公开(公告)号：US07451477B2

公开(公告)日：2008-11-11

申请号：US10279564

申请日：2002-10-24

Applicant: Philip B. Griffin ,  Manish Devgan ,  Jason Howes ,  Scott Dunbar

Inventor： Philip B. Griffin ,  Manish Devgan ,  Jason Howes ,  Scott Dunbar

IPC: G06F7/04 ,  H04L9/32 ,  G06F15/16 ,  G06F17/30

CPC classification number: G06F21/6218 ,  G06F17/30581 ,  G06F17/30873 ,  G06F17/3089 ,  G06F17/30896 ,  G06F17/30908 ,  G06F21/604 ,  G06F21/6227 ,  G06F21/629 ,  G06F2221/0706 ,  G06F2221/0717 ,  G06F2221/0735 ,  G06F2221/0766 ,  G06F2221/0771 ,  G06F2221/2101 ,  G06F2221/2117 ,  G06F2221/2141 ,  G06F2221/2145 ,  G06F2221/2149 ,  G06Q10/10 ,  H04L29/06 ,  H04L41/18 ,  H04L41/22 ,  H04L63/0815 ,  H04L63/0884 ,  H04L63/102 ,  H04L67/02 ,  H04L67/025 ,  H04L67/06 ,  H04L67/14 ,  H04L67/142 ,  H04L67/16 ,  H04L67/2819 ,  H04L67/2838 ,  H04L67/2842 ,  H04L67/2871 ,  H04L67/306 ,  H04L67/34 ,  H04L67/36 ,  H04L69/22 ,  H04L69/329 ,  Y10S707/99931 ,  Y10S707/99933 ,  Y10S707/99953 ,  Y10S707/99954

Abstract: A system and method of authorization comprising associating at least one role with a resource, associating at least one capability with the at least one role, and determining whether to permit a resource operation based on the at least one capability.

Abstract translation: 一种授权的系统和方法，包括将至少一个角色与资源相关联，将至少一个能力与所述至少一个角色相关联，以及基于所述至少一个能力来确定是否允许资源操作。

公开(公告)号：US07240280B2

公开(公告)日：2007-07-03

申请号：US10279951

申请日：2002-10-24

Applicant: Chris Jolley ,  Sathyanarayana Giridhar ,  Philip B. Griffin ,  Jason Howes ,  Edward K. O'Neil ,  Jalpesh Patadia

Inventor： Chris Jolley ,  Sathyanarayana Giridhar ,  Philip B. Griffin ,  Jason Howes ,  Edward K. O'Neil ,  Jalpesh Patadia

IPC: G06F17/21

CPC classification number: G06F21/6218 ,  G06F17/30581 ,  G06F17/30873 ,  G06F17/3089 ,  G06F17/30896 ,  G06F17/30908 ,  G06F21/604 ,  G06F21/6227 ,  G06F21/629 ,  G06F2221/0706 ,  G06F2221/0717 ,  G06F2221/0735 ,  G06F2221/0766 ,  G06F2221/0771 ,  G06F2221/2101 ,  G06F2221/2117 ,  G06F2221/2141 ,  G06F2221/2145 ,  G06F2221/2149 ,  G06Q10/10 ,  H04L29/06 ,  H04L41/18 ,  H04L41/22 ,  H04L63/0815 ,  H04L63/0884 ,  H04L63/102 ,  H04L67/02 ,  H04L67/025 ,  H04L67/06 ,  H04L67/14 ,  H04L67/142 ,  H04L67/16 ,  H04L67/2819 ,  H04L67/2838 ,  H04L67/2842 ,  H04L67/2871 ,  H04L67/306 ,  H04L67/34 ,  H04L67/36 ,  H04L69/22 ,  H04L69/329 ,  Y10S707/99931 ,  Y10S707/99933 ,  Y10S707/99953 ,  Y10S707/99954

Abstract: A system and a method for providing application flow integration in a portal framework. In accordance with one embodiment, the invention comprises a portal servlet, which handles all incoming servlet requests and determines whether the incoming request represents a request either for a portal page or for a non-portal page; and, a portal processor which handles all portal page requests passed by the portal servlet, and executes an appropriate webflow to update the current state of the portal page, depending on a current set of events. Each of a plurality of portlets may have an individual webflow associated with it.

Abstract translation: 一种用于在门户框架中提供应用程序流集成的系统和方法。 根据一个实施例，本发明包括门户servlet，其处理所有传入的servlet请求并确定传入请求是否表示门户页面或非门户页面的请求; 以及门户处理器，其处理由门户网站servlet传递的所有门户页面请求，并且根据当前的事件集合执行适当的webflow来更新门户页面的当前状态。 多个Portlet中的每一个可以具有与其相关联的单个webflow。

公开(公告)号：US20050097352A1

公开(公告)日：2005-05-05

申请号：US10961701

申请日：2004-10-08

Applicant: Paul Patrick ,  David Byrne ,  Kenneth Yagen ,  Mingde Xu ,  Jason Howes ,  Mark Falco ,  Richard Riendeau

Inventor： Paul Patrick ,  David Byrne ,  Kenneth Yagen ,  Mingde Xu ,  Jason Howes ,  Mark Falco ,  Richard Riendeau

IPC: H04L9/00 ,  H04L9/32 ,  H04L29/06

CPC classification number: H04L63/20

Abstract: A system and method for a dynamically configurable security system, comprising, a process having one or more resources to be protected, and a security service module coupled to the process, one or more plugin security provider modules that are compatible with and extend the security service module, wherein the security service module is capable of receiving security information updates, and wherein the security service module is capable of controlling access to the one or more resources based on the security information updates through the use of the one or more plugin security provider modules.

Abstract translation: 一种用于动态可配置的安全系统的系统和方法，包括：具有一个或多个要保护的资源的进程，以及耦合到所述进程的安全服务模块，与所述安全服务兼容并扩展所述安全服务的一个或多个插件安全提供者模块 模块，其中所述安全服务模块能够接收安全信息更新，并且其中所述安全服务模块能够通过使用所述一个或多个插件安全提供者模块来基于所述安全信息更新来控制对所述一个或多个资源的访问 。

公开(公告)号：US20050097350A1

公开(公告)日：2005-05-05

申请号：US10961674

申请日：2004-10-08

Applicant: Paul Patrick ,  David Byrne ,  Kenneth Yagen ,  Mingde Xu ,  Jason Howes ,  Mark Falco ,  Richard Riendeau

Inventor： Paul Patrick ,  David Byrne ,  Kenneth Yagen ,  Mingde Xu ,  Jason Howes ,  Mark Falco ,  Richard Riendeau

IPC: G06F11/30 ,  G06F15/173 ,  G06F21/00 ,  H04L9/00

CPC classification number: G06F21/6218 ,  H04L63/105 ,  H04L63/20

Abstract: A system and method for distributing information from a first process to one or more security service modules, said system comprising the steps of, a remote interface capable of accepting first information from the first process, a provisioning service provider coupled to the remote interface and capable of obtaining the first information from the remote interface, and further capable of providing second information to a local interface, wherein the second information is based on the first information and is tailored for the one or more security service modules, the local interface capable of providing the second information to the one or more security service modules and wherein the one or more security service modules are capable of accepting the second information and performing at least one of the following: adjusting a configuration of the one or more security service modules to reflect the second information, and protecting access to at least one resource based on the second information.

Abstract translation: 一种用于将信息从第一进程分发到一个或多个安全服务模块的系统和方法，所述系统包括以下步骤：能够接收来自第一进程的第一信息的远程接口，耦合到远程接口的提供服务提供商和能够 从所述远程接口获取所述第一信息，并且还能够向本地接口提供第二信息，其中所述第二信息基于所述第一信息，并针对所述一个或多个安全服务模块进行定制，所述本地接口能够提供 将所述第二信息提供给所述一个或多个安全服务模块，并且其中所述一个或多个安全服务模块能够接受所述第二信息并且执行以下中的至少一个：调整所述一个或多个安全服务模块的配置以反映 第二信息，以及基于第二信息保护对至少一个资源的访问 配合

公开(公告)号：US20050005243A1

公开(公告)日：2005-01-06

申请号：US10789016

申请日：2004-02-27

Applicant: Daryl Olander ,  Richard Feit ,  Edward O'Neil ,  Timothy Breeden ,  Scott Musson ,  Christopher Jolley ,  Thomas Cook ,  Sathyanarayana Giridhar ,  Jason Howes ,  Douglas Dew ,  Fernand Galiana ,  Robert Bergman ,  Brodi Beartusk ,  Purushotham Naidu

Inventor： Daryl Olander ,  Richard Feit ,  Edward O'Neil ,  Timothy Breeden ,  Scott Musson ,  Christopher Jolley ,  Thomas Cook ,  Sathyanarayana Giridhar ,  Jason Howes ,  Douglas Dew ,  Fernand Galiana ,  Robert Bergman ,  Brodi Beartusk ,  Purushotham Naidu

IPC: G06F3/00 ,  G06F3/033 ,  G06F3/048 ,  G06F9/44 ,  G06F17/00 ,  G09G5/00

CPC classification number: G06F3/0483 ,  G06F3/0482 ,  G06F8/38 ,  G06F9/451

Abstract: A method for rendering a graphical user interface (GUI), comprising providing for the representation of the GUI as a set of objects wherein the objects are organized in a logical hierarchy, associating a theme with a first object in the set of objects, rendering the first object according to the theme, rendering any descendents of the first object according to the theme, wherein any descendents of the first object can override the theme, and wherein one of the set of objects can communicate with another of the set of objects.

Abstract translation: 一种用于呈现图形用户界面（GUI）的方法，包括将GUI的表示提供为一组对象，其中所述对象被组织在逻辑层级中，将主题与所述对象集合中的第一对象相关联， 根据所述主题的第一对象，根据所述主题呈现所述第一对象的任何后代，其中所述第一对象的任何后代可以覆盖所述主题，并且其中所述一组对象中的一个可与所述一组对象中的另一对象通信。

公开(公告)号：US07774697B2

公开(公告)日：2010-08-10

申请号：US10780340

申请日：2004-02-17

Applicant: Daryl B. Olander ,  Richard Feit ,  Edward O'Neil ,  Sathyanarayana Giridhar ,  Jason Howes ,  Douglas Dew ,  Thomas A. Cook

Inventor： Daryl B. Olander ,  Richard Feit ,  Edward O'Neil ,  Sathyanarayana Giridhar ,  Jason Howes ,  Douglas Dew ,  Thomas A. Cook

IPC: G06F17/00

CPC classification number: G06F8/20

Abstract: A system and method for accepting a communication, comprising providing the communication to a controller, associating a model with said communication, determining a state of the model based on said communication, providing a view based on the state of the model, and wherein the view is a page in a page group.

Abstract translation: 一种用于接受通信的系统和方法，包括向控制器提供通信，将模型与所述通信相关联，基于所述通信确定模型的状态，基于模型的状态提供视图，并且其中视图 是页面组中的页面。

公开(公告)号：US07650572B2

公开(公告)日：2010-01-19

申请号：US10789970

申请日：2004-02-27

Applicant: Daryl B. Olander ,  Richard Feit ,  Edward K. O'Neil ,  Timothy Breeden ,  Scott Musson ,  Christopher Jolley ,  Thomas A. Cook ,  Sathyanarayana Giridhar ,  Jason Howes ,  Douglas Dew ,  Fernand Galiana ,  Robert Bergman ,  Brodi Beartusk ,  Purushotham Babu Naidu

Inventor： Daryl B. Olander ,  Richard Feit ,  Edward K. O'Neil ,  Timothy Breeden ,  Scott Musson ,  Christopher Jolley ,  Thomas A. Cook ,  Sathyanarayana Giridhar ,  Jason Howes ,  Douglas Dew ,  Fernand Galiana ,  Robert Bergman ,  Brodi Beartusk ,  Purushotham Babu Naidu

IPC: G06F3/00

CPC classification number: G06F3/0483 ,  G06F3/0482 ,  G06F8/38 ,  G06F9/451

Abstract: A method for navigating a graphical user interface (GUI) having at least one page, comprising providing a first booklet, wherein user interaction with the first booklet can cause the GUI to navigate to a new page; providing a request based on user interaction with the first booklet; mapping the request to a control tree factory; generating a control tree from the factory based on the request wherein the control tree includes a booklet control corresponding to the first booklet; advancing the control tree through at least one lifecycle stage based on the request; and generating a response wherein the response can be used to render the new page.

Abstract translation: 一种用于导航具有至少一个页面的图形用户界面（GUI）的方法，包括提供第一小册子，其中用户与第一小册子的交互可导致GUI导航到新页面; 基于用户与第一册小册子交互提供请求; 将请求映射到控制树工厂; 基于所述请求从所述工厂生成控制树，其中所述控制树包括对应于所述第一小册子的小册子控制; 根据请求，将控制树提升至少一个生命周期阶段; 并产生响应，其中响应可用于呈现新页面。

公开(公告)号：US07603548B2

公开(公告)日：2009-10-13

申请号：US10961675

申请日：2004-10-08

Applicant: Paul Patrick ,  David Byrne ,  Kenneth D. Yagen ,  Mingde Xu ,  Jason Howes ,  Mark A. Falco ,  Richard J. Riendeau

Inventor： Paul Patrick ,  David Byrne ,  Kenneth D. Yagen ,  Mingde Xu ,  Jason Howes ,  Mark A. Falco ,  Richard J. Riendeau

IPC: H04L29/06 ,  G06F9/44

CPC classification number: G06F21/6218 ,  H04L63/105 ,  H04L63/20

Abstract: A method for providing a security provider for a client comprises providing a service provider interface, that is compatible with a security framework layer, and one or more services. The one or more services include at least one of, authentication, authorization, auditing, role mapping and credential mapping. The one or more services can be exposed through the service provider interface and the framework layer can expose the one or more services to an application program interface.

Abstract translation: 用于为客户端提供安全提供者的方法包括提供与安全框架层兼容的服务提供者接口以及一个或多个服务。 一个或多个服务包括认证，授权，审核，角色映射和凭证映射中的至少一个。 一个或多个服务可以通过服务提供商接口公开，并且框架层可以将一个或多个服务公开到应用程序接口。

公开(公告)号：US07594224B2

公开(公告)日：2009-09-22

申请号：US10961595

申请日：2004-10-08

Applicant: Paul Patrick ,  David Byrne ,  Kenneth D. Yagen ,  Mingde Xu ,  Jason Howes ,  Mark A. Falco ,  Richard J. Riendeau

Inventor： Paul Patrick ,  David Byrne ,  Kenneth D. Yagen ,  Mingde Xu ,  Jason Howes ,  Mark A. Falco ,  Richard J. Riendeau

IPC: G06F9/44 ,  G06F11/30

CPC classification number: G06F21/6218 ,  H04L63/105 ,  H04L63/20

Abstract: A system and method for distributed enterprise security, comprising, a server operable to update information, wherein the information can include one or more of a policy and configuration information, a security control module (SCM) operable to accept the information, at least one security service module (SSM) operable to accept the information from the SCM, and herein the information accepted by the SCM is relevant to one or more of the at least one SSMs.

Abstract translation: 一种用于分布式企业安全性的系统和方法，包括：可操作以更新信息的服务器，其中所述信息可以包括策略和配置信息中的一个或多个，可操作以接受所述信息的安全控制模块（SCM），至少一个安全 服务模块（SSM），其可操作以接受来自SCM的信息，并且此处由SCM接受的信息与所述至少一个SSM中的一个或多个相关。

公开(公告)号：US20070214421A1

公开(公告)日：2007-09-13

申请号：US11752844

申请日：2007-05-23

Applicant: Chris Jolley ,  Sathyanarayana Giridhar ,  Philip Griffin ,  Jason Howes ,  Edward O'Neil ,  Jalpesh Patadia

Inventor： Chris Jolley ,  Sathyanarayana Giridhar ,  Philip Griffin ,  Jason Howes ,  Edward O'Neil ,  Jalpesh Patadia

IPC: G06F3/00

CPC classification number: G06F21/6218 ,  G06F16/275 ,  G06F16/80 ,  G06F16/954 ,  G06F16/958 ,  G06F16/986 ,  G06F21/604 ,  G06F21/6227 ,  G06F21/629 ,  G06F2221/0706 ,  G06F2221/0717 ,  G06F2221/0735 ,  G06F2221/0766 ,  G06F2221/0771 ,  G06F2221/2101 ,  G06F2221/2117 ,  G06F2221/2141 ,  G06F2221/2145 ,  G06F2221/2149 ,  G06Q10/10 ,  H04L29/06 ,  H04L41/18 ,  H04L41/22 ,  H04L63/0815 ,  H04L63/0884 ,  H04L63/102 ,  H04L67/02 ,  H04L67/025 ,  H04L67/06 ,  H04L67/14 ,  H04L67/142 ,  H04L67/16 ,  H04L67/2819 ,  H04L67/2838 ,  H04L67/2842 ,  H04L67/2871 ,  H04L67/306 ,  H04L67/34 ,  H04L67/36 ,  H04L69/22 ,  H04L69/329 ,  Y10S707/99931 ,  Y10S707/99933 ,  Y10S707/99953 ,  Y10S707/99954

Abstract: A system and a method for providing application flow integration in a portal framework. In accordance with one embodiment, the invention comprises a portal servlet, which handles all incoming servlet requests and determines whether the incoming request represents a request either for a portal page or for a non-portal page; and, a portal processor which handles all portal page requests passed by the portal servlet, and executes an appropriate webflow to update the current state of the portal page, depending on a current set of events. Each of a plurality of portlets may have an individual webflow associated with it.

Abstract translation: 一种用于在门户框架中提供应用程序流集成的系统和方法。 根据一个实施例，本发明包括门户servlet，其处理所有传入的servlet请求并确定传入请求是否表示门户页面或非门户页面的请求; 以及门户处理器，其处理由门户网站servlet传递的所有门户页面请求，并且根据当前的事件集合执行适当的webflow来更新门户页面的当前状态。 多个Portlet中的每一个可以具有与其相关联的单个webflow。