Data server, data management method, and data management system

US 7,630,985 B2
Filed: 01/17/2006
Issued: 12/08/2009
Est. Priority Date: 09/02/2005
Status: Expired due to Fees

First Claim

Patent Images

1. A data server which partially constitutes a data management system in cooperation with another data server connected via a network, the data server comprising:

a data management section to store a data item;

a user authentication section that performs user authentication;

a searching section that searches the data management section for a data item requested by a client when a data request is received from a the client;

a data providing section to provide the data item requested by the client to the client when the requested data item is found in the data management section;

a redirect section that, when the data item requested by the client is not found in the data management section, detects a data server which stores the data item requested by the client in the data management system, receives temporary authentication information from the data server, and sends information to identify the data item requested by the client in the data server and the temporary authentication information to the client;

a redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, accents the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information which is stored in the temporary authentication storage section;

a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and

a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information; and

wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A data server which partially constitutes a data management system in cooperation with another data server connected via a network, the data server having: a data management section that stores a data item; a user authentication section that performs user authentication; a searching section that searches the data management section for a requested data item when a data request is received from a client; a data providing section that provides the requested data item to the client when the requested data item is found in the data management section; and a redirect section that, when the requested data item is not found in the data management section, detects a data server which stores the requested data item in the data management system, receives temporary authentication information from the data server, and sends information to identify the requested data item in the data server and the temporary authentication information to the client.

37 Citations

View as Search Results

13 Claims

1. A data server which partially constitutes a data management system in cooperation with another data server connected via a network, the data server comprising:
- a data management section to store a data item;
  
  a user authentication section that performs user authentication;
  
  a searching section that searches the data management section for a data item requested by a client when a data request is received from a the client;
  
  a data providing section to provide the data item requested by the client to the client when the requested data item is found in the data management section;
  
  a redirect section that, when the data item requested by the client is not found in the data management section, detects a data server which stores the data item requested by the client in the data management system, receives temporary authentication information from the data server, and sends information to identify the data item requested by the client in the data server and the temporary authentication information to the client;
  
  a redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, accents the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information which is stored in the temporary authentication storage section;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information; and
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.

2. A data server which partially constitutes a data management system in cooperation with another data server connected via a network, the data server comprising:
- a user authentication section that performs user authentication;
  
  a searching section that searches the data management section for a data item requested by a client when a data request is received from the client;
  
  a data providing section to provide the data item requested by the client to the client when the requested data item is found in the data management section;
  
  an inquiry responding section that searches the data management section when receiving an inquiry on presence of a data item requested by the client from other data server in the data management system, and, when the data item requested by the client is found, creates temporary authentication information, stores the temporary authentication information in a temporary authentication information storage section, and notifies the other data server of the temporary authentication informationa redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, accepts the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information which is stored in the temporary authentication storage section;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information; and
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.
- View Dependent Claims (3)
- - 3. The data server according to claim 2, wherein the inquiry responding section cheeks, when the requested data item is found in the data management section in response to the inquiry on presence of the data item requested by the client from the other data server, an access right of the user in relation to the data item requested by the client, and notifies the other data server of the temporary authentication information when the user is determined to have the access right.

4. A first data server which partially constitutes a data management system in cooperation with another data server connected via a network, the first data server comprising:
- a data management section to store a data item;
  
  a user authentication section that performs user authentication;
  
  a searching section that searches the data management section for a data item requested by a user when a data request is received from a the user;
  
  a data providing section that provides the data item requested by the user to the client user when the data item requested by the user is found in the data management section;
  
  a redirect section that, when the data item requested by the user is not found in the data management section, detects a second data server which stores the data item requested by the user in the data management system, generates temporary authentication information for the data item requested by the user, generates redirect information including information to identify the data item requested by the user in the second-data server, the temporary authentication information for the data item requested by the user, and server identification information of the first data server, and returns the redirect information to the client;
  
  a redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, accepts the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information which is stored in the temporary authentication storage section;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information; and
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.
- View Dependent Claims (5)
- - 5. The first second data server according to claim 4, further comprising:
    - a temporary authentication information storage section that stores the generated temporary authentication information in correspondence to user identification information of the data-requesting user; and
      
      a responding section that provides, to the second data server, when an inquiry on validity of temporary authentication information is received from the second data server and the temporary authentication information storage section stores the temporary authentication information, information indicating that the temporary authentication information is valid.

6. A second data server which partially constitutes a data management system in cooperation with another data server connected via a network, the second data server comprising:
- a data management section to store a data item;
  
  a user authentication section that performs user authentication;
  
  a searching section that searches the data management section for a data item requested by a user when a data request is received from the user;
  
  a data providing section that provides the data item requested by the user to the user when the data item requested by the user is found in the data management section;
  
  a redirect authentication section that, when a data request is received from a user for which the user authentication has not been completed, transmits an inquiry on validity of temporary authentication information retrieved from the data request to a first data server indicated by server identification information retrieved from the data request, and accepts the data request without causing the user to perform a process for user authentication when a response to the inquiry indicating that the temporary authentication information is valid is received;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information;
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.
- View Dependent Claims (7, 8, 9)
- - 7. The second data server according to claim 6, further comprising:
    - an inquiry responding section that checks, when the requested data item is found in the data management section in response to an inquiry on presence of the requested data item from the first data server, an access right of the user in relation to the requested data item, and notifies the first data server that the requested data item can be provided when the user is determined to have the access right;
      
