CN109460654A - Service control method, service control system, server and computer storage medium - Google Patents
Service control method, service control system, server and computer storage medium Download PDFInfo
- Publication number
- CN109460654A CN109460654A CN201811076447.1A CN201811076447A CN109460654A CN 109460654 A CN109460654 A CN 109460654A CN 201811076447 A CN201811076447 A CN 201811076447A CN 109460654 A CN109460654 A CN 109460654A
- Authority
- CN
- China
- Prior art keywords
- server
- information
- authority
- service
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/46—Multiprogramming arrangements
- G06F9/54—Interprogram communication
- G06F9/547—Remote procedure calls [RPC]; Web services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2209/00—Indexing scheme relating to G06F9/00
- G06F2209/54—Indexing scheme relating to G06F9/54
- G06F2209/541—Client-server
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Telephonic Communication Services (AREA)
- Storage Device Security (AREA)
Abstract
This application provides a kind of service control method, service control system, server and computer storage mediums.The service control method is applied to operation system, and operation system includes at least client, first server and second server;Client and first server, which are established, to be communicated to connect, and first server and second server are established and communicated to connect;Service control method includes: that client transmission service request is instructed to first server, wherein service request instruction includes at least business function information and user information;First server sends service request and instructs to second server;Second server obtains the first authority information according to business function information and user information, and the first authority information is sent to first server;First server controls the service authority of client according to the first authority information.By above-mentioned service control method, the application can reduce the load of server, improve practicability and the safety of operation system.
Description
Technical field
This application involves computer application technology, more particularly to a kind of service control method, service control system,
Server and computer storage medium.
Background technique
When service request calls some target object in application system, it can be requested with interception service, then called
The service logic being set in advance in blocker is executed before or after some method of the target object.Using blocker
Later, the functional module in application system has obtained a degree of decoupling, to reduce the degree of coupling of functional module.
But the statement type of the blocker in traditional service control method is static types, can only intercept statement type
For the target object of static types.So that the target object and blocker of static types intelligently correspond to a kind of service request,
So that target object and blocker and service request must have stronger association, so as to cause the scalability of business management system
It is lower.
Meanwhile traditional blocker deployment is on one server, needs to store a large amount of static number on a server
According to very high to the load requirement of a server.
Summary of the invention
This application provides a kind of service control method, service control system, server and computer storage mediums, mainly
The technical issues of solution is the load pressure for how mitigating server and the practicability for improving operation system.
In order to solve the above technical problems, this application provides a kind of service control method, the service control method application
In operation system, the operation system includes at least client, first server and second server;The client with it is described
First server establishes communication connection, and the first server and the second server, which are established, to be communicated to connect;
The service control method includes:
The client sends service request and instructs to the first server, wherein the service request instruction is at least
Including business function information and user information;
The first server sends the service request and instructs to the second server;
The second server obtains the first authority information according to the business function information and the user information, and will
First authority information is sent to the first server;
The first server controls the service authority of the client according to first authority information.
In order to solve the above technical problems, the operation system includes at least visitor present invention also provides a kind of operation system
Family end, first server and second server;The client and the first server, which are established, to be communicated to connect, first clothes
Business device and the second server, which are established, to be communicated to connect;
The client is instructed for sending service request to the first server, wherein the service request instruction
Including at least business function information and user information;
The first server is instructed for sending the service request to the second server;
The second server is used to obtain the first authority information according to the business function information and the user information,
And first authority information is sent to the first server;
The first server is also used to control the service authority of the client according to first authority information.
In order to solve the above technical problems, present invention also provides another service control method, the service control method
Applied to second server, the second server and the first server are established and are communicated to connect;
The service control method includes:
The second server receives service request instruction from the first server;
The second server instructs to obtain the first authority information according to the service request;
First authority information is sent to the first server by the second server, so that the first service
Device controls the service authority of the client according to first authority information.
In order to solve the above technical problems, the server includes communicator and place present invention also provides a kind of server
Manage device, wherein the communicator and the processor couple;
The communicator is for communicating to connect the first server;
The processor is used for:
Service request instruction is received from the first server;
It is instructed to obtain the first authority information according to the service request;
First authority information is sent to the first server, so that the first server is according to described first
Authority information controls the service authority of the client.
In order to solve the above technical problems, the computer storage is situated between present invention also provides a kind of computer storage medium
Matter is stored with program data, and described program data can be performed to realize above-mentioned service control method.
Compared with prior art, the beneficial effect of the application is: client sends service request and instructs to first server,
Wherein, service request instruction includes at least business function information and user information, and client request realizes business function;First clothes
Business device sends service request and instructs to second server, which is forwarded to second server by first server;Second
Server obtains the first authority information according to business function information and user information, and the first authority information is sent to the first clothes
Business device, second server authority information according to the pre-stored data judge the permission of client;First server is according to the first permission
Authority information is arranged in second server for the service authority of information governance client, first server, and first server is responsible for
Control the permission of client.By above-mentioned service control method, the application by the way that authority information is stored in second server, from
And the load of first server is reduced, and then improve practicability and the safety of operation system.
Detailed description of the invention
To describe the technical solutions in the embodiments of the present invention more clearly, make required in being described below to embodiment
Attached drawing is briefly described, it should be apparent that, drawings in the following description are only some embodiments of the invention, for
For those of ordinary skill in the art, without creative efforts, it can also be obtained according to these attached drawings other
Attached drawing.Wherein:
Fig. 1 is the flow diagram of the application service control method first embodiment;
Fig. 2 is the structural schematic diagram of operation system in Fig. 1;
Fig. 3 is the flow diagram of the application service control method second embodiment;
Fig. 4 is the flow diagram of the application service control method 3rd embodiment;
Fig. 5 is the structural schematic diagram of operation system in Fig. 4;
Fig. 6 is the flow diagram of the application service control method fourth embodiment;
Fig. 7 is the structural schematic diagram of one embodiment of the application operation system;
Fig. 8 is the structural schematic diagram of one embodiment of the application server;
Fig. 9 is the structural schematic diagram of the another embodiment of the application server;
Figure 10 is the structural schematic diagram of one embodiment of the application computer storage medium.
Specific embodiment
Below in conjunction with the attached drawing in the embodiment of the present application, technical solutions in the embodiments of the present application carries out clear, complete
Site preparation description, it is clear that described embodiment is only a part of the embodiment of the application, instead of all the embodiments.It is based on
Embodiment in the application, it is obtained by those of ordinary skill in the art without making creative efforts every other
Embodiment shall fall in the protection scope of this application.
Present applicant proposes a kind of service control methods, specifically referring to Figure 1 and Fig. 2, Fig. 1 are the application Service control sides
The flow diagram of method first embodiment;Fig. 2 is the structural schematic diagram of operation system in Fig. 1.
The service control method of the present embodiment is applied to operation system 20, as shown in Fig. 2, operation system 20 includes at least visitor
Family end 21, first server 22 and second server 23.Wherein, client 21 and first server 22, which are established, communicates to connect, the
One server 22 is established with second server 23 to be communicated to connect.
In the present embodiment, client 21 can be mobile phone, computer, palm PC or other smart machines.User passes through visitor
Family end 21 selects required business function, and by realizing the business function in client 21.
First server 22 can be function server or service server etc., and first server 22 is for receiving client 21
Service request.
Second server 23 can be background server, and second server 23 is for storing multiple pre-set permission letters
Breath, authority information can be updated by second server 23 according to the input of user instruction.First server 22 is by calling the
The authority information of two servers 23 obtains the service authority of client 21, and controlling client 21 according to the service authority can be real
Existing service authority.
As shown in Figure 1, the service control method the following steps are included:
S11: client sends service request and instructs to first server, wherein service request instruction includes at least business
Functional information and user information.
Wherein, the operation interface that client 21 is shown includes multiple interface (not shown)s, and each interface is corresponding a kind of
Business function.When interface is selected, corresponding business function is realized in client 21, for example, business function may include filling
It is worth, continue to pay dues or quits the subscription of.
Such as user needs to realize recharging service by client 21, then selects in the operation interface that user passes through client 21
Select interface corresponding with recharging service.At this point, client 21 receives selection instruction, and corresponding according to selection instruction transmission
Service request is instructed to first server 22.
