CN111814197A - Data sharing method and device, server and storage medium - Google Patents
Data sharing method and device, server and storage medium Download PDFInfo
- Publication number
- CN111814197A CN111814197A CN202010944000.2A CN202010944000A CN111814197A CN 111814197 A CN111814197 A CN 111814197A CN 202010944000 A CN202010944000 A CN 202010944000A CN 111814197 A CN111814197 A CN 111814197A
- Authority
- CN
- China
- Prior art keywords
- data
- target
- authority
- shared data
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/25—Integrating or interfacing systems involving database management systems
- G06F16/254—Extract, transform and load [ETL] procedures, e.g. ETL data flows in data warehouses
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Databases & Information Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Bioethics (AREA)
- Software Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Data Mining & Analysis (AREA)
- Storage Device Security (AREA)
Abstract
The embodiment of the application discloses a data sharing method, a data sharing device, a server and a storage medium, which are applied to the technical field of data processing, wherein the method comprises the following steps: and detecting an access request aiming at the target shared data, determining a target access authority of a requesting user aiming at the target shared data, and writing the target shared data into a storage area corresponding to the database link information if the access request is used for writing the target shared data and the target access authority is a data read-write authority. Or if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, the target shared data is obtained and returned based on the database link information. By adopting the mode, the data sharing process can be uniformly managed through the data sharing server, the data sharing process is effectively simplified, the exchange link is shortened, and the data sharing delay is reduced.
Description
Technical Field
The present application relates to the field of data processing technologies, and in particular, to a data sharing method, an apparatus, a server, and a storage medium, and in particular, to a data sharing method, a data sharing apparatus, a data sharing server, and a computer-readable storage medium.
Background
The information isolated island refers to a plurality of information systems which are different in type, independent from each other, have information exchange requirements, but are closed to each other and cannot be communicated normally. In the process of information-based construction, due to the comprehensive action of various factors, various industry units construct a large number of information systems in various local branch organizations, and with the development of technology and management, more and more application information needs information sharing and information intercommunication. Therefore, "information isolated island" gradually becomes a difficult obstacle to be crossed in the information development process of each industry, and how to solve the information isolated island problem becomes a new difficult problem.
The types of the information islands are many, and not only the information islands exist in all links (such as production, sales, finance and the like) in enterprises, but also the information islands exist among the enterprises (supply-demand relationship and business relationship); information islands also exist among government agencies, in a certain area, there may be as many information systems as there are committees, offices and offices, and even there are multiple information systems in the same committee, office and office, each information system is managed by its own information center or responsible department, and it has its own database, its own operating system, its own developed application software and user interface, and it is completely an independent system.
The lack of information exchange and information sharing has great obstruction to the cooperation of all rows, all industries and all government departments in work and the data requirement in scientific research, and even information leakage can bring huge potential safety hazard and economic loss to individuals, enterprises and public institutions.
Therefore, how to implement data sharing between different organizations or individuals becomes a problem to be solved urgently.
Disclosure of Invention
The embodiment of the application provides a data sharing method, a data sharing device, a server and a storage medium, and is beneficial to simplifying a data sharing process, shortening an exchange link and reducing data sharing delay.
In one aspect, an embodiment of the present application provides a data sharing method, which is executed by a data sharing server, where a database of the data sharing server is pre-created with multiple independent storage areas, each storage area corresponds to one owner user, each storage area is used to store shared data of the corresponding owner user, and a data read-write permission for the corresponding storage area is pre-configured for each owner user, where the method includes:
detecting an access request aiming at target shared data, wherein the access request comprises user information of a requesting user and database link information of the target shared data;
determining target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority;
if the access request is used for writing the target shared data and the target access authority is data read-write authority, writing the target shared data into a storage area corresponding to the database link information;
and if the access request is used for reading the target shared data and the target access authority is a data read-write authority or a data read authority, acquiring and returning the target shared data based on the database link information.
In an embodiment, the specific implementation manner of determining the target access right of the requesting user for the target shared data based on the user information is:
determining a target owner user in a storage area corresponding to the database link information, and acquiring pre-stored owner user information of the target owner user;
and if the user information is detected to be matched with the owner user information, determining that the target access authority of the requesting user for the target shared data is a data read-write authority.
In an embodiment, if it is detected that the user information is not matched with the owner user information, it may further be detected whether the user information and a data reading identifier are stored in a database in a pre-associated manner, where the data reading identifier is used to indicate that a corresponding user has a data reading right for the target shared data;
if so, determining that the target access authority of the requesting user for the target shared data is a data reading authority;
if not, determining that the target access authority of the requesting user for the target shared data is no authority.
In one embodiment, a subscription request may also be sent to the target owner user through the data sharing platform; and receiving response information of the target owner user aiming at the subscription request, which is sent by the data sharing platform, and if the response information is used for indicating that the subscription request passes, updating the target access permission from no permission to data reading permission.
In an embodiment, the response information carries response user information, and before the target access right is updated from no right to a data reading right if the response information is used to indicate that the subscription request passes, response user information may be further obtained from the response information, whether the response user information matches with the owner user information is detected, and if the response user information is matched with the owner user information, the step of updating the target access right from no right to a data reading right if the response information is used to indicate that the subscription request passes is triggered.