      said user information receiving section receiving user identification information of a user requesting the data item from the first data server when receiving an inquiry on presence of the requested data item from the first data server.
  - 8. The second data server according to claim 6, further comprising:
    - an authentication information receiving section that receives temporary authentication information from the first data server; and
      
      a temporary authentication information storage section that stores the temporary authentication information received from the first data server;
      
      said redirect authentication section determining, when a data request is received from a client for which the user authentication has not been completed, whether or not the data request includes temporary authentication information stored in the temporary authentication information storage section, and accepting the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information.
  - 9. The second data server according to claim 6, wherein the redirect authentication section determines that the data request is from a client corresponding to the user identification information when the user identification information is received in relation to the inquiry on the validity of the temporary authentication information.

10. A data management method executed by a data server which partially constitutes a data management system in cooperation with another data server connected via a network, the method comprising:
- searching the data server for a data item requested by a client in a data request when the data request is received from the client which is successfully authenticated;
  
  providing the data item requested by the client when the data item requested by the client is found;
  
  identifying a data server having the data item requested by the client as a transfer destination server by transmitting an inquiry on presence of the data item requested by the client to another data server when the data item requested by the client is not found;
  
  receiving temporary authentication information from the transfer destination server;
  
  returning to the client redirect information including access information which identifies the data item requested by the client in the transfer destination server and the temporary authentication information;
  
  a redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, accepts the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information which is stored in the temporary authentication storage section;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information; and
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.

11. A data management method executed by a data server which partially constitutes a data management system in cooperation with another data server connected via a network, the method comprising:
- searching the data server for a data item requested by a user in a data request when the data request is received from the user who is successfully authenticated;
  
  providing the data item requested by the user to the user client when the data item requested by the user is found;
  
  identifying a data server having the data item requested by the user as a transfer destination server by transmitting an inquiry on presence of the data item requested by the user to another data server when the data item requested by the user is not found;
  
  creating temporary authentication information for the data item requested by the user;
  
  creating redirect information including access information for identifying the data item requested by the user in the transfer destination server, the temporary authentication information for the data item requested by the user, and server identification information of the data server, and returning the redirect information to the client;
  
  a redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, accents the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information which is stored in the temporary authentication storage section;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information; and
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.

12. A data management system comprising:
- a data management section to store a data item;
  
  a user authentication section that electronically performs user authentication;
  
  a searching section that electronically searches the data management section for a data item requested by a client when a data request is received from a the client;
  
  a data providing section that provides the data item requested by the client to the client when the data item requested by the client is found in the data management section;
  
  a redirect section that, when the data item requested by the client is not found in the data management section, electronically detects a data server which stores the data item requested by the client in the data management system, receives temporary authentication information from the data server, and sends information to identify the data item requested by the client in the data server and the temporary authentication information to the client;
  
  an inquiry responding section that electronically searches the data management section when receiving an inquiry on presence of a data item requested by the client from other data server in the data management system, and, when the data item requested by the client is found, creates temporary authentication information, stores the temporary authentication information in a temporary authentication information storage section, and notifies the other data server of the temporary authentication information;
  
  a redirect authentication section that, when a data request is received from a client for which user authentication has not been completed, determines whether or not the data request includes temporary authentication information which is stored in the temporary authentication storage section, and accents the data request without causing the client to perform a process for user authentication when the redirect authentication section determines that the data request includes the temporary authentication information;
  
  a user information receiving section that receives, from the other data server, user identification information of a data-requesting user; and
  
  a user information storage section that stores the user identification information received from the other data server in the temporary authentication information storage section in correspondence to temporary authentication information;
  
  wherein the redirect authentication section identifies, when the data request from the client includes temporary authentication information stored in the temporary authentication information storage section, user identification information corresponding to the stored temporary authentication information, and determines that the data request is from the client corresponding to the user identification information.
- View Dependent Claims (13)
- - 13. The data management system according to claim 12, wherein the inquiry responding section checks, when the requested data item is found in the data management section in response to the inquiry on presence of the requested data item from the other data server, an access right of the user in relation to the requested data item, and notifies the other data server of the temporary authentication information when the user is determined to have the access right.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fuji Xerox Company Limited (Xerox Holdings Corp.)
Original Assignee
Fuji Xerox Company Limited (Xerox Holdings Corp.)
Inventors
Sunada, Akira
Primary Examiner(s)
Fleurantin; Jean B.
Assistant Examiner(s)
Ly; Anh

Application Number

US11/333,060
Publication Number

US 20070055674A1
Time in Patent Office

1,421 Days
Field of Search

707/1, 707/3, 707/9, 707/10, 707/100, 709/203, 709217-219, 709223-226
US Class Current

1/1
CPC Class Codes

G06F 16/93   Document management systems

Y10S 707/99931   Database or file accessing

Y10S 707/99933   Query processing, i.e. sear...

Y10S 707/99939   Privileged access

Data server, data management method, and data management system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

37 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

Data server, data management method, and data management system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

37 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links