US2024022567A1PendingUtilityA1

Integration packaging for a multi-tenant computing environment

70
Assignee: OKTA INCPriority: Mar 19, 2021Filed: Jul 28, 2023Published: Jan 18, 2024
Est. expiryMar 19, 2041(~14.7 yrs left)· nominal 20-yr term from priority
H04L 63/0876G06F 8/63H04L 63/20H04L 63/0435G06F 8/61H04L 63/08
70
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A multi-tenant authentication system facilitates packaging and installing of integrations for authentication services of system tenants. The integrations include cloud resources of one or more cloud services. In order to package an integration, the multi-tenant authentication system retrieves resource manifests for cloud resources from corresponding cloud services. The multi-tenant authentication system generates the resource manifests to describe the cloud resource and any dependencies of the cloud resource, and also generates a package manifest including instructions for using the resource manifests to install the corresponding integration. The multi-tenant authentication system further facilitates installation of integration packages for tenants of the multi-tenant authentication system. The multi-tenant authentication system communicates with cloud services associated with resource manifests to install corresponding cloud resources to consistently replicate integrations for different tenants.

Claims

exact text as granted — not AI-modified
We claim: 
     
         1 . A method comprising:
 receiving a request to generate a package for an integration associated with cloud resources provided by corresponding cloud services;   generating a package manifest for installing the integration using resource manifests associated with the corresponding cloud services that include instructions for installing the cloud resources;   storing the package and the package manifest;   copying the package from a first client to a second client; and   installing the package for the second client responsive to copying the package.   
     
     
         2 . The method of  claim 1 , further comprising adding the package to an incomplete package store upon determining the package is not completed. 
     
     
         3 . The method of  claim 1 , wherein a cloud service includes one of an internal service or a third-party service. 
     
     
         4 . The method of  claim 1 , further comprising formatting the resource manifests for inclusion in the package. 
     
     
         5 . The method of  claim 1 , further comprising storing the package in a centralized repository. 
     
     
         6 . The method of  claim 1 , further comprising authenticating the second client with the corresponding cloud services prior to executing the package. 
     
     
         7 . The method of  claim 1 , wherein the package manifest comprises one of a data object or a file. 
     
     
         8 . The method of  claim 1 , further comprising querying a cloud service to obtain a corresponding resource manifest. 
     
     
         9 . The method of  claim 8 , wherein the corresponding resource manifest comprises a data object or a file including information describing a cloud resource offered by the cloud service. 
     
     
         10 . The method of  claim 1 , wherein the integration is installed for a tenant, the method further comprising associating data representing the installed integration with an identifier of the tenant, such that private data associated with the installed integration cannot be accessed by other tenants. 
     
     
         11 . A non-transitory computer-readable storage medium for tangibly storing computer program instructions capable of being executed by at least one computer processor, the computer program instructions defining steps of:
 receiving a request to generate a package for an integration associated with cloud resources provided by corresponding cloud services, wherein a cloud service includes one of an internal service or a third-party service;   generating a package manifest for installing the integration using resource manifests associated with the corresponding cloud services that includes instructions for installing the cloud resources, wherein the package manifest comprises one of a data object or a file;   storing the package and the package manifest in a centralized repository, wherein the centralized repository includes a storage area for completed packages and a second storage area for incomplete packages;   associating data representing an installed integration for a tenant with an identifier of the tenant, such that private data associated with the installed integration cannot be accessed by other tenants, the installed integration comprising the integration;   copying the package from a first client to a second client; and   installing the package for the second client responsive to copying the package.   
     
     
         12 . The non-transitory computer-readable storage medium of  claim 11 , the steps further comprising formatting the resource manifests for inclusion in the package. 
     
     
         13 . The non-transitory computer-readable storage medium of  claim 11 , the steps further comprising authenticating the second client with the corresponding cloud services prior to executing the package. 
     
     
         14 . The non-transitory computer-readable storage medium of  claim 11 , the steps further comprising querying the cloud service to obtain a corresponding resource manifest. 
     
     
         15 . The non-transitory computer-readable storage medium of  claim 14 , wherein the data object or the file includes information describing a cloud resource offered by the cloud service. 
     
     
         16 . A device comprising:
 at least one processor; and   a storage medium for tangibly storing thereon logic for execution by the at least one processor, the logic comprising instructions for:   receiving a request to generate a package for an integration associated with cloud resources provided by corresponding cloud services, wherein a cloud service includes one of an internal service or a third-party service;   retrieving resource manifests associated with the corresponding cloud services that includes instructions for installing the cloud resources;   formatting the resource manifests for inclusion in the package;   generating a package manifest for installing the integration using the formatted resource manifests;   storing the package and the package manifest;   copying the package from a first client to a second client; and   installing the package for the second client responsive to copying the package.   
     
     
         17 . The device of  claim 16 , the instructions further comprising adding the package to an incomplete package store upon determining the package is not completed. 
     
     
         18 . The device of  claim 16 , the instructions further comprising authenticating the second client with the corresponding cloud services prior to executing the package. 
     
     
         19 . The device of  claim 16 , the instructions further comprising querying the cloud service to obtain a corresponding resource manifest, wherein the corresponding resource manifest comprises a data object or a file including information describing a cloud resource offered by the cloud service. 
     
     
         20 . The device of  claim 16 , wherein the integration is installed for a tenant, the instructions further comprising associating data representing the installed integration with an identifier of the tenant, such that private data associated with the installed integration cannot be accessed by other tenants.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.