CN108055314A - The management method and group system of a kind of group system - Google Patents
The management method and group system of a kind of group system Download PDFInfo
- Publication number
- CN108055314A CN108055314A CN201711294593.7A CN201711294593A CN108055314A CN 108055314 A CN108055314 A CN 108055314A CN 201711294593 A CN201711294593 A CN 201711294593A CN 108055314 A CN108055314 A CN 108055314A
- Authority
- CN
- China
- Prior art keywords
- service node
- client
- session
- service
- node
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1001—Protocols in which an application is distributed across nodes in the network for accessing one among a plurality of replicated servers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
Abstract
The embodiment of the present invention provides a kind of management method and group system of group system, can not be while single-sign-on is realized the technical issues of equally loaded to solve existing group system.Wherein, group system includes multiple service nodes, the described method includes:When any service node in multiple service nodes determines that the session session objects of itself storage change or newly create session objects, by other service nodes in the session object synchronizations after variation to multiple service nodes so that the service request that other service nodes are at least sent based on the session objects after variation and client determines whether client is legal;Wherein, for client to access the client of group system, the session objects after variation are that the session objects based on itself storage change or newly create session objects and obtain.
Description
Technical field
The present invention relates to field of computer technology more particularly to the management methods and group system of a kind of group system.
Background technology
Cluster (Cluster) is a kind of calculate node set for the loose couplings being made of one group of computer equipment, cluster
In each calculate node can independent operating oneself process.Cluster externally provides unified service platform, is seen in client
Come, cluster is like a server.When client accesses group system, group system would generally be according to each service node
The load of (i.e. calculate node) or the business division of labor, some service node service request of client being distributed in group system
It goes to handle.
One service node in the service request of first treated client, can to the carry out login authentication of client, if
It is verified, then when the service node handles the service request of the client again, is logged in again without client.But
It is, when the service request of the client is distributed to other service nodes in group system, due to other service nodes not
Login authentication was carried out to client, so the client also needs to be logged in again in other service nodes, causes to operate
It is cumbersome.
In order to solve the above technical problems, binding procotol (Internet Protocol, IP) is employed in the prior art
The strategy of address.That is, the IP address for the client for accessing group system is tied to a fixed service node, in this way, objective
Service request when family end accesses group system every time can all be distributed to same service node, be handled by a service node
All service requests of the client.
However, although the strategy of above-mentioned binding IP address avoids the situation of client repeat logon.But due to one
The service request of client has been fixed on same service node processing, causes the load imbalance between service node, can not
The advantage of group system is given play to.Especially when the service request quantity of the client of some service node binding is more or binding
Client when concurrently being accessed, service node can be caused to enter performance bottleneck or even machine of delaying.
The content of the invention
The embodiment of the present invention provides a kind of management method and group system of group system, to solve existing group system
It can not be while single-sign-on be realized the technical issues of equally loaded.
In a first aspect, providing a kind of management method of group system, the group system includes multiple service nodes, described
Method includes:
Any service node in the multiple service node determines that the session session objects of itself storage change
Or when newly creating session objects, by other business in the session object synchronizations after variation to the multiple service node
Node so that the business that other service nodes are at least sent based on the session objects after the variation and client please
Ask the definite client whether legal;
Wherein, for the client to access the client of the group system, the session objects after the variation are base
It changes in the session objects of itself storage or newly creates session objects and obtain.
In a kind of possible realization method, any service node in the multiple service node determines itself storage
Session session objects change or newly create session objects, including:Any business in the multiple service node
Node determines itself to perform the arbitrary operation in following operation:
(1) itself stored session object is adjusted;
(2) session objects are newly created;
(3) itself stored session object is deleted.
In a kind of possible realization method, the group system further includes central authentication service CAS server-sides, the change
Session objects after change are the first session objects that any service node newly creates, in any service node
Before creating the first session objects, the method further includes:
Session object and first service request of any service node at least based on itself storage, determine described
Whether client is legal;Wherein, first service request is the service request that the client is sent;
If it is not, then first service request is redirected to the CAS server-sides by any service node, so that institute
It states CAS server-sides and verifies whether the client is legal;
Any service node is determined after determining that the CAS server-sides verify that the client is legal described in establishment
First session objects.
In a kind of possible realization method, the group system further includes database node, and the method further includes:
The multiple service node stores business datum to the database node, so that the database node pair
The business datum carries out unified storage;
Wherein, the data generated when the business datum is asked for the multiple service node processing business.
In a kind of possible realization method, the first service node in the multiple service node is configured with for described
The share directory that multiple service nodes access, the method further include:
The multiple service node is based on service request, accesses and/or manage the shared text stored under the share directory
Part, the shared file are to be used to implement the file of service request;
Wherein, the service node in the multiple service node in addition to first service node is assisted by shared transmission
View, accesses the share directory.
Second aspect, provides a kind of group system, and the group system includes multiple service nodes, the multiple business section
Point is used for:
Any service node in the multiple service node determines that the session session objects of itself storage change
Or when newly creating session objects, by other business in the session object synchronizations after variation to the multiple service node
Node so that the business that other service nodes are at least sent based on the session objects after the variation and client please
Ask the definite client whether legal;
Wherein, for the client to access the client of the group system, the session objects after the variation are base
It changes in the session objects of itself storage or newly creates session objects and obtain.
In a kind of possible realization method, the multiple service node is used for:
Any service node in the multiple service node determines itself to perform the arbitrary operation in following operation:
(1) itself stored session object is adjusted;
(2) session objects are newly created;
(3) itself stored session object is deleted.
In a kind of possible realization method, the group system further includes central authentication service CAS server-sides, the change
Session objects after change are the first session objects that any service node newly creates, and the multiple service node is also
For:
Session objects at least based on itself storage of any service node in the multiple service node and the
One service request determines whether the client is legal;Wherein, first service request is the business that the client is sent
Request;
If it is not, then first service request is redirected to the CAS server-sides by any service node, so that institute
It states CAS server-sides and verifies whether the client is legal;
Any service node is determined after determining that the CAS server-sides verify that the client is legal described in establishment
First session objects.
In a kind of possible realization method, the group system further includes database node, the multiple service node
It is additionally operable to:
Business datum is stored to the database node, so that the database node carries out the business datum
Unified storage;
Wherein, the data generated when the business datum is asked for the multiple service node processing business.
In a kind of possible realization method, the first service node in the multiple service node is configured with for described
The share directory that multiple service nodes access, the multiple service node are additionally operable to:
Based on service request, the shared file stored under the share directory is accessed and/or manages, the shared file is
It is used to implement the file of service request;
Wherein, the service node in the multiple service node in addition to first service node is assisted by shared transmission
View, accesses the share directory.
The third aspect provides a kind of computer readable storage medium, wherein:
The computer-readable recording medium storage has computer instruction, when the computer instruction on a computing device
During operation so that computer equipment performs the method described in first aspect.
In the embodiment of the present invention, group system includes multiple service nodes, any business section in multiple service nodes
When point determines that the session session objects of itself storage change or newly create session objects, after variation
Other service nodes in session object synchronizations to multiple service nodes so that after other service nodes are at least based on variation
Session objects and client send service request determine whether client legal.
By the session object synchronizations after changing to other service nodes, other service nodes are being distributed to this
During the service request of client, it is possible to directly determine that the client is legal, client according to the session objects after variation
Without being logged in again.Reach in the case where not binding client ip address, realized single-sign-on in group system
Technique effect.
Further, in the embodiment of the present invention, group system can distribute visitor according to the loading condition of each service node
The service request at family end without considering all service requests of same client being distributed to each and every one same service node, is realized
Load balancing of each service node in service request in group system.
Description of the drawings
It in order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
There is attached drawing needed in technology description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Inventive embodiments, for those of ordinary skill in the art, without creative efforts, can also be according to carrying
The attached drawing of confession obtains other attached drawings.
Fig. 1 is a kind of connection relationship diagram of group system in the embodiment of the present invention;
Fig. 2 is the connection relationship diagram of another group system in the embodiment of the present invention;
Fig. 3 is the connection relationship diagram of another group system in the embodiment of the present invention;
Fig. 4 is the connection relationship diagram of a kind of group system and client in the embodiment of the present invention.
Specific embodiment
To make the purpose, technical scheme and advantage of the embodiment of the present invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, the technical solution in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is
Part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art
All other embodiments obtained without creative efforts belong to the scope of protection of the invention.
In addition, the terms "and/or", is only a kind of incidence relation for describing affiliated partner, represents there may be
Three kinds of relations, for example, A and/or B, can represent:Individualism A exists simultaneously A and B, these three situations of individualism B.Separately
Outside, character "/" herein, in the case where not illustrating, it is a kind of relation of "or" to typically represent forward-backward correlation object.
Embodiment one
The embodiment of the present invention provides a kind of management method of group system.Wherein, group system can be more including at least having
A service node, each service node externally provide unified service platform.Each service node has calculating processing ability, by each
The service request that service node processing client is sent realizes the business function of group system.
In specific implementation process, service node can be physical server, Cloud Server, personal computer, notes
This computer etc. has the computer equipment of calculating processing ability.For example, each service node that group system includes can be with
It is different physical servers or different virtual server (such as Cloud Server), etc..
Fig. 1 is referred to, Fig. 1 show a kind of structure diagram of group system in the embodiment of the present invention, as shown in Figure 1, respectively
Communication connection can be established between service node, to realize the communication between each service node.Also, group system can lead to
Network is crossed to be connected with client.(not shown in figure 1)
Refer to Fig. 2, Fig. 2 show the structure diagram of another group system in the embodiment of the present invention, with cluster in Fig. 2
System includes service node 1 and service node 2 is illustrated, in specific implementation process, service node in group system
Quantity can also be greater than 2 other quantity, and the embodiment of the present invention is for the specific number of the service node included by group system
Amount is not limited.Also, the group system in the embodiment of the present invention can also include load balancing node, central authentication service
One or more of equipment such as (Central Authentication Service, CAS) server-side, database node, etc.
Deng.
Wherein, load balancing node is used to receive the service request of client transmission, and please by business according to preset rules
Seek the service node being distributed in group system.For example, load balancing node can monitor the healthy shape of each service node
It is relatively low, strong to be distributed to load by condition and loading condition, and the load according to each service node and health status for service request
The preferable service node of health state.
In specific implementation process, service node 1 shown in Fig. 2, service node 2, load balancing node, CAS clothes
Business end, database node can also physically connect in the manner shown in fig. 3.That is, shown in Fig. 2 can be one
The connection relation of kind group system logically, and shown in Fig. 3 can be a kind of connection relation of group system physically.
In the embodiment of the present invention, part or all of node that group system includes, equipment can be equipment physically,
Can be the virtual unit supported by cloud, the embodiment of the present invention is not restricted this.
Fig. 4 is referred to, Fig. 4 show the connection relation of a kind of group system and client in the embodiment of the present invention and illustrates
Scheme, can be by load balancing node and client by network connection in group system, load balancing can be obtained from each client
Service request is obtained, and service request is distributed to service node.That is, group system shown in Fig. 2 can pass through Fig. 4
Shown in network be connected with client, provide business support for client.
Wherein, load balancing node is responsible for the forwarding of data packet.In specific implementation process, load balancing node can be with
It is the load balancing example created on Cloud Server, the configuration of load balancing example can be included to monitor configuration and addition rear end
Two parts of server:
Configuration is monitored by first portion.For example, including:(1) set cluster front end and use tcp agreements and 80 ports, after
End equally uses tcp agreements and 80 ports;(2) setting does not limit load balancing node bandwidth peak value;(3) setting uses weighting most
Small connection digital modeling this dispatching algorithm, the dispatching algorithm access request can be distributed to the kiosk of current connection number minimum into
Row processing;(4) optionally, service node health examination function is set, wherein, after opening health examination function, when checking industry
When business machine breaks down, load balancing node will not distribute access request to failure service node, and in failure service node
After recovering normal operation, load balancing can recover the access request distribution to it.
Specifically, following configuration may be employed in service node health examination function:
(1) a length of 5 seconds during configuration time-out, represent if service node did not responded more than 5 seconds to judge during each health examination
For exception;
(2) a length of 2 seconds when configuring health examination interval, the time interval between adjacent inspection cycle is represented;
(3) configuration is determined as unsound frequency threshold value as 3 times, represent service node be judged as continuous 3 times it is abnormal just
Determine that the health status of service node to be unhealthy, that is, determines service node failure;
(4) configuration is determined as the frequency threshold value of health as 3 times, represents service node under unhealthy condition, if continuous 3 times
It is judged as normal, it is determined that the health status of service node is health.
Second portion adds back-end server.For example, the IP address of service node 1 and service node 2 can be matched somebody with somebody
Load balancing node is placed in, load balancing node can carry out data interaction by the IP address configured with service node, also,
In configuration, the weight that each service node undertakes portfolio can be set, load balancing node preferentially by access request distribute to
The higher service node of weight.After adding successfully, service node can check the health status of each service node of configuration.
The management method flow of group system in the embodiment of the present invention is described as follows.
Any service node in the multiple service node determines that the session session objects of itself storage change
Or when newly creating session objects, by other business in the session object synchronizations after variation to the multiple service node
Node so that the business that other service nodes are at least sent based on the session objects after the variation and client please
Ask the definite client whether legal.Wherein, the client is accesses the client of group system, after the variation
Session objects are that the session objects based on itself storage change or newly create session objects and obtain.
In specific implementation process, by taking group system shown in Fig. 2 as an example, configuration service node 1 and service node 2
Process can be such as { TOMCAT_HOME }/conf/ under the tomcat configuration paths of service node 1 and service node 2
Under the Engine nodes of server.xml, the code of each step in the management method of group system is configured to carry out.It configures
Cheng Hou starts the tomcat services in service node 1 and service node 2, when any of which service node determines to be stored by itself
Session objects when changing, by mutual communication connection, by the session object synchronizations after variation to another
A service node.
Specifically, other service nodes are determined as legal client based on the session objects after variation, are to make
Obtain the changed client of session objects.
Wherein, session objects can be stored with attribute and configuration information needed for client session.In this way, work as client
When being redirected between each page that end is provided in service node, the variable being stored in session objects will not be lost, but
It is always existed down in entire conversation procedure.Also, it can verify whether client is legal by session objects.
For example, for client after Successful login service node, service node can create new session a pair
As, synchronous, client can obtain a session verification information corresponding to the session objects, when client again
During secondary initiating business request, the session verification informations can be carried in service request, in this way, service node can root
According to the session verification informations in session objects and service request, it is legal to determine the client.
Specifically by taking session verification informations are session ID as an example, when client initiating business request again, business
Node can obtain session ID from service request, and then, service node can search itself stored session
In object, if there is session objects corresponding with the session ID, if in the presence of can determine that the client is legal.
In the embodiment of the present invention, the session session objects stored by service node itself change or newly create
Session objects can include there are many situation, this sentences wherein three kinds of situations and illustrates:
The first situation adjusts itself stored session object.Client traffic request is performed in service node
During, it can be modified based on service request or business rule to the information included in session objects, increase, delete
It is adjusted except waiting, the session objects after adjustment are the session objects after changing.
The second situation is new to create session objects.After client registering service node, service node can be visitor
Family end newly creates a session objects, and service node can store the session objects after creating the session objects, newly
The session objects of establishment are the session objects after changing.
The third situation deletes itself stored session object.It is logged in client from business endpoint unregistration
Afterwards, service node can delete the corresponding session objects of the client, thus, the session objects after variation are sky.
In the embodiment of the present invention, any service node all can be by the session object synchronizations after variation to other business sections
Point, therefore, it is possible to keep the session objects of the storage in each service node consistent.When client is in one industry of successful access
When being engaged in after node, then going to access other service nodes, other service nodes can be based on the session after synchronous variation
The service request come transmitted by object and client this time access, determines client to be legal, and then, other service nodes
Handle the service request of client.
In the embodiment of the present invention, any service node can be by communication connection, by the session object synchronizations after variation
To other service nodes.Wherein, communication connection carries out each other for any two service node in multiple service nodes
Communication.That is, each service node can communicate with other all service nodes in group system.
In a kind of possible embodiment, any service node in multiple service nodes is determined by itself storage
When session session objects change, by communication connection, by the session object synchronizations after variation to multiple business sections
Before other service nodes in point, any two service node in multiple service nodes can also establish keep-alive each other
Communication connection.
Wherein, the communication connection established can be used for the communication connection of synchronous session objects.The present invention is implemented
In example, which can be dedicated communication connection, that is, be served only for the communication connection of synchronous session objects, certainly, root
According to business demand and actual needs, which can be used for transmitting other contents in addition to session objects.
In the embodiment of the present invention, each service node can just establish upper mutual communication connection upon actuation, and
After communication connection is established, the keep-alive communication connection so that after session objects change, changes session objects
Service node can be in time by the session object synchronizations after variation to other service nodes.
In specific implementation process, which can be transmission control protocol (Transmission Control
Protocol, TCP) communication connection.By taking group system includes service node 1 and service node 2 as an example, service node 1 and business
It is established between node 2 after TCP communication connection, (keepalive probe) message can be detected by mutually sending TCP keep-alives
The mode for confirming (keepalive probe ack) message, the connection of keep-alive TCP communication are detected with TCP keep-alives.Also, work as business
When the quantity of node is more than 2, all there is individual TCP communication to connect between any service node and any one other service node
It connects.
In a kind of possible embodiment, in group system in addition to multiple service nodes, CAS can also be included and serviced
End.
Wherein, CAS server-sides are used to implement the login authentication to client, and transmit verification result to CAS clients,
In the embodiment of the present invention, CAS clients can be each service node, also, CAS server-sides can also send verification information
To the client of initiating business request.Also, CAS server-sides can be an individual equipment or be integrated into cluster
In the equipment such as the service node in system.Also, CAS server-sides can be realized by way of software.
In the embodiment of the present invention, when client accesses cluster for the first time in conversation procedure, service node can be in client
End newly creates a session object, such as the first session objects after logining successfully, then the session objects after changing are
First session objects.Wherein, the identity that whether service node can be stored with by searching for itself with client is corresponding
Session objects mode, to determine whether the current accessed of client is access for the first time in conversation procedure, if not storing
There are the corresponding session objects of the identity with client, then the current accessed that can determine client is in conversation procedure
Access for the first time.
Any service node create the first session objects before, can also include client Sign-On authentication and really
Surely the process of the first session objects is created.Specifically:
Session object and first service request of any service node at least based on itself storage, determine that client is
It is no legal;If it is not, then the first service request is redirected to CAS server-sides by any service node, so that CAS server-sides are verified
Whether client is legal;Any service node determines to create first after definite CAS server-sides verification client is legal
Session objects.Wherein, the first service request is the service request that client is sent.Also, system includes load in the cluster
During balanced node, the first service request can be that any business section is obtained by load balancing node and be transmitted to from client
Point.
In the embodiment of the present invention, which can be based on all session objects itself stored come really
Whether legal determine client.For example, any service node can determine that whether including session in the first service request tests
Information is demonstrate,proved, if not including, it is determined that client is illegal;In another example any service node can determine the first service request
Comprising session verification informations whether match any one session object for itself being stored, if cannot, it is determined that
Client is illegal.
When any service node determines that client is illegal, the first service request can be redirected to CAS services
End carries out login authentication by CAS server-sides to client, for example, when CAS server-sides verify client, CAS server-sides
It can verify whether client is legal according to information such as account, the passwords that client is submitted.CAS server-sides verify that client is
When legal, verification result can be returned to any service node, also, CAS server-sides can generate session verifications
Information is sent to client and the first service request can also be redirected to any service node.
Any service node is after definite CAS server-sides verification client is legal, it is possible to create the first session pairs
As when client accesses, to determine that client is legal.Wherein, the first session objects are sent to visitor with CAS server-sides
The session verification informations matching at family end.
In a kind of possible embodiment, group system can also include database node, which can be with
It is that each common database node of service node, each service node can communicate with database node in group system.
In the embodiment of the present invention, multiple service nodes that group system includes store business datum to the database section
Point, so that database node carries out business datum unified storage.That is, each service node in group system can be with
Based on the database node, a set of business datum is shared.
Wherein, the business datum of database node storage can be the number generated during the request of multiple service node processing business
According to.For example, business datum can be the login record of client, the service request record of client, the account of client
Password, etc..Database node carries out business datum unified storage, and each service node shares a set of business datum, realizes collection
Group's system external is provided uniform services the demand of platform.
In a kind of possible embodiment, the first service node in multiple service nodes is configured with for multiple business
The share directory of node visit, that is to say, that each service node in group system can read under the share directory, deposit
Storage, modification data.Wherein, the first service node can be any one service node in group system.
In the embodiment of the present invention, multiple service nodes in group system can be based on service request, access and/or manage
The shared file stored under share directory.
Wherein, the service node in multiple service nodes in addition to the first service node can be visited by sharing transport protocol
Ask share directory.Since share directory is the first service node itself configuration, thus the first service node can not be by altogether
It enjoys transport protocol and directly accesses share directory.
In the embodiment of the present invention, shared file can be to be used to implement the file of service request, for example, shared file
It can be the files such as picture, audio, installation kit that client uploads, can be picture, sound that service node is provided to client
Frequently, the files such as installation kit.The concrete type of shared file is not limited in the embodiment of the present invention.
Since the file for realizing service request is stored in same catalogue, each service node can be unified to use, manage one
Shared file is covered, ensure that each service node provides the uniformity of content, while avoid the waste of storage resource.Also,
Newly-increased service node directly can access and/or manage the shared file stored under share directory after carry share directory.
In the embodiment of the present invention, share directory and database node are deposited using different memory technologies to be different
Storage mode;Also, the content that share directory and database node are stored is different, and share directory storage is to be used to implement business
The file of request, such as the files such as video, the picture that webpage needs are shown, audio, the installation kit that for another example client provides, and count
What it is according to the storage of storehouse node is business datum, for example the service request of the login record of client, client records, the account of client
The data such as number password.
In specific implementation process, transport protocol can be shared by samba between each service node to realize file
Shared, then share directory can be configured as follows by configuring share directory:
(1) first service node installs samba softwares
(2) first service nodes, which create one, subsequently needs catalogue to be sharing, revises matching somebody with somebody under samba software installation catalogues
File is put, share directory is configured in configuration file;
(3) first service nodes start samba services;
(4) first service nodes set nobody permissions for share directory;
(5) share directory on the first service node is mounted to local by other service nodes.
In the embodiment of the present invention, service node in addition to the first service node can also to share directory under the file that stores
It is backed up, to improve the redundancy ability of group system.
Embodiment two
Based on same inventive concept, the embodiment of the present invention provides a kind of group system.The group system can be embodiment
Group system described in one, also, the group system can perform the management method of the group system described in embodiment one.
Thus, the explanation in the embodiment of the present invention on group system may refer to and quote the description in embodiment one, herein no longer
It repeats.
The group system includes multiple service nodes, and multiple service nodes are used for:
Any service node in multiple service nodes determines that the session session objects of itself storage change or newly
When creating session objects, other service nodes in the session object synchronizations after variation to multiple service nodes make
Obtain whether the service request that other service nodes are at least sent based on the session objects after variation and client determines client
It is legal;
Wherein, for client to access the client of group system, the session objects after variation are based on itself storage
Session objects change or newly create session objects and obtain.
In a kind of possible embodiment, multiple service nodes are used for:
Any service node in multiple service nodes determines itself to perform the arbitrary operation in following operation:
(1) itself stored session object is adjusted;
(2) session objects are newly created;
(3) itself stored session object is deleted.
In a kind of possible embodiment, group system further includes central authentication service CAS server-sides, after variation
Session objects are the first session objects that any service node newly creates, and multiple service nodes are additionally operable to:
Session object and first business of any service node at least based on itself storage in multiple service nodes please
It asks, determines whether client is legal;Wherein, the first service request is the service request that client is sent;
If it is not, then the first service request is redirected to CAS server-sides by any service node, so that CAS server-sides are verified
Whether client is legal;
Any service node determines to create the first session objects after definite CAS server-sides verification client is legal.
In a kind of possible embodiment, group system further includes database node, and multiple service nodes are additionally operable to:
Business datum is stored to database node, so that database node carries out business datum unified storage;
Wherein, the data generated when business datum is asked for multiple service node processing business.
In a kind of possible embodiment, the first service node in multiple service nodes is configured with for multiple business
The share directory of node visit, multiple service nodes are additionally operable to:
Based on service request, the shared file stored under share directory is accessed and/or manages, shared file is to be used to implement
The file of service request;
Wherein, the service node in multiple service nodes in addition to the first service node is accessed altogether by sharing transport protocol
Enjoy catalogue.
Embodiment three
Based on same inventive concept, the embodiment of the present invention provides a kind of computer readable storage medium, this is computer-readable
Storage medium is stored with computer instruction, when computer instruction is run on a computing device, can cause computer equipment
Perform the management method of the group system described in embodiment one.
In specific implementation process, computer readable storage medium can be general serial bus USB
(Universal Serial Bus flash drive, USB), mobile hard disk, read-only memory (Read-Only Memory,
ROM), random access memory (Random Access Memory, RAM), magnetic disc or CD etc. are various can store program
The storage medium of code.
One or more of above-mentioned technical proposal technical solution, at least has the following technical effects or advantages:
In the embodiment of the present invention, group system includes multiple service nodes, any business section in multiple service nodes
When point determines that the session session objects of itself storage change or newly create session objects, after variation
Other service nodes in session object synchronizations to multiple service nodes so that after other service nodes are at least based on variation
Session objects and client send service request determine whether client legal.
By the session object synchronizations after changing to other service nodes, other service nodes are being distributed to this
During the service request of client, it is possible to directly determine that the client is legal, client according to the session objects after variation
Without being logged in again.Reach in the case where not binding client ip address, realized single-sign-on in group system
Technique effect.
Further, in the embodiment of the present invention, group system can distribute visitor according to the loading condition of each service node
The service request at family end without considering all service requests of same client being distributed to each and every one same service node, is realized
Load balancing of each service node in service request in group system.
Further, in the embodiment of the present invention, any two service node in multiple service nodes establishes guarantor each other
Communication connection living, thus, after session objects change, after can synchronously changing in time between service node
Session objects.
Further, in the embodiment of the present invention, group system can include CAS server-sides, by CAS server-sides to client
End carries out unified login authentication, can provide a kind of more reliable single-point logging method.
Further, in the embodiment of the present invention, group system can include load balancing node, and load balancing node can
To monitor the health status of each service node and loading condition, and according to the load of each service node and health status distribution service
Request ensure that the equilibrium of each service node load, play the advantage of group system, also, avoids service node entrance
Performance bottleneck even there is a situation where the machine of delaying, improves the experience that user accesses group system by client.
Further, in the embodiment of the present invention, group system can include database node, and database node can be right
Business datum carries out unified storage, and each service node shares a set of business datum, to realize that group system externally provides unified clothes
The demand of business platform.
Further, in the embodiment of the present invention, each service node can be based on service request, access and/or management is common
Enjoy the shared file for being used to implement service request stored under catalogue.It is thereby achieved that the file of the service request of client is all
In same catalogue, for user, group system is transparent as a server.Also, each service node is unified to be used, manages
A set of shared file is managed, avoids the waste of storage resource.Also, by way of share directory shared file, facilitate expansion
Service node.
It should be noted that the apparatus embodiments described above are merely exemplary, wherein being said as separating component
Bright units/modules may or may not be it is physically separate, the component shown as units/modules can be or
Person may not be physical location/module, you can be located at a place or can also be distributed to multiple network element/moulds
On block.Some or all of module therein can be selected to realize the purpose of this embodiment scheme according to the actual needs.This
Field those of ordinary skill is not in the case where paying performing creative labour, you can to understand and implement.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can
It is realized by the mode of software plus required general hardware platform, naturally it is also possible to pass through hardware.Based on such understanding, on
Technical solution is stated substantially in other words to embody the part that the prior art contributes in the form of software product, it should
Computer software product can store in a computer-readable storage medium, such as ROM/RAM, magnetic disc, CD, including several fingers
Order, which is used, so that computer equipment (can be personal computer, server or the network equipment etc.) performs each implementation
Method described in some parts of example or embodiment.
Finally it should be noted that:The above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although
The present invention is described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that:It still may be used
To modify to the technical solution recorded in foregoing embodiments or carry out equivalent substitution to which part technical characteristic;
And these modification or replace, do not make appropriate technical solution essence depart from various embodiments of the present invention technical solution spirit and
Scope.
Claims (11)
1. a kind of management method of group system, which is characterized in that the group system includes multiple service nodes, the method
Including:
Any service node in the multiple service node determines that the session session objects of itself storage change or newly
When creating session objects, by other business sections in the session object synchronizations after variation to the multiple service node
Point so that the service request that other service nodes are at least sent based on the session objects after the variation and client
Determine whether the client is legal;
Wherein, for the client to access the client of the group system, the session objects after the variation are based on certainly
The session objects of body storage change or newly create session objects and obtain.
2. the method as described in claim 1, which is characterized in that any service node in the multiple service node determines certainly
The session session objects of body storage change or newly create session objects, including:In the multiple service node
Any service node determines itself to perform the arbitrary operation in following operation:
(1) itself stored session object is adjusted;
(2) session objects are newly created;
(3) itself stored session object is deleted.
3. the method as described in claim 1, which is characterized in that the group system further includes central authentication service CAS services
End, the session objects after the variation are the first session objects that any service node newly creates, at described
Before one service node creates the first session objects, the method further includes:
Session object and first service request of any service node at least based on itself storage, determine the client
Whether end is legal;Wherein, first service request is the service request that the client is sent;
If it is not, then first service request is redirected to the CAS server-sides by any service node, so that described
CAS server-sides verify whether the client is legal;
Any service node determines to create described first after determining that the CAS server-sides verify that the client is legal
Session objects.
4. the method as described in claim 1, which is characterized in that the group system further includes database node, the method
It further includes:
The multiple service node stores business datum to the database node, so that the database node is to described
Business datum carries out unified storage;
Wherein, the data generated when the business datum is asked for the multiple service node processing business.
5. the method as described in any claim in claim 1-4, which is characterized in that in the multiple service node
One service node is configured with the share directory accessed for the multiple service node, and the method further includes:
The multiple service node is based on service request, accesses and/or manage the shared file stored under the share directory, institute
It is to be used to implement the file of service request to state shared file;
Wherein, the service node in the multiple service node in addition to first service node is visited by sharing transport protocol
Ask the share directory.
6. a kind of group system, which is characterized in that the group system includes multiple service nodes, and the multiple service node is used
In:
Any service node in the multiple service node determines that the session session objects of itself storage change or newly
When creating session objects, by other business sections in the session object synchronizations after variation to the multiple service node
Point so that the service request that other service nodes are at least sent based on the session objects after the variation and client
Determine whether the client is legal;
Wherein, for the client to access the client of the group system, the session objects after the variation are based on certainly
The session objects of body storage change or newly create session objects and obtain.
7. group system as claimed in claim 6, which is characterized in that the multiple service node is used for:
Any service node in the multiple service node determines itself to perform the arbitrary operation in following operation:
(1) itself stored session object is adjusted;
(2) session objects are newly created;
(3) itself stored session object is deleted.
8. group system as claimed in claim 6, which is characterized in that the group system further includes central authentication service CAS
Server-side, the session objects after the variation are the first session objects that any service node newly creates, described
Multiple service nodes are additionally operable to:
Session object and first industry of any service node at least based on itself storage in the multiple service node
Business request, determines whether the client is legal;Wherein, first service request please for the business that the client is sent
It asks;
If it is not, then first service request is redirected to the CAS server-sides by any service node, so that described
CAS server-sides verify whether the client is legal;
Any service node determines to create described first after determining that the CAS server-sides verify that the client is legal
Session objects.
9. group system as claimed in claim 6, which is characterized in that the group system further includes database node, described
Multiple service nodes are additionally operable to:
Business datum is stored to the database node, so that the database node carries out the business datum unification
Storage;
Wherein, the data generated when the business datum is asked for the multiple service node processing business.
10. the group system as described in any claim in claim 6-9, which is characterized in that the multiple service node
In the first service node be configured with the share directory accessed for the multiple service node, the multiple service node also uses
In:
Based on service request, access and/or manage the shared file stored under the share directory, the shared file be for
Realize the file of service request;
Wherein, the service node in the multiple service node in addition to first service node is visited by sharing transport protocol
Ask the share directory.
11. a kind of computer readable storage medium, it is characterised in that:
The computer-readable recording medium storage has computer instruction, when the computer instruction is run on a computing device
When so that computer equipment performs the method as any one of claim 1-5.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711294593.7A CN108055314A (en) | 2017-12-08 | 2017-12-08 | The management method and group system of a kind of group system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711294593.7A CN108055314A (en) | 2017-12-08 | 2017-12-08 | The management method and group system of a kind of group system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN108055314A true CN108055314A (en) | 2018-05-18 |
Family
ID=62123379
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711294593.7A Pending CN108055314A (en) | 2017-12-08 | 2017-12-08 | The management method and group system of a kind of group system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108055314A (en) |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109150921A (en) * | 2018-11-05 | 2019-01-04 | 郑州云海信息技术有限公司 | A kind of login method of multi-node cluster, device, equipment and storage medium |
CN109257448A (en) * | 2018-11-21 | 2019-01-22 | 网易(杭州)网络有限公司 | A kind of synchronous method and device of session information, electronic equipment, storage medium |
CN109491789A (en) * | 2018-11-02 | 2019-03-19 | 浪潮电子信息产业股份有限公司 | A kind of distributed memory system traffic balancing processing method, device and equipment |
CN111371865A (en) * | 2020-02-26 | 2020-07-03 | 上海达梦数据库有限公司 | Client connection relation adjusting method, system and node |
CN111885158A (en) * | 2020-07-22 | 2020-11-03 | 曙光信息产业(北京)有限公司 | Cluster task processing method and device, electronic equipment and storage medium |
WO2021159713A1 (en) * | 2020-02-14 | 2021-08-19 | 苏州浪潮智能科技有限公司 | Multi-shared directory tree-oriented control method and system |
WO2023207189A1 (en) * | 2022-04-28 | 2023-11-02 | 京东科技信息技术有限公司 | Load balancing method and system, computer storage medium, and electronic device |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104735098A (en) * | 2013-12-18 | 2015-06-24 | 青岛海尔空调器有限总公司 | Session information control method and system |
CN105338063A (en) * | 2015-09-30 | 2016-02-17 | 北京奇虎科技有限公司 | Multi-server user session sharing method and device |
CN105472002A (en) * | 2015-12-09 | 2016-04-06 | 国家电网公司 | Session synchronization method based on instant copying among cluster nodes |
US20160100016A1 (en) * | 2009-02-17 | 2016-04-07 | Netapp, Inc. | Servicing of storage device software components of nodes of a cluster storage system |
CN105554004A (en) * | 2015-12-24 | 2016-05-04 | 北京轻元科技有限公司 | Authentication system and authentication method for container services in hybrid cloud computing environment |
CN106911814A (en) * | 2017-05-11 | 2017-06-30 | 成都四象联创科技有限公司 | Large-scale data distributed storage method |
US9832069B1 (en) * | 2008-05-30 | 2017-11-28 | F5 Networks, Inc. | Persistence based on server response in an IP multimedia subsystem (IMS) |
-
2017
- 2017-12-08 CN CN201711294593.7A patent/CN108055314A/en active Pending
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9832069B1 (en) * | 2008-05-30 | 2017-11-28 | F5 Networks, Inc. | Persistence based on server response in an IP multimedia subsystem (IMS) |
US20160100016A1 (en) * | 2009-02-17 | 2016-04-07 | Netapp, Inc. | Servicing of storage device software components of nodes of a cluster storage system |
CN104735098A (en) * | 2013-12-18 | 2015-06-24 | 青岛海尔空调器有限总公司 | Session information control method and system |
CN105338063A (en) * | 2015-09-30 | 2016-02-17 | 北京奇虎科技有限公司 | Multi-server user session sharing method and device |
CN105472002A (en) * | 2015-12-09 | 2016-04-06 | 国家电网公司 | Session synchronization method based on instant copying among cluster nodes |
CN105554004A (en) * | 2015-12-24 | 2016-05-04 | 北京轻元科技有限公司 | Authentication system and authentication method for container services in hybrid cloud computing environment |
CN106911814A (en) * | 2017-05-11 | 2017-06-30 | 成都四象联创科技有限公司 | Large-scale data distributed storage method |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109491789A (en) * | 2018-11-02 | 2019-03-19 | 浪潮电子信息产业股份有限公司 | A kind of distributed memory system traffic balancing processing method, device and equipment |
CN109150921A (en) * | 2018-11-05 | 2019-01-04 | 郑州云海信息技术有限公司 | A kind of login method of multi-node cluster, device, equipment and storage medium |
CN109150921B (en) * | 2018-11-05 | 2021-06-29 | 郑州云海信息技术有限公司 | Login method, device, equipment and storage medium of multi-node cluster |
CN109257448A (en) * | 2018-11-21 | 2019-01-22 | 网易(杭州)网络有限公司 | A kind of synchronous method and device of session information, electronic equipment, storage medium |
CN109257448B (en) * | 2018-11-21 | 2021-07-09 | 网易(杭州)网络有限公司 | Session information synchronization method and device, electronic equipment and storage medium |
WO2021159713A1 (en) * | 2020-02-14 | 2021-08-19 | 苏州浪潮智能科技有限公司 | Multi-shared directory tree-oriented control method and system |
CN111371865A (en) * | 2020-02-26 | 2020-07-03 | 上海达梦数据库有限公司 | Client connection relation adjusting method, system and node |
CN111371865B (en) * | 2020-02-26 | 2023-02-24 | 上海达梦数据库有限公司 | Client connection relation adjusting method, system and node |
CN111885158A (en) * | 2020-07-22 | 2020-11-03 | 曙光信息产业(北京)有限公司 | Cluster task processing method and device, electronic equipment and storage medium |
CN111885158B (en) * | 2020-07-22 | 2023-05-02 | 曙光信息产业(北京)有限公司 | Cluster task processing method and device, electronic equipment and storage medium |
WO2023207189A1 (en) * | 2022-04-28 | 2023-11-02 | 京东科技信息技术有限公司 | Load balancing method and system, computer storage medium, and electronic device |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108055314A (en) | The management method and group system of a kind of group system | |
US9124629B1 (en) | Using secure connections to identify systems | |
CN104506510B (en) | Method and device for equipment authentication and authentication service system | |
US7177897B2 (en) | Method and system for automatically configuring a client-server network | |
US7509424B2 (en) | Load-balancing device and computer-readable recording medium in which load-balancing program is recorded | |
CN106254377B (en) | Support the soft load-balancing method and system of the long connection of magnanimity | |
CN104734849B (en) | The method and system that third-party application is authenticated | |
US20020073211A1 (en) | System and method for securely communicating between application servers and webservers | |
CN104640114B (en) | A kind of verification method and device of access request | |
CN101588390B (en) | Method for improving centralized authentication service system service viscosity and load equilibrium apparatus | |
US9712621B1 (en) | Information sharing endpoint | |
CN108989430B (en) | Load balancing method, device and storage medium | |
CN110198334A (en) | Access method, device and storage medium based on object storage service | |
CN106559392A (en) | A kind of file sharing method, device and system | |
CN104980494B (en) | A kind of cloud storage download shared platform and method with local cache | |
CN108241797A (en) | Mirror image warehouse user right management method, device, system and readable storage medium storing program for executing | |
CN108989359A (en) | Method for verifying login and system, the readable storage medium storing program for executing and terminal of server cluster | |
CN107347015A (en) | A kind of recognition methods of content distributing network, apparatus and system | |
CN106487768A (en) | A kind of file sharing method and device | |
CN109510878A (en) | A kind of long connection session keeping method and device | |
CN106844489A (en) | A kind of file operation method, device and system | |
CN105871591A (en) | Method and device for distributing CDN (Content Delivery Network) addresses | |
CN111108736B (en) | Method and system for automatic address failover of a computing device | |
CN109542862A (en) | For controlling the methods, devices and systems of the carry of file system | |
CN106921721A (en) | A kind of server, conversation managing method and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180518 |