会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 7. 发明授权
    • System and method for merging security constraints when using security annotations
    • 使用安全注解时合并安全约束的系统和方法
    • US08645679B2
    • 2014-02-04
    • US13162744
    • 2011-06-17
    • Elisa FerracanePaul William BennettWilliam J. O'DonnellAjay Reddy KarkalaUt Van LeMichael Craig ThompsonMaxim Avery Moldenhauer
    • Elisa FerracanePaul William BennettWilliam J. O'DonnellAjay Reddy KarkalaUt Van LeMichael Craig ThompsonMaxim Avery Moldenhauer
    • H04L29/06
    • H04L67/02G06F21/53G06F21/54H04L63/168H04L63/20
    • A method is described for merging security constraints associated with an application when using security annotations. The application comprises one or more servlets, such as a Java servlet. During application deployment, a list of role names is generated by merging static security constraints, for example, identified in a deployment descriptor, and in a static security annotation that defines a list containing the names of authorized roles for a servlet. Later, during application runtime in an application server, security constraints are retrieved from a plurality of sources, including both dynamic and static security annotations. Using the list of role names and the security constraints retrieved, a set of merged security constraints having a defined and proper order of precedence is generated. In particular, preferably one or more dynamic security annotations are first merged with one or more static security annotations to generate a set of runtime constraints. The security constraints from the deployment descriptor are then merged with the set of runtime constraints and the list of roles to generate the set of merged security constraints. These merged security constraints are then applied to process a request being handled by the application server.
    • 描述了一种用于在使用安全注释时合并与应用程序相关联的安全约束的方法。 应用程序包含一个或多个servlet,例如Java servlet。 在应用程序部署期间,通过合并静态安全约束(例如在部署描述符中标识的静态安全约束)和定义包含servlet授权角色名称的静态安全注释来生成角色名称列表。 之后,在应用程序服务器的应用程序运行期间,从多个源(包括动态和静态安全注释)检索安全约束。 使用角色名称列表和检索到的安全约束,生成一组具有定义和正确优先顺序的合并安全约束。 特别地,优选地,首先将一个或多个动态安全注释与一个或多个静态安全注释合并以生成一组运行时约束。 然后,部署描述符的安全约束与运行时约束集合和角色列表合并,以生成一组合并的安全约束。 然后将这些合并的安全约束应用于处理由应用程序服务器处理的请求。
    • 10. 发明授权
    • Refreshing group membership information for a user identifier associated with a security context
    • 刷新与安全上下文相关联的用户标识符的组成员身份信息
    • US08707405B2
    • 2014-04-22
    • US13348466
    • 2012-01-11
    • William J. O'DonnellPaul William BennettElisa FerracaneMichael Craig ThompsonMichael Dettlaff Christopher
    • William J. O'DonnellPaul William BennettElisa FerracaneMichael Craig ThompsonMichael Dettlaff Christopher
    • H04L29/06
    • G06F21/335
    • A method for selectively refreshing group membership for an identifier associated with an authenticated user. The identifier represents an application server security context, and it is generated to enable a user credential associated with the authenticated user to be persisted. Following such authentication, the client is provided with a time-bounded, renewable security token. The method begins by configuring an option whether group membership information is refreshed during renewal of an expired security token. During renewal of an expired security token, the method determines whether the option is set. If so, an attempt is made to refresh information. This attempt performs a set of checks to verify certain conditions. If these checks are valid, the identifier is refreshed and the security token renewed with updated group membership information. If any check is not valid, the identifier is refreshed and the security token renewed with existing information.
    • 一种用于选择性地刷新与认证用户相关联的标识符的组成员资格的方法。 标识符表示应用服务器安全上下文,并且生成该标识符以使与被认证用户相关联的用户凭证被持久化。 在这种认证之后,客户端被提供有时间限制的可再生安全令牌。 该方法从配置选项开始,在更新期满的安全令牌期间是否刷新组成员身份信息。 在更新过期的安全令牌期间,该方法确定该选项是否设置。 如果是这样,尝试刷新信息。 此尝试执行一组检查以验证某些条件。 如果这些检查有效,则刷新标识符,并使用更新的组成员信息更新安全令牌。 如果任何检查无效,则刷新标识符,并使用现有信息更新安全令牌。