公开(公告)号：US11258797B2

公开(公告)日：2022-02-22

申请号：US16595787

申请日：2019-10-08

Applicant: Oracle International Corporation

Inventor： Gregg Wilson ,  Venkateswara Reddy Medam

IPC: H04L29/06 ,  G06F16/951 ,  G06F21/41 ,  G06F21/60 ,  H04L67/60

Abstract: Embodiments provide cloud based identity management by receiving a request from an application for a resource that includes an operation on a resource type out of a plurality of resource types and the request specifies a tenant out of a plurality of tenants, the resource type including a schema, and the schema includes a plurality of schema attributes and metadata for each of the schema attributes, the resource type including one of a user or a second application. Embodiments store multiple versions of the resource type, at least a first version of the resource indicating a deprecated attribute with respect to a first previous version of the resource type, and at least a second version of the resource type indicating an added attribute with respect to a second previous version of resource type, where the request indicates one of the multiple versions of the resource type.

公开(公告)号：US10693861B2

公开(公告)日：2020-06-23

申请号：US15822477

申请日：2017-11-27

Applicant: Oracle International Corporation

Inventor： Vadim Lander ,  Damien Carru ,  Gary P. Cole ,  Ajay Sondhi ,  Gregg Wilson

IPC: H04L29/06 ,  H04L29/08

Abstract: Embodiments provide cloud-based identity management by receiving a request to perform an identity management service that includes real-time tasks and near-real-time tasks. Embodiments synchronously execute the real-time tasks by accessing at least one microservice using a corresponding application programming interface (“API”). Embodiments asynchronously execute the near-real-time tasks by offloading the near-real-time tasks to one or more message queues.

公开(公告)号：US10200358B2

公开(公告)日：2019-02-05

申请号：US15816168

申请日：2017-11-17

Applicant: Oracle International Corporation

Inventor： Vadim Lander ,  Damien Carru ,  Gary P. Cole ,  Ajay Sondhi ,  Gregg Wilson

IPC: H04L29/00 ,  H04L29/06 ,  H04L29/08

Abstract: A system provides cloud-based identity and access management. The system receives a request for performing an identity management service, where the request includes a call to an application programming interface (“API”) that identifies the identity management service and a microservice configured to perform the identity management service. The system authenticates the request, accesses the microservice, and performs the identity management service by the microservice.

公开(公告)号：US09838377B1

公开(公告)日：2017-12-05

申请号：US15450550

申请日：2017-03-06

Applicant: Oracle International Corporation

Inventor： Vadim Lander ,  Damien Carru ,  Gary P. Cole ,  Ajay Sondhi ,  Gregg Wilson

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L63/0815 ,  H04L63/083 ,  H04L63/0861 ,  H04L63/102 ,  H04L67/10

Abstract: A system provides cloud-based identity and access management. The system receives a request to perform an identity management service, and accesses a microservice based on the identity management service. The system determines one or more real-time tasks and one or more near-real-time tasks that are required to be executed to complete the identity management task. The system synchronously executes the one or more real-time tasks by the microservice, and sends the one or more near-real-time tasks to a queue to be asynchronously executed.

公开(公告)号：US11687378B2

公开(公告)日：2023-06-27

申请号：US16876572

申请日：2020-05-18

Applicant: Oracle International Corporation

Inventor： Ashish Bhargava ,  Gary Cole ,  Gregg Wilson

IPC: G06F9/50 ,  G06F12/0831 ,  H04L9/40 ,  H04L67/5682

CPC classification number: G06F9/5072 ,  G06F12/0831 ,  H04L63/02 ,  H04L63/0846 ,  H04L67/5682

Abstract: Embodiments include a multi-tenant cloud system that receives a request for an authenticate action for a user. Embodiments create an authenticate target action and register a cache listener for a cache that includes a filter to listen for a target action response that is responsive to the authenticate target action, the filter listing a plurality of bridges assigned to an on-premise active directory. Embodiments randomly select one of the plurality of bridges and sends the authenticate target action to the active directory via the selected bridge. Embodiments wait for a cache callback and, at the cache callback, receive a target action response that includes a result of the authenticate action.

