首页>
外国专利>
System and methods for providing stateless security management for web applications using non-HTTP communications protocols
System and methods for providing stateless security management for web applications using non-HTTP communications protocols
展开▼
机译:使用非HTTP通信协议为Web应用程序提供无状态安全管理的系统和方法
展开▼
页面导航
摘要
著录项
相似文献
摘要
A gateway server interoperates with client and remote server systems to provide stateless security management for a distributed Web application. A Web client performs an authentication challenge directed to a user of the Web-browser client where a secure token is not present in a local store instance corresponding to the client application. The authentication challenge obtains the user credentials and then exchanges the user credentials with the gateway server for a secure token. The secure token is then sent in a protocol specific connect message to the gateway server. The gateway server, in response to receipt of the connect message, initiates a WebSocket connection directed to the remote Web service by inspecting the connect message to recover the secure token, evaluating the secure token to obtain user credentials, injecting the secure token with the user credentials, and sending the connect message to the remote Web service.
展开▼