Secure transfer of web application client persistent state information into a new domain
First Claim
Patent Images
1. An apparatus, comprising:
- a processor;
computer memory holding computer program instructions that when executed by the processor securely reassign web application client state information associated with an application server domain, the computer program instructions comprising;
program code to connect to an application server domain associated with a request-URI;
program code responsive to receipt of a protocol-compliant redirect associated with the application server domain, the protocol-compliant redirect pointing to a new application server domain, to determine whether the protocol-compliant redirect is authentic; and
program code responsive to a determination that the protocol-compliant redirect is authentic to reassign the web application client state information to the new application server domain.
1 Assignment
0 Petitions
Accused Products
Abstract
A technique to reassign one or more stored elements of web application client state information is provided in an HTTP-based client upon receipt of an HTTP redirect in response to a request-URI. One or more stored elements associated to the request-URI are saved in or in association with the client. Upon receipt of an HTTP 301 (permanent) redirect, the client automatically reassigns (re-associates) the one or more stored elements to the redirect domain when the redirect can be verified as authentic (e.g., to originate from the application to which the client is attempting to connect).
19 Citations
15 Claims
-
1. An apparatus, comprising:
-
a processor; computer memory holding computer program instructions that when executed by the processor securely reassign web application client state information associated with an application server domain, the computer program instructions comprising; program code to connect to an application server domain associated with a request-URI; program code responsive to receipt of a protocol-compliant redirect associated with the application server domain, the protocol-compliant redirect pointing to a new application server domain, to determine whether the protocol-compliant redirect is authentic; and program code responsive to a determination that the protocol-compliant redirect is authentic to reassign the web application client state information to the new application server domain. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product in a non-transitory computer readable storage medium for use in a data processing system, the computer program product holding computer program instructions which, when executed by the data processing system, securely reassign web application client state information associated with an application server domain, the code comprising:
-
program code to connect to an application server domain associated with a request-URI; program code responsive to receipt of a protocol-compliant redirect associated with the application server domain, the protocol-compliant redirect pointing to a new application server domain, to determine whether the protocol-compliant redirect is authentic; and program code responsive to a determination that the protocol-compliant redirect is authentic to reassign the web application client state information to the new application server domain. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. Apparatus, comprising:
-
a processor; computer memory; a user-agent that issues a request-URI to a first application server domain and receives a response identifying a second application server domain to which the first application server domain is asserted in the response to have been moved; and computer program instructions executed by the processor upon receipt of the response to reassign one or more stored elements of web application client state information from the first application server domain to the second application server domain when the response can be verified as authentic.
-
Specification