Prioritization of third party access to an online commerce site

US 8,793,375 B2
Filed: 08/03/2012
Issued: 07/29/2014
Est. Priority Date: 12/18/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method comprising:

providing a plurality of servers to provide access to a plurality of services, the plurality of servers including interfaces responsive to particular access rules for a service request;

receiving a service request from an application the service request comprising a request for at least one of the services and a certificate;

validating the service request using the certificate;

identifying, by use of a processor, a first service of the plurality of services corresponding to the service request and identifying a server of the plurality of servers for processing the first service;

obtaining an access rule enabling processing of the service request by the first service, the access rule being based on an identity of the application and the certificate; and

redirecting the service request with the access rule for processing of the service request by the first service.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Providing prioritization of user online access to an online commerce site. Third party applications using API function calls to access an online commerce site are restricted to specific services by an access rule. An access rule defines which API server on the online commerce site a specific third party application may access when using a specific API function call. In this way, the operator of the online commerce site may prioritize server access per service level agreements based on a specific third party application and API function call.

124 Citations

20 Claims

1. A method comprising:
- providing a plurality of servers to provide access to a plurality of services, the plurality of servers including interfaces responsive to particular access rules for a service request;
  
  receiving a service request from an application the service request comprising a request for at least one of the services and a certificate;
  
  validating the service request using the certificate;
  
  identifying, by use of a processor, a first service of the plurality of services corresponding to the service request and identifying a server of the plurality of servers for processing the first service;
  
  obtaining an access rule enabling processing of the service request by the first service, the access rule being based on an identity of the application and the certificate; and
  
  redirecting the service request with the access rule for processing of the service request by the first service.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method as claimed in claim 1 wherein the certificate is a session certificate.
  - 3. The method of claim 1 wherein the plurality of servers includes servers that provide different levels of service.
  - 4. The method of claim 1 wherein the plurality of servers include API servers for servicing API function calls received from a system of the application.
  - 5. The method of claim 4 wherein the identifying a first service corresponding to the service request further includes identifying a first server of the plurality of servers to which to direct based on the API function call.
  - 6. The method of claim 1 wherein the plurality of services are associated with an online commerce site.
  - 7. The method of claim 1 wherein the identifying further includes searching a database table for a record containing an identifier to reply to the application.
  - 8. The method of claim 1 wherein the identifying is based on an identifier for the first service that is a URL.

9. A non-transitory machine-readable storage medium having executable instructions to cause a machine to:
- receive a service request from an application at a plurality of servers, the plurality of servers providing access to a plurality of services, the plurality of servers including interfaces responsive to particular access rules for the service request, the service request comprising a request for at least one of the services and a certificate;
  
  validate the service request using the certificate;
  
  identify, by use of a processor, a first service of the plurality of services corresponding to the service request and identifying a server of the plurality of servers for processing the first service;
  
  obtain an access rule enabling processing of the service request by the first service, the access rule being based on an identity of the application and the certificate; and
  
  redirect the service request with the access rule for processing of the service request by the first service.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The machine-readable storage medium as claimed in claim 9 wherein the certificate is a session certificate.
  - 11. The machine-readable storage medium as claimed in claim 9 wherein the plurality of servers include servers that provide different levels of service.
  - 12. The machine-readable storage medium as claimed in claim 9 wherein the plurality of servers include API servers for servicing API function calls received from a system of the application.
  - 13. The machine-readable storage medium as claimed in claim 12 wherein the identifying a first service corresponding to the service request further includes identifying a first server of the plurality of servers to which to direct based on the API function call.
  - 14. The machine-readable storage medium as claimed in claim 9 wherein the plurality of services are associated with an online commerce site.
  - 15. The machine-readable storage medium as claimed in claim 9 wherein the identifying further includes searching a database table for a record containing an identifier to reply to the application.
  - 16. The machine-readable storage medium as claimed in claim 9 wherein the identifying is based on an identifier for the first service that is a URL.

17. A system comprising:
- a plurality of servers to provide access to a plurality of services, the plurality of servers including interfaces responsive to particular access rules for a service request; and
  
  a service request processor to receive a service request from an application, the plurality of servers including interfaces responsive to particular access rules for the service request, the service request comprising a request for at least one of the services and a certificate;
  
  to validate the service request using the certificate;
  
  to identify a first service of the plurality of services corresponding to the service request and identifying a server of the plurality of servers for processing the first service;
  
  to obtain an access rule enabling processing of the service request by the first service, the access rule being based on an identity of the application and the certificate; and
  
  to redirect the service request with the access rule for processing of the service request by the first service.
- View Dependent Claims (18)
- - 18. The system as claimed in claim 17 wherein the certificate is a session certificate.

19. A method comprising:
- providing a plurality of services, the plurality of services including interfaces responsive to particular access rules for a service request;
  
  receiving a service request from an application, the service request comprising a request for at least one of the services and a certificate;
  
  validating the service request using the certificate;
  
  identifying, by use of a processor, a first service of the plurality of services corresponding to the service request and identifying a server of the plurality of servers for processing the first service;
  
  obtaining an access rule enabling processing of the service request by the first service, the access rule being based on an identity of the application and the certificate; and
  
  redirecting the service request with the access rule for processing of the service request by the first service.
- View Dependent Claims (20)
- - 20. The method as claimed in claim 19 wherein the certificate is a session certificate.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Original Assignee
eBay Inc.
Inventors
Leahy, Scott, Cohen, Alon
Primary Examiner(s)
SALL, EL HADJI MALICK

Application Number

US13/566,919
Publication Number

US 20120297065A1
Time in Patent Office

725 Days
Field of Search

709/219, 709/225, 709/238, 709/245, 718/105, 719/328, 705/14.51
US Class Current

709/225
CPC Class Codes

G06Q 30/06   Buying, selling or leasing ...

G06Q 30/0613   Third-party assisted

H04L 47/70   Admission control; Resource...

H04L 67/02   based on web technology, e....

H04L 67/1001   for accessing one among a p...

H04L 67/10015   Access to distributed or re...

H04L 67/1008   based on parameters of serv...

H04L 67/1014   based on the content of a r...

H04L 67/1023   based on a hash applied to ...

H04L 67/142   Managing session states for...

H04L 67/53   using third party service p...

H04L 67/563   Data redirection of data ne...

H04L 69/329   in the application layer [O...

H04L 9/40   Network security protocols

Prioritization of third party access to an online commerce site

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

124 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Prioritization of third party access to an online commerce site

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

124 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links