Patents Assigned to HASHICORP
-
Patent number: 11973647Abstract: A method may include validating an execution plan specifying one or more configurations to apply to an information technology infrastructure. The execution plan may be validated by at least determining a structural validity of the configurations of the execution plan. In response to the configurations of the execution plan being determined to be structurally valid, the validation of the execution plan may further include determining whether the information technology infrastructure satisfies a policy if the configurations specified in the execution plan are applied to the information technology infrastructure. In response to a successful validation of the execution plan, the one or more configurations specified in the execution plan may be applied to the information technology infrastructure by at least provisioning, modifying, and/or de-provisioning one or more resources at the information technology infrastructure.Type: GrantFiled: April 22, 2019Date of Patent: April 30, 2024Assignee: HashiCorpInventors: Mitchell Hashimoto, Armon Dadgar, Paul Hinze
-
Publication number: 20240118934Abstract: A system and method for multi-region deployment of application jobs in a federated cloud computing infrastructure. A job is received for execution in two or more regions of the federated cloud computing infrastructure, each of the two or more regions comprising a collection of servers joined in a raft group for separate, regional execution of the job generating a copy of the job for each of the two or more regions. The job is then deployed to the two or more regions, the workload orchestrator deploying the job according to a deployment plan. A state indication is received from each of the two or more regions, the state indication representing a state of completion of the job by each respective region of the multi-cloud computing infrastructure.Type: ApplicationFiled: December 15, 2023Publication date: April 11, 2024Applicant: HashiCorpInventor: Timothy Gross
-
Patent number: 11924066Abstract: Systems and methods for ticket-based provisioning of cloud infrastructure from one or more cloud providers to build one or more computing workspaces of an enterprise. A provisioning platform provides a module catalog having one or more infrastructure-as-code (IAC) modules, each including code that is executable to provision cloud computing resources for the cloud infrastructure from the cloud providers to build the computing workspaces of the enterprise. A service catalog has one or more electronic entries mapped to and corresponding with the IAC modules of the module catalog. The service catalog receives one or more tickets that each specify at least one of the electronic entries in the service catalog, to bind each specified electronic entry with a corresponding IAC module, causing the provisioning platform to instantiate on the more cloud providers the computing resources for the cloud infrastructure corresponding to the ticket.Type: GrantFiled: August 15, 2022Date of Patent: March 5, 2024Assignee: HashiCorpInventors: Paul Welch, Kim Ngo, Justin Campbell, Greg Hoin, Lauren Rother
-
Patent number: 11907767Abstract: A cost estimator system receives a plan, a configuration or proposed changes for a cloud-based infrastructure, and which include data representing one or more computing resources needed for a cloud-based application. A new configuration is generated for the cloud-based infrastructure incorporating the plan, configuration or proposed changes. A price resolver resolves a price of the resources that are part of the new configuration, and requests, from one or more cloud providers associated with the new configuration, price data for the resolved resources. The cost estimator system then generates, based on the price data received by the price resolver, a cost estimate for the new configuration of the cloud-based infrastructure.Type: GrantFiled: May 31, 2022Date of Patent: February 20, 2024Assignee: HashiCorpInventors: Mitchell Hashimoto, Armon Dadgar, Matthew Hooker, Paul Thrasher
-
Publication number: 20230421489Abstract: A discovery and routing service may generate a URL related to an application to be deployed to a cloud computing platforms, the URL providing access to an edge list containing one or more edge nodes. The discovery and routing service may connect at least one agent to the URL. The discovery and routing service may send authentication information to the agent, including an identifier related to the agent, and a set of agent labels. The discovery and routing service may insert, after authentication by the edge node, the authentication information into a routing mesh. The discovery and routing service may locate the agent, in response to a request, based on a comparison between the set of request labels and a set of agent labels. The discovery and routing service may connect the located agent with traffic to and from the routing mesh.Type: ApplicationFiled: September 7, 2023Publication date: December 28, 2023Applicant: HashiCorpInventors: Mitchell Hashimoto, Evan Phoenix
-
Patent number: 11847498Abstract: A system and method for multi-region deployment of application jobs in a federated cloud computing infrastructure. A job is received for execution in two or more regions of the federated cloud computing infrastructure, each of the two or more regions comprising a collection of servers joined in a raft group for separate, regional execution of the job generating a copy of the job for each of the two or more regions. The job is then deployed to the two or more regions, the workload orchestrator deploying the job according to a deployment plan. A state indication is received from each of the two or more regions, the state indication representing a state of completion of the job by each respective region of the multi-cloud computing infrastructure.Type: GrantFiled: July 8, 2021Date of Patent: December 19, 2023Assignee: HashiCorpInventor: Timothy Gross
-
Patent number: 11792120Abstract: A discovery and routing service may generate a URL related to an application to be deployed to a cloud computing platforms, the URL providing access to an edge list containing one or more edge nodes. The discovery and routing service may connect at least one agent to the URL. The discovery and routing service may send authentication information to the agent, including an identifier related to the agent, and a set of agent labels. The discovery and routing service may insert, after authentication by the edge node, the authentication information into a routing mesh. The discovery and routing service may locate the agent, in response to a request, based on a comparison between the set of request labels and a set of agent labels. The discovery and routing service may connect the located agent with traffic to and from the routing mesh.Type: GrantFiled: January 13, 2022Date of Patent: October 17, 2023Assignee: HashiCorpInventors: Mitchell Hashimoto, Evan Phoenix
-
Publication number: 20230300026Abstract: Systems and methods of managing information technology infrastructure are described. A method includes identifying a run trigger between a first node and a second node, each node maintaining a configuration for a portion of a cloud computing infrastructure associated with executing a portion of a cloud-based application. The run trigger initiates in response to an action at the first node and comprises a source identifier identifying the first node and a destination identifier identifying the second node. Then a run is queued on the second node based on the run trigger, the run including a process executed on the second portion of the cloud computing infrastructure with data received by the second node and associated with a run source identifier. The run on the second node is then planned and executed, causing the cloud computing infrastructure to modify infrastructure resources associated with the second portion of the cloud computing infrastructure.Type: ApplicationFiled: May 24, 2023Publication date: September 21, 2023Applicant: HashiCorp, Inc.Inventors: Casey Lang, Krista LaFentres, Jon Schulman
-
Patent number: 11700177Abstract: Systems and methods of managing information technology infrastructure are described. A method includes identifying a run trigger between a first node and a second node, each node maintaining a configuration for a portion of a cloud computing infrastructure associated with executing a portion of a cloud-based application. The run trigger initiates in response to an action at the first node and comprises a source identifier identifying the first node and a destination identifier identifying the second node. Then a run is queued on the second node based on the run trigger, the run including a process executed on the second portion of the cloud computing infrastructure with data received by the second node and associated with a run source identifier. The run on the second node is then planned and executed, causing the cloud computing infrastructure to modify infrastructure resources associated with the second portion of the cloud computing infrastructure.Type: GrantFiled: January 10, 2022Date of Patent: July 11, 2023Assignee: HashiCorp Inc.Inventors: Casey Lang, Krista LaFentres, Jon Schulman
-
Patent number: 11695634Abstract: A configuration of a service of a cloud computing system is rendered in a user interface of an electronic display, according to a discovery chain generated by a networking tool using a service discovery function to establish the configuration. The configuration includes one or more of a router, a splitter, and/or a resolver, each having one or more configuration files that are represented as a graphical element within a graphical representation of the one or more of the router, the splitter, and/or the resolver. The configuration further includes data traffic routes between pairs of the configuration files, each being represented in the UI as a line between each pair of configuration files, where each line is rendered in the UI so as to avoid crossing over any graphical element that represents a configuration file.Type: GrantFiled: November 30, 2021Date of Patent: July 4, 2023Assignee: HashiCorpInventors: Hannah Oppenheimer, John Cowen
-
Patent number: 11669364Abstract: A method may include validating an execution plan specifying one or more configurations to apply to an information technology infrastructure. The execution plan may be validated by at least determining a structural validity of the configurations of the execution plan. In response to the configurations of the execution plan being determined to be structurally valid, the validation of the execution plan may further include determining whether the information technology infrastructure satisfies a policy if the configurations specified in the execution plan are applied to the information technology infrastructure. In response to a successful validation of the execution plan, the one or more configurations specified in the execution plan may be applied to the information technology infrastructure by at least provisioning, modifying, and/or de-provisioning one or more resources at the information technology infrastructure.Type: GrantFiled: July 3, 2019Date of Patent: June 6, 2023Assignee: HashiCorp. Inc.Inventors: Mitchell Hashimoto, Armon Dadgar, Paul Hinze
-
Patent number: 11601358Abstract: A method for cross datacenter service-to-service communication over a shortest network route using mesh gateways. A mesh gateway receives a protocol message from a first service directed to a second service, identifies destination information associated with the second service, recognizes a routing configuration for routing the protocol message, determines a network route based on the routing configuration, and forwards the protocol message to another gateway associated with the second service over the determined network route.Type: GrantFiled: December 17, 2020Date of Patent: March 7, 2023Assignee: HASHICORPInventors: Matthew Keeler, Paul Banks, Mitchell Hashimoto, Armon Dadgar
-
Patent number: 11537720Abstract: Security configuration optimizer system and methods create optimized access control policies. The systems and methods analyze constraints on the secured system and produce a plurality of proposals for an updated security configuration. The proposals are analyzed and filtered. A resulting set of proposals are graded or ranked according to a variety of desirable outcomes. A proposal is selected according to criteria based on the balance of security and complexity. The security configuration is updated according to the selected proposal.Type: GrantFiled: May 23, 2019Date of Patent: December 27, 2022Assignee: HASHICORP, INC.Inventors: Jonathan James Currey, Robert Earle McKinstry, III, Armon Memaran Dadgar
-
Patent number: 11418415Abstract: Systems and methods for ticket-based provisioning of cloud infrastructure from one or more cloud providers to build one or more computing workspaces of an enterprise. A provisioning platform provides a module catalog having one or more infrastructure-as-code (IAC) modules, each including code that is executable to provision cloud computing resources for the cloud infrastructure from the cloud providers to build the computing workspaces of the enterprise. A service catalog has one or more electronic entries mapped to and corresponding with the IAC modules of the module catalog. The service catalog receives one or more tickets that each specify at least one of the electronic entries in the service catalog, to bind each specified electronic entry with a corresponding IAC module, causing the provisioning platform to instantiate on the more cloud providers the computing resources for the cloud infrastructure corresponding to the ticket.Type: GrantFiled: May 3, 2021Date of Patent: August 16, 2022Assignee: HASHICORPInventors: Paul Welch, Kim Ngo, Justin Campbell, Greg Hoin, Lauren Rother
-
Patent number: 11347559Abstract: A cost estimator system receives a plan, a configuration or proposed changes for a cloud-based infrastructure, and which include data representing one or more computing resources needed for a cloud-based application. A new configuration is generated for the cloud-based infrastructure incorporating the plan, configuration or proposed changes. A price resolver resolves a price of the resources that are part of the new configuration, and requests, from one or more cloud providers associated with the new configuration, price data for the resolved resources. The cost estimator system then generates, based on the price data received by the price resolver, a cost estimate for the new configuration of the cloud-based infrastructure.Type: GrantFiled: April 8, 2020Date of Patent: May 31, 2022Assignee: HASHICORPInventors: Mitchell Hashimoto, Armon Dadgar, Matthew Hooker, Paul Thrasher
-