Wherein, service request instruction includes at least business function information and user information, and business function information can be user
The business function content type and implementation of selection, user information can be account, IP address and/or the business record of user
Deng.In addition, service request instruction further may include the selection time and/or 21 type of client etc..
S12: first server sends service request and instructs to second server.
Wherein, first server 22 can be the control centre of operation system 20, for controlling the operational authority of client 21
Limit.Compared with the existing technology, the operation system 20 of the present embodiment stores authority information to second server 23, this storage side
Formula can reduce the load pressure of first server 22, improve the working efficiency and stability of first server 22.
The service request instruction of client 21 is forwarded to second server 23 by first server 22.Wherein, first service
The service request instruction that device 22 forwards includes at least business function information and user information.
S13: second server obtains the first authority information according to business function information and user information, and by the first permission
Information is sent to first server.
Wherein, second server 23 is previously stored with multiple authority informations.Second server 23 connects from first server 22
Service request instruction is received, and corresponding permission is searched according to the business function information of service request instruction and user information and is believed
Breath.
Specifically, second server 23 is according to business function information searching multiple permissions relevant to the business function information
Information, and the first authority information corresponding with user information is filtered out according to user information;Second server 23 is by the first permission
Information is sent to first server 22.
First server 22 obtains the first authority information from second server 23, i.e. first server 22 can be from the second clothes
Business device 23 calls the first authority information, and the service authority of client 21 is controlled according to the first authority information.
S14: first server controls the service authority of client according to the first authority information.
Wherein, first server 22 receives the first authority information from second server 23, and according to the first authority information
It controls the service authority of client 21, wherein service authority can include at least: allowing access or denied access.
Specifically, when the service authority of client 21 is positioned to allow for visiting by first server 22 according to the first authority information
When asking, client 21 can be realized business function corresponding with service request instruction;When first server 22 is according to the first permission
When the service authority of client 21 is set denied access by information, client 21 can not achieve corresponding with service request instruction
Business function.
Service control method through this embodiment, industry of the operation system 20 automatically according to authority information setting client 21
Business permission;Wherein, second server 23 is for storing authority information.In the prior art, first server 22 needs to store multiple groups
Authority information, therefore, the load pressure of first server 22 are larger.When client 21 calls the corresponding permission of the authority information
When, whether first server 22 needs to run the corresponding code of authority information, to examine the calling of client 21 eligible.
Further, when authority information needs to update, first server 22 needs to re-write code, with renewal authority information.?
Be written code during, first server can not normal inspection client 21 calling it is whether eligible.The present embodiment
Authority information is stored by second server 23 in service control method, can effectively mitigate the load pressure of first server 22
Power, further, when authority information needs to update, the authority information that the write-in of second server 23 updates is believed with renewal authority
Breath, and first server 22 is not necessarily to the operation such as execute code implant again or restart server.In this period, first server
Whether the calling of 22 normal inspection clients 21 is eligible, to improve the working efficiency and work energy of first server 22
Power.
Service control method through the foregoing embodiment, operation system 20 can be arranged automatically according to authority information sends industry
The service authority of the client 21 of function of being engaged in request, and controlled according to business function of the service authority to client 21.
Further, when the authority information of second server 23 updates, operation system 20 can reset transmission business function in time
The service authority for the client 21 that can request that specifically please refers to the embodiment of following service control methods.
Present applicant proposes another service control methods, specifically refer to Fig. 3, and Fig. 3 is the application service control method
The flow diagram of second embodiment.The service control method of the present embodiment applies equally to operation system 20, specifically refers to
Fig. 2, details are not described herein.
As shown in figure 3, on the basis of first embodiment revealed service control method, step S14 further comprises
Following steps:
S141: first server judges whether client has operational authority according to the first authority information and business function information
Limit.
Wherein, first server 22 receives the first authority information, and is sentenced according to the first authority information and business function information
Whether disconnected client 21 has service authority, which includes at least the first service authority and the second service authority.
When first server 22 determines client 21 with the first service authority, first server 22 is according to the first industry
The data of first operation interface are sent to client 21 by permission of being engaged in, so that client 21 receives and according to the first operation interface
Data show the first operation interface.
For example, when first server 22 determines client 21 with the first service authority, client 21 show the
It at least may include " member's " center " option, " determination " option and " cancellation " option in one operation interface.
