公开(公告)号：US20200259923A1

公开(公告)日：2020-08-13

申请号：US16545073

申请日：2019-08-20

申请人： Palantir Technologies Inc.

发明人： Greg DeArment ,  Divyanshu Arora ,  Jason Hoch ,  Mark Elliot ,  Matthew Williamson ,  Robert Kruszewski ,  Steven Austin

IPC分类号： H04L29/08 ,  G06F9/48

摘要： Systems and methods for isolating applications associated with multiple tenants within a computing platform receive a request from a client associated with a tenant for running an application on a computing platform. Hosts connected to the platform are associated with a network address and configured to run applications associated with multiple tenants. A host is identified based at least in part on the request. One or more broadcast domain(s) including the identified hosts are generated. The broadcast domains are isolated in the network at a data link layer. A unique tenant identification number corresponding to the tenant is assigned to the broadcast domains. In response to launching the application on the host: the unique tenant identification number is assigned to the launched application and is added to the network address of the host; and the network address of the host is sent to the client associated with the tenant.

公开(公告)号：US11573776B1

公开(公告)日：2023-02-07

申请号：US17091912

申请日：2020-11-06

申请人： Palantir Technologies Inc.

发明人： Robert Fink ,  Matthew Cheah ,  Mingyu Kim ,  Lynn Cuthriell ,  Divyanshu Arora ,  Justin Uang ,  Jared Newman ,  Jakob Juelich ,  Kevin Chen ,  Mark Elliot ,  Michael Nazario

IPC分类号： G06F9/44 ,  G06F9/455 ,  G06F8/40 ,  G06F8/20 ,  G06F8/30 ,  G06F8/71 ,  G06F21/30

摘要： Data transformation in a distributed system of applications and data repositories is described. The subsystems for the overall framework are distributed, thereby allowing for customization to require only isolated changes to one or more subsystems. In one embodiment, a source code repository is used to receive and store source code. A build subsystem can retrieve source code from the source code repository and build it, using one or more criteria. By building the source code, the build subsystem can generate an artifact, which is executable code, such as a JAR or SQL file. Likewise, by building the source code, the build subsystem can generate one or more job specifications for executing the executable code. In one embodiment, the artifact and job specification may be used to launch an application server in a cluster. The application server can then receive data transformation instructions and execute the data transformation instructions.

公开(公告)号：US20210112065A1

公开(公告)日：2021-04-15

申请号：US16662466

申请日：2019-10-24

申请人： Palantir Technologies Inc.

发明人： Lili Yang ,  Mark Elliot ,  Lam Tran ,  Robert Kruszewski ,  Divyanshu Arora

IPC分类号： H04L29/06

摘要： A system and method for authenticating users of a data processing platform stores a mapping of a unique user platform identifier to multiple user identity provider identifiers associated with multiple realms for a same user. In some examples, the method includes receiving a request from a client device to establish an access session to perform one or more actions on data of the data processing platform and receiving, from at least one of the first external identity provider of the first realm or the second external identity provider of the second realm, a user identity provider identifier associated with the request. In certain examples, the method includes granting permission to perform the one or more actions on the data of the data processing platform based at least in part on the received user identity provider identifier.

公开(公告)号：US20220201001A1

公开(公告)日：2022-06-23

申请号：US17693780

申请日：2022-03-14

申请人： Palantir Technologies Inc.

发明人： Lili Yang ,  Mark Elliot ,  Lam Tran ,  Robert Kruszewski ,  Divyanshu Arora

IPC分类号： H04L9/40

摘要： A system and method for authenticating users of a data processing platform stores a mapping of a unique user platform identifier to multiple user identity provider identifiers associated with multiple realms for a same user. In some examples, the method includes receiving a request from a client device to establish an access session to perform one or more actions on data of the data processing platform and receiving, from at least one of the first external identity provider of the first realm or the second external identity provider of the second realm, a user identity provider identifier associated with the request. In certain examples, the method includes granting permission to perform the one or more actions on the data of the data processing platform based at least in part on the received user identity provider identifier.

公开(公告)号：US11330076B2

公开(公告)日：2022-05-10

申请号：US17097389

申请日：2020-11-13

申请人： Palantir Technologies Inc.

发明人： Greg DeArment ,  Divyanshu Arora ,  Jason Hoch ,  Mark Elliot ,  Matthew Williamson ,  Robert Kruszewski ,  Steven Austin

IPC分类号： H04L29/08 ,  H04L67/60 ,  G06F9/48 ,  H04L67/10

摘要： Systems and methods for isolating applications associated with multiple tenants within a computing platform receive a request from a client associated with a tenant for running an application on a computing platform. Hosts connected to the platform are associated with a network address and configured to run applications associated with multiple tenants. A host is identified based at least in part on the request. One or more broadcast domain(s) including the identified hosts are generated. The broadcast domains are isolated in the network at a data link layer. A unique tenant identification number corresponding to the tenant is assigned to the broadcast domains. In response to launching the application on the host: the unique tenant identification number is assigned to the launched application and is added to the network address of the host; and the network address of the host is sent to the client associated with the tenant.

公开(公告)号：US10860299B2

公开(公告)日：2020-12-08

申请号：US16384691

申请日：2019-04-15

申请人： Palantir Technologies Inc.

发明人： Robert Fink ,  Matthew Cheah ,  Mingyu Kim ,  Lynn Cuthriell ,  Divyanshu Arora ,  Justin Uang ,  Jared Newman ,  Jakob Juelich ,  Kevin Chen ,  Mark Elliot ,  Michael Nazario

IPC分类号： G06F9/44 ,  G06F9/45 ,  G06F8/40 ,  G06F8/20 ,  G06F21/30 ,  G06F8/71 ,  G06F8/30

摘要： Data transformation in a distributed system of applications and data repositories is described. The subsystems for the overall framework are distributed, thereby allowing for customization to require only isolated changes to one or more subsystems. In one embodiment, a source code repository is used to receive and store source code. A build subsystem can retrieve source code from the source code repository and build it, using one or more criteria. By building the source code, the build subsystem can generate an artifact, which is executable code, such as a JAR or SQL file. Likewise, by building the source code, the build subsystem can generate one or more job specifications for executing the executable code. In one embodiment, the artifact and job specification may be used to launch an application server in a cluster. The application server can then receive data transformation instructions and execute the data transformation instructions.

公开(公告)号：US20240333717A1

公开(公告)日：2024-10-03

申请号：US18438095

申请日：2024-02-09

申请人： Palantir Technologies Inc.

发明人： Lili Yang ,  Mark Elliot ,  Lam Tran ,  Robert Kruszewski ,  Divyanshu Arora

IPC分类号： H04L9/40

CPC分类号： H04L63/102 ,  H04L63/0815 ,  H04L63/0876 ,  H04L63/0884 ,  H04L63/108

摘要： A system and method for authenticating users of a data processing platform stores a mapping of a unique user platform identifier to multiple user identity provider identifiers associated with multiple realms for a same user. In some examples, the method includes receiving a request from a client device to establish an access session to perform one or more actions on data of the data processing platform and receiving, from at least one of the first external identity provider of the first realm or the second external identity provider of the second realm, a user identity provider identifier associated with the request. In certain examples, the method includes granting permission to perform the one or more actions on the data of the data processing platform based at least in part on the received user identity provider identifier.

公开(公告)号：US20230185546A1

公开(公告)日：2023-06-15

申请号：US18165780

申请日：2023-02-07

申请人： Palantir Technologies Inc.

发明人： Robert Fink ,  Matthew Cheah ,  Mingyu Kim ,  Lynn Cuthriell ,  Divyanshu Arora ,  Justin Uang ,  Jared Newman ,  Jakob Juelich ,  Kevin Chen ,  Mark Elliot ,  Michael Nazario

IPC分类号： G06F8/40 ,  G06F8/20 ,  G06F21/30 ,  G06F8/71 ,  G06F8/30

CPC分类号： G06F8/40 ,  G06F8/22 ,  G06F21/30 ,  G06F8/71 ,  G06F8/311

摘要： A computer-implemented method comprises obtaining a first build task for building first source code in a first programming language of a plurality of programming languages; retrieving, by the processor, the first source code based on the first build task; building the first source code into one or more artifacts and one or more job specifications; storing the one or more artifacts in a cache shared across a cluster; and initializing an application module on the cluster based on the first programming language, the application module configured to receive a job specification of the one or more job specifications and execute a data transformation job using a reference to a location in the cache.

公开(公告)号：US20210067603A1

公开(公告)日：2021-03-04

申请号：US17097389

申请日：2020-11-13

申请人： Palantir Technologies Inc.

发明人： Greg DeArment ,  Divyanshu Arora ,  Jason Hoch ,  Mark Elliot ,  Matthew Williamson ,  Robert Kruszewski ,  Steven Austin

IPC分类号： H04L29/08 ,  G06F9/48

摘要： Systems and methods for isolating applications associated with multiple tenants within a computing platform receive a request from a client associated with a tenant for running an application on a computing platform. Hosts connected to the platform are associated with a network address and configured to run applications associated with multiple tenants. A host is identified based at least in part on the request. One or more broadcast domain(s) including the identified hosts are generated. The broadcast domains are isolated in the network at a data link layer. A unique tenant identification number corresponding to the tenant is assigned to the broadcast domains. In response to launching the application on the host: the unique tenant identification number is assigned to the launched application and is added to the network address of the host; and the network address of the host is sent to the client associated with the tenant.

公开(公告)号：US10261763B2

公开(公告)日：2019-04-16

申请号：US15839680

申请日：2017-12-12

申请人： Palantir Technologies Inc.

发明人： Robert Fink ,  Matthew Cheah ,  Mingyu Kim ,  Lynn Cuthriell ,  Divyanshu Arora ,  Justin Uang ,  Jared Newman ,  Jakob Juelich ,  Kevin Chen ,  Mark Elliot ,  Michael Nazario

IPC分类号： G06F9/44 ,  G06F9/45 ,  G06F8/40 ,  G06F8/20 ,  G06F21/30 ,  G06F8/71 ,  G06F8/30

摘要： Data transformation in a distributed system of applications and data repositories is described. The subsystems for the overall framework are distributed, thereby allowing for customization to require only isolated changes to one or more subsystems. In one embodiment, a source code repository is used to receive and store source code. A build subsystem can retrieve source code from the source code repository and build it, using one or more criteria. By building the source code, the build subsystem can generate an artifact, which is executable code, such as a JAR or SQL file. Likewise, by building the source code, the build subsystem can generate one or more job specifications for executing the executable code. In one embodiment, the artifact and job specification may be used to launch an application server in a cluster. The application server can then receive data transformation instructions and execute the data transformation instructions.