Method and system for externalizing session management using a reverse proxy server

US 8,095,658 B2
Filed: 05/07/2004
Issued: 01/10/2012
Est. Priority Date: 05/07/2004
Status: Active Grant

First Claim

Patent Images

1. A method for processing requests to access a set of resources in a distributed data processing system, the method comprising:

receiving a resource request from a client at a proxy server, the proxy server providing a centralized session identifier management service for a set of application servers within a domain so that the set of application servers need not manage session state information;

in response to a determination by the proxy server that the proxy server is managing a session identifier that was previously associated with the client by the proxy server, retrieving the session identifier;

in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, obtaining a new session identifier and associating the new session identifier with the client using information that is managed by the proxy server;

determining the application server that is a target of the resource request;

modifying the resource request by the proxy server to include the session identifier or the new session identifier, wherein the resource request is modified according to a configuration uniquely associated with the application server that is the target of the resource request, wherein the step of modifying includes;

retrieving configuration information associated with the application server of the set of application servers, wherein the configuration information associated with the application server indicates a type of modification to be made to resource requests with respect to a session identifier; and

formatting the modified resource request in accordance with the configuration information associated with the application server; and

forwarding the modified resource request by the proxy server to the application server that is the target of the resource request.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, and computer program product is presented for providing access to a set of resources in a distributed data processing system. A reverse proxy server receives a resource request from a client and determines whether or not it is managing a session identifier that was previously associated with the client by the reverse proxy server; if so, it retrieves the session identifier, otherwise it obtains a session identifier and associates the session identifier with the client using information that is managed by the reverse proxy server. The reverse proxy server then modifies the resource request to include the session identifier and forwards the modified resource request to an application server.

37 Citations

View as Search Results

15 Claims

1. A method for processing requests to access a set of resources in a distributed data processing system, the method comprising:
- receiving a resource request from a client at a proxy server, the proxy server providing a centralized session identifier management service for a set of application servers within a domain so that the set of application servers need not manage session state information;
  
  in response to a determination by the proxy server that the proxy server is managing a session identifier that was previously associated with the client by the proxy server, retrieving the session identifier;
  
  in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, obtaining a new session identifier and associating the new session identifier with the client using information that is managed by the proxy server;
  
  determining the application server that is a target of the resource request;
  
  modifying the resource request by the proxy server to include the session identifier or the new session identifier, wherein the resource request is modified according to a configuration uniquely associated with the application server that is the target of the resource request, wherein the step of modifying includes;
  
  retrieving configuration information associated with the application server of the set of application servers, wherein the configuration information associated with the application server indicates a type of modification to be made to resource requests with respect to a session identifier; and
  
  formatting the modified resource request in accordance with the configuration information associated with the application server; and
  
  forwarding the modified resource request by the proxy server to the application server that is the target of the resource request.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1 further comprising:
    - in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, obtaining the new session identifier by using an SSL (Secure Sockets Layer) identifier as the new session identifier.
  - 3. The method of claim 1 further comprising:
    - in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, returning the new session identifier to the client as an HTTP (HyperText Transport Protocol) cookie if the client request was an HTTP request.
  - 4. The method of claim 1 further comprising:
    - generating at the proxy server a session identifier for each session between an application server and a client.
  - 5. The method of claim 1 further comprising:
    - managing at the proxy server a session identifier for each session between an application server and a client.

6. A computer program product on a non-transitory computer readable medium for processing requests to access a set of resources in a distributed data processing system, the computer program product holding computer program instructions which when executed by a processor perform a method comprising:
- receiving a resource request from a client at a proxy server, the proxy server providing a centralized session identifier management service for a set of application servers within a domain so that the set of application servers need not manage session state information;
  
  retrieving the session identifier in response to a determination by the proxy server that the proxy server is managing a session identifier that was previously associated with the client by the proxy server;
  
  obtaining a new session identifier and associating the session identifier with the client using information that is managed by the proxy server in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server;
  
  determining the application server that is a target of the resource request;
  
  modifying the resource request by the proxy server to include the session identifier or the new session identifier, wherein the resource request is modified according to a configuration uniquely associated with the application server that is the target of the resource request, wherein the step of modifying includes;
  
  retrieving configuration information associated with the application server of the set of application servers, wherein the configuration information associated with the application server indicates a type of modification to be made to resource requests with respect to a session identifier; and
  
  formatting the modified resource request in accordance with the configuration information associated with the application server; and
  
  forwarding the modified resource request by the proxy server to the application server that is the target of the resource request.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The computer program product of claim 6 wherein the method further comprises:
    - obtaining, in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, the new session identifier by using an SSL (Secure Sockets Layer) identifier as the new session identifier if the client has connected to the proxy server using SSL.
  - 8. The computer program product of claim 6 wherein the method further comprises:
    - returning, in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, the new session identifier to the client as an HTTP (HyperText Transport Protocol) cookie if the resource request was an HTTP request.
  - 9. The computer program product of claim 6 wherein the method further comprises:
    - generating at the proxy server a session identifier for each session between an application server and a client.
  - 10. The computer program product of claim 6 wherein the method further comprises:
    - managing at the proxy server a session identifier for each session between an application server and a client.

11. An apparatus for processing requests to access a set of resources in a distributed data processing system, the apparatus comprising:
- a processor;
  
  a computer memory holding computer program instructions which when executed by the processor perform a method comprising;
  
  receiving a resource request from a client at a proxy server, the proxy server providing a centralized session identifier management service for a set of application servers within a domain so that the set of application servers need not manage session state information;
  
  retrieving the session identifier in response to a determination by the proxy server that the proxy server is managing a session identifier that was previously associated with the client by the proxy server;
  
  obtaining a new session identifier and associating the session identifier with the client using information that is managed by the proxy server in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server;
  
  determining the application server that is a target of the resource request;
  
  modifying the resource request by the proxy server to include the session identifier or the new session identifier, wherein the resource request is modified according to a configuration uniquely associated with the application server that is the target of the resource request, wherein the step of modifying includes;
  
  retrieving configuration information associated with the application server of the set of application servers, wherein the configuration information associated with the application server indicates a type of modification to be made to resource requests with respect to a session identifier; and
  
  formatting the modified resource request in accordance with the configuration information associated with the application server; and
  
  forwarding the modified resource request by the proxy server to the application server that is the target of the resource request.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The apparatus of claim 11 further comprising:
    - obtaining, in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, the new session identifier by using an SSL (Secure Sockets Layer) identifier as the new session identifier if the client has connected to the proxy server using SSL.
  - 13. The apparatus of claim 11 wherein the method further comprises:
    - returning, in response to a determination by the proxy server that the proxy server is not managing a session identifier that was previously associated with the client by the proxy server, the new session identifier to the client as an HTTP (HyperText Transport Protocol) cookie if the resource request was an HTTP request.
  - 14. The apparatus of claim 11 wherein the method further comprises:
    - generating at the proxy server a session identifier for each session between an application server and a client.
  - 15. The apparatus of claim 11 wherein the method further comprises:
    - managing at the proxy server a session identifier for each session between an application server and a client.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hulu LLC (The Walt Disney Company)
Original Assignee
International Business Machines Corporation
Inventors
Ashley, Paul Anthony, Muppidi, Sridhar R., Vandenwauver, Mark
Primary Examiner(s)
Lin, Kenny
Assistant Examiner(s)
Nooristany, Sulaiman

Application Number

US10/840,838
Publication Number

US 20060031442A1
Time in Patent Office

2,804 Days
Field of Search

709/226, 709/223, 370/236, 380/225, 705/26
US Class Current

709/226
CPC Class Codes

H04L 67/02 based on web technology, e....

H04L 67/14 Session management for real...

Method and system for externalizing session management using a reverse proxy server

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

37 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for externalizing session management using a reverse proxy server

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

37 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links