In an embodiment, after the response information is used to indicate that the database link information passes the subscription request, the target access right is updated from no right to a data reading right, a data reading identifier matched with the target shared data may be further generated, where the data reading identifier is used to indicate that a corresponding user has a data reading right on the target shared data corresponding to the database link information; and storing the user information and the data reading identification in a database in an associated manner.
In an embodiment, before detecting whether the user information and the data reading identifier are stored in the database in a pre-associated manner, a data reading permission update request for target shared data sent by the data sharing platform may also be received, where the data reading permission update request includes user information of a target user and database link information of the target shared data;
generating a data reading identifier matched with the target shared data, wherein the data reading identifier is used for indicating that a corresponding user has a data reading permission of the target shared data corresponding to the database link information;
and storing the user information of the target user and the data reading identification in a database in an associated manner.
On the other hand, an embodiment of the present application provides a data sharing apparatus, including:
the system comprises a communication module, a database management module and a database management module, wherein the communication module is used for detecting an access request aiming at target shared data, and the access request comprises user information of a requesting user and database link information of the target shared data;
the processing module is used for determining the target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority;
the processing module is further configured to write the target shared data into a storage area corresponding to the database link information if the access request is used for writing the target shared data and the target access permission is a data read-write permission;
the processing module is further configured to, if the access request is used for reading the target shared data and the target access permission is a data read-write permission or a data read permission, obtain the target shared data based on the database link information.
The communication module is further configured to return the target shared data.
In another aspect, an embodiment of the present application provides a data sharing server, including a processor, a storage device, and a communication interface, where the processor, the storage device, and the communication interface are connected to each other, where the storage device is used to store a computer program that supports a terminal to execute the foregoing method, the computer program includes program instructions, and the processor is configured to call the program instructions, and perform the following steps:
detecting an access request aiming at target shared data, wherein the access request comprises user information of a requesting user and database link information of the target shared data;
determining target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority;
if the access request is used for writing the target shared data and the target access authority is data read-write authority, writing the target shared data into a storage area corresponding to the database link information;
and if the access request is used for reading the target shared data and the target access authority is a data read-write authority or a data read authority, acquiring and returning the target shared data based on the database link information.
In yet another aspect, the present application provides a computer-readable storage medium storing a computer program, the computer program comprising program instructions, which when executed by a processor, cause the processor to execute the above data sharing method.
According to the embodiment of the application, the access request aiming at the target shared data can be detected, the target access authority of the requesting user aiming at the target shared data is determined, and if the access request is used for writing the target shared data and the target access authority is the data read-write authority, the target shared data is written into the storage area corresponding to the database link information. Or if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, the target shared data is obtained and returned based on the database link information. By adopting the mode, the data sharing process can be uniformly managed through the data sharing server, the data sharing process is effectively simplified, the exchange link is shortened, and the data sharing delay is reduced.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present application, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
FIG. 1a is a schematic structural diagram of a conventional data sharing system according to an embodiment of the present application;
FIG. 1b is a block diagram of another prior art data sharing system according to an embodiment of the present application;
FIG. 2 is a schematic structural diagram of a data sharing system according to an embodiment of the present application;
FIG. 3 is a flow chart of a data sharing method according to an embodiment of the present application;
FIG. 4 is a schematic flow chart diagram illustrating another data sharing method according to an embodiment of the present application;
FIG. 5 is a schematic structural diagram of a data sharing apparatus according to an embodiment of the present application;
fig. 6 is a schematic structural diagram of a data sharing server according to an embodiment of the present application.
Detailed Description
At present, in order to realize data sharing among different organizations or individuals, data sharing systems based on a distributed switching system and a central switching system are mainly used. For example, referring to fig. 1a and fig. 1b, a data sharing system of a distributed switching architecture and a data sharing system of a central switching architecture are shown respectively. As can be seen from fig. 1a and 1b, the existing data sharing switching platform has the following disadvantages:
a. the method has the advantages of multiple intermediate preposed library links, long data link, poor data synchronization efficiency and timeliness and poor data consistency. As can be seen from fig. 1a and 1b, when one-time switching from the provider service library to the receiver service library is completed, the number of ring segments required to be experienced by the central switching system is 4, and the number of ring segments required to be experienced by the distributed switching system is 3.
b. The data of the data provider and the data of the data receiver are stored respectively, a plurality of database instances are needed, a plurality of data are stored, resource consumption is high, and operation and maintenance management tasks are heavy.
In order to solve the above problem, the present solution provides a data sharing system based on a unified pre-library, and as shown in fig. 2, the data sharing system includes a data sharing server that is equivalent to the unified pre-library, a plurality of independent storage areas are created in advance in a database of the data sharing server, each storage area corresponds to one owner user, each storage area is used to store shared data of a corresponding owner user, data read-write permission for the corresponding storage area is configured in advance for each owner user, and different owner users correspond to different individual users or organizations, for example, the data provider in fig. 2.
The database is a database supporting multiple Schema modes, such as an oracle, PostgreSQL, and the like, and the data sharing server may be an independent physical server, or a server cluster or a distributed system formed by multiple physical servers, such as a database physical machine cluster, and is configured to store shared data of all access parties in a unified manner.
As a feasible manner, n (e.g., 100) schemas may be created and allocated to n owner access parties (i.e., owner users), and data reading permission is granted, an owner user may read and write data on an own Schema, and an owner user may write data (hereinafter, referred to as shared data) that the owner user wants to share into the own Schema. When other users want to subscribe the target shared data, a subscription application can be sent out, the owner user of the target shared data can dynamically grant the number reading authority aiming at the target shared data for the other users through the subscription application, and after the data reading authority is granted, the other users can read the target shared data.
As can be seen from fig. 2, the data sharing system provided in the embodiment of the present application stores all shared data in a centralized manner, and based on the authority control system of the database itself, multi-party data collection and sharing exchange are performed in a single database. The data sharing system completes one-time exchange from the provider service library to the receiver service library, and can complete the exchange only through the data sharing server, so that the data circulation link is reduced, and correspondingly, the data copying and storing number can be reduced, and the data sharing efficiency is improved. By adopting the mode, the data sharing process is effectively simplified, the exchange link is shortened, the data sharing delay is reduced, the number of stored copies is reduced, the storage space is saved, the resource requirement of the database is reduced, the operation and maintenance of the database are simplified, and the resource cost is reduced.
The present application provides a data sharing method, which is executed by a data sharing server in the data sharing system, and please refer to fig. 3, where the method of the present application includes the following steps.
S301: an access request for the target shared data is detected, the access request including user information of the requesting user and database link information of the target shared data. The requesting user may refer to an organizational user (e.g., a government enterprise, various departments within a company, etc.), an individual user, and so forth.
The access request may be from a service system corresponding to the requesting user or a data sharing platform corresponding to the data sharing server, and the data sharing platform may be understood as a client corresponding to the data sharing server.
As a feasible manner, each owner user may upload its own shared data to the data sharing server in advance, and the data sharing server may write each shared data into its own storage area of the corresponding owner user. Further, after each shared data is written into the storage area of the corresponding owner user, a resource catalog list may be created based on the shared data written into the data sharing server, and the resource catalog list is presented through the data sharing platform, where the resource catalog list includes at least one resource catalog, each resource catalog corresponds to one or more shared data stored in advance by the data sharing server, and each resource catalog includes identification information (e.g., a data name, database link information, etc.) of the corresponding shared data, creation time, and the like.
Further, after any non-owner user (i.e., a data receiver) views the resource catalog list through the data sharing platform, if it wants to subscribe to shared data corresponding to a certain resource catalog (i.e., shared data provided by a certain data provider), a subscription operation may be input for a target resource catalog in at least one resource catalog, and after the data sharing platform detects the subscription operation, one or more shared data corresponding to the target resource catalog may be determined as target shared data, identification information of the target shared data and user information of a requesting user are acquired, and an access request for the target shared data is sent to the data sharing server, where the access request includes user information of the requesting user and database link information of the target shared data, and is used for reading the target shared data.
Or, as another feasible manner, after any non-owner user views the resource catalog list through the data sharing platform, if the non-owner user wants to subscribe the target shared data corresponding to the target resource catalog, the non-owner user may obtain the database link information of the target shared data from the resource catalog list, and send an access request for the target service data to the database server through a data extraction tool or a Java database connection, where the access request includes user information of a requesting user and database link information of the target shared data, and the access request is used for reading the target shared data.
The data Extraction tool may be an ETL (extract-Transformation-Loading) tool, and the Java database connection may be JDBC (Java database connection). JDBC is an application program interface in Java language used to specify how a client program accesses a database, that is, access to the database can be performed through classes and interfaces provided by JDBC, and specifically, target shared data can be accessed by inputting database link information of the target shared data. For example, the requesting user may input the database link information of the target shared data in an ETL tool or JDBC mode on its own service system or any terminal device, so as to trigger access to the target shared data, and send an access request for the target shared data to the data sharing server through the service system or any terminal device. The access request includes user information of the requesting user and database link information of the target shared data, and the access request is used for reading the target shared data.
For a target owner user of the target shared data, an access request may be sent to the server in a manner similar to the non-owner user described above (e.g., via a data sharing platform, ETL utility, JDBC, etc.), which may be used to read and write the target shared data. And will not be described in detail herein.
S302: and determining the target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority.
As can be seen from the above description, the owner user has data read-write authority for the corresponding storage area. The data sharing server can determine a target owner user of a storage area corresponding to the database link information, and if the requesting user is determined to be the target owner user based on the user information, the target access authority is determined to be the data read-write authority.
Or, if it is determined that the requesting user is not the target owner user based on the user information, it may be detected whether the target owner user has previously read the target service data by the requesting user, and if so, it may be determined that the target access right is the data reading right.
Or, if it is detected that the target owner user does not read the target service data through the requesting user in advance, it may be determined that the target access right is not right.
S303: and if the access request is used for writing the target shared data and the target access authority is the data read-write authority, writing the target shared data into a storage area corresponding to the database link information.
In the specific implementation, the access request may be analyzed, and if the access request obtained through the analysis is used for writing in the target shared data and the determined target access permission is the data read-write permission, the characterization requesting user is a target owner user of the storage area corresponding to the database link information, and the target shared data may be written in the storage area corresponding to the database link information.
S304: and if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, acquiring and returning the target shared data based on the database link information.
In specific implementation, the access request may be analyzed, and if the access request obtained through the analysis is used for reading the target shared data and the determined target access permission is a data read-write permission or a data read permission, the representation is performed
The requesting user is a target owner user of the storage area corresponding to the database link information, or the target owner is used for reading the target service data through the requesting user in advance. Further, the target shared data can be obtained from the storage area corresponding to the database link information, and the target shared data is returned.
According to the embodiment of the application, the access request aiming at the target shared data can be detected, the target access authority of the requesting user aiming at the target shared data is determined, and if the access request is used for writing the target shared data and the target access authority is the data read-write authority, the target shared data is written into the storage area corresponding to the database link information. Or if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, the target shared data is obtained and returned based on the database link information. By adopting the mode, the data sharing process can be uniformly managed through the data sharing server, the data sharing process is effectively simplified, the exchange link is shortened, and the data sharing delay is reduced.
Referring to fig. 4, another data sharing method according to an embodiment of the present application is executed by a data sharing server in the data sharing system, and referring to fig. 3, the method according to the embodiment of the present application includes the following steps.
S401: an access request for the target shared data is detected, the access request including user information of the requesting user and database link information of the target shared data. For a specific implementation of step S401, reference may be made to the related description of step S301 in the foregoing embodiment, and details are not described here again.
S402: and determining the target owner user in the storage area corresponding to the database link information, and acquiring the owner user information of the target owner user which is stored in advance.
S403: and if the user information is detected to be matched with the owner user information, determining that the target access authority of the requesting user for the target shared data is the data read-write authority.
The user information may refer to identity information (e.g., organization code, certificate number, etc.) of the requesting user, and the owner user information may refer to identity information (e.g., organization code, certificate number, etc.) of the target owner user.
In a specific implementation, the user information may be compared with the owner user information, and if the user information obtained by the comparison is the same as the owner user information, it is determined that the user information is matched with the owner user information. Otherwise, there is no match.
S404: and if the user information is not matched with the owner user information, detecting whether the user information and a data reading identifier are stored in the database in a pre-associated manner, wherein the data reading identifier is used for indicating that the corresponding user has a data reading authority for the target shared data.
S405: and if so, determining that the target access authority of the requesting user for the target shared data is the data reading authority.
S406: if not, determining that the target access authority of the requesting user for the target shared data is no authority.
As a feasible way, before the step of detecting whether the user information and the data reading identifier are stored in the database in a pre-associated manner is performed, it can be known from the above description that the data sharing platform may display a resource catalog list including at least one resource catalog, where each resource catalog corresponds to one or more service data stored in the database server in advance.
After any non-owner user views a resource catalog list through a data sharing platform, if the non-owner user wants to subscribe shared data corresponding to a certain resource catalog (namely shared data provided by a certain data provider), a subscription operation can be input for a target resource catalog in at least one resource catalog, after the data sharing platform detects the subscription operation, one or more service data corresponding to the target resource catalog can be determined as target shared data, a subscription request is sent to a target owner user corresponding to the target shared data, and if the data sharing platform detects that the target owner user agrees with the subscription request, a data reading permission updating request for the target shared data can be sent to a data sharing server, wherein the data reading permission updating request comprises user information of the target user and database link information.
Further, the data sharing server may receive a data reading permission update request for the target shared data sent by the data sharing platform, and generate a data reading identifier matched with the target shared data, where the data reading identifier is used to indicate that the corresponding user has a data reading permission for the target shared data corresponding to the database link information (i.e., to indicate that the target owner user agrees to the requesting user to read the target shared data). Further, the user information and the data reading identification of the target user can be stored in the database in an associated manner.
As a feasible way, after determining that the target access right of the requesting user for the target shared data is not right, the requesting user can also send a subscription request to the target owner user through the data sharing platform, and receive the subscription request
And if the response information is used for indicating that the subscription request passes, updating the target access authority from no authority to the data reading authority.
The response information carries response user information, if the response information is used for indicating that the target shared data passes the subscription request, before the target shared data is returned to the requesting user through the data sharing platform, the response user information can be obtained from the response information, whether the response user information is matched with the owner user information or not is detected, and if the response user information is matched with the owner user information, a step of returning the target shared data to the requesting user through the data sharing platform is triggered and executed if the response information is used for indicating that the subscription request passes the subscription request.
Further, after the target access authority is updated from no authority to the data reading authority, a data reading identifier matched with the target shared data can be generated, and the user information and the data reading identifier are stored in the database in an associated mode, wherein the data reading identifier is used for indicating that a corresponding user has the data reading authority for the target shared data corresponding to the database link information. Subsequently, when the requesting user requests the target shared data again, it may be determined that the requesting user has a data read authority for the target shared data based on the read authority identification.
S407: and if the access request is used for writing the target shared data and the target access authority is the data read-write authority, writing the target shared data into a storage area corresponding to the database link information.
S408: and if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, acquiring and returning the target shared data based on the database link information.
The specific implementation of steps S407 to step 408 can refer to the related description of steps S303 to step 304 in the above embodiments, and is not described herein again.
In the embodiment of the application, an access request aiming at target shared data can be detected, a target owner user in a storage area corresponding to database link information is determined, owner user information of the target owner user stored in advance is obtained, and if the fact that the user information is matched with the owner user information is detected, the target access permission of a requesting user aiming at the target shared data is determined to be data read-write permission. If the fact that the user information is not matched with the owner user information is detected, whether the user information and the data reading identification are stored in the database in a pre-association mode is detected, if yes, the target access authority of the requesting user for the target shared data is determined to be the data reading authority, and if not, the target access authority of the requesting user for the target shared data is determined to be no authority. Further, if the access request is used for writing the target shared data and the target access authority is the data read-write authority, the target shared data is written into the storage area corresponding to the database link information. Or if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, the target shared data is obtained and returned based on the database link information. By adopting the mode, the data sharing process can be uniformly managed through the data sharing server, the data sharing process is effectively simplified, the exchange link is shortened, and the data sharing delay is reduced.
The embodiment of the present application further provides a computer storage medium, in which program instructions are stored, and when the program instructions are executed, the computer storage medium is used for implementing the corresponding method described in the above embodiment.
Please refer to fig. 5, which is a schematic structural diagram of a data sharing device according to an embodiment of the present application.
In one implementation of the apparatus of the embodiment of the present application, the apparatus includes the following structure.
A communication module 50, configured to detect an access request for target shared data, where the access request includes user information of a requesting user and database link information of the target shared data;
the processing module 51 is configured to determine, based on the user information, a target access right of the requesting user for the target shared data, where the target access right includes a data reading right, a data reading and writing right, or no right;
the processing module 51 is further configured to, if the access request is used to write the target shared data, and the target access permission is a data read-write permission, write the target shared data into a storage area corresponding to the database link information;
the processing module 51 is further configured to, if the access request is used to read the target shared data, and the target access permission is a data read-write permission or a data read permission, obtain the target shared data based on the database link information.
The communication module 50 is further configured to return the target shared data.
In an embodiment, the processing module 51 is specifically configured to:
determining a target owner user in a storage area corresponding to the database link information, and acquiring pre-stored owner user information of the target owner user;
and if the user information is detected to be matched with the owner user information, determining that the target access authority of the requesting user for the target shared data is a data read-write authority.
In one embodiment, the processing module 51 is further configured to:
if the user information is not matched with the owner user information, detecting whether the user information and a data reading identifier are stored in a database in a pre-associated mode, wherein the data reading identifier is used for indicating that a corresponding user has a data reading authority for the target shared data;
if so, determining that the target access authority of the requesting user for the target shared data is a data reading authority;
if not, determining that the target access authority of the requesting user for the target shared data is no authority.
In an embodiment, the processing module 51 is further configured to send a subscription request to the target owner user through the data sharing platform, receive response information of the target owner user to the subscription request sent by the data sharing platform through the communication module 50, and update the target access right from no right to a data reading right if the response information is used to indicate that the subscription request passes.
In an embodiment, the response information carries response user information, and the processing module 51 is further configured to obtain the response user information from the response information, detect whether the response user information matches the owner user information, and if the response user information matches the owner user information, trigger execution of the step of updating the target access right from no right to a data reading right if the response information is used to indicate that the subscription request is passed.
In one embodiment, the processing module 51 is further configured to generate a data reading identifier matching the target shared data, where the data reading identifier is used to indicate that a corresponding user has a data reading right on the target shared data corresponding to the database link information; and storing the user information and the data reading identification in a database in an associated manner.
In one embodiment, the processing module 51 is further configured to receive, through the communication module 50, a data reading permission update request for the target shared data sent by the data sharing platform, where the data reading permission update request includes user information of a target user and database link information of the target shared data; generating a data reading identifier matched with the target shared data, wherein the data reading identifier is used for indicating that a corresponding user has a data reading permission of the target shared data corresponding to the database link information; and storing the user information of the target user and the data reading identification in a database in an associated manner.
In the embodiment of the present application, reference may be made to the description of relevant contents in the embodiments corresponding to the foregoing drawings for specific implementations of the foregoing modules.
In the embodiment of the application, the data sharing device can detect an access request for target shared data, determine a target access authority of a requesting user for the target shared data, and write the target shared data into a storage area corresponding to the database link information if the access request is used for writing the target shared data and the target access authority is a data read-write authority. Or if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, the target shared data is obtained and returned based on the database link information. By adopting the mode, the data sharing process can be uniformly managed through the data sharing server, the data sharing process is effectively simplified, the exchange link is shortened, and the data sharing delay is reduced.
Referring to fig. 6 again, it is a schematic structural diagram of a data sharing server according to an embodiment of the present application, where the data sharing server according to the embodiment of the present application includes a power supply module and the like, and includes a processor 601, a storage device 602, and a communication interface 603. The processor 601, the storage device 602 and the communication interface 603 may interact with each other, and the processor 601 implements a corresponding data sharing function. A plurality of independent storage areas are pre-established in a database of the data sharing server, each storage area corresponds to one owner user, each storage area is used for storing shared data of the corresponding owner user, and data read-write permission of the corresponding storage area is pre-configured for each owner user.
The storage device 602 may include a volatile memory (volatile memory), such as a random-access memory (RAM); the storage device 602 may also include a non-volatile memory (non-volatile memory), such as a flash memory (flash memory), a solid-state drive (SSD), etc.; the storage means 602 may also comprise a combination of memories of the kind described above.
The processor 601 may be a Central Processing Unit (CPU) 601. In one embodiment, the processor 601 may also be a Graphics Processing Unit (GPU) 601. The processor 601 may also be a combination of a CPU and a GPU. In the server, a plurality of CPUs and GPUs can be included as required to perform corresponding data sharing. In one embodiment, the storage device 602 is used to store program instructions. The processor 601 may invoke the program instructions to implement the various methods as described above in the embodiments of the present application.
In a first possible implementation, the processor 601 of the server invokes program instructions stored in the storage device 602 for detecting an access request for target shared data, the access request including user information of a requesting user and database link information of the target shared data;
determining target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority;
if the access request is used for writing the target shared data and the target access authority is data read-write authority, writing the target shared data into a storage area corresponding to the database link information;
and if the access request is used for reading the target shared data and the target access authority is a data read-write authority or a data read authority, acquiring and returning the target shared data based on the database link information.
In one embodiment, the processor 601 is specifically configured to: determining a target owner user in a storage area corresponding to the database link information, and acquiring pre-stored owner user information of the target owner user; and if the user information is detected to be matched with the owner user information, determining that the target access authority of the requesting user for the target shared data is a data read-write authority.
In an embodiment, the processor 601 is further configured to detect whether the user information and a data reading identifier are stored in a database in a pre-associated manner, if it is detected that the user information does not match the owner user information, where the data reading identifier is used to indicate that a corresponding user has a data reading right for the target shared data; if so, determining that the target access authority of the requesting user for the target shared data is a data reading authority; if not, determining that the target access authority of the requesting user for the target shared data is no authority.
In an embodiment, the processor 601 is further configured to send a subscription request to the target owner user through the data sharing platform, receive response information of the target owner user to the subscription request sent by the data sharing platform through the communication interface 603, and update the target access right from no right to a data reading right if the response information is used to indicate that the subscription request passes.
In an embodiment, the response information carries response user information, and the processor 601 is further configured to obtain the response user information from the response information, detect whether the response user information matches the owner user information, and if the response user information matches the owner user information, trigger execution of the step of updating the target access right from no right to a data reading right if the response information is used to indicate that the subscription request is passed.
In one embodiment, the processor 601 is further configured to generate a data reading identifier matching the target shared data, where the data reading identifier is used to indicate that a corresponding user has a data reading right on the target shared data corresponding to the database link information; and storing the user information and the data reading identification in a database in an associated manner.
In one embodiment, the processor 601 is further configured to receive a data reading permission update request for target shared data sent by the data sharing platform through the communication interface 603, where the data reading permission update request includes user information of a target user and database link information of the target shared data; generating a data reading identifier matched with the target shared data, wherein the data reading identifier is used for indicating that a corresponding user has a data reading permission of the target shared data corresponding to the database link information; and storing the user information of the target user and the data reading identification in a database in an associated manner.
For the specific implementation of the processor 601, the storage device 602, and the communication interface 603, reference may be made to the description of relevant contents in the embodiments corresponding to the foregoing figures, and no further description is provided herein.
In the embodiment of the application, the data sharing server can detect an access request for target shared data, determine a target access authority of a requesting user for the target shared data, and write the target shared data into a storage area corresponding to the database link information if the access request is used for writing the target shared data and the target access authority is a data read-write authority. Or if the access request is used for reading the target shared data and the target access authority is the data read-write authority or the data read authority, the target shared data is obtained and returned based on the database link information. By adopting the mode, the data sharing process can be uniformly managed through the data sharing server, the data sharing process is effectively simplified, the exchange link is shortened, and the data sharing delay is reduced.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), or the like.
While the invention has been described with reference to a number of embodiments, it will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.
Claims (10)
1. A data sharing method is characterized in that the method is executed by a data sharing server, a plurality of independent storage areas are pre-created in a database of the data sharing server, each storage area corresponds to an owner user, each storage area is used for storing shared data of the corresponding owner user, and data read-write permission of the corresponding storage area is pre-configured for each owner user, and the method comprises the following steps:
detecting an access request aiming at target shared data, wherein the access request comprises user information of a requesting user and database link information of the target shared data;
determining target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority;
if the access request is used for writing the target shared data and the target access authority is data read-write authority, writing the target shared data into a storage area corresponding to the database link information;
and if the access request is used for reading the target shared data and the target access authority is a data read-write authority or a data read authority, acquiring and returning the target shared data based on the database link information.
2. The method of claim 1, wherein the determining the target access rights of the requesting user for the target shared data based on the user information comprises:
determining a target owner user in a storage area corresponding to the database link information, and acquiring pre-stored owner user information of the target owner user;
and if the user information is detected to be matched with the owner user information, determining that the target access authority of the requesting user for the target shared data is a data read-write authority.
3. The method of claim 2, further comprising:
if the user information is not matched with the owner user information, detecting whether the user information and a data reading identifier are stored in a database in a pre-associated mode, wherein the data reading identifier is used for indicating that a corresponding user has a data reading authority for the target shared data;
if so, determining that the target access authority of the requesting user for the target shared data is a data reading authority;
if not, determining that the target access authority of the requesting user for the target shared data is no authority.
4. The method of claim 3, wherein after determining that the target access rights of the requesting user for the target shared data are not rights, the method further comprises:
sending a subscription request to the target owner user through the data sharing platform;
and receiving response information of the target owner user aiming at the subscription request, which is sent by the data sharing platform, and if the response information is used for indicating that the subscription request passes, updating the target access permission from no permission to data reading permission.
5. The method of claim 4, wherein the response information carries response user information, and before the response information indicates that the subscription request is passed, the method further comprises:
and acquiring response user information from response information, detecting whether the response user information is matched with the owner user information, and if so, triggering and executing the step of updating the target access permission from no permission to data reading permission if the response information is used for indicating that the subscription request passes.
6. The method of claim 4, wherein after the updating the target access right from no right to data read right if the response information indicates passing the subscription request, the method further comprises:
generating a data reading identifier matched with the target shared data, wherein the data reading identifier is used for indicating that a corresponding user has a data reading permission of the target shared data corresponding to the database link information;
and storing the user information and the data reading identification in a database in an associated manner.
7. The method according to claim 3, wherein before detecting whether the user information and the data reading identifier are stored in the database in a pre-associated manner, the method further comprises:
receiving a data reading permission updating request aiming at target shared data, which is sent by a data sharing platform, wherein the data reading permission updating request comprises user information of a target user and database link information of the target shared data;
generating a data reading identifier matched with the target shared data, wherein the data reading identifier is used for indicating that a corresponding user has a data reading permission of the target shared data corresponding to the database link information;
and storing the user information of the target user and the data reading identification in a database in an associated manner.
8. A data sharing apparatus, comprising:
the system comprises a communication module, a database management module and a database management module, wherein the communication module is used for detecting an access request aiming at target shared data, and the access request comprises user information of a requesting user and database link information of the target shared data;
the processing module is used for determining the target access authority of the requesting user for the target shared data based on the user information, wherein the target access authority comprises data reading authority, data reading and writing authority or no authority;
the processing module is further configured to write the target shared data into a storage area corresponding to the database link information if the access request is used for writing the target shared data and the target access permission is a data read-write permission;
the processing module is further configured to obtain the target shared data based on the database link information if the access request is used for reading the target shared data and the target access permission is a data read-write permission or a data read permission;
the communication module is further configured to return the target shared data.
9. A data sharing server comprising a processor, a storage device and a communication interface, the processor, the storage device and the communication interface being interconnected, wherein the storage device is configured to store computer program instructions and the processor is configured to execute the program instructions to implement the method of any one of claims 1 to 7.
10. A computer-readable storage medium having computer program instructions stored therein, which when executed by a processor, are configured to perform the data sharing method of any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010944000.2A CN111814197B (en) | 2020-09-10 | 2020-09-10 | Data sharing method and device, server and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010944000.2A CN111814197B (en) | 2020-09-10 | 2020-09-10 | Data sharing method and device, server and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111814197A true CN111814197A (en) | 2020-10-23 |
| CN111814197B CN111814197B (en) | 2021-03-30 |
Family
ID=72860764
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010944000.2A Active CN111814197B (en) | 2020-09-10 | 2020-09-10 | Data sharing method and device, server and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111814197B (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112417047A (en) * | 2020-11-23 | 2021-02-26 | 湖南智慧政务区块链科技有限公司 | Data sharing platform based on block chain |
| CN112632036A (en) * | 2020-12-24 | 2021-04-09 | 深圳赛安特技术服务有限公司 | Management platform, method and related equipment of data exchange system |
| CN112784230A (en) * | 2021-01-21 | 2021-05-11 | 北京启明星辰信息安全技术有限公司 | Network security data sharing and control method and system |
| CN112966300A (en) * | 2021-03-04 | 2021-06-15 | 北京百度网讯科技有限公司 | Schedule data processing method, device, equipment and medium |
| CN113014671A (en) * | 2021-04-01 | 2021-06-22 | 毕延杰 | Cloud service resource sharing method and resource sharing platform applied to big data analysis |
| CN114638004A (en) * | 2022-03-25 | 2022-06-17 | 北京熵核科技有限公司 | Data protection method, device and storage medium |
| CN114969205A (en) * | 2022-05-23 | 2022-08-30 | 国网安徽省电力有限公司信息通信分公司 | Data isolation sharing service system based on data middling station |
| CN116432169A (en) * | 2023-06-13 | 2023-07-14 | 达而观信息科技(上海)有限公司 | Automatic task permission control method, system and equipment based on sharing strategy |
| CN116633691A (en) * | 2023-07-24 | 2023-08-22 | 四川航天天盛科技有限公司 | Cloud platform system based on SaaS and data storage method thereof |
| CN116708423A (en) * | 2023-08-08 | 2023-09-05 | 天津卓朗昆仑云软件技术有限公司 | Cloud application-based application sharing and multiparty collaboration method, device and server |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102567333A (en) * | 2010-12-15 | 2012-07-11 | 上海杉达学院 | Distributed heterogeneous data integration system |
| CN103607469A (en) * | 2013-11-28 | 2014-02-26 | 东莞中国科学院云计算产业技术创新与育成中心 | Cloud platform for achieving distributed isomerous data sharing and data sharing method thereof |
| CN110414259A (en) * | 2018-04-28 | 2019-11-05 | 阿里巴巴集团控股有限公司 | A kind of method and apparatus for constructing data element, realizing data sharing |
-
2020
- 2020-09-10 CN CN202010944000.2A patent/CN111814197B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102567333A (en) * | 2010-12-15 | 2012-07-11 | 上海杉达学院 | Distributed heterogeneous data integration system |
| CN103607469A (en) * | 2013-11-28 | 2014-02-26 | 东莞中国科学院云计算产业技术创新与育成中心 | Cloud platform for achieving distributed isomerous data sharing and data sharing method thereof |
| CN110414259A (en) * | 2018-04-28 | 2019-11-05 | 阿里巴巴集团控股有限公司 | A kind of method and apparatus for constructing data element, realizing data sharing |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112417047A (en) * | 2020-11-23 | 2021-02-26 | 湖南智慧政务区块链科技有限公司 | Data sharing platform based on block chain |
| CN112417047B (en) * | 2020-11-23 | 2023-08-08 | 湖南智慧政务区块链科技有限公司 | Data sharing platform based on block chain |
| CN112632036A (en) * | 2020-12-24 | 2021-04-09 | 深圳赛安特技术服务有限公司 | Management platform, method and related equipment of data exchange system |
| CN112632036B (en) * | 2020-12-24 | 2024-04-30 | 深圳赛安特技术服务有限公司 | Management platform, method and related equipment of data exchange system |
| CN112784230B (en) * | 2021-01-21 | 2024-02-09 | 北京启明星辰信息安全技术有限公司 | Network security data sharing and controlling method and system |
| CN112784230A (en) * | 2021-01-21 | 2021-05-11 | 北京启明星辰信息安全技术有限公司 | Network security data sharing and control method and system |
| CN112966300A (en) * | 2021-03-04 | 2021-06-15 | 北京百度网讯科技有限公司 | Schedule data processing method, device, equipment and medium |
| CN113014671A (en) * | 2021-04-01 | 2021-06-22 | 毕延杰 | Cloud service resource sharing method and resource sharing platform applied to big data analysis |
| CN113014671B (en) * | 2021-04-01 | 2021-11-23 | 湖南机械之家信息科技有限公司 | Cloud service resource sharing method and resource sharing platform applied to big data analysis |
| CN114638004A (en) * | 2022-03-25 | 2022-06-17 | 北京熵核科技有限公司 | Data protection method, device and storage medium |
| CN114969205A (en) * | 2022-05-23 | 2022-08-30 | 国网安徽省电力有限公司信息通信分公司 | Data isolation sharing service system based on data middling station |
| CN114969205B (en) * | 2022-05-23 | 2024-04-16 | 国网安徽省电力有限公司信息通信分公司 | Data isolation sharing service system based on data center station |
| CN116432169A (en) * | 2023-06-13 | 2023-07-14 | 达而观信息科技(上海)有限公司 | Automatic task permission control method, system and equipment based on sharing strategy |
| CN116432169B (en) * | 2023-06-13 | 2023-09-26 | 达而观信息科技(上海)有限公司 | Automatic task permission control method, system and equipment based on sharing strategy |
| CN116633691B (en) * | 2023-07-24 | 2023-10-27 | 四川航天天盛科技有限公司 | Cloud platform system based on SaaS and data storage method thereof |
| CN116633691A (en) * | 2023-07-24 | 2023-08-22 | 四川航天天盛科技有限公司 | Cloud platform system based on SaaS and data storage method thereof |
| CN116708423B (en) * | 2023-08-08 | 2023-10-31 | 天津卓朗昆仑云软件技术有限公司 | Cloud application-based application sharing and multiparty collaboration method, device and server |
| CN116708423A (en) * | 2023-08-08 | 2023-09-05 | 天津卓朗昆仑云软件技术有限公司 | Cloud application-based application sharing and multiparty collaboration method, device and server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111814197B (en) | 2021-03-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111814197B (en) | Data sharing method and device, server and storage medium | |
| CN108197200B (en) | Log tracking method and device, computer equipment and storage medium | |
| CN107958010B (en) | Method and system for online data migration | |
| CN111191221B (en) | Configuration method and device of authority resources and computer readable storage medium | |
| US20170193034A1 (en) | Object data updating method and apparatus in an object storage system | |
| US11928089B2 (en) | Data processing method and device for distributed database, storage medium, and electronic device | |
| CN109542894B (en) | User data centralized storage method, device, medium and computer equipment | |
| CN112288400A (en) | Multi-system data interaction method and device, computer equipment and storage medium | |
| CN110706148B (en) | Face image processing method, device, equipment and storage medium | |
| CN107895044B (en) | Database data processing method, device and system | |
| CN114356521A (en) | Task scheduling method and device, electronic equipment and storage medium | |
| CN110941681B (en) | Multi-tenant data processing system, method and device of power system | |
| CN108429780B (en) | Data calling system and method between associated systems | |
| CN110928911A (en) | System, method and device for processing checking request and computer readable storage medium | |
| CN110781137A (en) | Directory reading method and device for distributed system, server and storage medium | |
| CN110659303A (en) | Read-write control method and device for database nodes | |
| CN116151631A (en) | Service decision processing system, service decision processing method and device | |
| CN101523352A (en) | Persistent locks/resources for concurrency control | |
| CN112231377A (en) | Data mapping method, system, device, server and storage medium | |
| CN113722729A (en) | Authority management method, device, terminal, server and storage medium | |
| CN110019113B (en) | Database service processing method and database server | |
| CN107102901A (en) | A kind of task processing method and device | |
| CN111522830B (en) | Resource allocation method, computer device, and storage medium | |
| KR101767745B1 (en) | Middleware server of steel process middleware service system | |
| CN112632036A (en) | Management platform, method and related equipment of data exchange system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20210127 Address after: 518000 Room 201, building A, No. 1, Qian Wan Road, Qianhai Shenzhen Hong Kong cooperation zone, Shenzhen, Guangdong (Shenzhen Qianhai business secretary Co., Ltd.) Applicant after: Shenzhen saiante Technology Service Co.,Ltd. Address before: 1-34 / F, Qianhai free trade building, 3048 Xinghai Avenue, Mawan, Qianhai Shenzhen Hong Kong cooperation zone, Shenzhen, Guangdong 518000 Applicant before: Ping An International Smart City Technology Co.,Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |