公开(公告)号：US20210075764A1

公开(公告)日：2021-03-11

申请号：US16953083

申请日：2020-11-19

Applicant: Open Text Corporation

Inventor： Harish Rawat ,  Sachin Gopaldas Totale ,  Ahson M. Ahmad

IPC: H04L29/06 ,  H04L12/46

Abstract: A system having an off-premises proxy server residing in a cloud computing environment and backend servers residing in an enterprise computing environment are provided. Requests received by the off-premises proxy server for access to a first, non-publicly accessible backend server are routed to a tunnel server which stores the request and waits to be polled by a tunnel agent connected to the first backend server. When the tunnel server is polled, the request is forwarded through an HTTP tunnel to the tunnel agent, which forwards it to the backend server for processing. Responsive information is returned to the tunnel agent, which forwards it through the HTTP tunnel to the tunnel server and returned through the off-premises proxy server to the remote application. Requests for access to a first, publicly accessible backend server are routed by the off-premises proxy server directly to the backend server for processing and return of responsive information.

公开(公告)号：US20180375828A1

公开(公告)日：2018-12-27

申请号：US16018886

申请日：2018-06-26

Applicant: Open Text Corporation

Inventor： Harish Rawat ,  Sachin Gopaldas Totale ,  Ahson M. Ahmad

IPC: H04L29/06 ,  H04L12/46 ,  H04L29/08

Abstract: A system having an off-premises proxy server residing in a cloud computing environment and backend servers residing in an enterprise computing environment are provided. Requests received by the off-premises proxy server for access to a first, non-publicly accessible backend server are routed to a tunnel server which stores the request and waits to be polled by a tunnel agent connected to the first backend server. When the tunnel server is polled, the request is forwarded through an HTTP tunnel to the tunnel agent, which forwards it to the backend server for processing. Responsive information is returned to the tunnel agent, which forwards it through the HTTP tunnel to the tunnel server and returned through the off-premises proxy server to the remote application. Requests for access to a first, publicly accessible backend server are routed by the off-premises proxy server directly to the backend server for processing and return of responsive information.

公开(公告)号：US10474837B2

公开(公告)日：2019-11-12

申请号：US15982782

申请日：2018-05-17

Applicant: Open Text Corporation

Inventor： Kenwood Tsai ,  Harish Rawat ,  Xiaoting Tang ,  Payam Shahidi

IPC: G06F16/30 ,  G06F21/62

Abstract: Controlling access to business process data is disclosed. An instance of a first business process object configured to contain business process data of a business process is created. An instance of a second business process object configured to contain business process data of the business process is created. A first access control list is associated with the instance of the first business process object and a second access control list is associated with the instance of the second business process object.

公开(公告)号：US11968209B2

公开(公告)日：2024-04-23

申请号：US18182566

申请日：2023-03-13

Applicant: Open Text Corporation

Inventor： Sachin Gopaldas Totale ,  Muneer Ahmed ,  Harish Rawat ,  Rajakumar Thiruvasagam ,  Lakshmi Narayana Prasad Kakumani

IPC: H04L9/40 ,  G06F21/31 ,  G06F21/33 ,  G06F21/41 ,  H04L9/32

CPC classification number: H04L63/0884 ,  G06F21/33 ,  G06F21/41 ,  H04L9/3213 ,  H04L9/3228 ,  H04L9/3247 ,  H04L63/0272 ,  H04L63/029 ,  H04L63/0807 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/102 ,  G06F21/31 ,  H04L2209/76

Abstract: Disclosed are hybrid authentication systems and methods that enable users to seamlessly sign-on between cloud-based services and on-premises systems. A cloud-based authentication service receives login credentials from a user and delegates authentication to an on-premises authentication service proxy. The login credentials can be passed by the cloud-based authentication service to the on-premises authentication service proxy, for instance, as an access token in an authentication header. The access token can be a JavaScript Object Notation (JSON) Web Token (JWT) token that is digitally signed using JSON Web Signature. Some embodiments utilize a tunnel connection through which the cloud-based authentication service communicates with the on-premises authentication service proxy. Some embodiments leverage an on-premises identity management system for user management and authentication. In this way, there is no need for a cloud-based system to separately maintain and manage a user identity management system and/or having to sync with an on-premises identity management system.

公开(公告)号：US11637828B2

公开(公告)日：2023-04-25

申请号：US17306686

申请日：2021-05-03

Applicant: OPEN TEXT CORPORATION

Inventor： Sachin Gopaldas Totale ,  Muneer Ahmed ,  Harish Rawat ,  Rajakumar Thiruvasagam ,  Lakshmi Narayana Prasad Kakumani

IPC: H04L9/40 ,  G06F21/33 ,  G06F21/41 ,  H04L9/32 ,  G06F21/31

Abstract: Disclosed are hybrid authentication systems and methods that enable users to seamlessly sign-on between cloud-based services and on-premises systems. A cloud-based authentication service receives login credentials from a user and delegates authentication to an on-premises authentication service proxy. The login credentials can be passed by the cloud-based authentication service to the on-premises authentication service proxy, for instance, as an access token in an authentication header. The access token can be a JavaScript Object Notation (JSON) Web Token (JWT) token that is digitally signed using JSON Web Signature. Some embodiments utilize a tunnel connection through which the cloud-based authentication service communicates with the on-premises authentication service proxy. Some embodiments leverage an on-premises identity management system for user management and authentication. In this way, there is no need for a cloud-based system to separately maintain and manage a user identity management system and/or having to sync with an on-premises identity management system.

公开(公告)号：US20220353261A1

公开(公告)日：2022-11-03

申请号：US17306686

申请日：2021-05-03

Applicant: OPEN TEXT CORPORATION

Inventor： Sachin Gopaldas Totale ,  Muneer Ahmed ,  Harish Rawat ,  Rajakumar Thiruvasagam ,  Lakshmi Narayana Prasad Kakumani

IPC: H04L29/06

Abstract: Disclosed are hybrid authentication systems and methods that enable users to seamlessly sign-on between cloud-based services and on-premises systems. A cloud-based authentication service receives login credentials from a user and delegates authentication to an on-premises authentication service proxy. The login credentials can be passed by the cloud-based authentication service to the on-premises authentication service proxy, for instance, as an access token in an authentication header. The access token can be a JavaScript Object Notation (JSON) Web Token (JWT) token that is digitally signed using JSON Web Signature. Some embodiments utilize a tunnel connection through which the cloud-based authentication service communicates with the on-premises authentication service proxy. Some embodiments leverage an on-premises identity management system for user management and authentication. In this way, there is no need for a cloud-based system to separately maintain and manage a user identity management system and/or having to sync with an on-premises identity management system.

公开(公告)号：US11349815B2

公开(公告)日：2022-05-31

申请号：US16953083

申请日：2020-11-19

Applicant: Open Text Corporation

Inventor： Harish Rawat ,  Sachin Gopaldas Totale ,  Ahson M Ahmad

IPC: H04L9/40 ,  H04L12/46 ,  H04L67/56 ,  H04L67/02

Abstract: A system having an off-premises proxy server residing in a cloud computing environment and backend servers residing in an enterprise computing environment are provided. Requests received by the off-premises proxy server for access to a first, non-publicly accessible backend server are routed to a tunnel server which stores the request and waits to be polled by a tunnel agent connected to the first backend server. When the tunnel server is polled, the request is forwarded through an HTTP tunnel to the tunnel agent, which forwards it to the backend server for processing. Responsive information is returned to the tunnel agent, which forwards it through the HTTP tunnel to the tunnel server and returned through the off-premises proxy server to the remote application. Requests for access to a first, publicly accessible backend server are routed by the off-premises proxy server directly to the backend server for processing and return of responsive information.

公开(公告)号：US11991153B2

公开(公告)日：2024-05-21

申请号：US18319160

申请日：2023-05-17

Applicant: Open Text Corporation

Inventor： Harish Rawat ,  Sachin Gopaldas Totale ,  Ahson M. Ahmad

IPC: H04L9/40 ,  H04L12/46 ,  H04L67/02 ,  H04L67/56

CPC classification number: H04L63/029 ,  H04L12/4633 ,  H04L63/0209 ,  H04L63/0281 ,  H04L63/083 ,  H04L63/0884 ,  H04L67/02 ,  H04L67/56

Abstract: A system having an off-premises proxy server residing in a cloud computing environment and backend servers residing in an enterprise computing environment are provided. Requests received by the off-premises proxy server for access to a first, non-publicly accessible backend server are routed to a tunnel server which stores the request and waits to be polled by a tunnel agent connected to the first backend server. When the tunnel server is polled, the request is forwarded through an HTTP tunnel to the tunnel agent, which forwards it to the backend server for processing. Responsive information is returned to the tunnel agent, which forwards it through the HTTP tunnel to the tunnel server and returned through the off-premises proxy server to the remote application. Requests for access to a first, publicly accessible backend server are routed by the off-premises proxy server directly to the backend server for processing and return of responsive information.

公开(公告)号：US11012441B2

公开(公告)日：2021-05-18

申请号：US16015420

申请日：2018-06-22

Applicant: OPEN TEXT CORPORATION

Inventor： Sachin Gopaldas Totale ,  Muneer Ahmed ,  Harish Rawat ,  Rajakumar Thiruvasagam ,  Lakshmi Narayana Prasad Kakumani

IPC: H04L29/06 ,  G06F21/33 ,  G06F21/41 ,  H04L9/32 ,  G06F21/31

Abstract: Disclosed are hybrid authentication systems and methods that enable users to seamlessly sign-on between cloud-based services and on-premises systems. A cloud-based authentication service receives login credentials from a user and delegates authentication to an on-premises authentication service proxy. The login credentials can be passed by the cloud-based authentication service to the on-premises authentication service proxy, for instance, as an access token in an authentication header. The access token can be a JavaScript Object Notation (JSON) Web Token (JWT) token that is digitally signed using JSON Web Signature. Some embodiments utilize a tunnel connection through which the cloud-based authentication service communicates with the on-premises authentication service proxy. Some embodiments leverage an on-premises identity management system for user management and authentication. In this way, there is no need for a cloud-based system to separately maintain and manage a user identity management system and/or having to sync with an on-premises identity management system.

公开(公告)号：US20180293404A1

公开(公告)日：2018-10-11

申请号：US15982782

申请日：2018-05-17

Applicant: Open Text Corporation

Inventor： Kenwood Tsai ,  Harish Rawat ,  Xiaoting Tang ,  Payam Shahidi

IPC: G06F21/62

CPC classification number: G06F21/6245 ,  Y10S707/944 ,  Y10S707/955

Abstract: Controlling access to business process data is disclosed. An instance of a first business process object configured to contain business process data of a business process is created. An instance of a second business process object configured to contain business process data of the business process is created. A first access control list is associated with the instance of the first business process object and a second access control list is associated with the instance of the second business process object.