HP INCFollow

Abstract

The system and mechanism described in this document enables the secure sharing of a singleton

resource within a multi-function device (MFD) using a REST API with context reservation and sessiontoken

infrastructure. Specifically, a REST API and underlying authorization and session management

infrastructure is designed to allow secure client access to singleton functionality in a synchronized

manner using a Parent/Child REST resource topology, where the Parent resource is used to reserve

access and the Child resource represents the interface to the singleton functionality. “Claimants” to

the singleton functionality are previously registered in the MFD/System resulting in a catalog of

possible claimants with each declaring and hosting a unique target endpoint. Clients of the

MFD/System have been issued an access token that authorizes access to a REST resource that is used

to “reserve” or “claim” the singleton functionality on behalf of a claimant. All clients have the same or

equal access to the reserving resource. At any time, a client may attempt to reserve access using the

REST API. If the singleton functionality is not currently in use, the reservation attempt will succeed,

resulting in the corresponding target-endpoint of a claimant being provided with a unique session (or

context) access token that grants exclusive access to the singleton functionality as expressed through

the child REST resource. The “claiming” host will utilize the singleton functionality as necessary,

ultimately releasing its claim on the child resource when finished. Upon processing the claim release,

the MFD/System invalidates the session/context access token such that it is no longer able to

authorize access to the child resource and thus the singleton functionality is once again available for

reservation and subsequent use.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 4.0 License.

Download

Share

COinS