Patent application number | Description | Published |
20090217354 | CONTROLLING ACCESS OF A CLIENT SYSTEM TO ACCESS PROTECTED REMOTE RESOURCES SUPPORTING RELATIVE URLS - A response can be received from an access protected remote resource in response to a client request to the access protected remote resource. The access protected remote resource is configured in such a way that the client system is not allowed to directly access the access protected remote resource but all client requests are rerouted via the web application which is authorized to access the access protected remote resource. All references that are defined by absolute URLS and point to access protected remote resources can be identified within responses. A rewritten URL replaces each original URL of the identified reference to an access protected remote resource. Generation of the rewritten URL can occur by splitting the original URL into a base part and a resource part, by generating an authentication identifier by applying an authentication method to at least the base part, and by concatenating the URL of the web application, the base part, authentication identifier, and resource part. The original URL of the references contained in the response can be replaced by the rewritten URL including the authentication identifier. The response including rewritten URL and authentication identifier can be sent to the client system. When the client system triggers said rewritten URL, the web application extracts the base part and authentication identifier from the URL and verifies the authentication identifier by applying the same authentication method on the base part in order to ensure that the base part has not been changed. Only if the authentication identifier is verified correctly, the web application builds the full resource URL from the rewritten URL and returns the respective resource to the client system. | 08-27-2009 |
20090254979 | Method of and System for Enforcing Authentication Strength for Remote Portlets - In a method of and system for enforcing authentication strength for remote portlets, a portlet is provided by a producer portal and consumed as remote portlet by a consumer portal. The producer portal defines an authentication strength level requirement for the portlet. A user requests the remote portlet from the consumer portal. The consumer portal authenticates the user with a particular authentication method that implies a particular authentication strength level. The producer portal authenticates the consumer portal with a particular authentication method that implies a particular authentication strength assertion level. The consumer portal requests the portlet from the producer portal with an assertion of the authentication strength level of the user. The producer portal rejects the request from the consumer portal if the authentication strength level of the user is less than the authentication strength level requirement for the portlet. The producer portal also rejects the request from the consumer portal if the authentication strength assertion level of the consumer portal is not high enough to assert the authentication strength level of the user. The producer portal accepts the request from the consumer portal only if the authentication strength level of the user is not less than the authentication strength level requirement for the portlet and the authentication strength assertion level of the consumer portal is high enough to assert the authentication strength level of the user. | 10-08-2009 |
20100185952 | PORTLET PALETTE WITH AUTOMATIC REMOTE PORTLET INTEGRATION - A method for integrating remote portlets into a consumer portal that includes providing a list of remote portlet producers to a portlet palette within the consumer portal, automatically obtaining available remote portlets, via the portlet palette, using the provided list, storing information corresponding to the available remote portlets, in the portlet palette, merging information regarding local portlets and the available remote portlets to form an available portlet list on the portlet palette, allowing a user to view the available portlet list, receiving a selected available remote portlet from the available portlet list as selected by the user and performing a drag and drop operation of the selected remote portlet to a portal page on the consumer portal, and automatically creating a producer reference corresponding to a respective remote portlet producer associated with the selected remote portlet and a remote portlet reference corresponding to the selected remote portlet on the consumer portal. | 07-22-2010 |
20110138288 | METHOD, SYSTEM, AND COMPUTER PROGRAM PRODUCT FOR TAGGING OF PORTLETS IN A PORTAL INFRASTRUCTURE - A method for tagging of portlets in a portal infrastructure includes: receiving by at least one consumer system from at least one client system tagging information related to remote portlets produced by at least one producer system; sending by the at least one consumer system the tagging information related to the remote portlets to the at least one producer system that produced the remote portlets, where the at least one producer system uses the tagging information related to the remote portlets to update global tag sets for the remote portlets; receiving by the at least one consumer system the updated global tag sets from the at least one producer system; and creating by the at least one consumer system a response to a request for portal pages comprising the remote portlets from the at least one client system using the received updated global tag sets. | 06-09-2011 |