External platform extensions in a multi-tenant environment
First Claim
Patent Images
1. A method comprising:
- determining, by a computer system providing a cloud environment, a first configuration file compatible with a file schema, wherein one or more features of one or more services in the cloud environment are configurable for multi-tenant access;
receiving a delta file created based on a modification to the first configuration file, wherein the delta file includes one or more configurations for one or more class definitions of a feature of a service in the cloud environment, wherein the delta file includes an access rule to control multi-tenant access for the feature of the service, and wherein the delta file is compatible with the file schema;
creating, by the computer system, a second configuration file for the feature of the service, the second configuration file being executable and including the access rule, wherein the second configuration file is created based on merging the delta file with the first configuration file;
initiating the computer system to restart, wherein restarting the computer system causes the computer system to read the second configuration file;
instantiating, by the computer system, one or more objects for the feature of the service based on the second configuration file that is read based on restarting the computer system; and
determining access to the feature of the service for a user requesting access to the feature, wherein the access to the feature of the service for the user is determined using the access rule in the second configuration file used to instantiate the one or more objects.
1 Assignment
0 Petitions
Accused Products
Abstract
Enforcing access control to individual extensions of services in a multi-tenant cloud environment by initializing objects for the extension based on public and private configuration files with service access rules that are merged is described. This allows third party vendors to specify payment rules for their own extensions while securely keeping the core extension configuration files. Tenants of the multi-tenant cloud environment can pick and choose which services to purchase, and the cloud environment automates the process of accessing the service using the third-party developer'"'"'s tenant access list rules.
52 Citations
20 Claims
-
1. A method comprising:
-
determining, by a computer system providing a cloud environment, a first configuration file compatible with a file schema, wherein one or more features of one or more services in the cloud environment are configurable for multi-tenant access; receiving a delta file created based on a modification to the first configuration file, wherein the delta file includes one or more configurations for one or more class definitions of a feature of a service in the cloud environment, wherein the delta file includes an access rule to control multi-tenant access for the feature of the service, and wherein the delta file is compatible with the file schema; creating, by the computer system, a second configuration file for the feature of the service, the second configuration file being executable and including the access rule, wherein the second configuration file is created based on merging the delta file with the first configuration file; initiating the computer system to restart, wherein restarting the computer system causes the computer system to read the second configuration file; instantiating, by the computer system, one or more objects for the feature of the service based on the second configuration file that is read based on restarting the computer system; and determining access to the feature of the service for a user requesting access to the feature, wherein the access to the feature of the service for the user is determined using the access rule in the second configuration file used to instantiate the one or more objects. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system comprising:
-
one or more processors; and a memory accessible to the one or more processors, the memory storing one or more instructions that, upon execution by the one or more processors, causes the one or more processors to; determine, by a computer system providing a cloud environment, a first configuration file compatible with a file schema, wherein one or more features of one or more services in the cloud environment are configurable for multi-tenant access; receive a delta file created based on a modification to the first configuration file, wherein the delta file includes one or more configurations for one or more class definitions of a feature of a service in the cloud environment, wherein the delta file includes an access rule to control multi-tenant access for the feature of the service, and wherein the delta file is compatible with the file schema; create, by the computer system, a second configuration file for the feature of the service, the second configuration file being executable and including the access rule, wherein the second configuration file is created based on merging the delta file with the first configuration file; initiate the computer system to restart, wherein restarting the computer system causes the computer system to read the second configuration file; instantiate, by the computer system, one or more objects for the feature of the service based on the second configuration file that is read based on restarting the computer system; and determine access to the feature of the service for a user requesting access to the feature, wherein the access to the feature of the service for the user is determined using the access rule in the second configuration file used to instantiate the one or more objects. - View Dependent Claims (17)
-
-
18. A non-transitory computer-readable medium storing one or more instructions for causing one or more computers to perform operations comprising:
-
determining, by a computer providing a cloud environment, a first configuration file compatible with a file schema, wherein one or more features of one or more services in the cloud environment are configurable for multi-tenant access; receiving a delta file created based on a modification to the first configuration file, wherein the delta file includes one or more configurations for one or more class definitions of a feature of a service in the cloud environment, wherein the delta file includes an access rule to control multi-tenant access for the feature of the service, and wherein the delta file is compatible with the file schema; creating, by the computer, a second configuration file for the feature of the service, the second configuration file being executable and including the access rule, wherein the second configuration file is created based on merging the delta file with the first configuration file; initiating the computer to restart, wherein restarting the computer causes the computer to read the second configuration file; instantiating, by the computer, one or more objects for the feature of the service based on the second configuration file that is read based on restarting the computer; and determining access to the feature of the service for a user requesting access to the feature, wherein the access to the feature of the service for the user is determined using the access rule in the second configuration file used to instantiate the one or more objects. - View Dependent Claims (19, 20)
-
Specification