公开(公告)号：US20100057910A1

公开(公告)日：2010-03-04

申请号：US12202459

申请日：2008-09-02

申请人： Todd E. Kaplinger ,  Erik John Burckart ,  Rohit Dilip Kelapure ,  Erinn Elizabeth Koonce ,  Maxim Avery Moldenhauer

发明人： Todd E. Kaplinger ,  Erik John Burckart ,  Rohit Dilip Kelapure ,  Erinn Elizabeth Koonce ,  Maxim Avery Moldenhauer

IPC分类号： G06F15/173

CPC分类号： H04L67/20

摘要： The ability to leverage a publish/subscribe functionality in an application server environment has allowed the storage of cached entries to be stored over multiple clients rather than on a single application server, freeing up valuable resources. However, in this arrangement it is not possible for the originating server to validate shared content originating from client-side storage. The present invention provides a system and method for securing and validating content from asynchronous include request by allowing a subscribing client to set trusted clients from which they will accept content.

摘要翻译： 在应用程序服务器环境中利用发布/订阅功能的能力允许将缓存的条目存储在多个客户端而不是单个应用程序服务器上，释放宝贵的资源。 然而，在这种安排中，始发服务器不可能验证源自客户端存储的共享内容。 本发明提供一种用于通过允许订阅客户端设置他们将接受内容的可信客户端来从异步包括请求中保护和验证内容的系统和方法。

公开(公告)号：US20090307304A1

公开(公告)日：2009-12-10

申请号：US12136185

申请日：2008-06-10

申请人： Maxim Avery Moldenhauer ,  Erinn Elizabeth Koonce ,  Todd Eric Kaplinger ,  Rohit Dilip Kelapure

发明人： Maxim Avery Moldenhauer ,  Erinn Elizabeth Koonce ,  Todd Eric Kaplinger ,  Rohit Dilip Kelapure

IPC分类号： G06F15/16

CPC分类号： G06F9/54 ,  G06F16/00 ,  G06F2209/541

摘要： Process, apparatus and program product for processing a request at an application server are provided. The process includes initiating one or more asynchronous operations in response to the request received by the application server. The process further includes generating a response content that includes one or more placeholders. Thereafter, one or more placeholders mark a location of content corresponding to each of the one or more asynchronous operations. The process further includes aggregating content received from a completed asynchronous operation by filling the content in the corresponding placeholder. The process further includes sending a partial response content with content up to the first unfilled placeholder.

摘要翻译： 提供了用于在应用服务器处理请求的过程，设备和程序产品。 该过程包括响应于应用服务器接收到的请求发起一个或多个异步操作。 该过程还包括生成包括一个或多个占位符的响应内容。 此后，一个或多个占位符标记与一个或多个异步操作中的每一个对应的内容的位置。 该过程还包括通过将内容填充在相应的占位符中来聚合从完成的异步操作接收到的内容。 该过程还包括发送具有内容的部分响应内容直到第一未填充占位符。

公开(公告)号：US20090300096A1

公开(公告)日：2009-12-03

申请号：US12127420

申请日：2008-05-27

申请人： Erinn Elizabeth Koonce ,  Maxim Avery Moldenhauer ,  Rohit Dilip Kelapure ,  Todd Eric Kaplinger

发明人： Erinn Elizabeth Koonce ,  Maxim Avery Moldenhauer ,  Rohit Dilip Kelapure ,  Todd Eric Kaplinger

IPC分类号： G06F15/16

CPC分类号： H04L67/2857

摘要： A process for facilitating distribution of asynchronous content by a result server includes subscribing at least one client in response to subscription requests for the asynchronous content received at the result server from the at least one client. The process further includes publishing the asynchronous content. The publishing leads to dissemination of the asynchronous content from the result server to the subscribed clients, and removal of the asynchronous content from the result server. The process further includes receiving a subscription request from additional client(s). The process further includes polling the subscribed clients for the asynchronous content and sending the asynchronous content to the additional client(s) upon receipt of the asynchronous content from any client belonging to the subscribed clients.

摘要翻译： 用于促进结果服务器分发异步内容的过程包括响应于来自所述至少一个客户端的在结果服务器处接收到的异步内容的订阅请求来订阅至少一个客户端。 该过程还包括发布异步内容。 发布导致异步内容从结果服务器传播到订阅的客户端，并从结果服务器中删除异步内容。 该过程还包括从附加的客户端接收订阅请求。 该过程还包括轮询订阅的异步内容的客户端并且在从属于订阅的客户端的任何客户端接收到异步内容时将异步内容发送到附加客户端。

公开(公告)号：US07725535B2

公开(公告)日：2010-05-25

申请号：US12127420

申请日：2008-05-27

申请人： Erinn Elizabeth Koonce ,  Maxim Avery Moldenhauer ,  Rohit Dilip Kelapure ,  Todd Eric Kaplinger

发明人： Erinn Elizabeth Koonce ,  Maxim Avery Moldenhauer ,  Rohit Dilip Kelapure ,  Todd Eric Kaplinger

IPC分类号： G06F15/16

CPC分类号： H04L67/2857

摘要： A process for facilitating distribution of asynchronous content by a result server includes subscribing at least one client in response to subscription requests for the asynchronous content received at the result server from the at least one client. The process further includes publishing the asynchronous content. The publishing leads to dissemination of the asynchronous content from the result server to the subscribed clients, and removal of the asynchronous content from the result server. The process further includes receiving a subscription request from additional client(s). The process further includes polling the subscribed clients for the asynchronous content and sending the asynchronous content to the additional client(s) upon receipt of the asynchronous content from any client belonging to the subscribed clients.

摘要翻译： 用于促进结果服务器分发异步内容的过程包括响应于来自所述至少一个客户端的在结果服务器处接收到的异步内容的订阅请求来订阅至少一个客户端。 该过程还包括发布异步内容。 发布导致异步内容从结果服务器传播到订阅的客户端，并从结果服务器中删除异步内容。 该过程还包括从附加的客户端接收订阅请求。 该过程还包括轮询订阅的异步内容的客户端并且在从属于订阅的客户端的任何客户端接收到异步内容时将异步内容发送到附加客户端。

公开(公告)号：US08140842B2

公开(公告)日：2012-03-20

申请号：US12129417

申请日：2008-05-29

申请人： Curtiss James Howard ,  Todd Eric Kaplinger ,  Maxim Avery Moldenhauer ,  Erinn Elizabeth Koonce ,  Stephen Joseph Kenna

发明人： Curtiss James Howard ,  Todd Eric Kaplinger ,  Maxim Avery Moldenhauer ,  Erinn Elizabeth Koonce ,  Stephen Joseph Kenna

IPC分类号： H04L29/06

CPC分类号： G06F9/547

摘要： The present invention provides client and server identity validation in an asynchronous request dispatching environment with client-side aggregation. An application server receives an asynchronous include request from a client. A first unique identifier associating the client with the asynchronous include is generated and sent to a results server. A second unique identifier identifying the results server is generated and sent to the application server. Results of the asynchronous include are stored in the results server. The application server sends the first and second unique identifiers to the client, which polls the results server and sends the second unique identifier to the results server. The results server uses the second unique identifier to verify the identity of the client. The results server sends the first unique identifier to the client. The client uses the first unique identifier to validate the identity of the results server.

摘要翻译： 本发明在具有客户端聚合的异步请求调度环境中提供客户端和服务器身份验证。 应用服务器从客户端接收异步包含请求。 将客户端与异步包括关联的第一个唯一标识符生成并发送到结果服务器。 生成识别结果服务器的第二个唯一标识符，并将其发送到应用程序服务器。 异步包的结果存储在结果服务器中。 应用服务器向客户端发送第一和第二唯一标识符，轮询结果服务器并将第二唯一标识符发送给结果服务器。 结果服务器使用第二个唯一标识符来验证客户端的身份。 结果服务器将第一个唯一标识符发送给客户端。 客户端使用第一个唯一标识符来验证结果服务器的身份。

公开(公告)号：US20090300345A1

公开(公告)日：2009-12-03

申请号：US12129417

申请日：2008-05-29

申请人： Curtiss James Howard ,  Todd Eric Kaplinger ,  Maxim Avery Moldenhauer ,  Erinn Elizabeth Koonce ,  Stephen Joseph Kenna

发明人： Curtiss James Howard ,  Todd Eric Kaplinger ,  Maxim Avery Moldenhauer ,  Erinn Elizabeth Koonce ,  Stephen Joseph Kenna

IPC分类号： H04L9/32 ,  G06F15/16 ,  H04L9/00

CPC分类号： G06F9/547

摘要： The present invention provides client and server identity validation in an asynchronous request dispatching environment with client-side aggregation. An application server receives an asynchronous include request from a client. A first unique identifier associating the client with the asynchronous include is generated and sent to a results server. A second unique identifier identifying the results server is generated and sent to the application server. Results of the asynchronous include are stored in the results server. The application server sends the first and second unique identifiers to the client, which polls the results server and sends the second unique identifier to the results server. The results server uses the second unique identifier to verify the identity of the client. The results server sends the first unique identifier to the client. The client uses the first unique identifier to validate the identity of the results server.