Patent number: 11223526Abstract: Systems and methods of managing information technology infrastructure are described. A method includes identifying a run trigger between a first node and a second node, each node maintaining a configuration for a portion of a cloud computing infrastructure associated with executing a portion of a cloud-based application. The run trigger initiates in response to an action at the first node and comprises a source identifier identifying the first node and a destination identifier identifying the second node. Then a run is queued on the second node based on the run trigger, the run including a process executed on the second portion of the cloud computing infrastructure with data received by the second node and associated with a run source identifier. The run on the second node is then planned and executed, causing the cloud computing infrastructure to modify infrastructure resources associated with the second portion of the cloud computing infrastructure.Type: GrantFiled: July 9, 2020Date of Patent: January 11, 2022Assignee: HASHICORPInventors: Casey Lang, Krista LaFentres, Jon Schulman
-
Patent number: 11201787Abstract: A configuration of a service of a cloud computing system is rendered in a user interface of an electronic display, according to a discovery chain generated by a networking tool using a service discovery function to establish the configuration. The configuration includes one or more of a router, a splitter, and/or a resolver, each having one or more configuration files that are represented as a graphical element within a graphical representation of the one or more of the router, the splitter, and/or the resolver. The configuration further includes data traffic routes between pairs of the configuration files, each being represented in the UI as a line between each pair of configuration files, where each line is rendered in the UI so as to avoid crossing over any graphical element that represents a configuration file.Type: GrantFiled: July 28, 2020Date of Patent: December 14, 2021Assignee: HASHICORPInventors: Hannah Oppenheimer, John Cowen
-
Patent number: 11102280Abstract: A method includes a dispatch node receiving a policy file and infrastructure plan data from a cloud infrastructure provisioning platform. The policy file comprises one or more imports that include a configuration import, a plan import, and/or a state import. Each import of the one or more imports comprises one or more data fields. The dispatch node parses the policy file to determine at least the one or more imports. The dispatch node queries the infrastructure plan data stored in a memory via an API for object data related to the one or more data fields of the one or more imports. The dispatch node determines, based on the query, the object data via the API. The dispatch node executes the policy file based on the object data to obtain a policy check result. The dispatch node then provides the policy check result to the cloud infrastructure provisioning platform.Type: GrantFiled: September 8, 2020Date of Patent: August 24, 2021Assignee: HASHICORPInventors: Cameron Stitt, Chris Marchesi
-
Patent number: 11050613Abstract: A method for generating a configuration file for configuring an information technology infrastructure is provided. The method may include receiving, from a first user at a first client, a first indication to publish an infrastructure module comprising a set of configurations to apply to an information technology infrastructure. The infrastructure module may be stored in a module registry in response to the first indication. A second indication selecting the infrastructure module may be received from a second user at a second client. In response to the second indication, the infrastructure module may be sent from the module registry to the second client for insertion into a configuration file being created at the second client. The insertion of the infrastructure module may incorporate, into configuration file, the set of configurations to apply to the information technology infrastructure. Related systems and articles of manufacture, including computer program products, are also provided.Type: GrantFiled: July 3, 2019Date of Patent: June 29, 2021Assignee: HASHICORPInventors: Mitchell Hashimoto, Armon Dadgar, Paul Hinze
-
Patent number: 11050625Abstract: A method for generating a configuration file for configuring an information technology infrastructure is provided. The method may include receiving, from a first user at a first client, a first indication to publish an infrastructure module comprising a set of configurations to apply to an information technology infrastructure. The infrastructure module may be stored in a module registry in response to the first indication. A second indication selecting the infrastructure module may be received from a second user at a second client. In response to the second indication, the infrastructure module may be sent from the module registry to the second client for insertion into a configuration file being created at the second client. The insertion of the infrastructure module may incorporate, into configuration file, the set of configurations to apply to the information technology infrastructure. Related systems and articles of manufacture, including computer program products, are also provided.Type: GrantFiled: April 22, 2019Date of Patent: June 29, 2021Assignee: HASHICORPInventors: Mitchell Hashimoto, Armon Dadgar, Paul Hinze