97 results about "Client-side scripting" patented technology

Web traffic reporting methods that rely upon third-party cookies suffer in accuracy when those tracking cookies are frequently refused by web users or deleted once they have been accepted. The invention described herein circumvents this problem by employing first-party cookies instead. This is accomplished by a client-side script that maintains the first-party cookie (as placed by the web site in question) and sends a site-maintained visitor ID to a tracking service for analysis. The effect is to improve the accuracy of traffic statistics that rely on that cookie.

A unique tool, i.e., “VeriWeb”, is employed to automatically discover and systematically explore Web-site execution paths that can be followed by a user in a Web application. Unlike traditional spiders (or crawlers) that are limited to the exploration of static links, VeriWeb can navigate automatically through dynamic components of Web sites, including form submissions and execution of client-side scripts. Whenever examining a new Web page, the system determines all possible actions a user might perform—be it a link, via a button with a JavaScript handler, or via form submission—and can execute them in a systematic way. In order to systematically test different paths in a Web site, VeriWeb addresses two critical problems: systematic Web site exploration and automatically filling out forms.

The present invention extends to methods, systems, and computer program products for accessing network resources outside a security boundary. The present invention can provide a modules running within a security boundary (e.g., sandboxed client-side scripts) access to network resources at computer systems other than the computer system where the module originated. When network access is permitted, the properties of network request can be adjusted so that security information of the client system and the originating computer system for the module are not divulged. Thus, a module can obtain content for inclusion in a Web page from third party servers in a more secure meaner. Network e access decisions can be made based on ambient data already accessible to a host environment such that network access decisions can be made in a more automated manner.

An improved web browser architecture for an OOP application for a dynamic web page using a client-side scripting language in JavaScript and Ajax to encapsulate presentation logic as objects manipulated by a mediator class state controller object. The browser code is divided into reusable but decoupled and interacting objects. The objects publish to unknown subscribers, and there is no need for objects to explicitly know of or be bound to other objects subscribing to events, consistent with a delegate model. The state of the web browser can be maintained by the state controller, and bookmarking of the state of the web browser allows reconstruction of a web browser dynamic web page. In a preferred embodiment, a GUI for the web browser controls a SAN.

The invention relates to CC (Communication Center) attack protective method and system thereof. The method comprises the steps of: 1, judging whether an access is a first access; 2-1, if the access is the first access, generating a client script and sending to a client end, requiring a client to verify the script, using the verified script as a safety mark and carrying out a second access; 2-2, if the access is not the first access, analyzing HTTP head information, judging whether the safety mark exists in the access request and is legal or not, if the access does not have the safety mark or the safety mark is illegal, executing the step 3, and if the access has the legal safety mark, allowing the client end to access a WEB server; and 3, marking the access as one attack, and rejecting the client end to access the WEB server. The system comprises a CC attack detection module, a CC random script generating module, a filter module and a control management module. The method can be used for rapidly detecting a CC attack object and avoids shielding a normal access request of a user.

A technique allows a client computing system with a web browser to receive a web page in response to transmitting a request for content. The web page may include active content, html data and cascading style sheets (CSS). In embodiments, a gateway device may rewrite the web page dynamically by rewriting node identifiers and class names, removing and separating client-side scripts from html data and CSS data, and blocking or disabling execution of the client-side scripts if these scripts contain vulnerable code. A web page may be rewritten based on analysis information provided by a third-party or analyzed at the gateway device.

A Web-information manager that is to take locally stored copies of a Web page and the files to which it refers employs two versions of a downloaded Web page if the Web page includes a client-side script. One, “source” version is the one that results from downloading the page with scripting execution disabled. The other, “reference” version is one that results from executing the script. It then locally stores copies of the files referred to by the resultant (potentially script-modified) reference version. And any links in the source version that refer to files thus copied are revised to refer to the local copies. It is this source version, unmodified by the script but updated to refer to local copies of the referred-to files, that is stored for later review.

A system for modularizing a business application, the system including a computer having a first computer-readable medium encoded with a browser and an application server. The browser manages a user presentation interface for the business application and is configured to support client-side scripting. The application server is coupled to the computer and includes a second computer-readable medium that is encoded with a server-side script processing engine for processing scripts submitted by the browser and a Module Controller Servlet for opening, closing and managing at least one Module associated with the business application. A Module is a dynamic, configurable software element which includes at least one Extension component and a Data Store. The Extension component defines at least one particular business method function associated with the business application and is invoked as required by the business application. The Data Store includes at least one associated data set which contains data associated with the business application.

Embodiments of the invention disclose an interface calling method and terminal. The interface calling method comprises: receiving an interface calling request, wherein the interface calling request carries an interface identifier and an interface parameter corresponding to a target interface that a client script requires to call; determining a calling mode of the target interface according to the interface identifier; determining, according to the calling mode and the interface parameter, a first parameter in input parameters of a target interface function corresponding to the target interface; using the request identifier of the interface calling request and the first parameter as input parameters of the target interface function, and calling the target interface function; obtaining an output parameter returned after the target interface function is called, wherein the output parameter comprises the request identifier and a second parameter; and returning a calling result of the interface calling request corresponding to the request identifier to the client script based on the second parameter. The embodiments of invention may be used to improve development efficiency of an extension interface.

A system and method that prevents certain cookies, as specified by an Internet server, from being accessed through client-side script, thereby mitigating the amount of damage that cross-site scripting attacks can accomplish. The server marks selected cookies with an attribute that flags such cookies as being protected, and a security mechanism in the client prevents protected cookies from being accessed via script. A protected (flagged) cookie can still be accessed by the server, (e.g., via HTTP), while non-flagged cookies can be accessed by the server or script. An API or similar layer implements the security mechanism that checks for the attribute, and fails requests for any cookies having that attribute set. The present invention can also be adapted to prevent a malicious script from overwriting existing HTTP-only cookies on a client machine.

A method and apparatus for improving loading of web resources. A server receives a request for a Hypertext Markup Language (HTML) document requested by a client network application. The server retrieves the requested document. The server automatically modifies objects referenced in the HTML document that have an external source such that loading of those objects by the client network application will be deferred. The server inserts a client-side script loader or a reference to the client-side script loader into the HTML document. The client-side script loader is configured to, when executed by the client network application, attempt to load the objects that have been deferred. The server transmits the modified HTML document to the client network application.

The invention discloses a method for displaying a runtime customized page based on Bootstrap. The method specifically comprises the steps that page initialization is conducted firstly, wherein a user on the client side sends a page browsing request to the server side, and the server side acquires a page description file according to the ID of the requested page and analyzes the page description file, so that JSON-format data are formed and fed back to the client side; page linkage operation is conducted; a client script calls the JSON data which are fed back to describe a UI page, generates a data Model example, and binds the acquired data to the page, so that linkage between the UI page and the data is achieved. Compared with the prior art, the method has the advantages that after iteration is conducted multiple times with the AdaBoost algorithm, various elements, overall arrangement and functions of the page can be defined according to service requirements, final content display is conducted according to a designed style, practicality is high, and popularization is easy.

A method for providing a locale-specific module for client-side processing of documents is provided. The method includes intercepting a request at a server from an interface located at a client. The request may be a hypertext transfer protocol (HTTP) request from a web browser. The server determines locale preferences from the request. The server then determines a locale-specific module for the locale preferences. The locale-specific module is then sent to the client. The interface may use the module to provide locale-specific elements when executing scripts received in documents from the server. The scripts are executed at the client side and the locale-specific elements are determined and displayed in the documents.

The present invention extends to methods, systems, and computer program products for creating search enabled Web pages. A search engine crawler requests a Web page. A Web server receives the request and constructs a Web page that includes client-side script configured to obtain a portion of content at a Web browser. The Web server inserts textual (e.g., HTML) hinting data for the client-side script into the Web page. When analyzed at the search engine, the textual hinting data provides similar analysis results to analysis results obtained from analyzing the portion of content that is to be obtained at through execution of the client-side script. Thus, the Web server can provide the search engine with information to sufficiently index the Web page even when the search engine lacks the capability to execute the client-side script.

The invention discloses a financial budget system based on a B/S structure. The financial budget system comprises a client, a server and a file uploading system, wherein the client provides an interaction interface for a user through a client script and carries out filtration and formatting on an instruction input by the user; the server is used for handling a request of the client; the file uploading system is used for handling a program file and a model file uploaded by the user. According to the financial budget system, a client browser is used for querying reports, and the financial budget system is convenient to use and easy and fast to manage; because an encryption algorithm is adopted, the safety and the integrity of report data in the storage and network transmission process are guaranteed. Automatic system classification and collection of all the budget items or the budgets of all departments are achieved, and the workload of existing manual budget planning is reduced; meanwhile, through the functional module design of the budget system, budget auditing, decomposition and issue are achieved, real-time comparison between budget actual performance and an annual budget check value or a control cardinal number is achieved, and effective control and difference analysis of the budget are achieved.

The present invention extends to methods, systems, and computer program products for identifying appropriate client-side script references. Embodiments of the invention facilitate tailoring a list of script references to send to a Web browser based on a list of script references included in a server page. Referenced scripts sent to a Web browser can differ from referenced scripts included in the server page. Script references sent to a Web browser can refer to scripts optimized for the execution environment of the Web browser and to scripts stored at preferred script sources. Further, duplicate script references are removed prior to sending a list of script references to the Web browser. Since script lists sent to Web browsers are tailored for execution environment and duplicates are removed, scripts can be loaded and processed more effectively at Web browsers.

A system for creating and using a universal tag to gather consumer data from a website for the purposes of targeted advertising is provided. The universal tag system has two main subsystems. The first subsystem is a configuration system that is used to define the consumer data to be collected from the website and to define taxonomy and transformation rules to be applied to the collected consumer data. The second subsystem is a runtime system that runs a universal tag client-side script, which is triggered when a consumer lands on a webpage of the website, for collecting the defined consumer data. The runtime system then applies the transformation rules to the collected data and updates a user profile corresponding to the consumer with the transformed data. As well, the runtime system applies the taxonomy rules to the collected data and categorizes the consumer for the purposes of subsequent targeted advertising.