摘要翻译： 本发明在具有客户端聚合的异步请求调度环境中提供客户端和服务器身份验证。 应用服务器从客户端接收异步包含请求。 将客户端与异步包括关联的第一个唯一标识符生成并发送到结果服务器。 生成识别结果服务器的第二个唯一标识符，并将其发送到应用程序服务器。 异步包的结果存储在结果服务器中。 应用服务器向客户端发送第一和第二唯一标识符，轮询结果服务器并将第二唯一标识符发送给结果服务器。 结果服务器使用第二个唯一标识符来验证客户端的身份。 结果服务器将第一个唯一标识符发送给客户端。 客户端使用第一个唯一标识符来验证结果服务器的身份。

公开(公告)号：US20120324528A1

公开(公告)日：2012-12-20

申请号：US13162744

申请日：2011-06-17

申请人： Elisa Ferracane ,  Paul William Bennett ,  William J. O'Donnell ,  Ajay Reddy Karkala ,  Ut Van Le ,  Michael Craig Thompson ,  Maxim Avery Moldenhauer

发明人： Elisa Ferracane ,  Paul William Bennett ,  William J. O'Donnell ,  Ajay Reddy Karkala ,  Ut Van Le ,  Michael Craig Thompson ,  Maxim Avery Moldenhauer

IPC分类号： G06F17/00

CPC分类号： H04L67/02 ,  G06F21/53 ,  G06F21/54 ,  H04L63/168 ,  H04L63/20

摘要： A method is described for merging security constraints associated with an application when using security annotations. The application comprises one or more servlets, such as a Java servlet. During application deployment, a list of role names is generated by merging static security constraints, for example, identified in a deployment descriptor, and in a static security annotation that defines a list containing the names of authorized roles for a servlet. Later, during application runtime in an application server, security constraints are retrieved from a plurality of sources, including both dynamic and static security annotations. Using the list of role names and the security constraints retrieved, a set of merged security constraints having a defined and proper order of precedence is generated. In particular, preferably one or more dynamic security annotations are first merged with one or more static security annotations to generate a set of runtime constraints. The security constraints from the deployment descriptor are then merged with the set of runtime constraints and the list of roles to generate the set of merged security constraints. These merged security constraints are then applied to process a request being handled by the application server.

摘要翻译： 描述了一种用于在使用安全注释时合并与应用程序相关联的安全约束的方法。 应用程序包含一个或多个servlet，例如Java servlet。 在应用程序部署期间，通过合并静态安全约束（例如在部署描述符中标识的静态安全约束）和定义包含servlet授权角色名称的静态安全注释来生成角色名称列表。 之后，在应用程序服务器的应用程序运行期间，从多个源（包括动态和静态安全注释）检索安全约束。 使用角色名称列表和检索到的安全约束，生成一组具有定义和正确优先顺序的合并安全约束。 特别地，优选地，首先将一个或多个动态安全注释与一个或多个静态安全注释合并以生成一组运行时约束。 然后，部署描述符的安全约束与运行时约束集合和角色列表合并，以生成一组合并的安全约束。 然后将这些合并的安全约束应用于处理由应用程序服务器处理的请求。

公开(公告)号：US08645679B2

公开(公告)日：2014-02-04

申请号：US13162744

申请日：2011-06-17

申请人： Elisa Ferracane ,  Paul William Bennett ,  William J. O'Donnell ,  Ajay Reddy Karkala ,  Ut Van Le ,  Michael Craig Thompson ,  Maxim Avery Moldenhauer

发明人： Elisa Ferracane ,  Paul William Bennett ,  William J. O'Donnell ,  Ajay Reddy Karkala ,  Ut Van Le ,  Michael Craig Thompson ,  Maxim Avery Moldenhauer

IPC分类号： H04L29/06

CPC分类号： H04L67/02 ,  G06F21/53 ,  G06F21/54 ,  H04L63/168 ,  H04L63/20

摘要： A method is described for merging security constraints associated with an application when using security annotations. The application comprises one or more servlets, such as a Java servlet. During application deployment, a list of role names is generated by merging static security constraints, for example, identified in a deployment descriptor, and in a static security annotation that defines a list containing the names of authorized roles for a servlet. Later, during application runtime in an application server, security constraints are retrieved from a plurality of sources, including both dynamic and static security annotations. Using the list of role names and the security constraints retrieved, a set of merged security constraints having a defined and proper order of precedence is generated. In particular, preferably one or more dynamic security annotations are first merged with one or more static security annotations to generate a set of runtime constraints. The security constraints from the deployment descriptor are then merged with the set of runtime constraints and the list of roles to generate the set of merged security constraints. These merged security constraints are then applied to process a request being handled by the application server.

摘要翻译： 描述了一种用于在使用安全注释时合并与应用程序相关联的安全约束的方法。 应用程序包含一个或多个servlet，例如Java servlet。 在应用程序部署期间，通过合并静态安全约束（例如在部署描述符中标识的静态安全约束）和定义包含servlet授权角色名称的静态安全注释来生成角色名称列表。 之后，在应用程序服务器的应用程序运行期间，从多个源（包括动态和静态安全注释）检索安全约束。 使用角色名称列表和检索到的安全约束，生成一组具有定义和正确优先顺序的合并安全约束。 特别地，优选地，首先将一个或多个动态安全注释与一个或多个静态安全注释合并以生成一组运行时约束。 然后，部署描述符的安全约束与运行时约束集合和角色列表合并，以生成一组合并的安全约束。 然后将这些合并的安全约束应用于处理由应用程序服务器处理的请求。