Multi-tenancy support for enterprise social business computing
First Claim
1. A computer readable storage device, tangibly embodying a program of instructions executable by the computer for enabling at least a first user to utilize a multi-tenant computing environment, wherein the multi-tenant computing environment comprises at least a first computing resource associated with a first tenant and a second computing resource associated with a second tenant, the program of instructions, when executing, performing the following steps:
- assigning a first user account to the first user, wherein the first user account has associated therewith first user account information comprising at least one user account indicium that is unique across the multi-tenant computing environment;
linking to the first user account a first subscription, wherein the first subscription has associated therewith first subscription information;
linking to the first user account a second subscription, wherein the second subscription has associated therewith second subscription information;
receiving from the first user at least the user account indicium in connection with a log-in to the multi-tenant computing environment by the first user;
permitting access to the first computing resource for the first user account based upon the log-in with the user account indicium and the first subscription information of the first subscription that is linked to the first user account; and
permitting access to the second computing resource for the first user account based upon the log-in with the user account indicium and the second subscription information of the second subscription that is linked to the first user account;
wherein a list of subscriptions for the first user account determines whether the first user account can move among different tenants;
wherein, in the event of inactivation of the first user account, the first subscription cannot be used to access the first computing resource and the second subscription cannot be used to access the second computing resource;
wherein, in the event of reactivation of the first user account after being deactivated, all user application data will again be available to the first user account; and
wherein, in the event of termination of the first user account, all user application data will be deleted.
2 Assignments
0 Petitions
Accused Products
Abstract
Mechanisms are provided for enabling collaboration across tenants in a multi-tenant environment using single sign-on (SSO) authentication/authorization. Various examples provide for creating a user account and provisioning a subscription to a user (e.g., to enable single sign-on authentication/authorization). The user is allowed to access services (e.g., collaborative services) in a multi-tenant environment by utilizing a subscription authorization of the user without prompting the user to authenticate by logging-in again (that is, without prompting the user to log-in again after the user has already logged-in and been authenticated for a given session). Other examples provide for mapping webspaces through URL hosts where each organization (that is, tenant) has its own set of namespace(s).
-
Citations
14 Claims
-
1. A computer readable storage device, tangibly embodying a program of instructions executable by the computer for enabling at least a first user to utilize a multi-tenant computing environment, wherein the multi-tenant computing environment comprises at least a first computing resource associated with a first tenant and a second computing resource associated with a second tenant, the program of instructions, when executing, performing the following steps:
-
assigning a first user account to the first user, wherein the first user account has associated therewith first user account information comprising at least one user account indicium that is unique across the multi-tenant computing environment; linking to the first user account a first subscription, wherein the first subscription has associated therewith first subscription information; linking to the first user account a second subscription, wherein the second subscription has associated therewith second subscription information; receiving from the first user at least the user account indicium in connection with a log-in to the multi-tenant computing environment by the first user; permitting access to the first computing resource for the first user account based upon the log-in with the user account indicium and the first subscription information of the first subscription that is linked to the first user account; and permitting access to the second computing resource for the first user account based upon the log-in with the user account indicium and the second subscription information of the second subscription that is linked to the first user account; wherein a list of subscriptions for the first user account determines whether the first user account can move among different tenants; wherein, in the event of inactivation of the first user account, the first subscription cannot be used to access the first computing resource and the second subscription cannot be used to access the second computing resource; wherein, in the event of reactivation of the first user account after being deactivated, all user application data will again be available to the first user account; and wherein, in the event of termination of the first user account, all user application data will be deleted. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 13)
-
-
9. A system for enabling at least a first user to utilize a multi-tenant computing environment, wherein the multi-tenant computing environment comprises at least a first computing resource associated with a first tenant and a second computing resource associated with a second tenant, the system comprising:
-
a processor; and a memory storing computer readable instructions that, when executed by the processor, implement; an assigning element configured to assign a first user account to the first user, wherein the first user account has associated therewith first user account information comprising at least one user account indicium that is unique across the multi-tenant computing environment; a first linking element configured to link, to the first user account, a first subscription, wherein the first subscription has associated therewith first subscription information; a second linking element configured to link, to the first user account, a second subscription, wherein the second subscription has associated therewith second subscription information; a receiving element configured to receive from the first user at least the user account indicium in connection with a log-in to the multi-tenant computing environment by the first user; a first permitting element configured to permit access to the first computing resource for the first user account based upon the log-in with the user account indicium and the first subscription information of the first subscription that is linked to the first user account; and a second permitting element configured to permit access to the second computing resource for the first user account based upon the log-in with the user account indicium and the second subscription information of the second subscription that is linked to the first user account; wherein a list of subscriptions for the first user account determines whether the first user account can move among different tenants; wherein, in the event of inactivation of the first user account, the first subscription cannot be used to access the first computing resource and the second subscription cannot be used to access the second computing resource; wherein, in the event of reactivation of the first user account after being deactivated, all user application data will again be available to the first user account; and wherein, in the event of termination of the first user account, all user application data will be deleted. - View Dependent Claims (10, 11, 12, 14)
-
Specification