公开(公告)号：US11522701B2

公开(公告)日：2022-12-06

申请号：US16684780

申请日：2019-11-15

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/40

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.

公开(公告)号：US20220086215A1

公开(公告)日：2022-03-17

申请号：US17316227

申请日：2021-05-10

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Javier Alejandro Figueroa ,  Jose Daniel Inclan Llanes

IPC: H04L29/08 ,  G06F9/455 ,  H04L12/26

Abstract: Methods and systems for handling web requests with latency awareness are described herein. A system may receive a web request from a web client, and determine, based on an exponential moving average of past response times, whether to allow the web request to be sent out to the server. Based on this determination, the system may send the web request to the server. The system may receive a response to the web request and update the exponential moving average based on the response time associated with the received response. The response may be forwarded back to the web client.

公开(公告)号：US10560404B2

公开(公告)日：2020-02-11

申请号：US15725897

申请日：2017-10-05

Applicant: Citrix Systems, Inc.

Inventor： Luis Garcia Menchaca ,  Bradley Markus Rowe ,  Roberto Valdes ,  Bruno Spinelli Dantas

IPC: H04L12/00 ,  H04L12/58 ,  H04L29/08

Abstract: Described embodiments may provide messages via websocket connections. A messaging system may maintain, on a first network, via the messaging system instances, a plurality of persistent websocket connections between each of a plurality of on-premise connectors and each messaging system instance. The messaging system may receive a message to be sent to an endpoint on a second network of an on-premise connector of the plurality of on-premise connectors. The messaging system may identify, via a registry associating on-premise connector endpoints to messaging instances, a messaging system instance of the plurality of messaging system instances via which to send the message to the endpoint. The messaging system instance may maintain the websocket connection to the on-premise connector in communication with the endpoint. The messaging system instance may transmit the message to the endpoint via the websocket connection to the on-premise connector.

公开(公告)号：US20180367479A1

公开(公告)日：2018-12-20

申请号：US15725897

申请日：2017-10-05

Applicant: Citrix Systems, Inc.

Inventor： Luis Garcia Menchaca ,  Bradley Markus Rowe ,  Roberto Valdes ,  Bruno Spinelli Dantas

IPC: H04L12/58 ,  H04L29/08

CPC classification number: H04L51/04 ,  G06F15/17306 ,  H04L67/02 ,  H04L67/10 ,  H04L67/141 ,  H04L67/26 ,  H04L69/327

Abstract: Described embodiments may provide messages via websocket connections. A messaging system may maintain, on a first network, via the messaging system instances, a plurality of persistent websocket connections between each of a plurality of on-premise connectors and each messaging system instance. The messaging system may receive a message to be sent to an endpoint on a second network of an on-premise connector of the plurality of on-premise connectors. The messaging system may identify, via a registry associating on-premise connector endpoints to messaging instances, a messaging system instance of the plurality of messaging system instances via which to send the message to the endpoint. The messaging system instance may maintain the websocket connection to the on-premise connector in communication with the endpoint. The messaging system instance may transmit the message to the endpoint via the websocket connection to the on-premise connector.

公开(公告)号：US11770436B2

公开(公告)日：2023-09-26

申请号：US17316227

申请日：2021-05-10

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Javier Alejandro Figueroa ,  Jose Daniel Inclan Llanes

IPC: H04L67/02 ,  G06F9/455 ,  H04L43/0864

CPC classification number: H04L67/02 ,  G06F9/45558 ,  H04L43/0864 ,  G06F2009/45562

Abstract: Methods and systems for handling web requests with latency awareness are described herein. A system may receive a web request from a web client, and determine, based on an exponential moving average of past response times, whether to allow the web request to be sent out to the server. Based on this determination, the system may send the web request to the server. The system may receive a response to the web request and update the exponential moving average based on the response time associated with the received response. The response may be forwarded back to the web client.

公开(公告)号：US20200084036A1

公开(公告)日：2020-03-12

申请号：US16684780

申请日：2019-11-15

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.

公开(公告)号：US20190097802A1

公开(公告)日：2019-03-28

申请号：US15714460

申请日：2017-09-25

Applicant: Citrix Systems, Inc.

Inventor： Bradley Markus Rowe ,  Ricardo Feijoo ,  Tom Michael Kludy ,  Ayush Jain ,  Gerald Haagsma

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.