barron, Jr., Gilberto
-
Assistant Examiner(s)KANAAN, SIMON P
-
Application NumberUS11/710,335Publication NumberTime in Patent Office1,775 DaysField of Search726/2, 726/3, 726/4, 726/5, 726/26, 726/27, 726/28, 726/29, 726 11- 14US Class Current726/12CPC Class CodesH04L 63/0281 ProxiesH04L 63/08 for authentication of entit...
