-
1.发明授权System and method for merging security constraints when using security annotations 有权使用安全注解时合并安全约束的系统和方法公开(公告)号:US08645679B2
公开(公告)日:2014-02-04
申请号:US13162744
申请日:2011-06-17
申请人: Elisa Ferracane , Paul William Bennett , William J. O'Donnell , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson , Maxim Avery Moldenhauer
发明人: Elisa Ferracane , Paul William Bennett , William J. O'Donnell , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson , Maxim Avery Moldenhauer
IPC分类号: H04L29/06
CPC分类号: H04L67/02 , G06F21/53 , G06F21/54 , H04L63/168 , H04L63/20
摘要: A method is described for merging security constraints associated with an application when using security annotations. The application comprises one or more servlets, such as a Java servlet. During application deployment, a list of role names is generated by merging static security constraints, for example, identified in a deployment descriptor, and in a static security annotation that defines a list containing the names of authorized roles for a servlet. Later, during application runtime in an application server, security constraints are retrieved from a plurality of sources, including both dynamic and static security annotations. Using the list of role names and the security constraints retrieved, a set of merged security constraints having a defined and proper order of precedence is generated. In particular, preferably one or more dynamic security annotations are first merged with one or more static security annotations to generate a set of runtime constraints. The security constraints from the deployment descriptor are then merged with the set of runtime constraints and the list of roles to generate the set of merged security constraints. These merged security constraints are then applied to process a request being handled by the application server.
摘要翻译: 描述了一种用于在使用安全注释时合并与应用程序相关联的安全约束的方法。 应用程序包含一个或多个servlet,例如Java servlet。 在应用程序部署期间,通过合并静态安全约束(例如在部署描述符中标识的静态安全约束)和定义包含servlet授权角色名称的静态安全注释来生成角色名称列表。 之后,在应用程序服务器的应用程序运行期间,从多个源(包括动态和静态安全注释)检索安全约束。 使用角色名称列表和检索到的安全约束,生成一组具有定义和正确优先顺序的合并安全约束。 特别地,优选地,首先将一个或多个动态安全注释与一个或多个静态安全注释合并以生成一组运行时约束。 然后,部署描述符的安全约束与运行时约束集合和角色列表合并,以生成一组合并的安全约束。 然后将这些合并的安全约束应用于处理由应用程序服务器处理的请求。
-
公开(公告)号:US20120317633A1
公开(公告)日:2012-12-13
申请号:US13157633
申请日:2011-06-10
申请人: William J. O'Donnell , Paul William Bennett , Elisa Ferracane , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson
发明人: William J. O'Donnell , Paul William Bennett , Elisa Ferracane , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson
IPC分类号: G06F21/00
CPC分类号: G06F21/84 , G06F21/305 , G06F21/604 , G06F2221/2115 , G06F2221/2117 , G06F2221/2119 , H04L63/0807 , H04L63/0815 , H04L63/101
摘要: A method for dynamically assigning a displayable realm name begins upon receipt of an authentication request to an application, such as a web application, being executed by an application server. In response, a determination is made whether an application realm name has been set in a configuration file associated with the application. If not, a custom display property is then evaluated. If the custom display property is set true, a realm name associated with an active authentication mechanism is retrieved and provided for display in an authentication panel. If the custom display property is set false, a default string is provided for display in the authentication panel. In this manner, an application server administrator can control what realm name is displayed to an end user in the event an application developer has not specified the realm name in the application configuration.
摘要翻译: 一种用于动态分配可显示领域名称的方法,在接收到由应用服务器执行的应用程序(如Web应用程序)的认证请求开始。 作为响应,确定在与应用相关联的配置文件中是否设置了应用程序域名。 如果没有,则会自定义显示属性。 如果自定义显示属性设置为true,则检索与活动身份验证机制相关联的领域名称,并提供以在身份验证面板中显示。 如果自定义显示属性设置为false,则提供默认字符串以在身份验证面板中显示。 以这种方式,应用程序服务器管理员可以在应用程序开发人员未在应用程序配置中指定领域名称的情况下控制向最终用户显示哪个领域名称。
-
3.发明授权Preparation of isoflurane by reaction of 2,2,2-trifluoroethyl difluoro-methyl ether and chlorine in added water, at low temperatures and/or at higher conversions 失效通过在低温和/或更高的转化率下,在加入的水中使2,2,2-三氟乙基二氟甲基醚和氯反应制备异氟烷公开(公告)号:US06551468B1
公开(公告)日:2003-04-22
申请号:US09529202
申请日:2000-08-21
IPC分类号: C07C4500
CPC分类号: C07C41/22 , C07C43/123
摘要: A process for preparing isoflurane (1-chloro-2,2,2-trifluoroethyl difluoromethyl ether) by reacting PFE (2,2,2-trifluoroethyl difluoromethyl ether) with chlorine in the presence of ultraviolet light and added water, at a low temperature and/or at a high conversion.
