Automated deployment of applications with tenant-isolation requirements
First Claim
1. A method for multi-tenant enabling a service, said method comprising:
- receiving rules from a provider of the service, the service including a plurality of components, the rules including rules for isolating the components of the service and rules for sharing the components of the service;
associating the rules with the components of the service;
automatically matching the components of the service with virtualization environments and physical environments, the virtualization environments including at least one isolation container and at least one shared container, said virtualization environments including a plurality of nested virtualization environments in a nesting virtualization environment;
automatically provisioning the components of the service in the matched at least one isolation container, the matched at least one shared container, and the matched physical environments based on the rules, such that the components of the service are stored in the matched at least one isolation container, the matched at least one shared container, and the matched physical environments;
automatically reconfiguring the components of the service based on said provisioning of the components of the service; and
sharing platform-specific resources between tenants of a platform via an integrated repository of the platform.
1 Assignment
0 Petitions
Accused Products
Abstract
An embodiment of the invention provides a method for multi-tenant enabling a service, where the service includes a plurality of service components. Rules are received from a provider of the service, wherein the rules include rules for isolating the service components and rules for sharing the service components. The service components are matched with virtualization environments and/or physical environments based on the rules. The virtualization environments include at least one isolation container and/or at least one shared container. The service components are stored in the virtualization environments and/or the physical environments based on the matching. The service components are mapped to the at least one isolation container of the virtualization environments, the at least one shared container of the virtualization environments, and/or the physical environments based on the storing of the service components.
-
Citations
19 Claims
-
1. A method for multi-tenant enabling a service, said method comprising:
-
receiving rules from a provider of the service, the service including a plurality of components, the rules including rules for isolating the components of the service and rules for sharing the components of the service; associating the rules with the components of the service; automatically matching the components of the service with virtualization environments and physical environments, the virtualization environments including at least one isolation container and at least one shared container, said virtualization environments including a plurality of nested virtualization environments in a nesting virtualization environment; automatically provisioning the components of the service in the matched at least one isolation container, the matched at least one shared container, and the matched physical environments based on the rules, such that the components of the service are stored in the matched at least one isolation container, the matched at least one shared container, and the matched physical environments; automatically reconfiguring the components of the service based on said provisioning of the components of the service; and sharing platform-specific resources between tenants of a platform via an integrated repository of the platform. - View Dependent Claims (2, 3, 4)
-
-
5. A method for multi-tenant enabling a service, the service including a plurality of service components, said method comprising:
-
receiving rules from a provider of the service, the rules including rules for isolating the service components and rules for sharing the service components; matching the service components with virtualization environments based on the rules, said virtualization environments including at least one nested virtualization environment in a nesting virtualization environment, the virtualization environments including; at least one isolation container, and at least one shared container, the at least one shared container comprising shared components, the shared components being shared by all tenants of the service; storing the service components in the at least one isolation container and the at least one shared container of the virtualization environments based on said matching; mapping the service components to the at least one isolation container and the at least one shared container of the virtualization environments based on said storing of the service components; and sharing platform-specific resources between tenants of a platform via an integrated repository of the platform. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 19)
-
-
14. A method for multi-tenant enabling a service, the service including a plurality of service components, said method comprising:
-
receiving rules from a provider of the service with an interface, the rules including rules for isolating the service components and rules for sharing the service components; matching the service components with virtualization environments and physical environments with a configuration module based on the rules, the virtualization environments including at least one nested virtualization environment in a nesting virtualization environment, the virtualization environments including; at least one isolation container, and at least one shared container, the at least one shared container comprising shared components, the shared components being shared by all tenants of the service, the isolation container including a higher level of isolation relative to the shared container, and the shared container including a higher level of sharing relative to the isolation container; storing the service components in the at least one isolation container and the at least one shared container of the virtualization environments and the physical environments with a storage module, said storing of the service components being based on said matching; mapping the service components with a mapping module to the at least one isolation container of the virtualization environments, the at least one shared container of the virtualization environments, and the physical environments based on said storing of the service components; receiving a request for the service from an end-user with a second interface; routing the request to the service components with a router based on said mapping; and sharing platform-specific resources between tenants of a platform via and integrated repository of the platform.
-
-
15. A system for multi-tenant enabling a service, said system comprising:
-
one or more processors; an interface for receiving rules from a provider of the service, the rules including rules for isolating the service components and rules for sharing the service components; a configuration module connected to said interface, said configuration module matches the service components with virtualization environments based on the rules, the virtualization environments including at least one nested virtualization environment in a nesting virtualization environment, the virtualization environments including; at least one isolation container, and at least one shared container; a storage module connected to said configuration module, said storage module stores the service components in the at least one isolation container and the at least one shared container of the virtualization environments based on the matching performed by said configuration module; a mapping module connected to said storage module, said mapping module maps the service components to the at least one isolation container and the at least one shared container of the virtualization environments based on the storing performed by said storage module; and sharing platform-specific resources between tenants of a platform via an integrated repository of the platform. - View Dependent Claims (16, 17)
-
-
18. A computer program product for multi-tenant enabling a service, the service including a plurality of service components, said computer program product including:
-
a non-transitory computer readable storage medium; first program instructions to receive rules from a provider of the service, the rules including rules for isolating the service components and rules for sharing the service components; second program instructions to match the service components with virtualization environments based on the rules, the virtualization environments including at least one nested virtualization environment in a nesting virtualization environment, the virtualization environments including at least one isolation container and at least one shared container; third program instructions to store the service components in the at least one isolation container and the at least one shared container of the virtualization environments based on said matching; fourth program instructions to map the service components to the at least one isolation container and the at least one shared container of the virtualization environments based on said storing of the service components, said first program instructions, said second program instructions, said third program instructions, and said fourth program instructions are stored on said computer readable storage medium; and sharing platform-specific resources between tenants of a platform via an integrated repository of the platform.
-
Specification