External platform extensions in a multi-tenant environment
First Claim
Patent Images
1. A method of enforcing access control of features in a multi-tenant cloud environment, the method comprising:
- reading a file schema that defines an element, a child element, and an attribute;
defining, in a config file that is compatible with the file schema that is read, a service access rule for a feature of a service in a multi-tenant cloud environment, the defining using the element, the child element, and the attribute;
delivering a copy of the config file in which the service access rule is defined;
allowing editing the delivered copy of the config file to define a service access of the feature;
determining, using a processor operatively coupled with a memory, changes to the delivered copy of the config file made during editing, to create a delta file;
packaging the created delta file in an archive that is included in a shared library of class files;
merging the delta file with the config file, in which the service access rule is defined, to create an executable code config file having the feature for the service;
reading, by the service, the executable code config file that is created by merging the delta file with the config file;
initializing objects for the service with the feature using the executable code config file that is read; and
instantiating objects for the feature of the service using the executable code config file that is read.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and systems are described for allowing third party developers to add extensions to a cloud service provider'"'"'s software as a service (SaaS) services by editing an ‘empty’ config file according to a schema provided by the cloud service provider to form a delta file and then merging the delta file with an internal, full version of the config file. The full config file is then used to initialize and instantiate objects upon a restart of the cloud provider'"'"'s services.
-
Citations
20 Claims
-
1. A method of enforcing access control of features in a multi-tenant cloud environment, the method comprising:
-
reading a file schema that defines an element, a child element, and an attribute; defining, in a config file that is compatible with the file schema that is read, a service access rule for a feature of a service in a multi-tenant cloud environment, the defining using the element, the child element, and the attribute; delivering a copy of the config file in which the service access rule is defined; allowing editing the delivered copy of the config file to define a service access of the feature; determining, using a processor operatively coupled with a memory, changes to the delivered copy of the config file made during editing, to create a delta file; packaging the created delta file in an archive that is included in a shared library of class files; merging the delta file with the config file, in which the service access rule is defined, to create an executable code config file having the feature for the service; reading, by the service, the executable code config file that is created by merging the delta file with the config file; initializing objects for the service with the feature using the executable code config file that is read; and instantiating objects for the feature of the service using the executable code config file that is read. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 19, 20)
-
-
16. A non-transitory machine-readable tangible medium embodying information indicative of instructions for causing one or more machines to perform operations comprising:
-
reading a file schema that defines an element, a child element, and an attribute; defining, in a config file that is compatible with the file schema that is read, a service access rule for a feature of a service in a multi-tenant cloud environment, the defining using the element, the child element, and the attribute; delivering a copy of the config file in which the service access rule is defined; allowing editing the delivered copy of the config file to define a service access of the feature; determining changes to the delivered copy of the config file made during editing to create a delta file; packaging the created delta file in an archive that is included in a shared library of class files; merging the delta file with the config file, in which the service access rule is defined, to create an executable code config file having the feature for the service; reading, by the service, the executable code config file that is created by merging the delta file with the config file; initializing objects for the service with the feature using the executable code config file that is read; and instantiating objects for the feature of the service using the executable code config file that is read. - View Dependent Claims (17)
-
-
18. A computer system executing instructions, the computer system comprising:
-
at least one processor; and a memory operatively coupled with the at least one processor, the at least one processor executing computer code stored in the memory for; reading a file schema that defines an element, a child element, and an attribute; defining, in a config file that is compatible with the file schema that is read, a service access rule for a feature of a service in a multi-tenant cloud environment, the defining using the element, the child element, and the attribute; delivering a copy of the config file in which the service access rule is defined; allowing editing the delivered copy of the config file to define a service access of the feature; determining changes to the delivered copy of the config file made during editing to create a delta file; packaging the created delta file in an archive that is included in a shared library of class files; merging the delta file with the config file, in which the service access rule is defined, to create an executable code config file having the feature for the service; reading, by the service, the executable code config file that is created by merging the delta file with the config file; initializing objects for the service with the feature using the executable code config file that is read; and instantiating objects for the feature of the service using the executable code config file that is read.
-
Specification