When first server 22 determines client 21 with the second service authority, first server 22 is according to the second industry
The data of second operation interface are sent to client 21 by permission of being engaged in, so that client 21 receives and according to the second operation interface
Data show the second operation interface.
For example, when first server 22 determines client 21 with the second service authority, client 21 show the
" determination " option and " cancellation " option are included at least in two operation interfaces;Relative to the first operation interface, the second operation interface does not have
There is setting " member's " center " option.
When first server 22 determines client 21 without the first service authority and the second service authority, i.e. client
21 are not allowed to realize corresponding business function, then enter step S142.
S142: first server sends intercept information to client.
Wherein, client 21 is not allowed to realize the business function of request, and first server 22 sends intercept information to visitor
Family end 21, so that client 21 shows intercept information.Wherein, intercept information may include intercepting reason or intercepting the time etc..
Further, when the pre-stored authority information of second server 23 updates, client is arranged in first server 22
The service authority at end 21 is also required to corresponding update.Therefore, after the present embodiment service control method step S142, can also include
Following steps:
S15: second server detects whether the first authority information updates according to the user information of client.
Wherein, second server 23 detects whether pre-stored first authority information updates.If second server 23 is examined
It measures the first authority information not update, then first server 22 keeps the service authority of client 21.
If second server 23 detects that the first authority information updates, S16 is entered step.
S16: second server obtains the second authority information according to updated first authority information, and the second permission is believed
Breath is sent to first server.
If second server 23 detects that the first authority information updates, second server 23 is according to updated first permission
Information obtains the second authority information, and the second authority information is sent to first server 22 by second server 23.
S17: first server judges whether client has operational authority according to the second authority information and business function information
Limit.
Wherein, step S17 above-mentioned steps S141 is identical, and details are not described herein.
In practical application scene, operation system 20 needs renewal authority information at any time, so as to the business to client 21
Permission is flexibly controlled.Service control method through the foregoing embodiment is not allowed to realize the industry of request in client 21
When function of being engaged in, first server 22 sends intercept information to client 21, so that client 21 learns intercept information in time, and selects
Subsequent operation is selected, the practicability of operation system 20 is improved.Further, operation system 20 can also be pre-stored with active detecting
Whether the first authority information updates;The first authority information if so, operation system 20 timely updates, so as to the update of first server 22
The service authority of client 21 is controlled, 20 flexibility of operation system is improved.The mode of this service authority that timely updates is applied to
In a variety of activity rights managements in limited time, for example, updating the first permission letter by operation system 20 in " 618 " flash sale activity
Service authority is ceased and then updated, the service authority of panic buying can be obtained after client 21 to preset time.
Present applicant proposes another service control methods, specifically refer to Fig. 4 and Fig. 5, and Fig. 4 is the application Service control
The flow diagram of method 3rd embodiment, Fig. 5 are the structural schematic diagrams of operation system in Fig. 4.
The service control method of the present embodiment is applied to operation system 30, as shown in figure 5, operation system 30 includes at least visitor
Family end 31, first server 32, third server 33 and the 4th server 34.Wherein, client 31 is built with first server 32
Vertical communication connection, first server 32 and third server 33, which are established, to be communicated to connect, third server 33 and the 4th server 34
Establish communication connection.
Wherein, the second server 23 of above-mentioned operation system 20 may include the third clothes of operation system 30 in the present embodiment
Business device 33 and the 4th server 34.Third server 33 can be business background server, and the 4th server 34 can be configuration backstage
Server.Business background server is the Core server of all business access controls, and user is without intervening and knowing its operation
Mechanism can not also operate its function.Configuration background server is the administrator of administrator or relative role, is wished to business function
The ability reached is hoped to carry out the control centre of resource distribution and optimization.
The 4th server 34 of administrator can send authority information to third server for configuring authority information
33.Third server 33 is used for the authority information of storage configuration, and handles the service request instruction of the transmission of client 31.Specifically
Ground, third server 33 send authority information according to the corresponding authority information of service request instruction dispatch of client 31
To first server 32, so that first server 32 is according to the service authority of authority information control client 31.As shown in figure 4,
The service control method the following steps are included:
S41: client sends service request to first server, wherein service request instruction includes at least business function
Information and user information.
