CN116974624A - Enterprise-level interface document management system and method - Google Patents

Enterprise-level interface document management system and method Download PDF

Info

Publication number
CN116974624A
CN116974624A CN202310775374.XA CN202310775374A CN116974624A CN 116974624 A CN116974624 A CN 116974624A CN 202310775374 A CN202310775374 A CN 202310775374A CN 116974624 A CN116974624 A CN 116974624A
Authority
CN
China
Prior art keywords
interface
interface document
document management
management system
tenant
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202310775374.XA
Other languages
Chinese (zh)
Other versions
CN116974624B (en
Inventor
韩梅霞
聂道翔
李晓波
陈娣
邱生顺
赵梓轩
蔡强
樊孝露
刘雪峰
余炜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Three Gorges Changdian Big Data Technology Yichang Co ltd
Three Gorges High Technology Information Technology Co ltd
Three Gorges Technology Co ltd
Original Assignee
Three Gorges Changdian Big Data Technology Yichang Co ltd
Three Gorges High Technology Information Technology Co ltd
Three Gorges Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Three Gorges Changdian Big Data Technology Yichang Co ltd, Three Gorges High Technology Information Technology Co ltd, Three Gorges Technology Co ltd filed Critical Three Gorges Changdian Big Data Technology Yichang Co ltd
Priority to CN202310775374.XA priority Critical patent/CN116974624B/en
Publication of CN116974624A publication Critical patent/CN116974624A/en
Application granted granted Critical
Publication of CN116974624B publication Critical patent/CN116974624B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/70Software maintenance or management
    • G06F8/73Program documentation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/3668Software testing
    • G06F11/3672Test management
    • G06F11/3688Test management for test execution, e.g. scheduling of test suites
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN

Abstract

The invention discloses a system and a method for managing enterprise-level interface documents, wherein the system comprises: the function management module is used for managing various functions in the interface document management system, wherein the functions comprise tenant management, authority management, document management and control modes; the interface display module is used for selecting an interface according to requirements by a tenant, displaying an interface document in a display interface of the interface document management system, and judging whether the integration requirements are met by the tenant after creating a tenant account; the encryption verification module is used for verifying the identity of the tenant by the interface document management system, creating a key pair of a first system where the tenant is located, and finishing the identity verification by decrypting the key pair by the interface document management system; and the interface test module is used for performing performance test on the interface document, setting test constraint conditions and updating interface parameters in real time according to test results.

Description

Enterprise-level interface document management system and method
Technical Field
The invention relates to the field of interface document management, in particular to a system and a method for interface document management
Background
During the construction of various systems, standard interface documents are generally formed in the design stage of the system for guiding the development of the system. If the business requirements are adjusted, system personnel need to synchronously modify the document interface so as to ensure the real-time property of the document of the system interface. In addition, since different systems are responsible for different construction teams, system interface document management is quite decentralized. If the system is frequently changed in a certain system and the obvious system docking requirement is met, a system architect generally integrates a swagger-ui in the process of constructing a system frame in consideration of cost, so that a real-time system interface display page and an online mock function are provided, and a dockee can quickly know the system interface. Currently, integration work between systems is mainly performed based on interface documents of the systems.
In the prior art, the document management of the system interface in an enterprise is chaotic, and the condition that the versions of the system interfaces are inconsistent exists; the interface document is inaccurate, after each system is switched into an operation stage, the investment of resources by a team is reduced, the newly increased requirements cannot be met in the interface document, the interface document is inaccurate, and the system integration work can be performed by a plurality of routes; the traditional interface document has the problem of test cost, and based on the interface document, a butting party always needs to write codes to carry out interface call in the early stage, and whether the interface is available or not and whether the requirement is met or not is evaluated; the transparency of interface documents among all systems of an enterprise is insufficient, so that the difficulty of system integration, work and communication is high, the complexity is high, and the natural multiplexing of enterprise informatization is not facilitated. There is a need for a technique and method for enterprise-level interface document management that addresses the above-described problems.
Disclosure of Invention
The present invention provides a system and method for enterprise-level interface document management that solves the above-identified problems of the prior art.
The invention provides a system for managing enterprise-level interface documents, which comprises:
the function management module is used for managing various functions in the interface document management system, wherein the functions comprise tenant management, authority management, document management and control modes;
the interface display module is used for selecting an interface according to requirements by a tenant, displaying an interface document in a display interface of the interface document management system, and judging whether the integration requirements are met by the tenant after creating a tenant account;
the encryption verification module is used for verifying the identity of the tenant by the interface document management system, creating a key pair of a first system where the tenant is located, and finishing the identity verification by decrypting the key pair by the interface document management system;
and the interface test module is used for performing performance test on the interface document, setting test constraint conditions and updating interface parameters in real time according to test results.
Preferably, the function management module includes:
the authority management unit is used for managing the interface document by the interface document management system in a form of receiving the tenants, and the tenants are mutually independent; the tenant comprises three roles of a visitor, a developer and an administrator, wherein the visitor is used for accessing the interface document management system, the developer is used for developing and updating the interface document management system and maintaining at regular time, and the administrator is used for managing all accounts in the interface document management system;
the document management unit is used for operating the interface document management system, comprising adding, deleting, modifying and inquiring interface documents, importing and exporting data in the interface documents, and accessing OpenAPI and online Mock operation;
the control mode unit is used for operating the document information in the interface document management system and comprises a management mode and a browsing mode; the management mode is used for editing the content in the document information, and the browsing mode is used for browsing the document content.
Preferably, the interface display module includes:
the authority application unit is used for sending a request of the use authority of the interface document management system, and the first system is responsible for applying the use authority to the interface document management system;
the tenant creating unit is used for creating a tenant and a tenant account for the first system by the interface document management system, the first system generates a key pair for tenant information and sends the key pair to the interface document management system, and the interface document management system acquires the tenant information through the decryption key pair;
the interface display unit is used for pushing the interface document to a display interface in the document management system for unified display, a developer in the first system integrates the SDK provided by the document management system, namely a software development kit, and the interface document generated in the interface document system is pushed to the display interface at fixed time by using the SDK.
Preferably, after the interface unit, the method further includes:
system operation unit: the interface document management system is used for operating the interface document management system, a responsible person in the first system logs in the interface document management system and manages the interface document, including adding, deleting, modifying and inquiring the interface document, creating an account number of a developer, configuring an online Mock and generating an interface document link; the interface document links are used for free login of tenants;
a link sharing unit: the system is used for sharing the interface document links, and a responsible person in the first system acquires the interface document links and shares the interface document links to a responsible person in the second system;
interface evaluation unit: and browsing interface document links shared by the responsible persons in the first system by the responsible persons in the second system in a tourist mode, performing online Mock test, judging whether the interfaces of the second system meet requirements through quick evaluation, and if so, continuing to integrate the interface documents in the first system and the second system.
Preferably, the encryption verification module includes:
the public key handshake unit is used for verifying the identity of the first system, the server of the first system sends public key encrypted handshake information and a session key to the key distribution center, and the key distribution center verifies the identity of the first system and continues the session if the verification is successful;
a session encryption unit for generating verification information, the key distribution center sending a time stamp encrypted by the session key as the verification information to the server, the server sending a request for generating a key pair to the key distribution center, the key distribution center returning the verification information of the key pair;
and the key verification unit is used for verifying the key pair of the first system by the interface document management system, judging whether the key pair contains verification information, if so, saving the key pair, and if not, re-verifying.
Preferably, the public key handshake unit includes:
the ciphertext output subunit is used for acquiring ciphertext, and the server registers tenant information on the key distribution center so that the key distribution center stores the information of the server; the method comprises the steps that a local cipher card is created in a server and used for generating a random session key, the server obtains a public key in a database of a key distribution center, and the public key is encrypted and output as ciphertext;
the identity verification subunit is used for verifying the identity of the server, the server sends the encrypted message in the secret to the key distribution center, and the key distribution center calls the local password card to decrypt the encrypted message to obtain a time stamp and matches the time stamp in the database; verifying whether the identity of the server is legal or not according to the matching result;
the cipher text transmitting subunit is used for generating a session key, the key distribution center outputs the encrypted message in the server with legal identity by calling the local cipher card, and the server simultaneously calls the local cipher card to decrypt the cipher text and generates the session key of the server and the key distribution center.
Preferably, the interface test module includes:
the information acquisition unit is used for acquiring interface information in an interface document, the type of the interface document comprises a client and a mobile terminal, and the interface information comprises interface parameters and constraint conditions by inquiring the type of the interface document and downloading a corresponding configuration file;
the data preprocessing unit is used for preprocessing the interface information, wherein the preprocessing comprises de-duplication and parameter combination, de-duplication is to remove repeated data in the interface parameters, and the parameter combination is to combine similar data in the interface parameters;
the constraint setting unit is used for setting constraint conditions of interface document testing, acquiring interface parameters as a testing set and presetting reference values, wherein the reference values comprise default constraint reference values and random constraint reference values.
Preferably, the constraint setting unit includes:
the constraint classification subunit is used for testing the test set and acquiring default constraint reference and random constraint reference values in the reference values; the default constraint reference value is that interface testing is carried out according to a testing set in an interface document preset by a configuration file in constraint conditions, and the random constraint reference value is that interface parameters are randomly selected as the testing set to carry out the interface testing;
the test updating subunit is used for updating the reference value, and when the interface parameters in the interface document change, the reference value is updated in real time according to the interface parameters;
and the script testing subunit is used for testing the interface document, obtaining a testing script of the interface document, analyzing instructions in the testing script by using constraint conditions, and completing the testing of the interface document.
The invention also provides a method for managing the enterprise-level interface document, which comprises the following steps:
s10: managing various functions in the interface document management system, including tenant management, authority management, document management and management mode;
s20: selecting an interface by a tenant according to requirements, displaying an interface document in a display interface of an interface document management system, and judging whether integration requirements are met by the tenant after creating a tenant account;
s30: the interface document management system verifies the identity of the tenant, a key pair of a first system where the tenant is located is created, and the interface document management system completes the identity verification by decrypting the key pair;
s40: and performing performance test on the interface document, setting a constraint condition of the test, and updating interface parameters in real time according to a test result.
Preferably, step S10, comprising,
s11, the interface document management system manages interface documents in a form of receiving tenants, and the tenants are mutually independent; the tenant comprises three roles of a visitor, a developer and an administrator, wherein the visitor is used for accessing the interface document management system, the developer is used for developing and updating the interface document management system and maintaining at regular time, and the administrator is used for managing all accounts in the interface document management system;
s12, operating the interface document management system, including adding, deleting, modifying and inquiring the interface document, importing and exporting data in the interface document, and also including the access of OpenAPI and online Mock operation;
s13, operating the document information in the interface document management system, wherein the operation comprises a management mode and a browsing mode; the management mode is used for editing the content in the document information, and the browsing mode is used for browsing the document content.
Compared with the prior art, the invention has the following advantages:
the invention provides a system and a method for managing enterprise-level interface documents, wherein the system interface documents are updated in real time, and the integration of less walking is avoided. The generated interface document is pushed by each system at fixed time, so that the condition of inaccurate interface document is avoided. The system supports online Mock, and reduces the trial-and-error cost of the system integration party. The system realizes the transparent management of the informationized interfaces in enterprises, reduces the cost of system integration, and realizes the multiplexing of informationized assets.
Additional features and advantages of the invention will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention. The objectives and other advantages of the invention will be realized and attained by the structure particularly pointed out in the written description and claims thereof as well as the appended drawings.
The technical scheme of the invention is further described in detail through the drawings and the embodiments.
Drawings
The accompanying drawings are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate the invention and together with the embodiments of the invention, serve to explain the invention. In the drawings:
FIG. 1 is a block diagram of a system for enterprise level interface management in accordance with an embodiment of the present invention;
fig. 2 is a block diagram of an interface management system verifying identity of a tenant in a first system according to an embodiment of the present invention;
FIG. 3 is a diagram of steps in a method for enterprise-level interface document management in accordance with an embodiment of the present invention.
Detailed Description
The preferred embodiments of the present invention will be described below with reference to the accompanying drawings, it being understood that the preferred embodiments described herein are for illustration and explanation of the present invention only, and are not intended to limit the present invention.
Referring to FIG. 1, an embodiment of the present invention provides a system for enterprise-level interface document management, comprising:
the function management module is used for managing various functions in the interface document management system, wherein the functions comprise tenant management, authority management, document management and control modes;
the interface display module is used for selecting an interface according to requirements by a tenant, displaying an interface document in a display interface of the interface document management system, and judging whether the integration requirements are met by the tenant after creating a tenant account;
the encryption verification module is used for verifying the identity of the tenant by the interface document management system, creating a key pair of a first system where the tenant is located, and finishing the identity verification by decrypting the key pair by the interface document management system;
and the interface test module is used for performing performance test on the interface document, setting test constraint conditions and updating interface parameters in real time according to test results.
In another embodiment, the function management module includes:
the authority management unit is used for managing the interface document by the interface document management system in a form of receiving the tenants, and the tenants are mutually independent; the tenant comprises three roles of a visitor, a developer and an administrator, wherein the visitor is used for accessing the interface document management system, the developer is used for developing and updating the interface document management system and maintaining at regular time, and the administrator is used for managing all accounts in the interface document management system;
the document management unit is used for operating the interface document management system, comprising adding, deleting, modifying and inquiring interface documents, importing and exporting data in the interface documents, and accessing OpenAPI and online Mock operation;
the control mode unit is used for operating the document information in the interface document management system and comprises a management mode and a browsing mode; the management mode is used for editing the content in the document information, and the browsing mode is used for browsing the document content.
The working principle of the technical scheme is as follows: the scheme adopted by the embodiment is that an enterprise-level interface document management system is mainly divided into three parts in function, namely authority management, document management and control modes. The authority management is used for supporting management of interface documents in the form of system tenants, the tenants are mutually independent, and meanwhile, three roles of a visitor, a developer and an administrator exist in the document management system, and each role has different application authorities; the function of document management is to support the addition, deletion and examination of interface documents, import and export, openAPI access and online Mock, wherein the openAPI is an open API for encapsulating the service of a website into a series of easily-identified data interfaces of a computer for opening for a third party developer to use, and the action is called as the API of the open website. Mock is a set of rules that are desirably configured by Mock according to the definition of an interface or data structure for automatically generating analog data. The management mode provides two modes, namely a management mode and a browsing mode, wherein the management mode is used for editing the content of an interface document, the browsing mode is used for a user to review the document, the interface is free from interference of other elements, and the user experience is improved.
The beneficial effects of the technical scheme are as follows: by adopting the scheme provided by the embodiment, the user can conveniently operate the document management system through multiple functions based on the interface, and the use experience of the user is improved.
In another embodiment, the interface presentation module comprises:
the authority application unit is used for sending a request of the use authority of the interface document management system, and the first system is responsible for applying the use authority to the interface document management system;
the tenant creating unit is used for creating a tenant and a tenant account for the first system by the interface document management system, the first system generates a key pair for tenant information and sends the key pair to the interface document management system, and the interface document management system acquires the tenant information through the decryption key pair;
the interface display unit is used for pushing the interface document to a display interface in the document management system for unified display, a developer in the first system integrates the SDK provided by the document management system, namely a software development kit, and the interface document generated in the interface document system is pushed to the display interface at fixed time by using the SDK.
The working principle of the technical scheme is as follows: the scheme adopted by the embodiment is that a first system is responsible for applying the use authority to an interface document management application, and the document management application creates tenant and tenant account numbers for a first system responsible person and generates a key pair. The developer of the first system is responsible for a Software Development Kit (SDK) provided by the integrated platform, pushes interface documents generated by the system to the interface management system at regular time, and the interface management system performs unified display. Wherein the interface document comprises swagger, smart-doc and the like, and the swagger is a tool which can write the API document of the interface and can debug the interface. The swagger interface document edited by the swagger-editor needs to be checked by using the swagger-ui. The smart-doc is mainly based on the annotation marked by the source code and the java doc to form an interface document, the interface document is generated in the early development stage or the compiler of the project, and finally the dependency of the smart-doc is not found in the jar of the packing operation, so that the project operation period is not invaded at all.
The beneficial effects of the technical scheme are as follows: by adopting the scheme provided by the embodiment, the first system applies for the use dissuasion of the interface document management system, generates the interface document in the interface document management system and displays the interface document in the platform, so that the working efficiency of enterprises is greatly improved, and the user experience is improved.
In another embodiment, after the interface unit, the method further comprises:
system operation unit: the interface document management system is used for operating the interface document management system, a responsible person in the first system logs in the interface document management system and manages the interface document, including adding, deleting, modifying and inquiring the interface document, creating an account number of a developer, configuring an online Mock and generating an interface document link; the interface document links are used for free login of tenants;
a link sharing unit: the system is used for sharing the interface document links, and a responsible person in the first system acquires the interface document links and shares the interface document links to a responsible person in the second system;
interface evaluation unit: and browsing interface document links shared by the responsible persons in the first system by the responsible persons in the second system in a tourist mode, performing online Mock test, judging whether the interfaces of the second system meet requirements through quick evaluation, and if so, continuing to integrate the interface documents in the first system and the second system.
The working principle of the technical scheme is as follows: according to the scheme adopted by the embodiment, a responsible person in the first system logs in an interface document management system to manage document information in a document interface, wherein the management comprises adding, deleting, modifying and inquiring of the interface document, and further comprises creating a developer account, setting online Mock configuration and generating a sharing link of the interface document, wherein the sharing link can enable other users not to log in. And sharing the acquired interface document to a responsible person of the second system by the responsible person of the first system. And the responsible person of the second system browses the interface document shared by the responsible person of the first system in a tourist aversion mode, performs online Mock test on the interface document, rapidly evaluates whether the interface document shared by the responsible person of the first system meets the requirement of the tenant, and if so, can continue to perform the integration work on the interface.
The beneficial effects of the technical scheme are as follows: by adopting the scheme provided by the embodiment, through the interactive operation between the first system and the second system, the interface document management system is used for updating in real time, so that the integration of less walking is avoided, the systems customize the interfaces generated by pushing, and the inaccurate condition of the interface document is avoided.
Referring to fig. 2, in another embodiment, the encryption authentication module includes:
the public key handshake unit is used for verifying the identity of the first system, the server of the first system sends public key encrypted handshake information and a session key to the key distribution center, and the key distribution center verifies the identity of the first system and continues the session if the verification is successful;
a session encryption unit for generating verification information, the key distribution center sending a time stamp encrypted by the session key as the verification information to the server, the server sending a request for generating a key pair to the key distribution center, the key distribution center returning the verification information of the key pair;
and the key verification unit is used for verifying the key pair of the first system by the interface document management system, judging whether the key pair contains verification information, if so, saving the key pair, and if not, re-verifying.
The working principle of the technical scheme is as follows: in order to ensure that the information of the tenant can be safely transmitted between the interface document management system and the first system, the safe transmission is divided into session key negotiation and session process, a server in the first system provides an encryption certificate and a signature certificate for the tenant end in the session key negotiation, the tenant end encrypts the generated session key by utilizing a public key in the encryption certificate, sends the encrypted ciphertext to the server, verifies whether the identity of the server is legal or not by utilizing the public key in the signature certificate, thereby ensuring the confidentiality and the integrity of the session key in the transmission process, and verifies whether the identity of the tenant is legal or not by utilizing the public key in the signature certificate, thereby ensuring the confidentiality and the integrity of the session key in the network transmission process, and therefore, a server encryption key pair for protecting the session key and a server certificate signature key pair are arranged in the server in an initial mode in advance.
When the key pair is verified, handshake is performed with the key distribution center through the server for negotiating the session key. The key distribution center, namely KDC, is a service running in a server, and the KDC maintains all account information in the field as a database of security subjects. Along with other information for each secure principal, the KDC stores an encryption key up to only the secure principal and the KDC, this key being referred to as the long-acting key, the master key, for exchange between the secure principal and the KDC. Firstly, a server sends handshake information and a session key for public key encryption to a key distribution center, the key distribution center sends a request for generating a key pair to the server, the key distribution center returns information of the key pair, an interface document system verifies the key pair, and the key pair is stored.
The beneficial effects of the technical scheme are as follows: by adopting the scheme provided by the embodiment, through the handshake protocol of the key distribution center and the import and export of the key pair, logical analysis is performed, and the integrity and confidentiality of the key pair in the transmission process are ensured, so that the security guarantee can be improved for users in the interface document management system.
In another embodiment, the public key handshake unit comprises:
the ciphertext output subunit is used for acquiring ciphertext, and the server registers tenant information on the key distribution center so that the key distribution center stores the information of the server; the method comprises the steps that a local cipher card is created in a server and used for generating a random session key, the server obtains a public key in a database of a key distribution center, and the public key is encrypted and output as ciphertext;
the identity verification subunit is used for verifying the identity of the server, the server sends the encrypted message in the secret to the key distribution center, and the key distribution center calls the local password card to decrypt the encrypted message to obtain a time stamp and matches the time stamp in the database; verifying whether the identity of the server is legal or not according to the matching result;
the cipher text transmitting subunit is used for generating a session key, the key distribution center outputs the encrypted message in the server with legal identity by calling the local cipher card, and the server simultaneously calls the local cipher card to decrypt the cipher text and generates the session key of the server and the key distribution center.
The working principle of the technical scheme is as follows: before the server of the first system performs handshake with the key distribution center, the server must register user information on the key distribution center, so that the key distribution center stores information of the server, a local password card in the server is constructed to generate a random session key, the server obtains a public key from a database of the key distribution center, encrypts identity information of the server by using the public key, wherein the identity information comprises an identity, a password and a designated symmetric encryption algorithm identifier of the server as ciphertext, and the password card outputs the ciphertext and sends the ciphertext to the key distribution system. The key distribution center calls a local password card and is used for decrypting the ciphertext sent by the server to obtain a time stamp, the key distribution center is matched in a database and is used for verifying whether the identity of the server is legal or not, and after verifying that the identity of the server is legal, the key distribution center calls the local password card and encrypts and outputs the time-stamped information to the ciphertext.
The server calls the local password card to decrypt the encrypted ciphertext for verifying the identity of the key distribution center, and the server and the key distribution center have a session key through the content.
The beneficial effects of the technical scheme are as follows: by adopting the scheme provided by the embodiment, the local password card is constructed to become the medium for ciphertext transmission between the server and the key distribution center, so that the safety of using an interface document system by a user is improved.
In another embodiment, the interface test module comprises:
the information acquisition unit is used for acquiring interface information in an interface document, the type of the interface document comprises a client and a mobile terminal, and the interface information comprises interface parameters and constraint conditions by inquiring the type of the interface document and downloading a corresponding configuration file;
the data preprocessing unit is used for preprocessing the interface information, wherein the preprocessing comprises de-duplication and parameter combination, de-duplication is to remove repeated data in the interface parameters, and the parameter combination is to combine similar data in the interface parameters;
the constraint setting unit is used for setting constraint conditions of interface document testing, acquiring interface parameters as a testing set and presetting reference values, wherein the reference values comprise default constraint reference values and random constraint reference values.
The working principle of the technical scheme is as follows: the method includes the steps that interface information is firstly obtained from interface documents, types of the interface documents comprise clients and mobile terminals, corresponding configuration files are downloaded through selection of the types of the interface documents, the interface information comprises interface parameters and constraint conditions, and the interface parameters comprise a request method, a uniform resource locator, request parameters and return parameters. Constraints include constraint testing of parameters in the interface document, such as specifying names of the parameters. Preprocessing interface document information, wherein the preprocessing comprises removing repeated information and parameter combination, wherein the repeated information is document data with the same parameters in the interface information, and the parameter combination is similar document data in the interface information; and setting constraint conditions according to the downloaded configuration file, setting a reference value for the test value, wherein the reference value comprises a random reference value and a default reference value, and the test value passes the test and is used as the test value. The interface document test is carried out by default reference values in preset constraint conditions, and the random reference values are constraint conditions selected randomly in the preset constraint conditions.
In another embodiment, the constraint setting unit includes:
the constraint classification subunit is used for testing the test set and acquiring default constraint reference and random constraint reference values in the reference values; the default constraint reference value is that interface testing is carried out according to a testing set in an interface document preset by a configuration file in constraint conditions, and the random constraint reference value is that interface parameters are randomly selected as the testing set to carry out the interface testing;
the test updating subunit is used for updating the reference value, and when the interface parameters in the interface document change, the reference value is updated in real time according to the interface parameters;
and the script testing subunit is used for testing the interface document, obtaining a testing script of the interface document, analyzing instructions in the testing script by using constraint conditions, and completing the testing of the interface document.
The beneficial effects of the technical scheme are as follows: by adopting the scheme provided by the embodiment, the safety and the reliability of the interface document are improved by testing the interface document.
Referring to FIG. 3, in another embodiment, a method of enterprise-level interface document management includes:
s10: managing various functions in the interface document management system, including tenant management, authority management, document management and management mode;
s20: selecting an interface by a tenant according to requirements, displaying an interface document in a display interface of an interface document management system, and judging whether integration requirements are met by the tenant after creating a tenant account;
s30: the interface document management system verifies the identity of the tenant, a key pair of a first system where the tenant is located is created, and the interface document management system completes the identity verification by decrypting the key pair;
s40: and performing performance test on the interface document, setting a constraint condition of the test, and updating interface parameters in real time according to a test result.
In another embodiment, step S10 includes:
s11, the interface document management system manages interface documents in a form of receiving tenants, and the tenants are mutually independent; the tenant comprises three roles of a visitor, a developer and an administrator, wherein the visitor is used for accessing the interface document management system, the developer is used for developing and updating the interface document management system and maintaining at regular time, and the administrator is used for managing all accounts in the interface document management system;
s12, operating the interface document management system, including adding, deleting, modifying and inquiring the interface document, importing and exporting data in the interface document, and also including the access of OpenAPI and online Mock operation;
s13, operating the document information in the interface document management system, wherein the operation comprises a management mode and a browsing mode; the management mode is used for editing the content in the document information, and the browsing mode is used for browsing the document content.
It will be apparent to those skilled in the art that various modifications and variations can be made to the present invention without departing from the spirit or scope of the invention. Thus, it is intended that the present invention also include such modifications and alterations insofar as they come within the scope of the appended claims or the equivalents thereof.

Claims (10)

1. A system for enterprise-level interface document management, comprising:
the function management module is used for managing various functions in the interface document management system, wherein the functions comprise tenant management, authority management, document management and control modes;
the interface display module is used for selecting an interface according to requirements by a tenant, displaying an interface document in a display interface of the interface document management system, and judging whether the integration requirements are met by the tenant after creating a tenant account;
the encryption verification module is used for verifying the identity of the tenant by the interface document management system, creating a key pair of a first system where the tenant is located, and finishing the identity verification by decrypting the key pair by the interface document management system;
and the interface test module is used for performing performance test on the interface document, setting test constraint conditions and updating interface parameters in real time according to test results.
2. The system for enterprise-level interface document management as claimed in claim 1, wherein the function management module comprises:
the authority management unit is used for managing the interface document by the interface document management system in a form of receiving the tenants, and the tenants are mutually independent; the tenant comprises three roles of a visitor, a developer and an administrator, wherein the visitor is used for accessing the interface document management system, the developer is used for developing and updating the interface document management system and maintaining at regular time, and the administrator is used for managing all accounts in the interface document management system;
the document management unit is used for operating the interface document management system, comprising adding, deleting, modifying and inquiring interface documents, importing and exporting data in the interface documents, and accessing OpenAPI and online Mock operation;
the control mode unit is used for operating the document information in the interface document management system and comprises a management mode and a browsing mode; the management mode is used for editing the content in the document information, and the browsing mode is used for browsing the document content.
3. The system for enterprise-level interface document management of claim 1, wherein the interface presentation module comprises:
the authority application unit is used for sending a request of the use authority of the interface document management system, and the first system is responsible for applying the use authority to the interface document management system;
the tenant creating unit is used for creating a tenant and a tenant account for the first system by the interface document management system, the first system generates a key pair for tenant information and sends the key pair to the interface document management system, and the interface document management system acquires the tenant information through the decryption key pair;
the interface display unit is used for pushing the interface document to a display interface in the document management system for unified display, a developer in the first system integrates the SDK provided by the document management system, namely a software development kit, and the interface document generated in the interface document system is pushed to the display interface at fixed time by using the SDK.
4. A system for enterprise-level interface document management as claimed in claim 3, wherein said interface unit, after said interface unit, further comprises:
system operation unit: the interface document management system is used for operating the interface document management system, a responsible person in the first system logs in the interface document management system and manages the interface document, including adding, deleting, modifying and inquiring the interface document, creating an account number of a developer, configuring an online Mock and generating an interface document link; the interface document links are used for free login of tenants;
a link sharing unit: the system is used for sharing the interface document links, and a responsible person in the first system acquires the interface document links and shares the interface document links to a responsible person in the second system;
interface evaluation unit: and browsing interface document links shared by the responsible persons in the first system by the responsible persons in the second system in a tourist mode, performing online Mock test, judging whether the interfaces of the second system meet requirements through quick evaluation, and if so, continuing to integrate the interface documents in the first system and the second system.
5. The system for enterprise-level interface document management of claim 1, wherein the cryptographic validation module comprises:
the public key handshake unit is used for verifying the identity of the first system, the server of the first system sends public key encrypted handshake information and a session key to the key distribution center, and the key distribution center verifies the identity of the first system and continues the session if the verification is successful;
a session encryption unit for generating verification information, the key distribution center sending a time stamp encrypted by the session key as the verification information to the server, the server sending a request for generating a key pair to the key distribution center, the key distribution center returning the verification information of the key pair;
and the key verification unit is used for verifying the key pair of the first system by the interface document management system, judging whether the key pair contains verification information, if so, saving the key pair, and if not, re-verifying.
6. The system for enterprise-level interface document management of claim 5, wherein the public key handshake unit comprises:
the ciphertext output subunit is used for acquiring ciphertext, and the server registers tenant information on the key distribution center so that the key distribution center stores the information of the server; the method comprises the steps that a local cipher card is created in a server and used for generating a random session key, the server obtains a public key in a database of a key distribution center, and the public key is encrypted and output as ciphertext;
the identity verification subunit is used for verifying the identity of the server, the server sends the encrypted message in the secret to the key distribution center, and the key distribution center calls the local password card to decrypt the encrypted message to obtain a time stamp and matches the time stamp in the database; verifying whether the identity of the server is legal or not according to the matching result;
the cipher text transmitting subunit is used for generating a session key, the key distribution center outputs the encrypted message in the server with legal identity by calling the local cipher card, and the server simultaneously calls the local cipher card to decrypt the cipher text and generates the session key of the server and the key distribution center.
7. The system for enterprise-level interface document management of claim 1, wherein the interface test module comprises:
the information acquisition unit is used for acquiring interface information in an interface document, the type of the interface document comprises a client and a mobile terminal, and the interface information comprises interface parameters and constraint conditions by inquiring the type of the interface document and downloading a corresponding configuration file;
the data preprocessing unit is used for preprocessing the interface information, wherein the preprocessing comprises de-duplication and parameter combination, de-duplication is to remove repeated data in the interface parameters, and the parameter combination is to combine similar data in the interface parameters;
the constraint setting unit is used for setting constraint conditions of interface document testing, acquiring interface parameters as a testing set and presetting reference values, wherein the reference values comprise default constraint reference values and random constraint reference values.
8. The system for enterprise-level interface document management as claimed in claim 7, wherein the constraint setting unit comprises:
the constraint classification subunit is used for testing the test set and acquiring default constraint reference and random constraint reference values in the reference values; the default constraint reference value is that interface testing is carried out according to a testing set in an interface document preset by a configuration file in constraint conditions, and the random constraint reference value is that interface parameters are randomly selected as the testing set to carry out the interface testing;
the test updating subunit is used for updating the reference value, and when the interface parameters in the interface document change, the reference value is updated in real time according to the interface parameters;
and the script testing subunit is used for testing the interface document, obtaining a testing script of the interface document, analyzing instructions in the testing script by using constraint conditions, and completing the testing of the interface document.
9. A method of enterprise-level interface document management, comprising:
s10: managing various functions in the interface document management system, including tenant management, authority management, document management and management mode;
s20: selecting an interface by a tenant according to requirements, displaying an interface document in a display interface of an interface document management system, and judging whether integration requirements are met by the tenant after creating a tenant account;
s30: the interface document management system verifies the identity of the tenant, a key pair of a first system where the tenant is located is created, and the interface document management system completes the identity verification by decrypting the key pair;
s40: and performing performance test on the interface document, setting a constraint condition of the test, and updating interface parameters in real time according to a test result.
10. The method for enterprise-level interface document management as claimed in claim 9, wherein step S10 comprises,
s11, the interface document management system manages interface documents in a form of receiving tenants, and the tenants are mutually independent; the tenant comprises three roles of a visitor, a developer and an administrator, wherein the visitor is used for accessing the interface document management system, the developer is used for developing and updating the interface document management system and maintaining at regular time, and the administrator is used for managing all accounts in the interface document management system;
s12, operating the interface document management system, including adding, deleting, modifying and inquiring the interface document, importing and exporting data in the interface document, and also including the access of OpenAPI and online Mock operation;
s13, operating the document information in the interface document management system, wherein the operation comprises a management mode and a browsing mode; the management mode is used for editing the content in the document information, and the browsing mode is used for browsing the document content.
CN202310775374.XA 2023-06-28 2023-06-28 Enterprise-level interface document management system and method Active CN116974624B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310775374.XA CN116974624B (en) 2023-06-28 2023-06-28 Enterprise-level interface document management system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310775374.XA CN116974624B (en) 2023-06-28 2023-06-28 Enterprise-level interface document management system and method

Publications (2)

Publication Number Publication Date
CN116974624A true CN116974624A (en) 2023-10-31
CN116974624B CN116974624B (en) 2024-04-05

Family

ID=88470352

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310775374.XA Active CN116974624B (en) 2023-06-28 2023-06-28 Enterprise-level interface document management system and method

Country Status (1)

Country Link
CN (1) CN116974624B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
AU2013219149A1 (en) * 2007-09-14 2013-09-05 Security First Corp. Systems and Methods for Managing Cryptographic Keys
CN103679050A (en) * 2013-12-31 2014-03-26 中国电子科技集团公司第三研究所 Security management method for enterprise-level electronic documents
US20180083954A1 (en) * 2005-12-05 2018-03-22 Surcloud Corp. Method, system, login device, and application software unit for logging into docbase management system
CN107947913A (en) * 2017-11-15 2018-04-20 武汉大学 The anonymous authentication method and system of a kind of identity-based
CN111880950A (en) * 2020-07-30 2020-11-03 浪潮云信息技术股份公司 Cloud service API management method and system based on government affair cloud platform
CN112564923A (en) * 2021-03-01 2021-03-26 南京信息工程大学 Certificateless-based secure network connection handshake method
CN114629646A (en) * 2022-05-06 2022-06-14 确信信息股份有限公司 Safe transmission method and system based on mixed quantum key encapsulation and negotiation
CN115567210A (en) * 2022-09-29 2023-01-03 中电信量子科技有限公司 Method and system for realizing zero trust access by quantum key distribution

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180083954A1 (en) * 2005-12-05 2018-03-22 Surcloud Corp. Method, system, login device, and application software unit for logging into docbase management system
AU2013219149A1 (en) * 2007-09-14 2013-09-05 Security First Corp. Systems and Methods for Managing Cryptographic Keys
CN103679050A (en) * 2013-12-31 2014-03-26 中国电子科技集团公司第三研究所 Security management method for enterprise-level electronic documents
CN107947913A (en) * 2017-11-15 2018-04-20 武汉大学 The anonymous authentication method and system of a kind of identity-based
CN111880950A (en) * 2020-07-30 2020-11-03 浪潮云信息技术股份公司 Cloud service API management method and system based on government affair cloud platform
CN112564923A (en) * 2021-03-01 2021-03-26 南京信息工程大学 Certificateless-based secure network connection handshake method
CN114629646A (en) * 2022-05-06 2022-06-14 确信信息股份有限公司 Safe transmission method and system based on mixed quantum key encapsulation and negotiation
CN115567210A (en) * 2022-09-29 2023-01-03 中电信量子科技有限公司 Method and system for realizing zero trust access by quantum key distribution

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
"TECHTARGET CONTRIBUTOR ": "What is a session key?", HTTPS://WWW.TECHTARGET.COM/SEARCHSECURITY/DEFINITION/SESSION-KEY *
IMEIXI4EVER: "公钥私钥与SSL的握手协议(转)", HTTPS://WWW.CNBLOGS.COM/ZHENGAH/P/5007753.HTML *

Also Published As

Publication number Publication date
CN116974624B (en) 2024-04-05

Similar Documents

Publication Publication Date Title
US9965645B2 (en) Field level data protection for cloud services using asymmetric cryptography
CN109274652B (en) Identity information verification system, method and device and computer storage medium
RU2506637C2 (en) Method and device for verifying dynamic password
US6539093B1 (en) Key ring organizer for an electronic business using public key infrastructure
US8291213B2 (en) Techniques for secure network searching
CN109660343A (en) Token updating method, device, computer equipment and storage medium
CN112929172A (en) System, method and device for dynamically encrypting data based on key bank
CN101419686A (en) A kind of on-line contract signing system based on the internet
WO2021139338A1 (en) Data access permission verification method and apparatus, computer device, and storage medium
CN109873805A (en) Cloud desktop login method, device, equipment and storage medium based on cloud security
JP2004304304A (en) Electronic signature generating method, electronic signature authenticating method, electronic signature generating request program and electronic signature authenticate request program
CN112422287B (en) Multi-level role authority control method and device based on cryptography
US20230308290A1 (en) Data sharing method and electronic device
CN113904832A (en) Data encryption method, device, equipment and storage medium
CN112464270A (en) Bidding file encryption and decryption method, equipment and storage medium
CN116974624B (en) Enterprise-level interface document management system and method
CN103559430A (en) Application account management method and device based on android system
CN116361833A (en) Verification method and device and terminal equipment
CN106452730A (en) MD5 encryption authentication method and system based on lightweight directory access protocol
CN115941279A (en) Encryption and decryption method, system and equipment for user identification in data
CN106453273B (en) A kind of information insurance management system and method based on cloud
CN113392162B (en) Information sharing method, device, equipment and storage medium
CN115150193A (en) Method and system for encrypting sensitive information in data transmission and readable storage medium
CN106575341A (en) Composite document access
CN113987561A (en) Trusted execution environment-based private data classification method, system and terminal

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant