Systems and methods for using a client agent to manage HTTP authentication cookies
First Claim
1. A method for using an authentication cookie to authenticate a transport layer connection, the method comprising:
- (a) establishing, by an agent executing on a processor of a client, a first transport layer connection with a device intermediary to the client and a server;
(b) receiving, by the agent, a first request from an application on the client to establish a second transport layer connection with the server;
(c) transmitting, by the agent, to the device via the first transport layer connection a Hypertext Transfer Protocol (HTTP) request to authenticate the first request to establish the second transport layer connection, prior to transmitting the first request of the application to the device, the HTTP request comprising an authentication cookie;
(d) transmitting, by the agent to the device responsive to receiving from the device an HTTP response indicating successful authentication using the authentication cookie, the first request to establish the second transport layer connection with the server via the first transport layer connection; and
(e) transmitting, by the agent, via the second transport layer connection to the server, data received from the application.
8 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods are described for using a client agent to manage HTTP authentication cookies. One method includes intercepting, by a client agent executing on a client, a connection request from the client; establishing, by the client agent, a transport layer virtual private network connection with a network appliance; transmitting, by the client agent via the established connection, an HTTP request comprising an authentication cookie; and transmitting, by the client agent via the connection, the connection request. A second method includes intercepting, by a client agent executing on a client, an HTTP communication comprising a cookie from an appliance on a virtual private network to the client; removing, by the client agent, the cookie from the HTTP communication; storing, by the client agent, the received cookie; transmitting, by the client agent, the modified HTTP communication to an application executing on the client; intercepting, by the client agent, an HTTP request from the client; inserting, by the client agent in the HTTP request, the received cookie; and transmitting the modified HTTP request to the appliance. Corresponding systems are also described.
-
Citations
16 Claims
-
1. A method for using an authentication cookie to authenticate a transport layer connection, the method comprising:
-
(a) establishing, by an agent executing on a processor of a client, a first transport layer connection with a device intermediary to the client and a server; (b) receiving, by the agent, a first request from an application on the client to establish a second transport layer connection with the server; (c) transmitting, by the agent, to the device via the first transport layer connection a Hypertext Transfer Protocol (HTTP) request to authenticate the first request to establish the second transport layer connection, prior to transmitting the first request of the application to the device, the HTTP request comprising an authentication cookie; (d) transmitting, by the agent to the device responsive to receiving from the device an HTTP response indicating successful authentication using the authentication cookie, the first request to establish the second transport layer connection with the server via the first transport layer connection; and (e) transmitting, by the agent, via the second transport layer connection to the server, data received from the application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for using an authentication cookie to authenticate a transport layer connection, the system comprising:
-
a processor of a client; an agent executable on the processor of the client configured to; establish a first transport layer connection with a device intermediary to the client and a server; receive a first request from an application on the client to establish a second transport layer connection with the server; transmit to the device via the first transport layer connection a Hypertext Transfer Protocol (HTTP) request to authenticate the first request to establish the second transport layer connection, prior to transmitting the first request of the application to the device, the HTTP request comprising an authentication cookie; responsive to receiving from the device an HTTP response indicating using the authentication cookie, to transmit the first request to establish the second transport layer connection with the server via the first transport layer connection; and transmit, via the second transport layer connection to the server, data received from the application. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification