Common internet file system proxy authentication of multiple servers
First Claim
1. A proxy system, comprising:
- a processor; and
a memory containing a proxy server application, which, when executed on the processor is configured to perform an operation for authenticating a client device to a plurality of network servers, the operation comprising;
establishing a first session between the proxy server application and a first network server, of the plurality, responsive to an initial request supplied by the client device, wherein the request includes authenticating information used by the proxy server application to authenticate the proxy server application, as the client device, to the first network server;
determining that the client device is requesting access to resources on a second network server, of the plurality, different from the first network server, wherein the client device has not provided authentication information to the second network server;
responsive to the request to access resources on the second network server, sending a session timeout message to the client device which causes the client device to respond with a fresh authentication request, without prompting a user at the client device to provide the authenticating information; and
establishing a second session between the proxy server application and only the second network server, using the fresh authentication request, wherein the same proxy server application establishes both the first session and the second session.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques are described for a proxy system to provide a client device with transparent access to multiple network file servers. The proxy system may appear to the client device as a single network file server. The proxy may be configured to forward requests received from the client device to multiple servers as well as provide responses from the server back to the client. Further, the proxy system may authenticate itself, as the client, to each of the multiple network servers using authentication credentials supplied by the client. After prompting a user to submit credentials to establish a session with a first network server, the proxy system may send a session timeout error code, prompting the client to submit a fresh authentication request used by the proxy system to establish a session with a second network server.
-
Citations
24 Claims
-
1. A proxy system, comprising:
-
a processor; and a memory containing a proxy server application, which, when executed on the processor is configured to perform an operation for authenticating a client device to a plurality of network servers, the operation comprising; establishing a first session between the proxy server application and a first network server, of the plurality, responsive to an initial request supplied by the client device, wherein the request includes authenticating information used by the proxy server application to authenticate the proxy server application, as the client device, to the first network server; determining that the client device is requesting access to resources on a second network server, of the plurality, different from the first network server, wherein the client device has not provided authentication information to the second network server; responsive to the request to access resources on the second network server, sending a session timeout message to the client device which causes the client device to respond with a fresh authentication request, without prompting a user at the client device to provide the authenticating information; and establishing a second session between the proxy server application and only the second network server, using the fresh authentication request, wherein the same proxy server application establishes both the first session and the second session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for authenticating a client device to a plurality of network servers using a single proxy server, comprising:
-
establishing a first session between a proxy server and a first network server, of the plurality, using an initial request supplied by the client device, wherein the request includes authenticating information used by the proxy server to authenticate the proxy server, as the client, to the first network server; determining that the client device is requesting access to resources on a second network server, of the plurality, different from the first network server, wherein the client device has not provided authentication information to the second network server; responsive to the request to access resources on the second network server, sending a session timeout message to the client device which causes the client device to respond with a fresh authentication request, without prompting a user at the client device to provide the authenticating information; and establishing a second session between the proxy server and only the second network server, using the fresh authentication request request, wherein the same proxy server establishes both the first session and the second session. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer program product for authenticating a client device to a plurality of network servers using a single proxy server, the computer program product comprising:
a non-transitory computer-readable storage medium having computer-readable program code embodied therewith, the computer-readable program code comprising; computer-readable program code configured to establish a first session between a proxy server and a first network server, of the plurality, using an initial request supplied by the client device, wherein the request includes authenticating information used by the proxy server to authenticate the proxy server, as the client, to the first network server; computer-readable program code configured to determine that the client device is requesting access to resources on a second network server, of the plurality, different from the first network server, wherein the client device has not provided authentication information to the second network server; computer-readable program code configured to, responsive to the request to access resources on the second network server, send a session timeout message to the client device which causes the client device to respond with a fresh authentication request, without prompting a user at the client device to provide the authenticating information; and computer-readable program code configured to establish a second session between the proxy server and a second network server using the fresh authentication request, wherein the same proxy server establishes both the first session and the second session. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
Specification