-
公开(公告)号:US20090007157A1
公开(公告)日:2009-01-01
申请号:US11770532
申请日:2007-06-28
IPC分类号: G06F9/44
CPC分类号: G06F8/24
摘要: Described are embodiments directed to use of workflows for developing management agents that connect operations of a data source to a procedural API of an application. The management agents include a workflow that corresponds to an operation of a data source. The workflow includes a number of activities that make calls to the procedural API in order to perform the operation of the data source with respect to an object of the application. The use of workflows makes the development of management agents easier and more efficient.
摘要翻译: 描述了针对使用工作流来开发将数据源的操作连接到应用程序的API的管理代理的实施例。 管理代理包括对应于数据源的操作的工作流。 该工作流程包括一些活动,调用过程API以执行关于应用程序对象的数据源的操作。 使用工作流使管理代理的开发变得更加轻松,更有效率。
-
公开(公告)号:US20080263652A1
公开(公告)日:2008-10-23
申请号:US12024901
申请日:2008-02-01
IPC分类号: H04L9/32
CPC分类号: H04L63/083 , G06F21/32 , G06F21/335 , G06F21/40 , G06F21/602 , H04L63/06 , H04L63/08 , H04L63/0861 , H04L63/0869 , H04L63/10
摘要: Requests for access to Web service resources are evaluated based on the type of request that is received. Requests are not granted unless sufficient proof of authentication is provided to grant that request. An authentication service evaluates one or more factors to determine whether or not to authenticate the client. After being authenticated by the authentication service, proof of authentication is provided to the Web service, which grants access to the Web service resource.
摘要翻译: 根据收到的请求类型,对Web服务资源的访问请求进行评估。 除非提供足够的验证证明以授予该请求,否则不会授予请求。 认证服务评估一个或多个因素以确定是否验证客户端。 认证服务认证后,向Web服务提供认证证明,授权对Web服务资源的访问。
-
13.发明授权公开(公告)号:US08656472B2
公开(公告)日:2014-02-18
申请号:US12024901
申请日:2008-02-01
IPC分类号: H04L29/06
CPC分类号: H04L63/083 , G06F21/32 , G06F21/335 , G06F21/40 , G06F21/602 , H04L63/06 , H04L63/08 , H04L63/0861 , H04L63/0869 , H04L63/10
摘要: Requests for access to Web service resources are evaluated based on the type of request that is received. Requests are not granted unless sufficient proof of authentication is provided to grant that request. An authentication service evaluates one or more factors to determine whether or not to authenticate the client. After being authenticated by the authentication service, proof of authentication is provided to the Web service, which grants access to the Web service resource.
摘要翻译: 根据收到的请求类型,对Web服务资源的访问请求进行评估。 除非提供足够的验证证明以授予该请求,否则不会授予请求。 认证服务评估一个或多个因素以确定是否验证客户端。 认证服务认证后,向Web服务提供认证证明,授权对Web服务资源的访问。
-
公开(公告)号:US08353005B2
公开(公告)日:2013-01-08
申请号:US12163791
申请日:2008-06-27
申请人: Jack Kabat , Vadim Meleshuk , Jasjeet Gill , Alexander T. Weinert
发明人: Jack Kabat , Vadim Meleshuk , Jasjeet Gill , Alexander T. Weinert
CPC分类号: G06F21/604 , G06F21/6218
摘要: Defining a unified access management policy expression that unifies access control policy with events or workflows. Unified management policy information is stored. The unified management policy information defines permissions for access to resources together with events or workflows. A request is received to execute the one or more operations on one or more objects. The requested operation is verified against the unified management rules. Verifying includes performing a single retrieval, retrieving both the access control information and the events or workflows and calculating the applicability of the rule to the conditions represented by the request. Matching rules are applied, access control decisions performed and associated workflows are executed.
摘要翻译: 定义将访问控制策略与事件或工作流统一的统一访问管理策略表达式。 存储统一的管理策略信息。 统一的管理策略信息定义了访问资源以及事件或工作流的权限。 接收到请求以对一个或多个对象执行一个或多个操作。 所要求的操作根据统一管理规则进行验证。 验证包括执行单个检索,检索访问控制信息和事件或工作流程,并计算规则对请求所表示的条件的适用性。 应用匹配规则,执行访问控制决策和相关工作流程。
-
公开(公告)号:US07827302B2
公开(公告)日:2010-11-02
申请号:US12248849
申请日:2008-10-09
IPC分类号: G06F7/00
CPC分类号: H04L67/10 , H04L67/1002 , H04L67/1014 , H04L67/1023 , Y10S707/99938 , Y10S707/99952 , Y10S707/99953
摘要: Resources are partitioned via a virtual partitioning system to distribute the resources over a plurality of resource servers. A virtual partition table can be kept at each of a set of resource managers handling requests for resources in tandem. When a resource is requested, a virtual partition value is calculated algorithmically, and the value is mapped to a resource component via the virtual partition table. The resource component encapsulates information indicating on which of the resource servers the resource resides and can provide a component for performing operations on the resource even though the requester does not have information about where the resource resides. The resources can be repartitioned by modifying the virtual partition table, thus allowing the addition of additional resource servers to the system while the resources remain available. Additional resource types can be added without reengineering the system.
摘要翻译: 通过虚拟分区系统对资源进行分区,以在多个资源服务器上分发资源。 虚拟分区表可以保存在一组资源管理器的每一个处理资源的串行处理请求中。 当请求资源时,算法计算出虚拟分区值,并通过虚拟分区表将该值映射到资源组件。 资源组件封装指示资源驻留哪些资源服务器的信息,并且可以提供用于对资源执行操作的组件,即使请求者没有关于资源所在的位置的信息。 可以通过修改虚拟分区表来重新分配资源,从而允许在资源保持可用时向系统添加额外的资源服务器。 可以添加其他资源类型,而无需重新设计系统。
-
16.发明申请公开(公告)号:US20090119500A1
公开(公告)日:2009-05-07
申请号:US11934619
申请日:2007-11-02
申请人: Dan Roth , Asaf Kashi , Alexander T. Weinert , Craig V. McMurtry
发明人: Dan Roth , Asaf Kashi , Alexander T. Weinert , Craig V. McMurtry
CPC分类号: G06Q10/06
摘要: The embodiments described herein generally relate to a method and system of injecting automated repeatable processes, or workflows, into software configuration management sequences. The benefits of such a system include the ability to delegate configurability change abilities to an IT administrator while still maintaining efficiency and management control over such changes. A request made by a system administrator to process configuration data may be subject to multiple phases of processing, such as, authentication, authorization, and action. A declarative mapping associates workflows, or meaningful repeatable processes, with the configuration process request criteria and processing phase. The mapping may be created by, or at the direction of, management through the application of the processing concept in API or UI. Upon a triggering event, e.g., receiving a configuration processing request, a stored mapping based on the attributes of the principal and request type may be consulted to determine the workflows which may then execute.
摘要翻译: 本文描述的实施例通常涉及将自动重复过程或工作流注入到软件配置管理序列中的方法和系统。 这种系统的好处包括将可配置性更改功能委派给IT管理员的能力,同时仍然保持对这些更改的效率和管理控制。 系统管理员处理配置数据的请求可能需要进行多个处理阶段,例如认证,授权和操作。 声明性映射将工作流或有意义的可重复过程与配置过程请求标准和处理阶段相关联。 可以通过在API或UI中应用处理概念来创建或通过管理方向来创建映射。 在触发事件(例如,接收配置处理请求)时,可以参考基于主体和请求类型的属性的存储的映射来确定可以执行的工作流。
-
公开(公告)号:US06985958B2
公开(公告)日:2006-01-10
申请号:US10003754
申请日:2001-10-22
申请人: Mark Lucovsky , Shaun D. Pierce , Alexander T. Weinert , Michael G. Burner , Richard B. Ward , Paul J. Leach , George M. Moore , Arthur Zwiegincew , Vivek Gundotra , Robert M. Hyman , Jonathan D. Pincus , Daniel R. Simon
发明人: Mark Lucovsky , Shaun D. Pierce , Alexander T. Weinert , Michael G. Burner , Richard B. Ward , Paul J. Leach , George M. Moore , Arthur Zwiegincew , Vivek Gundotra , Robert M. Hyman , Jonathan D. Pincus , Daniel R. Simon
IPC分类号: G06F13/00
CPC分类号: H04L63/101 , G06F21/6218 , G06F21/6227 , G06F21/6245 , G06Q10/109 , H04L12/1859 , H04L12/1863 , H04L29/06 , H04L63/104 , H04L63/123 , H04L63/1425 , H04L67/02 , H04L67/16 , H04L67/303 , H04L67/306 , H04L67/325 , H04L67/40 , H04L67/42 , H04L69/329
摘要: A messaging data structure for accessing data in an identity-centric manner. An identity may be a user, a group of users, or an organization. Instead of data being maintained on an application-by-application basis, the data associated with a particular identity is stored by one or more data services accessible by many applications. The data is stored in accordance with a schema that is recognized by a number of different applications and the data service. The messaging data structure includes fields that identify the target data object to be operated upon using an identity field, a schema field, and an instance identifier field. In addition, the desired operation is specified. Thus, the target data object is operated on in an identity-centric manner.
-
公开(公告)号:US08196187B2
公开(公告)日:2012-06-05
申请号:US12163782
申请日:2008-06-27
申请人: Jack Kabat , Vadim Meleshuk , Alexander T. Weinert
发明人: Jack Kabat , Vadim Meleshuk , Alexander T. Weinert
IPC分类号: G06F21/00
CPC分类号: G06F21/604 , G06F21/6218
摘要: Enforcing access control based on resource state. A method includes receiving a request for an operation on one or more objects stored on computer readable media. One or more pre-operation states of the one or more objects are determined. One or more post-operation states of the one or more objects are determined. One or more access control rules are referenced. The access control rules control access to resources based on pre-operation state and post operation state. It can then be determined that the one or more access control rules allow the operation to succeed based on the one or more pre-operation states and the one or more post operation states. Based on determining that the one or more access control rules allow the operation to succeed, the operation is allowed to succeed.
摘要翻译: 基于资源状态执行访问控制。 一种方法包括在存储在计算机可读介质上的一个或多个对象上接收对操作的请求。 确定一个或多个对象的一个或多个预操作状态。 确定一个或多个对象的一个或多个后操作状态。 引用一个或多个访问控制规则。 访问控制规则基于操作前状态和后操作状态来控制对资源的访问。 然后可以确定一个或多个访问控制规则基于一个或多个预操作状态和一个或多个后操作状态来允许操作成功。 基于确定一个或多个访问控制规则允许操作成功,允许操作成功。
-
19.发明授权Transparently capturing the causal relationships between requests across distributed applications 失效透明地捕获分布式应用程序之间的请求之间的因果关系公开(公告)号:US08065688B2
公开(公告)日:2011-11-22
申请号:US11626144
申请日:2007-01-23
CPC分类号: G06F9/542
摘要: Several embodiments disclosed herein are directed to methods, computer program products, and systems configured to track operation dependencies. For example, in one embodiment, at a first entity, a first identifier corresponding to a first operation is accessed. For a second operation occurring as a result of the first operation, a second identifier is generated. A directed event including the first and second identifiers is emitted. The directed event is logged. The second identifier is sent to a second entity. An operation call for the second operation is also sent to the second entity. The second identifier is made available at the second entity for use in creating directed events for subsequent operations occurring as a result of the second operation.
摘要翻译: 本文公开的若干实施例涉及被配置为跟踪操作依赖性的方法,计算机程序产品和系统。 例如,在一个实施例中,在第一实体处,访问对应于第一操作的第一标识符。 对于作为第一操作的结果而发生的第二操作,生成第二标识符。 发射包括第一和第二标识符的定向事件。 定向事件被记录。 第二个标识符被发送到第二个实体。 第二个操作的操作调用也被发送到第二个实体。 第二标识符在第二实体可用,用于创建用于作为第二操作的结果的后续操作的定向事件。
-
公开(公告)号:US20090049176A1
公开(公告)日:2009-02-19
申请号:US12248849
申请日:2008-10-09
IPC分类号: G06F15/16
CPC分类号: H04L67/10 , H04L67/1002 , H04L67/1014 , H04L67/1023 , Y10S707/99938 , Y10S707/99952 , Y10S707/99953
摘要: Resources are partitioned via a virtual partitioning system to distribute the resources over a plurality of resource servers. A virtual partition table can be kept at each of a set of resource managers handling requests for resources in tandem. When a resource is requested, a virtual partition value is calculated algorithmically, and the value is mapped to a resource component via the virtual partition table. The resource component encapsulates information indicating on which of the resource servers the resource resides and can provide a component for performing operations on the resource even though the requester does not have information about where the resource resides. The resources can be repartitioned by modifying the virtual partition table, thus allowing the addition of additional resource servers to the system while the resources remain available. Additional resource types can be added without reengineering the system.
摘要翻译: 通过虚拟分区系统对资源进行分区,以在多个资源服务器上分发资源。 虚拟分区表可以保存在一组资源管理器的每一个处理资源的串行处理请求中。 当请求资源时,算法计算出虚拟分区值,并通过虚拟分区表将该值映射到资源组件。 资源组件封装指示资源驻留哪些资源服务器的信息,并且可以提供用于对资源执行操作的组件,即使请求者没有关于资源所在的位置的信息。 可以通过修改虚拟分区表来重新分配资源,从而允许在资源保持可用时向系统添加额外的资源服务器。 可以添加其他资源类型,而无需重新设计系统。
-
-
-
-
-
-
-
-
-
搜索结果
23 条记录 (耗时 0.035 秒)
