Selectively processing cookies in a proxy
First Claim
Patent Images
1. A method, operative at an intermediary between a client browser and one or more backend applications during an existing authenticated session with a user operating the client browser, the method comprising:
- responsive to forwarding a request to a backend application, receiving a response;
making a determination whether the response is associated with a cookie that should be returned to the client browser by examining the response for presence of code whose execution in the client browser requires a cookie, wherein if the response includes code whose execution in the client browser requires a cookie, marking the response as associated with a cookie that should be returned to the client browser;
if the response is associated with a cookie that should be returned to the client browser, tracking the cookie in a per-user session cache object associated with the session; and
forwarding the response including the cookie to the client browser;
wherein at least one of the receiving, making, tracking and forwarding steps is carried out in software executing in a hardware element.
1 Assignment
0 Petitions
Accused Products
Abstract
An intermediary (such as a web reverse proxy), which is located between a web browser and one or more backend applications, manages cookies that are provided by the backend applications and returned to the web browser during a user session. The intermediary decides which cookies should be sent to the browser and which cookies should be stored therein. Preferably, this determination is made in an automated manner by examining the response for any cookie-dependent code (e.g., scripting) included in the response.
-
Citations
7 Claims
-
1. A method, operative at an intermediary between a client browser and one or more backend applications during an existing authenticated session with a user operating the client browser, the method comprising:
-
responsive to forwarding a request to a backend application, receiving a response; making a determination whether the response is associated with a cookie that should be returned to the client browser by examining the response for presence of code whose execution in the client browser requires a cookie, wherein if the response includes code whose execution in the client browser requires a cookie, marking the response as associated with a cookie that should be returned to the client browser; if the response is associated with a cookie that should be returned to the client browser, tracking the cookie in a per-user session cache object associated with the session; and forwarding the response including the cookie to the client browser; wherein at least one of the receiving, making, tracking and forwarding steps is carried out in software executing in a hardware element. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification