CN108366132B - Method and device for managing service between servers, computer equipment and storage medium - Google Patents
Method and device for managing service between servers, computer equipment and storage medium Download PDFInfo
- Publication number
- CN108366132B CN108366132B CN201810205952.5A CN201810205952A CN108366132B CN 108366132 B CN108366132 B CN 108366132B CN 201810205952 A CN201810205952 A CN 201810205952A CN 108366132 B CN108366132 B CN 108366132B
- Authority
- CN
- China
- Prior art keywords
- service
- registry
- server
- external equipment
- service server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/60—Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/51—Discovery or management thereof, e.g. service location protocol [SLP] or web services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
- H04L9/3213—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
Abstract
The application relates to a method and a device for service management among servers, computer equipment and a storage medium. The method comprises the following steps: sending a service issuing instruction to a registration center; when the registration center registers the corresponding service according to the service issuing instruction, the first service server is informed to run the registered service; updating a service registry in the registry according to the service operated by the first service server; sending the updated service registry to a second service server subscribing to the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry. By implementing the method, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, so that the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
Description
Technical Field
The present application relates to the field of internet technologies, and in particular, to a method and an apparatus for managing services between servers, a computer device, and a computer-readable storage medium.
Background
Currently, with the development of internet technology, various offline businesses can also be transacted online, such as transacting insurance, transferring money to banks, and purchasing goods. After people transact business on the network, the subsequent business information can be inquired through various business systems on the network. Through handling the business on the Internet, the business handling efficiency can be greatly improved. These services are often built on services (services), and cooperate with different services to handle services.
However, as the types of services that can be handled on the internet increase, more services need to be collaborated. The required authority of the services running on different servers is often based on the local server, when one server calls the services on other servers, the corresponding authority needs to be applied, and a large amount of time is spent from the application of the authority to the approval, so that the efficiency of calling the services on other servers by the server is low.
Disclosure of Invention
In view of the foregoing, it is desirable to provide an inter-server service management method, apparatus, computer device, and storage medium that can improve the efficiency with which a server calls a service on another server, in view of the above-described technical problems.
A method for service management between servers, the method comprising:
sending a service issuing instruction to a registration center;
when the registration center registers the corresponding service according to the service issuing instruction, then
Informing the first business server to run the registered service;
updating a service registry in the registry according to the service operated by the first service server;
sending the updated service registry to a second service server subscribing to the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry.
In one embodiment, further comprising:
when receiving the identity information verification request sent by the external equipment, then
Verifying the identity information of the external equipment according to the identity information verification request;
when the identity information of the external equipment passes verification, an access token is sent to the external equipment;
receiving a service calling instruction generated by the external equipment according to the access token;
and informing the first business server to provide the service specified by the service calling instruction to the external equipment.
In one embodiment, when receiving an authentication request for identity information sent by an external device, authenticating the identity information of the external device according to the authentication request for identity information includes:
when an identity information verification request sent by external equipment is received, an authorization request token is sent to the external equipment according to the identity information verification request;
when receiving the authorization request generated by the external device according to the authorization request token, then
Verifying the identity information of the external equipment carried in the authorization request;
when the identity information of the external device passes the verification, sending an access token to the external device, including:
when the identity information of the external equipment passes the verification, an authorization key is sent to the external equipment; the authorization key is used to instruct the external device to convert the authorization request token into an access token according to the authorization key.
In one embodiment, further comprising:
receiving a service calling authorization request sent by a second service server;
verifying the service calling authorization request through an authorization center to obtain a verification result;
when the verification result shows that the verification is passed, sending an access token to the second service server;
receiving a service calling request sent by the second service server;
when detecting that the service calling request carries the access token, then
The service of the external device specified by the service invocation request is invoked by the external agent.
In one embodiment, further comprising:
receiving information transmitted to an external device;
screening the information sent to the external equipment according to preset keywords and preset key categories;
and filtering the screened information.
In one embodiment, after sending the updated service registry to the second traffic server subscribing to the service registry, the method further comprises:
acquiring service information generated when the first service server operates the service and service information generated when the second service server calls the service;
identifying a service name corresponding to the acquired service information;
locating a data set corresponding to the service name in a database;
and writing the acquired service information into a data set corresponding to the service name.
An inter-server service management apparatus, the apparatus comprising:
the instruction sending notification module is used for sending a service issuing instruction to the registration center;
the service operation notification module is used for notifying the first service server to operate the registered service when the registration center registers the corresponding service according to the service issuing instruction;
a registry updating module, which is used for updating the service registry in the registry according to the service operated by the first service server;
the registry sending module is used for sending the updated service registry to a second service server subscribed with the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry.
In one embodiment, the apparatus further comprises:
the information verification module is used for verifying the identity information of the external equipment according to the identity information verification request when receiving the identity information verification request sent by the external equipment;
the token sending module is used for sending an access token to the external equipment when the identity information of the external equipment passes the verification;
the instruction receiving module is used for receiving a service calling instruction generated by the external equipment according to the access token;
and the service call notification module is used for notifying the first service server to provide the service specified by the service call instruction to the external equipment.
