Locked Files for Cartridges in a Multi-Tenant Platform-as-a-Service (PaaS) System
First Claim
1. A method, comprising:
- identifying, by a processing device of a multi-tenant Platform-a-a-Service (PaaS) system, an operation requested to be performed by the multi-tenant PaaS system;
determining, by the processing device, access contexts for the operation with respect to a cartridge associated with the identified operation, the access context comprising a user or component that is attempting to access a file of the cartridge for the identified operation;
accessing, by the processing device, a locked files manifest of the cartridge, the locked files manifest identifying at least one of files or directories of the cartridge to which a cartridge author of the cartridge restricts access to application developers utilizing the cartridge to execute an application; and
applying, by the processing device, access permissions to the cartridge according to the determined access contexts and the locked files manifest.
1 Assignment
0 Petitions
Accused Products
Abstract
Implementations for locked files for cartridges in a multi-tenant Platform-as-a-Service (PaaS) system are disclosed. A method of the disclosure includes identifying, by a processing device of a multi-tenant Platform-a-a-Service (PaaS) system, an operation requested to be performed by the multi-tenant PaaS system, determining access contexts for the identified operation with respect to a cartridge associated with the operation, the access context comprising a user or component that is attempting to access a file of the cartridge for the identified operation, accessing a locked files manifest of the cartridge, the locked files manifest identifying at least one of files or directories of the cartridge to which a cartridge author of the cartridge restricts access to application developers utilizing the cartridge to execute an application, and applying access permissions to the cartridge according to the determined access contexts and the locked files manifest.
16 Citations
20 Claims
-
1. A method, comprising:
-
identifying, by a processing device of a multi-tenant Platform-a-a-Service (PaaS) system, an operation requested to be performed by the multi-tenant PaaS system; determining, by the processing device, access contexts for the operation with respect to a cartridge associated with the identified operation, the access context comprising a user or component that is attempting to access a file of the cartridge for the identified operation; accessing, by the processing device, a locked files manifest of the cartridge, the locked files manifest identifying at least one of files or directories of the cartridge to which a cartridge author of the cartridge restricts access to application developers utilizing the cartridge to execute an application; and applying, by the processing device, access permissions to the cartridge according to the determined access contexts and the locked files manifest. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system, comprising:
-
a memory; and a processing device communicably coupled to the memory; and a broker executable from the memory by the processing device, the broker to manage a multi-tenant Platform-as-a-Service (PaaS) system and to; identify an operation requested to be performed by the multi-tenant PaaS system; determine access contexts for the operation with respect to a cartridge associated with the identified operation, the access context comprising a user or component that is attempting to access a file of the cartridge for the identified operation; access a locked files manifest of the cartridge, the locked files manifest identifying at least one of files or directories of the cartridge to which a cartridge author of the cartridge restricts access to application developers utilizing the cartridge to execute an application; and apply access permissions to the cartridge according to the determined access contexts and the locked files manifest. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory machine-readable storage medium including instructions that, when accessed by a processing device, cause the processing device to perform operations comprising:
-
identifying, by the processing device of a multi-tenant Platform-a-a-Service (PaaS) system, an operation requested to be performed by the multi-tenant PaaS system; determining, by the processing device, access contexts for the identified operation with respect to a cartridge associated with the operation, the access context comprising a user or component that is attempting to access a file of the cartridge for the identified operation; accessing, by the processing device, a locked files manifest of the cartridge, the locked files manifest identifying at least one of files or directories of the cartridge to which a cartridge author of the cartridge restricts access to application developers utilizing the cartridge to execute an application; and applying, by the processing device, access permissions to the cartridge according to the determined access contexts and the locked files manifest. - View Dependent Claims (17, 18, 19, 20)
-
Specification