摘要翻译: 一种在紫外光和加水存在下,使PFE(2,2,2-三氟乙基二氟甲基醚)与氯反应制备异氟烷(1-氯-2,2,2-三氟乙基二氟甲基醚)的方法, 和/或高转化率。
-
4.发明授权公开(公告)号:US09582407B2
公开(公告)日:2017-02-28
申请号:US13034907
申请日:2011-02-25
CPC分类号: G06F11/3688 , G06F21/6218
摘要: Mechanisms are provided for performing security role definition testing. An application is received in a container of a runtime environment of the data processing system. The application has methods and security role definitions associated with the methods. A properties object, which specifies a user identifier to security role mapping, is received in the container. A test application is executed, in the container, by the processor, on an execution of the methods of the application based on the user identifier to security role mapping and the security role definitions. The test application tests an operation of the application with regard to the security role definitions. A result of the execution of the test application on the execution of the methods of the application is then output.
摘要翻译: 提供了执行安全角色定义测试的机制。 在数据处理系统的运行时环境的容器中接收应用程序。 该应用程序具有与方法相关联的方法和安全角色定义。 在容器中收到一个属性对象,它指定安全角色映射的用户标识符。 测试应用程序在容器中由处理器根据用户标识符对安全角色映射和安全角色定义执行应用程序的方法。 测试应用程序测试应用程序对安全角色定义的操作。 然后输出在执行应用程序的方法时执行测试应用程序的结果。
-
公开(公告)号:US08938791B2
公开(公告)日:2015-01-20
申请号:US13157633
申请日:2011-06-10
申请人: William J. O'Donnell , Paul William Bennett , Elisa Ferracane , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson
发明人: William J. O'Donnell , Paul William Bennett , Elisa Ferracane , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson
CPC分类号: G06F21/84 , G06F21/305 , G06F21/604 , G06F2221/2115 , G06F2221/2117 , G06F2221/2119 , H04L63/0807 , H04L63/0815 , H04L63/101
摘要: A method for dynamically assigning a displayable realm name begins upon receipt of an authentication request to an application, such as a web application, being executed by an application server. In response, a determination is made whether an application realm name has been set in a configuration file associated with the application. If not, a custom display property is then evaluated. If the custom display property is set true, a realm name associated with an active authentication mechanism is retrieved and provided for display in an authentication panel. If the custom display property is set false, a default string is provided for display in the authentication panel. In this manner, an application server administrator can control what realm name is displayed to an end user in the event an application developer has not specified the realm name in the application configuration.
摘要翻译: 一种用于动态分配可显示领域名称的方法,在接收到由应用服务器执行的应用程序(如Web应用程序)的认证请求开始。 作为响应,确定在与应用相关联的配置文件中是否设置了应用程序域名。 如果没有,则会自定义显示属性。 如果自定义显示属性设置为true,则检索与活动身份验证机制相关联的领域名称,并提供以在身份验证面板中显示。 如果自定义显示属性设置为false,则提供默认字符串以在身份验证面板中显示。 以这种方式,应用程序服务器管理员可以在应用程序开发人员未在应用程序配置中指定领域名称的情况下控制向最终用户显示哪个领域名称。
-
公开(公告)号:US20130007856A1
公开(公告)日:2013-01-03
申请号:US13172699
申请日:2011-06-29
申请人: Paul W. Bennett , Christopher M. Dettlaff , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
发明人: Paul W. Bennett , Christopher M. Dettlaff , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
IPC分类号: G06F17/00
CPC分类号: G06F21/33
摘要: A method, data processing system, and computer program product for managing user identification information. A determination is made whether an instance of security information in use on the first application server and referenced by a token that has expired was generated by an application server compatible with a first application server in response to receiving the token. A determination is made whether the instance of the security information is managed by a set of rules for a group of users of the first application server. A determination is made whether a user identifier from the token is authorized to access the first application server. The token is renewed in response to determining that the user identifier is authorized to access the first application server.
摘要翻译: 一种用于管理用户识别信息的方法,数据处理系统和计算机程序产品。 确定在与第一应用服务器兼容的应用服务器响应于接收到令牌而生成了在第一应用服务器上使用并被具有过期的令牌引用的安全信息的实例是否由与第一应用服务器兼容的应用服务器生成。 确定安全信息的实例是否由第一应用服务器的用户组的一组规则管理。 确定来自令牌的用户标识符是否被授权访问第一应用服务器。 响应于确定用户标识符被授权访问第一应用服务器而更新令牌。
-
7.发明申请System and method for merging security constraints when using security annotations 有权使用安全注解时合并安全约束的系统和方法公开(公告)号:US20120324528A1
公开(公告)日:2012-12-20
申请号:US13162744
申请日:2011-06-17
申请人: Elisa Ferracane , Paul William Bennett , William J. O'Donnell , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson , Maxim Avery Moldenhauer
发明人: Elisa Ferracane , Paul William Bennett , William J. O'Donnell , Ajay Reddy Karkala , Ut Van Le , Michael Craig Thompson , Maxim Avery Moldenhauer
IPC分类号: G06F17/00
CPC分类号: H04L67/02 , G06F21/53 , G06F21/54 , H04L63/168 , H04L63/20
摘要: A method is described for merging security constraints associated with an application when using security annotations. The application comprises one or more servlets, such as a Java servlet. During application deployment, a list of role names is generated by merging static security constraints, for example, identified in a deployment descriptor, and in a static security annotation that defines a list containing the names of authorized roles for a servlet. Later, during application runtime in an application server, security constraints are retrieved from a plurality of sources, including both dynamic and static security annotations. Using the list of role names and the security constraints retrieved, a set of merged security constraints having a defined and proper order of precedence is generated. In particular, preferably one or more dynamic security annotations are first merged with one or more static security annotations to generate a set of runtime constraints. The security constraints from the deployment descriptor are then merged with the set of runtime constraints and the list of roles to generate the set of merged security constraints. These merged security constraints are then applied to process a request being handled by the application server.
摘要翻译: 描述了一种用于在使用安全注释时合并与应用程序相关联的安全约束的方法。 应用程序包含一个或多个servlet,例如Java servlet。 在应用程序部署期间,通过合并静态安全约束(例如在部署描述符中标识的静态安全约束)和定义包含servlet授权角色名称的静态安全注释来生成角色名称列表。 之后,在应用程序服务器的应用程序运行期间,从多个源(包括动态和静态安全注释)检索安全约束。 使用角色名称列表和检索到的安全约束,生成一组具有定义和正确优先顺序的合并安全约束。 特别地,优选地,首先将一个或多个动态安全注释与一个或多个静态安全注释合并以生成一组运行时约束。 然后,部署描述符的安全约束与运行时约束集合和角色列表合并,以生成一组合并的安全约束。 然后将这些合并的安全约束应用于处理由应用程序服务器处理的请求。
-
8.发明申请公开(公告)号:US20120222015A1
公开(公告)日:2012-08-30
申请号:US13034907
申请日:2011-02-25
IPC分类号: G06F9/44
CPC分类号: G06F11/3688 , G06F21/6218
摘要: Mechanisms are provided for performing security role definition testing. An application is received in a container of a runtime environment of the data processing system. The application has methods and security role definitions associated with the methods. A properties object, which specifies a user identifier to security role mapping, is received in the container. A test application is executed, in the container, by the processor, on an execution of the methods of the application based on the user identifier to security role mapping and the security role definitions. The test application tests an operation of the application with regard to the security role definitions. A result of the execution of the test application on the execution of the methods of the application is then output.
摘要翻译: 提供了执行安全角色定义测试的机制。 在数据处理系统的运行时环境的容器中接收应用程序。 该应用程序具有与方法相关联的方法和安全角色定义。 在容器中收到一个属性对象,它指定安全角色映射的用户标识符。 测试应用程序在容器中由处理器根据用户标识符对安全角色映射和安全角色定义执行应用程序的方法。 测试应用程序测试应用程序对安全角色定义的操作。 然后输出在执行应用程序的方法时执行测试应用程序的结果。
-
公开(公告)号:US5185123A
公开(公告)日:1993-02-09
申请号:US866412
申请日:1992-04-10
摘要: Apparatus suitable for annealing the interior walls of a nuclear reactor which comprises a nuclear reactor shell, a cap securely attached to the nuclear reactor shell, wherein the cap has an inlet line for the introduction of a hot gas under high pressure and an outlet line for removing low pressure gas from the interior of the apparatus, means, such as a cylindrical shell, that helps define an annular space adjacent to the vertical walls of the reactor through which gas can flow and means for directing low pressure gas to the outlet line.
-
公开(公告)号:US4572548A
公开(公告)日:1986-02-25
申请号:US539074
申请日:1983-10-04
摘要: A novel pipelock comprising a first pair of rings facing each other axially, with the inner diameter of each ring at the outer face being smaller than the inner diameter of each ring at the inner face, each of said first pair of rings comprising at least two circumferential parts, means to restrain longitudinal movement of facing circumferential parts outwardly from each other, at least one second ring comprised of at least two circumferential parts connected to each other, outwardly surrounding said first pair of rings, and constraining outward radial movement of said first pair of rings.
摘要翻译: 一种新颖的管锁,包括第一对轴向对置的环,每个环的外表面的内径小于内表面处的每个环的内径,每个所述第一对环包括至少两个 周向部分,用于限制相对的周向部分彼此向外的纵向运动的装置,至少一个第二环,其包括彼此连接的至少两个周向部分,向外围绕所述第一对环,并限制所述第一对的向外径向运动 一对戒指
-
-
-
-
-
-
-
-
-
搜索结果
21 条记录 (耗时 0.02 秒)