A computer device comprising a memory storing a computer program and a processor implementing the steps of the method as claimed in any one of the preceding claims when the computer program is executed by the processor.
A computer-readable storage medium, on which a computer program is stored which, when being executed by a processor, carries out the steps of the method according to any one of the preceding claims.
The service management method, the device, the computer equipment and the storage medium among the servers send the service issuing instruction through the registration center, when the registration center registers the corresponding service according to the service issuing instruction, the registration center informs the first service server to run the registered service, and the registration of the service in the first service server is managed through the registration center, so that the service in the first service server can be uniformly managed. And updating the service registry in the registry according to the service operated by the first service server, and sending the updated service registry to the second service server subscribing to the service registry. The second service server can call the corresponding service to the first service server according to the updated service registry, so that the second service server does not need to apply for the right of calling the service to the first service server independently, the second service server does not need to monitor the service operated in the first service server, and the operation of the service in the first service server and the call of the service of the second service server to the first service server can be managed only by managing the registration of the first service server by the registration center. Therefore, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
Drawings
FIG. 1 is a diagram illustrating an exemplary implementation of a method for managing services among servers;
FIG. 2 is a flow diagram that illustrates a method for service management between servers in one embodiment;
FIG. 3 is a diagram illustrating an exemplary implementation of steps for managing services between servers;
FIG. 4 is a diagram illustrating an application scenario of service management steps between servers in another embodiment;
FIG. 5 is a flowchart illustrating a method for managing services among servers according to another embodiment;
FIG. 6 is a block diagram showing an example of a service management apparatus between servers;
FIG. 7 is a diagram illustrating an internal structure of a computer device according to an embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
The inter-server service management method provided by the application can be applied to the application environment shown in fig. 1. Wherein, the management center 110, the registration center 120, the first service server 130, the second service server 140 and the monitoring center 150 communicate through a network. The management center 110 sends a service issuance instruction to the registry 120. When the registry 120 registers the corresponding service according to the service issuance instruction, the management center 110 notifies the first service server 130 to run the registered service. The management center 110 further updates a service registry at the registry 120 according to the service operated by the first service server 130, and sends the updated service registry to the second service server 140 subscribed to the service registry, wherein the service registry is used for instructing the second service server 140 to call the corresponding service to the first service server 130 according to the updated service registry.
The management center 110, the registration center 120, the first service server 130, the second service server 140 and the monitoring center 150 may be implemented by independent servers or a server cluster composed of a plurality of servers.
In one embodiment, as shown in fig. 2, a method for managing services between servers is provided, which is described by taking an example of applying the method to the management center in fig. 1, and includes the following steps:
s202, sending a service issuing instruction to the registration center.
The service issuing instruction is specifically an instruction for registering a service in a registry. The registry is in particular a computer device for verifying registration information of services and registering services. Specifically, the service issuing instruction is sent to the registry, and may be sent by the management center to the registry through the ESG API.
In one embodiment, after the management center sends the service issuing instruction to the registration center, the service data of the service corresponding to the service issuing instruction is updated in the database.
S204, when the registration center registers the corresponding service according to the service issuing instruction, the first service server is informed to operate the registered service.
The first service server is specifically a server running services. Specifically, when the registry registers the corresponding service according to the service issuance instruction, the registry notifies the first service server to run the registered service, where the registry sends registration completion information to the management center after registering the corresponding service according to the service issuance instruction, and the management center notifies the first service server to run the registered service, or the registry directly notifies the first service server to run the registered service after registering the corresponding service according to the service issuance instruction.
In one embodiment, the first service server sends a request for running the service to the registry, the registry sends information of completion of registration to the management center after completing registration of the service according to the request for running the service, and the management center notifies the first service server of running the service of completion of registration.
In one embodiment, the management center records information of a request for running a service in a database when receiving the request for running the service sent by the first business server.
S206, updating the service registry in the registry according to the service operated by the first service server.
Wherein the service registry is registration information of the service. The service registry specifically includes at least one of a registration time point of the service, a valid time period of the service, a URL of the first service server, a URL of the second service server subscribing to the service, and the like. Specifically, after the service registration of the first service server is successful, the registry updates the service registry stored locally in the registry.
In one embodiment, the registry sends the updated service registry to the management center after updating the service registry.
S208, sending the updated service registry to the second service server subscribed to the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry.
The subscription service registry may specifically be a service registry in which the second service server stores a local URL in the registry, so that the registry sends an updated service registry to the second service server according to the URL of the second service server after updating the service registry.
Specifically, the second service server calls the corresponding service to the first service server according to the updated service registry, where the second service server sends a service call request and service operation data to the first service server according to the URL of the first service server in the updated service registry, and after the first service server confirms the call of the second service server to the service according to the service call request, the first service server operates the corresponding service according to the service operation data, and feeds back a service operation result obtained by operating the service to the second service server.
In one embodiment, after the second service server calls the service of the first service server, the first service server and the second service server asynchronously send the information of calling the service to the monitoring center.
In one embodiment, the management center monitors whether the service registry of the registry is updated every one minute, and after monitoring that the service registry is updated, the management center synchronously sends the updated service registry to the second service server subscribing to the service registry.
In this embodiment, the service issuing instruction is sent by the registry, and when the registry registers the corresponding service according to the service issuing instruction, the first service server is notified to run the registered service, and the registration of the service in the first service server is managed by the registry, so that the service in the first service server can be managed in a unified manner. And updating the service registry in the registry according to the service operated by the first service server, and sending the updated service registry to the second service server subscribing to the service registry. The second service server can call the corresponding service to the first service server according to the updated service registry, so that the second service server does not need to apply for the right of calling the service to the first service server independently, the second service server does not need to monitor the service operated in the first service server, and the operation of the service in the first service server and the call of the service of the second service server to the first service server can be managed only by managing the registration of the first service server by the registration center. Therefore, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
As shown in fig. 3, in one embodiment, the method further includes: when an identity information verification request sent by external equipment is received, verifying the identity information of the external equipment according to the identity information verification request; when the identity information of the external equipment passes verification, an access token is sent to the external equipment; receiving a service calling instruction generated by the external equipment according to the access token; and informing the first business server to provide the service specified by the service calling instruction to the external equipment.
Wherein the external device is a third party computer device. The external device may specifically be the external device 310 in fig. 3. The authentication request for the identification information is request information for authentication of the identification information of the external device. The identity information is identity information of the external device. The identity information of the external device may specifically be identity information registered by the external device in the management center. The access token is in particular a credential required by the external device to invoke a service managed by the management center and to read data managed by the management center. The service call instruction is an instruction for the external device to call a specified service.
In one embodiment, when receiving an authentication request sent by an external device, a management center queries whether identity information corresponding to the authentication request exists in a database, and when the corresponding identity information is queried and the queried identity information is matched with the authentication request, an access token is sent to the external device. And after the external equipment generates a service calling instruction according to the received access token and sends the service calling instruction to the management center, the management center selects a corresponding first service server according to the service specified by the service calling instruction, and informs the first service server of registering and running the service specified by the service calling instruction.
In this embodiment, when an identity information verification request sent by an external device is received, the identity information of the external device is verified, and an access token is sent after the verification is passed, and the external device can call the service of the first service server only according to a service call instruction generated by the access token, so that not only can the security be enhanced, but also the time spent in performing identity verification separately on the external device and the first service server can be reduced by uniformly managing information interaction between the external device and the first service server, and the efficiency of calling the service of the first service server by the external device is improved.
In one embodiment, when receiving an authentication request for identity information sent by an external device, authenticating the identity information of the external device according to the authentication request for identity information includes: when an identity information verification request sent by external equipment is received, an authorization request token is sent to the external equipment according to the identity information verification request; when an authorization request generated by the external equipment according to the authorization request token is received, the identity information of the external equipment carried in the authorization request is verified; when the identity information of the external device passes the verification, sending an access token to the external device, including: when the identity information of the external equipment passes the verification, an authorization key is sent to the external equipment; the authorization key is used to instruct the external device to convert the authorization request token into an access token according to the authorization key.
The authorization request token is specifically a credential for requesting authorization by the external device. The authorization request is specifically request information sent by the external device to request to invoke the service.
In one embodiment, when the authorization center receives an identity information authentication request sent by an external device, the authorization center confirms that the identity information authentication request is used for triggering authentication of identity information according to request information carried in the identity information authentication request, and sends an authorization request token to the corresponding external device.
In this embodiment, when the external device sends the authentication request for the identity information, the external device sends the authorization request token, and when the authentication of the identity information of the external device passes, the external device sends the authorization key to the external device, and the external device can generate the access token by the authorization request token and the authorization key, and can more flexibly authenticate the identity information of the external device by respectively issuing the authorization request token and the authorization key.
As shown in fig. 4, in one embodiment, the method further includes: receiving a service calling authorization request sent by a second service server; verifying the service calling authorization request through an authorization center to obtain a verification result; when the verification result shows that the verification is passed, sending an access token to the second service server; receiving a service calling request sent by the second service server; and when the service calling request is detected to carry the access token, calling the service of the external equipment specified by the service calling request through an external agent.
Wherein the service invocation authorization request is request information for requesting authorization for the action of invoking the service. The authorization center is specifically a computer device that verifies the service invocation authorization request and the service invocation request. The authorization center may specifically be authorization center 320 in fig. 4. The service invocation request is request information requesting invocation of the service. The external agent is a computer device for which the second service server calls a service of the external device. The foreign agent may specifically be foreign agent 330 in FIG. 4.
In one embodiment, the authorization center receives a service call authorization request sent by the second service server, and sends an access token to the second service server after the identity information of the second service server is verified. And the second service server generates a service calling request according to the access token and sends the service calling request to the authorization center. And the authorization center forwards the service calling request to the management center, and calls the service of the external equipment specified by the service calling request through an external agent when the management center detects the registration information of the external equipment specified by the service calling request in the database and the authorization center detects that the access token is carried in the service calling request.
In this embodiment, when the second service server needs to invoke the service of the external device, the authorization center verifies the service invocation authorization request sent by the second service server, and when the verification passes, the external agent invokes the service of the external device, so that not only can the security be strengthened, but also the time spent by the external device for performing identity verification separately with the second service server can be reduced by uniformly managing information interaction between the external device and the second service server, thereby improving the efficiency of the second service server invoking the service of the external device.
In one embodiment, further comprising: receiving information transmitted to an external device; screening the information sent to the external equipment according to preset keywords and preset key categories; and filtering the screened information.
The preset keywords are words of preset retrieval information. The preset key category is category information of preset discrimination information. Specifically, the information filtered out may be that the information filtered out is not sent to the external device, or that the information filtered out is audited and then sent to the external device after the audit is passed.
In one embodiment, the external agent identifies a preset keyword in the information sent to the external device, and when detecting that the information sent to the external device lacks the preset keyword, reselects information corresponding to the missing preset keyword from the database, and sends the reselected information to the external device.
In one embodiment, the external agent identifies information transmitted to the external device, and when the information transmitted to the external device is identified to have repeated information, the information transmitted to the external device is compared with the information in the database, and if the information is consistent, the information is continuously transmitted to the external device.
In the embodiment, when the information sent to the external equipment is received, the information is screened according to the preset keywords and the preset key categories, so that the leakage of some sensitive information can be avoided, and the safety of information management is enhanced.
In one embodiment, after sending the updated service registry to the second traffic server subscribing to the service registry, the method further comprises: acquiring service information generated when the first service server operates the service and service information generated when the second service server calls the service; identifying a service name corresponding to the acquired service information; locating a data set corresponding to the service name in a database; and writing the acquired service information into a data set corresponding to the service name.
The service information is information generated when the service is called. The service information may specifically be information generated when the second service server invokes the service of the first service server, may also be information generated when the external device invokes the service of the first service server, and may also be information generated when the second service server invokes the service of the external device. The service name is the name of the service. The service name is in particular an identification character of the service. A data set is a set of service information.
In one embodiment, when monitoring that the second service server calls the service of the first service server, the monitoring center collects service information and a corresponding service name, and locates a data set corresponding to the service name in the database. And when the monitoring center does not locate the data set corresponding to the service name, the monitoring center is informed to create the data set corresponding to the service name in the database, and the collected service information is written into the created data set.
In the embodiment, the service name of the collected service information is identified, the data set corresponding to the service name is positioned in the database, and the service information is written into the data set corresponding to the service name in the database, so that the service information can be more conveniently managed, and the efficiency of managing the service information is improved.
As shown in fig. 5, in an embodiment, a method for managing services between servers is further provided, where the method specifically includes the following steps:
s502, the management center sends a service issuing instruction to the registration center.
S504, the registration center registers the corresponding service according to the service issuing instruction.
S506, the management center informs the first service server of running the registered service.
S508, the registry updates the service registry in the registry according to the service operated by the first service server.
S510, the registry sends the updated service registry to the second service server subscribed to the service registry.
S512, the second service server calls the corresponding service to the first service server according to the updated service registry.
And S514, the authorization center receives the identity information verification request sent by the external equipment.
S516, the authorization center sends an authorization request token to the external device according to the identity information verification request.
S518, the authorization center receives the authorization request generated by the external device according to the authorization request token.
S520, the authorization center verifies the identity information of the external equipment carried in the authorization request.
When the authentication of the identity information of the external device is passed, step S522 is performed.
S522, the authorization center sends an authorization key to the external device.
The external device converts the authorization request token into an access token according to the authorization key S524.
S526, the authorization center receives a service call instruction generated by the external device according to the access token.
S528, the management center notifies the first service server to provide the service specified by the service invocation instruction to the external device.
S530, the monitoring center collects service information generated when the first service server runs the service and service information generated when the second service server calls the service.
S532, the monitoring center identifies the service name corresponding to the collected service information.
S534, the monitoring center locates the data set corresponding to the service name in the database.
And S536, the monitoring center writes the collected service information into a data set corresponding to the service name.
The service management method among the servers sends the service issuing instruction through the registration center, when the registration center registers the corresponding service according to the service issuing instruction, the registration center informs the first service server to operate the registered service, and the registration of the service in the first service server is managed through the registration center, so that the service in the first service server can be uniformly managed. And updating the service registry in the registry according to the service operated by the first service server, and sending the updated service registry to the second service server subscribing to the service registry. The second service server can call the corresponding service to the first service server according to the updated service registry, so that the second service server does not need to apply for the right of calling the service to the first service server independently, the second service server does not need to monitor the service operated in the first service server, and the operation of the service in the first service server and the call of the service of the second service server to the first service server can be managed only by managing the registration of the first service server by the registration center. Therefore, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
It should be understood that, although the steps in the flowchart of fig. 5 are shown in order as indicated by the arrows, the steps are not necessarily performed in order as indicated by the arrows. The steps are not performed in the exact order shown and described, and may be performed in other orders, unless explicitly stated otherwise. Moreover, at least a portion of the steps in fig. 5 may include multiple sub-steps or multiple stages that are not necessarily performed at the same time, but may be performed at different times, and the order of performance of the sub-steps or stages is not necessarily sequential, but may be performed in turn or alternately with other steps or at least a portion of the sub-steps or stages of other steps.
In one embodiment, as shown in fig. 6, there is provided an inter-server service management apparatus 600 including: an instruction transmission notification module 602, a service operation notification module 604, a registry update module 606, and a registry transmission module 608, wherein: an instruction sending notification module 602, configured to send a service issue instruction to the registry; a service operation notification module 604, configured to notify the first service server to operate the registered service when the registry registers the corresponding service according to the service issuing instruction; a registry updating module 606, configured to update a service registry in the registry according to the service operated by the first service server; a registry sending module 608, configured to send the updated service registry to the second service server subscribed to the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry.
The inter-server service management apparatus 600 sends the service issuing instruction through the registry, and when the registry registers the corresponding service according to the service issuing instruction, notifies the first service server to run the registered service, and manages the registration of the service in the first service server through the registry, so that the service in the first service server can be uniformly managed. And updating the service registry in the registry according to the service operated by the first service server, and sending the updated service registry to the second service server subscribing to the service registry. The second service server can call the corresponding service to the first service server according to the updated service registry, so that the second service server does not need to apply for the right of calling the service to the first service server independently, the second service server does not need to monitor the service operated in the first service server, and the operation of the service in the first service server and the call of the service of the second service server to the first service server can be managed only by managing the registration of the first service server by the registration center. Therefore, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
In one embodiment, the apparatus further comprises: the information verification module is used for verifying the identity information of the external equipment according to the identity information verification request when receiving the identity information verification request sent by the external equipment; the token sending module is used for sending an access token to the external equipment when the identity information of the external equipment passes the verification; the instruction receiving module is used for receiving a service calling instruction generated by the external equipment according to the access token; and the service call notification module is used for notifying the first service server to provide the service specified by the service call instruction to the external equipment.
In one embodiment, the token sending module is further configured to send an authorization request token to the external device according to the identity information authentication request when receiving the identity information authentication request sent by the external device; the information verification module is used for verifying the identity information of the external equipment carried in the authorization request when receiving the authorization request generated by the external equipment according to the authorization request token;
the token sending module is further configured to send an authorization key to the external device when the identity information of the external device is verified; the authorization key is used to instruct the external device to convert the authorization request token into an access token according to the authorization key.
In one embodiment, the apparatus further comprises: the request receiving module is used for receiving a service calling authorization request sent by the second business server; the request checking module is used for checking the service calling authorization request through the authorization center to obtain a checking result; the token sending module is further configured to send an access token to the second service server when the verification result indicates that the verification passes; the request receiving module is further configured to receive a service invocation request sent by the second service server; and the service calling module is used for calling the service of the external equipment specified by the service calling request through an external agent when detecting that the access token is carried in the service calling request.
In one embodiment, the apparatus further comprises: the information receiving module is used for receiving information sent to external equipment; the information screening module is used for screening the information sent to the external equipment according to preset keywords and preset key categories; and the information filtering module is used for filtering the screened information.
In one embodiment, the apparatus further comprises: the information acquisition module is used for acquiring service information generated when the first service server runs the service and service information generated when the second service server calls the service; the name identification module is used for identifying the service name corresponding to the acquired service information; the set positioning module is used for positioning a data set corresponding to the service name in the database; and the information writing module is used for writing the acquired service information into the data set corresponding to the service name.
For specific limitations of the inter-server service management apparatus 600, reference may be made to the above limitations of the inter-server service management method, which is not described herein again. The respective modules in the inter-server service management apparatus 600 may be wholly or partially implemented by software, hardware, and a combination thereof. The modules can be embedded in a hardware form or independent from a processor in the computer device, and can also be stored in a memory in the computer device in a software form, so that the processor can call and execute operations corresponding to the modules.
In one embodiment, a computer device is provided, which may be a server, the internal structure of which may be as shown in fig. 7. The computer device includes a processor, a memory, a network interface, and a database connected by a system bus. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device comprises a nonvolatile storage medium and an internal memory. The non-volatile storage medium stores an operating system, a computer program, and a database. The internal memory provides an environment for the operation of an operating system and computer programs in the non-volatile storage medium. The database of the computer device is used for storing service data. The network interface of the computer device is used for communicating with an external terminal through a network connection. The computer program is executed by a processor to implement an inter-server service management method.
Those skilled in the art will appreciate that the architecture shown in fig. 7 is merely a block diagram of some of the structures associated with the disclosed aspects and is not intended to limit the computing devices to which the disclosed aspects apply, as particular computing devices may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
In one embodiment, there is provided a computer device comprising a memory storing a computer program and a processor implementing the following steps when the processor executes the computer program: sending a service issuing instruction to a registration center; when the registration center registers the corresponding service according to the service issuing instruction, the first service server is informed to run the registered service; updating a service registry in the registry according to the service operated by the first service server; sending the updated service registry to a second service server subscribing to the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry.
The computer equipment sends the service issuing instruction through the registration center, when the registration center registers the corresponding service according to the service issuing instruction, the registration center informs the first service server to run the registered service, and the registration of the service in the first service server is managed through the registration center, so that the service in the first service server can be uniformly managed. And updating the service registry in the registry according to the service operated by the first service server, and sending the updated service registry to the second service server subscribing to the service registry. The second service server can call the corresponding service to the first service server according to the updated service registry, so that the second service server does not need to apply for the right of calling the service to the first service server independently, the second service server does not need to monitor the service operated in the first service server, and the operation of the service in the first service server and the call of the service of the second service server to the first service server can be managed only by managing the registration of the first service server by the registration center. Therefore, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
In one embodiment, the computer program when executed by the processor further performs the steps of: when an identity information verification request sent by external equipment is received, verifying the identity information of the external equipment according to the identity information verification request; when the identity information of the external equipment passes verification, an access token is sent to the external equipment; receiving a service calling instruction generated by the external equipment according to the access token; and informing the first business server to provide the service specified by the service calling instruction to the external equipment.
In one embodiment, the computer program when executed by the processor further performs the steps of: when an identity information verification instruction sent by external equipment is received, an authorization request token is sent to the external equipment according to the identity information verification request; when an authorization request generated by the external equipment according to the authorization request token is received, the identity information of the external equipment carried in the authorization request is verified; the computer program when executed by the processor further realizes the steps of: when the identity information of the external equipment passes the verification, an authorization key is sent to the external equipment; the authorization key is used to instruct the external device to convert the authorization request token into an access token according to the authorization key.
In one embodiment, the computer program when executed by the processor further performs the steps of: receiving a service calling authorization request sent by a second service server; verifying the service calling authorization request through an authorization center to obtain a verification result; when the verification result shows that the verification is passed, sending an access token to the second service server; receiving a service calling request sent by the second service server; and when the service calling request is detected to carry the access token, calling the service of the external equipment specified by the service calling request through an external agent.
In one embodiment, the computer program when executed by the processor further performs the steps of: receiving information transmitted to an external device; screening the information sent to the external equipment according to preset keywords and preset key categories; and filtering the screened information.
In one embodiment, the computer program when executed by the processor further performs the steps of: acquiring service information generated when the first service server operates the service and service information generated when the second service server calls the service; identifying a service name corresponding to the acquired service information; locating a data set corresponding to the service name in a database; and writing the acquired service information into a data set corresponding to the service name.
In one embodiment, a computer-readable storage medium is provided, having a computer program stored thereon, which when executed by a processor, performs the steps of: sending a service issuing instruction to a registration center; when the registration center registers the corresponding service according to the service issuing instruction, the first service server is informed to run the registered service; updating a service registry in the registry according to the service operated by the first service server; sending the updated service registry to a second service server subscribing to the service registry; the updated service registry is used for indicating the second service server to call the corresponding service to the first service server according to the updated service registry.
The computer-readable storage medium sends the service issuing instruction through the registry, and when the registry registers the corresponding service according to the service issuing instruction, the registry notifies the first service server to run the registered service, and the registry manages the registration of the service in the first service server, so that the service in the first service server can be managed uniformly. And updating the service registry in the registry according to the service operated by the first service server, and sending the updated service registry to the second service server subscribing to the service registry. The second service server can call the corresponding service to the first service server according to the updated service registry, so that the second service server does not need to apply for the right of calling the service to the first service server independently, the second service server does not need to monitor the service operated in the first service server, and the operation of the service in the first service server and the call of the service of the second service server to the first service server can be managed only by managing the registration of the first service server by the registration center. Therefore, the second service server can be prevented from independently applying for the authority of calling the service from the first service server, the time spent on applying for the authority of calling the service is reduced, and the efficiency of calling the service on other servers by the server is improved.
In one embodiment, the computer program when executed by the processor further performs the steps of: when an identity information verification request sent by external equipment is received, verifying the identity information of the external equipment according to the identity information verification request; when the identity information of the external equipment passes verification, an access token is sent to the external equipment; receiving a service calling instruction generated by the external equipment according to the access token; and informing the first business server to provide the service specified by the service calling instruction to the external equipment.
In one embodiment, the computer program when executed by the processor further performs the steps of: when an identity information verification instruction sent by external equipment is received, an authorization request token is sent to the external equipment according to the identity information verification request; when an authorization request generated by the external equipment according to the authorization request token is received, the identity information of the external equipment carried in the authorization request is verified; the computer program when executed by the processor further realizes the steps of: when the identity information of the external equipment passes the verification, an authorization key is sent to the external equipment; the authorization key is used to instruct the external device to convert the authorization request token into an access token according to the authorization key.
In one embodiment, the computer program when executed by the processor further performs the steps of: receiving a service calling authorization request sent by a second service server; verifying the service calling authorization request through an authorization center to obtain a verification result; when the verification result shows that the verification is passed, sending an access token to the second service server; receiving a service calling request sent by the second service server; and when the service calling request is detected to carry the access token, calling the service of the external equipment specified by the service calling request through an external agent.
In one embodiment, the computer program when executed by the processor further performs the steps of: receiving information transmitted to an external device; screening the information sent to the external equipment according to preset keywords and preset key categories; and filtering the screened information.
In one embodiment, the computer program when executed by the processor further performs the steps of: acquiring service information generated when the first service server operates the service and service information generated when the second service server calls the service; identifying a service name corresponding to the acquired service information; locating a data set corresponding to the service name in a database; and writing the acquired service information into a data set corresponding to the service name.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by hardware instructions of a computer program, which can be stored in a non-volatile computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. Any reference to memory, storage, database, or other medium used in the embodiments provided herein may include non-volatile and/or volatile memory, among others. Non-volatile memory can include read-only memory (ROM), Programmable ROM (PROM), Electrically Programmable ROM (EPROM), Electrically Erasable Programmable ROM (EEPROM), or flash memory. Volatile memory can include Random Access Memory (RAM) or external cache memory. By way of illustration and not limitation, RAM is available in a variety of forms such as Static RAM (SRAM), Dynamic RAM (DRAM), Synchronous DRAM (SDRAM), Double Data Rate SDRAM (DDRSDRAM), Enhanced SDRAM (ESDRAM), Synchronous Link DRAM (SLDRAM), Rambus Direct RAM (RDRAM), direct bus dynamic RAM (DRDRAM), and memory bus dynamic RAM (RDRAM).
The technical features of the above embodiments can be arbitrarily combined, and for the sake of brevity, all possible combinations of the technical features in the above embodiments are not described, but should be considered as the scope of the present specification as long as there is no contradiction between the combinations of the technical features.
The above-mentioned embodiments only express several embodiments of the present application, and the description thereof is more specific and detailed, but not construed as limiting the scope of the invention. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the concept of the present application, which falls within the scope of protection of the present application. Therefore, the protection scope of the present patent shall be subject to the appended claims.
Claims (9)
1. A method for service management between servers includes:
sending a service issuing instruction to a registration center;
when the registration center registers the corresponding service according to the service issuing instruction, the registration center registers the corresponding service
Informing the first business server to run the registered service;
updating a service registry in the registry according to the service operated by the first service server;
sending an updated service registry to a second service server subscribing to the service registry; the updated service registry is used for indicating the second service server to call corresponding service to the first service server according to the updated service registry;
when an identity information verification request sent by external equipment is received, an authorization request token is sent to the external equipment according to the identity information verification request;
when an authorization request generated by the external equipment according to the authorization request token is received, verifying the identity information of the external equipment carried in the authorization request;
when the identity information of the external equipment passes verification, an authorization key is sent to the external equipment; the authorization key is used for instructing the external device to convert the authorization request token into an access token according to the authorization key.
2. The method of claim 1, further comprising:
receiving a service calling instruction generated by the external equipment according to the access token;
and informing the first business server to provide the service specified by the service calling instruction to the external equipment.
3. The method of claim 1, further comprising:
receiving a service calling authorization request sent by a second service server;
verifying the service calling authorization request through an authorization center to obtain a verification result;
when the verification result shows that the verification is passed, sending an access token to the second service server;
receiving a service calling request sent by the second service server;
when detecting that the service calling request carries the access token, then
And calling the service of the external equipment specified by the service calling request through the external agent.
4. The method of claim 1, further comprising:
receiving information transmitted to an external device;
screening the information sent to the external equipment according to preset keywords and preset key categories;
and filtering the screened information.
5. The method of any of claims 1 to 4, wherein after sending the updated service registry to the second traffic server subscribing to the service registry, the method further comprises:
acquiring service information generated when the first service server operates the service and service information generated when the second service server calls the service;
identifying a service name corresponding to the acquired service information;
locating a data set corresponding to the service name in a database;
and writing the acquired service information into a data set corresponding to the service name.
6. An inter-server service management apparatus, comprising:
the instruction sending module is used for sending a service issuing instruction to the registration center;
a service operation notification module, configured to notify the first service server to operate the registered service when the registry registers the corresponding service according to the service issuing instruction;
a registry updating module, configured to update a service registry in the registry according to the service operated by the first service server;
the registry sending module is used for sending the updated service registry to a second service server subscribed with the service registry; the updated service registry is used for indicating the second service server to call corresponding service to the first service server according to the updated service registry;
the information verification module is used for sending an authorization request token to the external equipment according to an identity information verification request when receiving the identity information verification request sent by the external equipment; when an authorization request generated by the external equipment according to the authorization request token is received, verifying the identity information of the external equipment carried in the authorization request;
the token sending module is used for sending an authorization key to the external equipment when the identity information of the external equipment passes the verification; the authorization key is used for instructing the external device to convert the authorization request token into an access token according to the authorization key.
7. The apparatus of claim 6, further comprising:
the instruction receiving module is used for receiving a service calling instruction generated by the external equipment according to the access token;
and the service call notification module is used for notifying the first service server to provide the service specified by the service call instruction to the external equipment.
8. A computer device comprising a memory and a processor, the memory storing a computer program, wherein the processor implements the steps of the method of any one of claims 1 to 5 when executing the computer program.
9. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, carries out the steps of the method of any one of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810205952.5A CN108366132B (en) | 2018-03-13 | 2018-03-13 | Method and device for managing service between servers, computer equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810205952.5A CN108366132B (en) | 2018-03-13 | 2018-03-13 | Method and device for managing service between servers, computer equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108366132A CN108366132A (en) | 2018-08-03 |
| CN108366132B true CN108366132B (en) | 2021-01-08 |
Family
ID=63004107
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810205952.5A Active CN108366132B (en) | 2018-03-13 | 2018-03-13 | Method and device for managing service between servers, computer equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108366132B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP3629167A1 (en) * | 2018-09-27 | 2020-04-01 | Ricoh Company, Ltd. | Information processing system, information processing apparatus, method of processing information, and carrier means |
| CN109474615B (en) * | 2018-12-12 | 2021-12-07 | 成都路行通信息技术有限公司 | Service encryption system and service communication method based on encryption process |
| CN110149365B (en) * | 2019-04-16 | 2022-06-24 | 创新先进技术有限公司 | Service adaptation method, device, system and computer readable medium |
| CN110602169B (en) * | 2019-08-13 | 2022-11-29 | 未鲲(上海)科技服务有限公司 | Service calling method and device, computer equipment and storage medium |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102710640B (en) * | 2012-05-31 | 2015-03-18 | 中国联合网络通信集团有限公司 | Authorization requesting method, device and system |
| US9531718B2 (en) * | 2013-09-19 | 2016-12-27 | Google Inc. | Confirming the identity of integrator applications |
| EP2925037A1 (en) * | 2014-03-28 | 2015-09-30 | Nxp B.V. | NFC-based authorization of access to data from a third party device |
| CN103916395B (en) * | 2014-04-09 | 2017-04-19 | 北京京东尚科信息技术有限公司 | Method, device and system for service calling |
| CN105763514B (en) * | 2014-12-17 | 2019-11-29 | 华为技术有限公司 | A kind of method, apparatus and system of processing authorization |
| CN106209749B (en) * | 2015-05-08 | 2020-09-25 | 阿里巴巴集团控股有限公司 | Single sign-on method and device, and related equipment and application processing method and device |
| CN105933444B (en) * | 2016-06-27 | 2017-06-09 | 焦点科技股份有限公司 | Based on the service discovery method that registration center and caching mechanism are cooperateed with |
| CN106230838A (en) * | 2016-08-04 | 2016-12-14 | 中国银联股份有限公司 | A kind of third-party application accesses the method and apparatus of resource |
| CN107124433B (en) * | 2017-07-04 | 2019-08-06 | 中国联合网络通信集团有限公司 | Internet of things system, internet of things equipment access method, access authorization methods and equipment |
-
2018
- 2018-03-13 CN CN201810205952.5A patent/CN108366132B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN108366132A (en) | 2018-08-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108366132B (en) | Method and device for managing service between servers, computer equipment and storage medium | |
| CN109446068B (en) | Interface test method, device, computer equipment and storage medium | |
| CN110008118B (en) | Page data testing method and device, computer equipment and storage medium | |
| CN110912712B (en) | Service operation risk authentication method and system based on block chain | |
| CN110598454B (en) | Data processing method and device in block chain, storage medium and computer equipment | |
| CN113542288B (en) | Service authorization method, device, equipment and system | |
| CN111767578B (en) | Data inspection method, device and equipment | |
| CN111008069B (en) | Service processing method, device, computer equipment and storage medium | |
| CN110633160A (en) | Interface calling method and device, computer equipment and storage medium | |
| CN109039751B (en) | Method, device, computer equipment and storage medium for configuring route | |
| CN111343168B (en) | Identity authentication method and device, computer equipment and readable storage medium | |
| CN108446172B (en) | Data calling method and device, computer equipment and storage medium | |
| CN110633963A (en) | Electronic bill processing method, electronic bill processing device, computer-readable storage medium and equipment | |
| CN109144487B (en) | Method, device, computer equipment and storage medium for developing business of parts | |
| CN110647540A (en) | Business data query method and device, computer equipment and storage medium | |
| CN113315828B (en) | Traffic recording method and device, traffic recording equipment and storage medium | |
| CN110032846B (en) | Identity data anti-misuse method and device and electronic equipment | |
| CN109543457B (en) | Method and device for controlling calling between intelligent contracts | |
| CN112766974A (en) | Risk account identification method and device, computer equipment and storage medium | |
| CN111131234A (en) | Intelligent contract data processing method and device in supply chain and computer equipment | |
| CN111880919A (en) | Data scheduling method, system and computer equipment | |
| CN110599267A (en) | Electronic invoice billing method and device, computer readable storage medium and computer equipment | |
| CN113239398A (en) | Service processing method and device | |
| CN110011796B (en) | Certificate updating method and device, computer equipment and storage medium | |
| CN111260475A (en) | Data processing method, block chain node point equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |