Systems and methods for integration between application firewall and caching
First Claim
1. A method comprising:
- a) storing, by a device intermediary to a plurality of clients and servers, to a cache a first Hypertext Transfer Protocol (HTTP) response received from a server to a first request of a user;
b) determining, by an application firewall of the device, whether a session cookie is to be inserted into HTTP responses for the user;
c) storing, by the cache responsive to the application firewall, a reserved space in the first HTTP response stored in the cache;
d) generating, by the device responsive to receipt of a second request of the user, a second HTTP response based on the first HTTP response stored in the cache; and
e) inserting, by the device into the reserved space of the second HTTP response generated from the first HTTP response stored in the cache, one of a session cookie or a header comprising cache control information generated by the application firewall.
7 Assignments
0 Petitions
Accused Products
Abstract
The present invention is directed towards integrating cache managing and application firewall processing in a networked system. An integrated cache/firewall system comprises an application firewall operating in conjunction with a cache managing system in operation on an intermediary device. The application firewall processes a received HTTP response to a request by a networked entity serviced by the intermediary device. The application firewall generates metadata from the HTTP response and stores the metadata in cache with the HTTP response. When a subsequent request hits in the cache, the metadata is identified to a user session associated with the subsequent request. The application firewall can modify a cache-control header of the received HTTP response, and can alter the cookie-setting header of the cached HTTP response.
3 Citations
20 Claims
-
1. A method comprising:
-
a) storing, by a device intermediary to a plurality of clients and servers, to a cache a first Hypertext Transfer Protocol (HTTP) response received from a server to a first request of a user; b) determining, by an application firewall of the device, whether a session cookie is to be inserted into HTTP responses for the user; c) storing, by the cache responsive to the application firewall, a reserved space in the first HTTP response stored in the cache; d) generating, by the device responsive to receipt of a second request of the user, a second HTTP response based on the first HTTP response stored in the cache; and e) inserting, by the device into the reserved space of the second HTTP response generated from the first HTTP response stored in the cache, one of a session cookie or a header comprising cache control information generated by the application firewall. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system comprising:
-
a device intermediary to a plurality of clients and servers; a cache of the device storing a first Hypertext Transfer Protocol (HTTP) response received from a server to a first request of a user; an application firewall of the device determining whether a session cookie is to be inserted into HTTP responses for the user; wherein the cache responsive to the application firewall, a reserved space in the first HTTP response stored in the cache; wherein the device responsive to receipt of a second request of the user, a second HTTP response based on the first HTTP response stored in the cache and inserting into the reserved space of the second HTTP response generated from the first HTTP response stored in the cache one of a session cookie or a header comprising cache control information generated by the application firewall. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification