公开(公告)号：US10798020B2

公开(公告)日：2020-10-06

申请号：US15825870

申请日：2017-11-29

Applicant: Citrix Systems, Inc.

Inventor： Thomas M. Kludy ,  Alejandro Carrasquilla ,  Michael Paul Wehniainen ,  Ayush Jain

IPC: H04L12/911 ,  G06F9/54 ,  H04L12/26 ,  G06F16/27 ,  H04L12/28 ,  G06F16/25 ,  H04L29/08

Abstract: Methods and systems for sharing data among multiple services are described herein. Multiple services may access data from a shared data source. The services may subscribe to data sharing events. A data sharing service may iterate through the shared data source and transmit data retrieved from the shared data source in data sharing events. When the data sharing service reaches the end of the shared data source, the data sharing service may begin iterating through the shared data source again from the beginning. The data sharing events may be transmitted at a predetermined frequency. The services may subscribe to or unsubscribe from the data sharing events.

公开(公告)号：US10776369B2

公开(公告)日：2020-09-15

申请号：US15628833

申请日：2017-06-21

Applicant: Citrix Systems, Inc.

Inventor： Sathishkumar Kaliavaradhan ,  Amit Shah ,  Steven Keller ,  Xiaodong Huang ,  Ayush Jain

IPC: G06F16/2458 ,  G06F16/33 ,  G06F16/28 ,  G06F16/27

Abstract: Techniques for implementing a non-relational database that makes efficient use of collections within the database. For one or more collections, two or more sub-collections can be created for storing documents. Each collection can be configured as a single partition entity or a partitioned entity within the database. Each sub-collection is identified by a sub-collection identifier. If the collection is configured as a partitioned entity, then a partition key can be determined for documents to be accessed in the collection. The partition key can be extended with the sub-collection ID to form a compound property (sub-collection ID, partition key) that determines placements of the respective documents in the identified sub-collection across partitions of the collection. If the collection is configured as a single partition entity, then a field for the partition key is ignored and the respective documents are placed in the identified sub-collection within the single partition of the collection.

公开(公告)号：US10771570B2

公开(公告)日：2020-09-08

申请号：US16160337

申请日：2018-10-15

Applicant: Citrix Systems, Inc.

Inventor： Ayush Jain ,  Jason-Lee Thomas ,  Alexandr Smelov

IPC: H04L29/08

Abstract: Methods, systems, and computer-readable media for creating and managing a multi-tiered service messaging architecture within a cloud service provider or computing environment. In one or more embodiments, the multi-tiered service messaging architecture may comprise a primary topic configured to receive and manage particular service messages. Services of the cloud are allocated a service topic to receive the service messages managed by the primary topic and may itself subscribe to the primary topic to receive the service messages. Through the subscription to the service topic, the service may receive the service messages provided by the primary topic. Still other sub-topics may subscribe to the service topics for additional subscriptions by services to receive the service messages provided by the primary topic.

公开(公告)号：US10749982B2

公开(公告)日：2020-08-18

申请号：US15875424

申请日：2018-01-19

Applicant: Citrix Systems, Inc.

Inventor： Steven A. Keller ,  Thomas J. Hammond ,  Thomas Michael Kludy ,  Ayush Jain ,  Ricardo Fernando Feijoo

IPC: H04L29/08 ,  H04W4/02 ,  H04L12/701

Abstract: Methods and systems for routing a user request for a service to a version of the service in a geographical region associated with the user are described herein. The service may be deployed in multiple geographical regions, and the service may have multiple versions in each of the geographical regions. A user device may send a request for a service to a first server in a geographical region. The first server may determine whether the user is associated with the geographical region. Responsive to determining that the user is not associated with the geographical region, the first server may ask one or more servers in other geographical regions whether the user is associated with any of the other geographical regions.

公开(公告)号：US20200084036A1

公开(公告)日：2020-03-12

申请号：US16684780

申请日：2019-11-15

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.