公开(公告)号：US11271969B2

公开(公告)日：2022-03-08

申请号：US15991245

申请日：2018-05-29

Applicant: Oracle International Corporation

Inventor： Ashutosh Pitre ,  Gregg Wilson ,  Prashant Srinivasan

IPC: H04L29/06 ,  G06F21/62 ,  H04L67/02

Abstract: One embodiment provides declarative policy management in a multi-tenant cloud-based identity and access management (“IAM”) system. The embodiment receives at least one Application Programming Interface (“API”) request by a policy engine of the multi-tenant cloud-based IAM system from a tenant of the multi-tenant cloud-based IAM system. The embodiment configures a declarative policy for the tenant of the multi-tenant cloud-based IAM system based on the at least one API request. The embodiment then enforces the declarative policy in an IAM service performed for the tenant of the multi-tenant cloud-based IAM system.

公开(公告)号：US09838376B1

公开(公告)日：2017-12-05

申请号：US15450512

申请日：2017-03-06

Applicant: Oracle International Corporation

Inventor： Vadim Lander ,  Damien Carru ,  Gary P. Cole ,  Ajay Sondhi ,  Gregg Wilson

IPC: H04L29/00 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L63/0815 ,  H04L63/083 ,  H04L63/0861 ,  H04L63/104 ,  H04L67/02 ,  H04L67/10

Abstract: A system provides cloud-based identity and access management. The system receives a request for performing an identity management service, where the request includes a call to an application programming interface (“API”) that identifies the identity management service and a microservice configured to perform the identity management service. The system authenticates the request, accesses the microservice, and performs the identity management service by the microservice.

公开(公告)号：US10484382B2

公开(公告)日：2019-11-19

申请号：US15680362

申请日：2017-08-18

Applicant: Oracle International Corporation

Inventor： Gregg Wilson ,  Venkateswara Reddy Medam

IPC: H04L29/04 ,  H04L29/06 ,  G06F16/951 ,  H04L29/08 ,  G06F21/41 ,  G06F21/60

Abstract: Cloud based identity management is provided by receiving a request from an application by a web gate for a resource, where the request includes an operation on a resource type out of a plurality of resource types and the request specifies a tenant out of a plurality of tenants. Embodiments access a microservice based on the request, resolve the resource type, and validate that the operation is supported by the resource type based on metadata. Embodiments get a data provider associated with the tenant, call the data provider to perform the operation, and then return the resource.

公开(公告)号：US11308132B2

公开(公告)日：2022-04-19

申请号：US15991057

申请日：2018-05-29

Applicant: Oracle International Corporation

Inventor： Sudhir Kumar Srinivasan ,  Shruthi Chikkanna ,  Nikhil Yograj Vaishnavi ,  Xiaoxiao Xu ,  Gregg Wilson ,  Venkateswara Reddy Medam

IPC: G06F16/00 ,  G06F16/28 ,  G06F16/21 ,  G06F16/2457 ,  H04L29/06 ,  G06F9/50

Abstract: A system stores and uses object relationships in a multi-tenant cloud-based identity and access management (IAM) system by: defining a schema for storing related objects, where the schema includes reference attributes indicative of relationships between the related objects in a database, and the schema defines a relationship type and a persistence scope for each reference attribute; constructing an in-memory representation of the related objects and their relationships based on the schema, where the in-memory representation indicates the relationship type and the persistence scope for each reference attribute; and using the in-memory representation of the related objects to perform an IAM service for a client of the multi-tenant cloud-based IAM system.

公开(公告)号：US10904074B2

公开(公告)日：2021-01-26

申请号：US15707173

申请日：2017-09-18

Applicant: Oracle International Corporation

Inventor： Gregg Wilson ,  Arun Theebaprakasam ,  Manoj Kumar ,  Rohit Jalan ,  Yang Li

IPC: G06F15/173 ,  H04L12/24 ,  G06F21/50 ,  H04L12/26 ,  G06F21/45 ,  G06F21/55 ,  H04L29/06

Abstract: One embodiment provides event handling in a cloud based multi-tenant identity management system. Embodiments receive a plurality of individual events and a request to create a group from the individual events. Embodiments publish the group as a composite event and persist the composite event in a composite queue. Embodiments then dispatch the composite event to a composite handler, parse the composite event and persist the individual events in respective event queues.