Virtual communication endpoint services
First Claim
1. A system for managing requests for a service, comprising:
- at least one processor; and
memory storing instructions that, when executed by the at least one processor, cause the system to;
receive a request to define a virtual endpoint for the service, the service being offered by a customer using one or more resources of a multi-tenant environment, the request including information associated with an endpoint interface for the service;
define the virtual endpoint for the service in response to receiving the request; and
enable access to the endpoint interface for the service by a virtual load balancer of the multi-tenant environment, the virtual load balancer configured to;
receive a communication to the virtual endpoint from a computing device of a user, the communication including a signature generated using at least one security credential;
determine whether the signature is a valid signature and whether the communication is allowed according to one or more policies associated with the communication; and
forward the communication to the endpoint interface for the service when the signature is a valid signature and the communication is determined to be allowed.
0 Assignments
0 Petitions
Accused Products
Abstract
Customers can utilize resources of a multi-tenant environment to provide one or more services available to various users. In order to simplify the process for these customers, the multi-tenant environment can include an infrastructure wherein a portion of the resources provide an authentication and/or authorization service that can be leveraged by the customer services. These resources can logically sit in front of the resources used to provide the customer services, such that a user request must pass through the authorization and authentication service before being directed to the customer service. Such resources can provide other functionality as well, such as load balancing and metering.
61 Citations
20 Claims
-
1. A system for managing requests for a service, comprising:
-
at least one processor; and memory storing instructions that, when executed by the at least one processor, cause the system to; receive a request to define a virtual endpoint for the service, the service being offered by a customer using one or more resources of a multi-tenant environment, the request including information associated with an endpoint interface for the service; define the virtual endpoint for the service in response to receiving the request; and enable access to the endpoint interface for the service by a virtual load balancer of the multi-tenant environment, the virtual load balancer configured to; receive a communication to the virtual endpoint from a computing device of a user, the communication including a signature generated using at least one security credential; determine whether the signature is a valid signature and whether the communication is allowed according to one or more policies associated with the communication; and forward the communication to the endpoint interface for the service when the signature is a valid signature and the communication is determined to be allowed. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-implemented method, comprising:
-
receiving, by a virtual load balancer of a multi-tenant environment, a communication to a virtual endpoint from a computing device of a user, the communication including a signature generated using at least one security credential, the virtual endpoint being defined by the multi-tenant environment in response to receiving a request to define the virtual endpoint from a customer of the multi-tenant environment; determining, by the virtual load balancer of the multi-tenant environment, whether the signature is a valid signature and whether the communication is allowed according to one or more policies associated with the communication; and forwarding, by the virtual load balancer of the multi-tenant environment, the communication to an endpoint interface for a service when the signature is a valid signature and the communication is determined to be allowed. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable storage medium including instructions that, when executed by at least one processor of a computer system, cause the computer system to:
-
receive a request to define a virtual endpoint for a service, the service being offered by a customer using one or more resources of a multi-tenant environment, the request including information associated with an endpoint interface for the service; define the virtual endpoint for the service in response to receiving the request; and enable access to the endpoint interface for the service by a virtual load balancer of the multi-tenant environment, the virtual load balancer configured to; receive a communication to the virtual endpoint from a computing device of a user, the communication including a signature generated using at least one security credential; determine whether the signature is a valid signature and whether the communication is allowed according to one or more policies associated with the communication; and forward the communication to the endpoint interface for the service when the signature is a valid signature and the communication is determined to be allowed. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification