Unique session storage design
First Claim
1. A method for maintaining a user session on a plurality of computing devices, comprising:
- generating a unique session key on first instance of a user transmitting a request, wherein said unique session key is generated using a random number generator joined with a timing variable;
associating said unique session key with all data pertinent to the user session;
storing said session key and data pertinent to the user session in a common database; and
destroying the session key and any associated decryption key associated therewith.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for providing user session state across various networked machines is disclosed. The system encompasses a session saver and a sessions database centrally maintained for access by a plurality of computing devices. The system indexes each stored variant by a user defined key and a descriptive variable name. The session saver is a drop in replacement for the IIS session object that provides session state without using cookies. The session saver is divided into various subcomponents, including Csaver for providing the COM interface, OleDbSessionTable to read and write the data from an OLE database, Cconnection for retrieving a connection string from a UDL file, RegistryInfo that reads the location of the UDL file from the memory, StorageVariant enabling storage of variants in any properly configured OLE DB provider, and CcomVariantEx. Any of the operations servers generates a session key when initially contacted by the user and the session saver stores the session key and variables associated with the particular session, such as account numbers, passwords accepted, and so forth. These session keys and stored variables are available to any of the other operations servers and a procedure for retrieving these keys and variables is performed each time a session is either commenced or resumed. Each generated session key is unique and non predictable such that multiple operation servers can simultaneously generate keys without conflict.
160 Citations
3 Claims
-
1. A method for maintaining a user session on a plurality of computing devices, comprising:
-
generating a unique session key on first instance of a user transmitting a request, wherein said unique session key is generated using a random number generator joined with a timing variable;
associating said unique session key with all data pertinent to the user session;
storing said session key and data pertinent to the user session in a common database; and
destroying the session key and any associated decryption key associated therewith.
-
-
2. A method for maintaining a user session on a plurality of computing devices, comprising:
-
providing a COM interface between said method and an OLE database;
providing a method to retrieve a connection string from a UDL file;
reading the location of the UDL file from a registry;
generating a unique key; and
storing said unique key with any associated session data in a common database.
-
-
3. A system for maintaining a user session on a plurality of computing devices, comprising:
-
means for generating a session key on first instance of a user transmitting a request to the system, wherein said session key is generated using a random number generator based on a timing variable joined with a GUID;
means for associating said unique session key with all data pertinent to the user session;
means for storing said session key and data pertinent to the user session in a common database; and
means for destroying the session key and any associated decryption key associated therewith.
-
Specification