公开(公告)号：US20190097802A1

公开(公告)日：2019-03-28

申请号：US15714460

申请日：2017-09-25

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.

公开(公告)号：US20180373765A1

公开(公告)日：2018-12-27

申请号：US15628833

申请日：2017-06-21

Applicant: Citrix Systems, Inc.

Inventor： Sathishkumar Kaliavaradhan ,  Amit Shah ,  Steven Keller ,  Xiaodong Huang ,  Ayush Jain

IPC: G06F17/30

Abstract: Techniques for implementing a non-relational database that makes efficient use of collections within the database. For one or more collections, two or more sub-collections can be created for storing documents. Each collection can be configured as a single partition entity or a partitioned entity within the database. Each sub-collection is identified by a sub-collection identifier. If the collection is configured as a partitioned entity, then a partition key can be determined for documents to be accessed in the collection. The partition key can be extended with the sub-collection ID to form a compound property (sub-collection ID, partition key) that determines placements of the respective documents in the identified sub-collection across partitions of the collection. If the collection is configured as a single partition entity, then a field for the partition key is ignored and the respective documents are placed in the identified sub-collection within the single partition of the collection.

公开(公告)号：US12294575B2

公开(公告)日：2025-05-06

申请号：US17485695

申请日：2021-09-27

Applicant: Citrix Systems, Inc.

Inventor： Ayush Jain ,  Ricardo Feijoo

IPC: H04L29/06 ,  H04L9/40

Abstract: Aspects described herein may utilize self-federation in a plugin-based authentication system to support combinations of authentication processes. The authentication system may include a plugin that executes an authentication process that is a combination of two or more other authentication processes. This plugin may handle the combined authentication process by self-federating back to the authentication interface, generating its own authentication requests under each of the subsidiary authentication processes. Thus, the self-federating plugin corresponding to the combined authentication process may allow the authentication system to support authentication requests that indicate the combined authentication process. This “chained” authentication process, accomplished through self-federation, may allow the authentication system to reuse existing code paths and avoid downsides associated with duplication of code.

公开(公告)号：US11637914B2

公开(公告)日：2023-04-25

申请号：US17722769

申请日：2022-04-18

Applicant: Citrix Systems, Inc.

Inventor： Steven A. Keller ,  Thomas J. Hammond ,  Thomas Kludy ,  Ayush Jain ,  Ricardo Fernando Feijoo

IPC: H04L67/60 ,  H04L67/1021 ,  H04W4/02 ,  H04L45/00 ,  H04L67/52 ,  H04L67/63 ,  H04L67/568

Abstract: Methods and systems for routing a user request for a service to a version of the service in a geographical region associated with the user are described herein. The service may be deployed in multiple geographical regions, and the service may have multiple versions in each of the geographical regions. A user device may send a request for a service to a first server in a geographical region. The first server may determine whether the user is associated with the geographical region. Responsive to determining that the user is not associated with the geographical region, the first server may ask one or more servers in other geographical regions whether the user is associated with any of the other geographical regions.

公开(公告)号：US20220382529A1

公开(公告)日：2022-12-01

申请号：US17887169

申请日：2022-08-12

Applicant: Citrix Systems, Inc.

Inventor： Ayush Jain ,  Steven A. Keller

IPC: G06F8/60 ,  G06F8/71 ,  G06F11/36 ,  G06F21/53 ,  G06F11/14

Abstract: Described herein are systems and methods for managing releases of global services in a controlled manner. A computing environment may include a first release of a global service, a second release of the global service, and a manager service. The first and second release may be enabled and disabled. The first release may be enabled and the second release may be disabled. The second release may be ready for use in the computing environment after passing one or more checks. A manager service may enable use of the second release in the computing environment. The manager service may disable use of (but maintain execution of) the first release in the computing environment. The second release may be determined to have one or more issues. Responsive to determining the second release has issue(s), the manager service may disable use of the second release and re-enable use of the first release.