Wherein, the step S41 of the present embodiment and the step S11 of above-described embodiment are identical, and details are not described herein.
S42: first server transmission service request, which instructs, gives third server.
Wherein, the step S42 of the present embodiment and the step S12 of above-described embodiment are identical, and details are not described herein.
S43: third server receives service request instruction, and obtains configuration information from the 4th server.
Wherein, third server 33 instructs from the 4th server 34 according to service request and obtains configuration information.Configuration information
In include at least authority information.Wherein, configuration information can be stored in advance in the 4th server 34 or third server 33.
S44: third server obtains the first authority information according to service request instruction and configuration information, and by the first permission
Information is sent to first server.
Wherein, third server 33 obtains the first authority information according to configuration information, business function information and user information.
Third server 33 can further identify whether service request instruction carries dangerous malicious attack, example
Such as ddos (attack of distributed denial of service device), xss (cross-site scripting attack) or injection attack.If so, third service
Device 33 can be instructed according to service request in user information the client 31 is monitored, which can also be visited
Ask that frequency is controlled, to improve the safety of operation system 30.
After the 4th server 34 inputs configuration information, third server 33 obtains configuration information in real time, is believed according to user
Breath does analysis of strategies to client 31, and forms the first authority information.For example, configuration information may include: client 31 five
The primary service request including user information can only be sent in minute to instruct, third server 33 will intercept client in 5 minutes
The 31 other service orders sent.Wherein, third server 33 can be determined that client 31 sends more than one in five minutes
Secondary service request instruction is that malicious requests instruct, and intercept related malicious requests instruction.
In the present embodiment, the business backstage ability of third server 33 is strong, supports various access controls, and dynamic is raw
Effect flexibly controls, and improves practicability and the safety of operation system 30.
S45: first server controls the service authority of client according to the first authority information.
Wherein, first server 32 controls the service authority of client 31 according to the first authority information.First server 32
Including but not limited to the access control of the media such as function, user, IP to client 31.
Service control method through the foregoing embodiment, operation system 30 can judge automatically setting transmission business function and ask
The service authority for the client 31 asked, and controlled according to business function of the service authority to client 31.In this implementation
In the service control method of example, authority information is stored in third server 33 or the 4th server 34, can effectively mitigate the
The load pressure of one server 32.Further, third server 33 and/or the 4th server 34 can be used as in class blocker etc.
Between part use, allow business more to concentrate, additionally invaded or influence smaller, guarantee the robustness of privilege feature.
Further, the 4th server 34 is for updating configuration information, and then updated configuration information is sent to the
Three servers 33.Third server 33 obtains updated first authority information according to updated configuration information, and is sent to
First server 32.First server 32 resets the visitor for sending business function request according to updated first authority information
The service authority at family end 31 specifically please refers to the embodiment of following service control methods.
This application provides another service control methods, specifically refer to Fig. 6, and Fig. 6 is the application service control method
The flow diagram of fourth embodiment.
The service control method of the present embodiment applies equally to operation system 30, specifically refers to Fig. 5, no longer superfluous herein
It states.
As shown in fig. 6, further comprising following after step S45 on the basis of service control method 3rd embodiment
Step:
S46: it when the 4th server receives input instruction, is instructed according to input and updates configuration information.
Wherein, configuration information include at least denied access period information, access frequency information, function isolation information and/or
Black list information etc..
For example, administrator is added, modifies or deletes by refusing permission to the client 31 in the 4th server 34,
Refusal permission generally comprises the control of refusal period, access frequency control, function isolation, into blacklist etc..Administrator is to refusing
Exhausted permission clicks " starting control " after the completion of being updated, the input of configuration information can be completed.
When user applies for business function by client 31, operation system 30 executes visit to client 31 according to configuration information
Control is asked, without the operation such as code implant again or the service of restarting.
Further, when administrator needs to release the access control to client 31, administrator can pass through the 4th service
Device 34 closes control function or deletes control record and can be realized, and configures simple and flexible, operation threshold is low.
When receiving input instruction, the 4th server 34 starts to receive one or more groups of configuration informations of user's input.
Alternatively, including one or more groups of configuration informations of user's input in the received input instruction of the 4th server 31.
Specifically, administrator can input configuration information, third server 33 by the 4th server 34 at any one time
Newest configuration information can be got.
S47: third server receives service request instruction again, and matches confidence from the acquisition of the 4th server is updated
Breath.
Wherein, third server 33 receives service request instruction again.Third server 33 can receive first server
The original service request instruction of 32 forwardings, also can receive the newest service request instruction of the forwarding of first server 32.
Third server 33 instructs from the 4th server 34 according to service request and obtains updated configuration information.
S48: third server obtains the second authority information according to service request instruction and updated configuration information, and will
Second authority information is sent to first server.
Wherein, the step S13 in step S48 above-described embodiment of the present embodiment is identical, and details are not described herein.
S49: first server controls the service authority of client according to the second authority information.
Wherein, the step S14 in step S49 above-described embodiment of the present embodiment is identical, and details are not described herein.
Service control method through the foregoing embodiment, operation system 30 can obtain update by the 4th server 34
The service authority that configuration information real-time update controls client 31 improves the flexibility of operation system 30;Further, business
Permission can be started, modify or be deleted by the 4th server 34 by administrator, configure simple and flexible, operation threshold is low.
Since the type and content of configuration information can be inputted by administrator, configuration information can be adapted for multiple industries or multiple fields,
Usage range is wide.
This application provides a kind of operation systems, specifically refer to Fig. 7, and Fig. 7 is one embodiment of the application operation system
Structural schematic diagram.The operation system 40 of the present embodiment includes at least client 41, first server 42 and second server 43.Its
In, client 41 and first server 42 are established and are communicated to connect, and first server 42 is also established with second server 43 logical simultaneously
Letter connection.
Client 41 is instructed for sending service request to first server 42, wherein service request instruction includes at least
Business function information and user information;
First server 42 is instructed for sending service request to second server 43;
Second server 43 is used to obtain the first authority information according to business function information and user information, and first is weighed
Limit information is sent to first server 42;
First server 42 is also used to control the service authority of client 41 according to the first authority information.
Present invention also provides a kind of servers, specifically refer to Fig. 8, and Fig. 8 is the knot of one embodiment of the application server
Structure schematic diagram.
Server 700 is the revealed second server of above-described embodiment, and server 700 is communicated with first server foundation
Connection.As shown in figure 8, server 700 includes transceiver module 71 and processing module 72, wherein transceiver module 71 and processing module
72 establish connection.
Wherein, transceiver module 71 is used to receive service request instruction from first server.
Processing module 72 according to service request for instructing to obtain the first authority information.
Transceiver module 71 is also used to the first authority information and is sent to first server, so that first server is according to the first power
The service authority of limit information control client.
The application also provides another server, specifically refers to Fig. 9, Fig. 9 is the another embodiment of the application server
Structural schematic diagram.Server 800 is the revealed second server of above-described embodiment, and server 800 and first server are established
Communication connection.As shown in figure 9, server 800 includes communicator 81 and processor 82, wherein communicator 81 is built with processor 82
Vertical connection.
Wherein, communicator 81 is for communicating to connect first server;
Processor 82 is used for:
Service request instruction is received from first server;
It is instructed to obtain the first authority information according to service request;
First authority information is sent to the first server, so that first server is controlled according to the first authority information
The service authority of client.
In the present embodiment, processor 82 can also be known as CPU (Central Processing Unit, central processing list
Member).Processor 82 may be a kind of IC chip, the processing capacity with signal.Processor 82 can also be general place
Manage device, digital signal processor (DSP), specific integrated circuit (ASIC), ready-made programmable gate array (FPGA) or other can
Programmed logic device, discrete gate or transistor logic, discrete hardware components.General processor can be microprocessor or
Person's processor 82 is also possible to any conventional processor etc..
The application also provides a kind of computer storage medium, and as shown in Figure 10, computer storage medium 900 is stored with program
Data, program data can be performed to realize such as the application service control method method as described in the examples.
Involved method in the application service control method embodiment, when realizing in the form of SFU software functional unit
In the presence of and when sold or used as an independent product, can store in device 900, such as a computer-readable storage
In medium.Based on this understanding, the technical solution of the application substantially in other words the part that contributes to existing technology or
The all or part of person's technical solution can be embodied in the form of software products, which is stored in one
In a storage medium, including some instructions are used so that computer equipment (it can be personal computer, server, or
Network equipment etc.) or processor (processor) execute all or part of the steps of each embodiment the method for the present invention.
And storage medium above-mentioned includes: that USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), arbitrary access are deposited
The various media that can store program code such as reservoir (RAM, Random Access Memory), magnetic or disk.
The foregoing is merely presently filed embodiments, are not intended to limit the scope of the patents of the application, all to utilize this
Equivalent structure or equivalent flow shift made by application specification and accompanying drawing content, it is relevant to be applied directly or indirectly in other
Technical field similarly includes in the scope of patent protection of the application.
Claims (10)
1. a kind of service control method, which is characterized in that the service control method is applied to operation system, the operation system
Including at least client, first server and second server;The client and the first server, which are established, to be communicated to connect,
The first server and the second server, which are established, to be communicated to connect;
The service control method includes:
The client sends service request and instructs to the first server, wherein the service request instruction includes at least
Business function information and user information;
The first server sends the service request and instructs to the second server;
The second server obtains the first authority information according to the business function information and the user information, and will be described
First authority information is sent to the first server;
The first server controls the service authority of the client according to first authority information.
2. service control method according to claim 1, which is characterized in that the first server is according to first power
Limit information controls the step of service authority of the client, further comprises:
The first server judges whether the client has according to first authority information and the business function information
There is the service authority;
If it is not, the first server sends intercept information to the client.
3. service control method according to claim 2, which is characterized in that the first server send intercept information to
After the step of client, comprising:
The second server detects whether first authority information updates according to the user information of the client;
If so, the second server obtains the second authority information according to updated first authority information, it will be described
Second authority information is sent to the first server, and executes the first server according to second authority information and institute
It states business function information and judges whether the client has the step of service authority.
4. service control method according to claim 1, which is characterized in that the second server further comprises third
Server and the 4th server;
The second server obtains the first authority information according to the business function information and the user information, and will be described
The step of first authority information is sent to the first server further comprises:
The third server receives the service request instruction, and obtains configuration information from the 4th server;
The third server obtains first authority information according to service request instruction and the configuration information, and will
First authority information is sent to the first server.
5. service control method according to claim 4, which is characterized in that the service control method further comprises:
When the 4th server receives input instruction, the configuration information is updated according to input instruction;
Wherein, the configuration information include denied access period information, access frequency control information, function isolation information and/or
Black list information.
6. service control method according to claim 5, which is characterized in that the third server is asked according to the business
It asks instruction and the configuration information to obtain first authority information, and first authority information is sent to first clothes
After the step of business device, comprising:
The third server receives the service request instruction again, and updated described from the 4th server acquisition
Configuration information;
The third server obtains the second authority information according to service request instruction and the updated configuration information,
And second authority information is sent to the first server;
The first server controls the service authority of the client according to second authority information.
7. a kind of operation system, which is characterized in that the operation system includes at least client, first server and second service
Device;The client and the first server, which are established, to be communicated to connect, and the first server and the second server are established
Communication connection;
The client is instructed for sending service request to the first server, wherein the service request instruction is at least
Including business function information and user information;
The first server is instructed for sending the service request to the second server;
The second server is used to obtain the first authority information according to the business function information and the user information, and will
First authority information is sent to the first server;
The first server is also used to control the service authority of the client according to first authority information.
8. a kind of service control method, which is characterized in that the service control method is applied to second server, second clothes
Business device and the first server, which are established, to be communicated to connect;
The service control method includes:
The second server receives service request instruction from the first server;
The second server instructs to obtain the first authority information according to the service request;
First authority information is sent to the first server by the second server, so that the first server root
The service authority of the client is controlled according to first authority information.
9. a kind of server, which is characterized in that the server includes communicator and processor, wherein the communicator and institute
State processor coupling;
The communicator is for communicating to connect the first server;
The processor is used for:
Service request instruction is received from the first server;
It is instructed to obtain the first authority information according to the service request;
First authority information is sent to the first server, so that the first server is according to first permission
Information controls the service authority of the client.
10. a kind of computer storage medium, which is characterized in that the computer storage medium is stored with program data, the journey
Ordinal number evidence can be performed to realize service control method described in any one of claim 1~6 and claim 8.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811076447.1A CN109460654B (en) | 2018-09-14 | 2018-09-14 | Service control method, service control system, server and computer storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811076447.1A CN109460654B (en) | 2018-09-14 | 2018-09-14 | Service control method, service control system, server and computer storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109460654A true CN109460654A (en) | 2019-03-12 |
| CN109460654B CN109460654B (en) | 2021-05-14 |
Family
ID=65606684
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811076447.1A Active CN109460654B (en) | 2018-09-14 | 2018-09-14 | Service control method, service control system, server and computer storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109460654B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111160861A (en) * | 2019-12-27 | 2020-05-15 | 支付宝(杭州)信息技术有限公司 | Method, device and equipment for renewing service authority |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101355478B (en) * | 2008-09-05 | 2011-03-16 | 中兴通讯股份有限公司 | Unified video signal system and method with separated business management and business control |
| CN104243154A (en) * | 2013-06-07 | 2014-12-24 | 腾讯科技(深圳)有限公司 | Server user authority centralized control system and server use authority centralized control method |
| CN107645508A (en) * | 2017-10-16 | 2018-01-30 | 深圳市买买提乐购金融服务有限公司 | A kind of data handling system, method, client and server |
-
2018
- 2018-09-14 CN CN201811076447.1A patent/CN109460654B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101355478B (en) * | 2008-09-05 | 2011-03-16 | 中兴通讯股份有限公司 | Unified video signal system and method with separated business management and business control |
| CN104243154A (en) * | 2013-06-07 | 2014-12-24 | 腾讯科技(深圳)有限公司 | Server user authority centralized control system and server use authority centralized control method |
| CN107645508A (en) * | 2017-10-16 | 2018-01-30 | 深圳市买买提乐购金融服务有限公司 | A kind of data handling system, method, client and server |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111160861A (en) * | 2019-12-27 | 2020-05-15 | 支付宝(杭州)信息技术有限公司 | Method, device and equipment for renewing service authority |
| CN111160861B (en) * | 2019-12-27 | 2022-06-03 | 蚂蚁胜信(上海)信息技术有限公司 | Method, device and equipment for renewing service authority |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109460654B (en) | 2021-05-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102982141B (en) | A kind of method and device realizing distributed data base agency | |
| CN105704066B (en) | Networking control method and device, system, security gateway, mobile terminal | |
| EP2733909B1 (en) | Terminal control method and device, and terminal | |
| CN101340444B (en) | Fireproof wall and server policy synchronization method, system and apparatus | |
| CN104346559B (en) | Authority request response method and corresponding device | |
| US20070165654A1 (en) | Method for managing a terminal device | |
| CN105282047A (en) | Access request processing method and device | |
| CN104375494B (en) | Security sandbox construction method and security sandbox construction device | |
| CN104639650B (en) | A kind of fine granularity distributed interface access control method and device | |
| CN104376263A (en) | Application behavior intercepting method and application behavior intercepting device | |
| CN105550584A (en) | RBAC based malicious program interception and processing method in Android platform | |
| US20040128537A1 (en) | Retrospective policy safety net | |
| CN107104958A (en) | Manage the method, private clound and public cloud equipment and storage device of private clound equipment | |
| US20100058441A1 (en) | Information processing limitation system and information processing limitation device | |
| CN112149159A (en) | Permission setting method and device of terminal, electronic equipment and storage medium | |
| CN105162769B (en) | A kind of method and device of gateway permission transfer | |
| CN103810420A (en) | Application uninstall preventing method and system | |
| CN104322031A (en) | Implementing policies for an enterprise network using policy instructions that are executed through a local policy framework | |
| US11457046B2 (en) | Distributed network resource security access management system and user portal | |
| CN102436567B (en) | Information processing device, password diagnosing method | |
| CN109460654A (en) | Service control method, service control system, server and computer storage medium | |
| CN102088455A (en) | ASN (attack security interaction) and implementation method thereof | |
| CN116049860B (en) | Access control method, device, computer equipment and storage medium | |
| CN110351719A (en) | A kind of wireless network management method, system and electronic equipment and storage medium | |
| CN105095702B (en) | A kind of superuser right control method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |