WO2020135492A1 - Software hierarchical management system - Google Patents

Software hierarchical management system Download PDF

Info

Publication number
WO2020135492A1
WO2020135492A1 PCT/CN2019/128258 CN2019128258W WO2020135492A1 WO 2020135492 A1 WO2020135492 A1 WO 2020135492A1 CN 2019128258 W CN2019128258 W CN 2019128258W WO 2020135492 A1 WO2020135492 A1 WO 2020135492A1
Authority
WO
WIPO (PCT)
Prior art keywords
software
desktop
virtual desktop
virtual
operating system
Prior art date
Application number
PCT/CN2019/128258
Other languages
French (fr)
Chinese (zh)
Inventor
李丽莉
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2020135492A1 publication Critical patent/WO2020135492A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/451Execution arrangements for user interfaces
    • G06F9/452Remote windowing, e.g. X-Window System, desktop virtualisation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/451Execution arrangements for user interfaces
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D10/00Energy efficient computing, e.g. low power processors, power management or thermal management

Definitions

  • This disclosure relates to, but is not limited to, the field of communications.
  • Mobile phones and mobile terminals have been unable to leave people's lives, and the use from ordinary life scenarios has penetrated into work scenarios, such as the company's mobile phone mailbox, mobile office system, internal communication, etc., these data will be transferred in the mobile terminal, if Losing the phone will cause great security risks to these data.
  • cloud-based virtual desktop technology has been widely used in scenarios such as operators, government enterprises, and schools, including private clouds built by us and operable public clouds.
  • VDI Virtual Desktop Infrastructure
  • server virtualization realizes the abstraction of hardware, resource allocation, scheduling and management, the isolation of virtual desktops from the host operating system and multiple virtual desktops, and Through the agreement, the thin client side and the server side can display the cloud desktop image.
  • the virtual Windows system desktop and Linux system desktop are still the mainstream, and there is no virtual cloud desktop for the Android operating system to be used on mobile devices, and the software currently used on the Android system is based on personal Download APP(Application) software freely according to your preferences and use it after installation. You cannot directly use the software without installation, and the software cannot control the use rights of the software according to user attribute assignment rules. Therefore, when users use mobile devices, especially mobile phones, personal data and work data will be lost after the password is lost or stolen, and information security is greatly threatened.
  • a software layered management system including: a terminal device, a virtual desktop resource management system, and a virtual desktop operating system installed on a physical hardware device; wherein, the terminal device is used to Log in to the installed client to select a virtual machine from the list of virtual machines to be used, and connect to the remote virtual desktop based on the desktop connection protocol according to the selected virtual machine; the virtual desktop resource management system is used to Desktop operating system and virtual machine resources are managed to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system, wherein the image files of multiple common software are distributed in multiple different containers; and The virtual desktop operating system is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system.
  • FIG. 1 is a schematic structural diagram of a software layered management system according to an embodiment of the present disclosure
  • FIG. 2 is an architecture diagram of a software layered management system according to an embodiment of the present disclosure
  • FIG. 3 is an architecture diagram of a software layered management system according to an embodiment of the present disclosure
  • FIG. 4 is a schematic diagram of access to a loading template of a software layered management system according to an embodiment of the present disclosure
  • FIG. 5 is a schematic structural diagram of a Docker container warehouse according to an embodiment of the present disclosure.
  • FIG. 6 is a flowchart 1 of loading an Android desktop according to an embodiment of the present disclosure
  • FIG. 7A is a flowchart 2 of loading an Android desktop according to an embodiment of the present disclosure.
  • FIG. 7B is a flowchart 2 of loading an Android desktop according to an embodiment of the present disclosure.
  • 8A is a flowchart 3 of loading an Android desktop according to an embodiment of the present disclosure.
  • 8B is a flowchart 3 of loading an Android desktop according to an embodiment of the present disclosure.
  • FIG. 9A is a flowchart 4 of loading an Android desktop according to an embodiment of the present disclosure.
  • 9B is a flowchart 4 of loading an Android desktop according to an embodiment of the present disclosure.
  • FIG. 1 is a schematic structural diagram of a software layered management system according to an embodiment of the present disclosure.
  • the system includes: a terminal device 101 and virtual desktop resource management The system 102 and the virtual desktop operating system 103 installed on the physical hardware device.
  • the terminal device 101 is used to select a virtual machine from a list of virtual machines to be used by logging in the installed client, and connect to a remote virtual desktop based on the desktop connection protocol according to the selected virtual machine.
  • the virtual desktop resource management system 102 is used to manage the virtual desktop operating system 103 and virtual machine resources to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system 103, where the image files of multiple common software are distributed In multiple different containers.
  • the virtual desktop operating system 103 is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system.
  • the virtual desktop resource management system 102 includes: a basic configuration module for managing basic configuration information required to run a virtual desktop; and a software management module for basic configuration information and common software Management of the life cycle of the software, and is used to create and manage basic configuration information and common software; allocation module, used to set permissions between common software and virtual desktop users; Docker container warehouse management module, used for software management module
  • the software in provides an installation warehouse, where the installation warehouse includes multiple containers, and an image file of common software is downloaded and installed in each container.
  • the virtual desktop operating system 103 may further include: a Docker startup processor, used to obtain permissions between commonly used software and virtual desktop users, and manage from the Docker container warehouse according to the permissions Obtain the image file of the corresponding common software from the module and load it into the Docker manager; and the Docker manager to start the software in the Docker container warehouse management module locally on the virtual desktop of the virtual desktop operating system.
  • a Docker startup processor used to obtain permissions between commonly used software and virtual desktop users, and manage from the Docker container warehouse according to the permissions Obtain the image file of the corresponding common software from the module and load it into the Docker manager; and the Docker manager to start the software in the Docker container warehouse management module locally on the virtual desktop of the virtual desktop operating system.
  • the basic configuration information involved in this embodiment includes: configuration information of the operating system and basic software and driver information of the operating system; commonly used software includes office software and/or personalized software.
  • 2 is a schematic structural diagram of an implementation mode of a virtual desktop management system according to an embodiment of the present disclosure. As shown in FIG. 2, a physical hardware device 104 is used to virtualize the resources of one host server into multiple logical virtual Computer, and provide it to the terminal device 101 in the form of virtual desktop through the desktop protocol server and the desktop protocol.
  • the physical hardware device 104 includes: a computing, storage, and network virtualization module, configured to provide a virtualization capability for the physical hardware device and create a function of the virtual machine ; And the virtual desktop connection protocol server, used to obtain virtual desktops through virtual machines, and provide virtual desktops to terminal devices after the terminal device is connected to the desktop protocol client through the desktop protocol.
  • the virtual desktop resource management system 102 may further include: a desktop user management module, configured to maintain user information of the virtual desktop, and generate multiple virtual machines based on the basic configuration module of the virtual machine Desktop, and assign the virtual desktop to users in the system, where the user information includes at least: account number, password; and resource management module, used to manage and maintain the hardware physical equipment, network and storage management, and virtual Machine for resource management and life cycle management.
  • a desktop user management module configured to maintain user information of the virtual desktop, and generate multiple virtual machines based on the basic configuration module of the virtual machine Desktop, and assign the virtual desktop to users in the system, where the user information includes at least: account number, password
  • resource management module used to manage and maintain the hardware physical equipment, network and storage management, and virtual Machine for resource management and life cycle management.
  • the virtual desktop operating system 103 further includes: a desktop agent, configured to provide interaction between the virtual desktop and the virtual desktop resource management system and the terminal device.
  • the terminal device includes: a virtual desktop connection login client, which is used to provide an entry for a user to log in to the virtual desktop operating system to obtain a list of virtual desktops to be used; and a virtual desktop connection protocol The client is used to connect to and use the virtual desktop through the desktop protocol.
  • This embodiment provides a software hierarchical management system, which is used to implement the use of Android virtual desktops and the use of software hierarchies within the desktop, and the Android desktop software can be used directly without downloading installation packages and without installation, and can be used according to different users Attributes use different software effects.
  • the software layered management system includes: a physical hardware device 104, a virtual desktop resource management system 102, a terminal device 101, and a virtual desktop operating system 103, where the terminal device 101 installs a virtual desktop connection login on the terminal device
  • the type of terminal device that can be connected to the virtual desktop can be a Windows system PC, a Linux system thin terminal, a mobile Android, an iOS device, etc.
  • the client 312 can be logged in through the virtual desktop connection to authenticate the user to obtain the user can use List of virtual desktop virtual machines, and then you can connect to the remote virtual desktop through the desktop connection protocol.
  • the physical hardware device 104 is installed with a virtualized host system, and virtualizes computing, storage, and network resources from one host server to multiple logical virtual machines for use.
  • the virtual desktop resource management system 102 is used to manage, allocate, and maintain virtual machine resources such as computing, storage, and network resources, provide management and maintenance of desktop templates and software templates, provide user information maintenance for desktop users, and allocate desktop virtual machines, etc. . It can perform unified management on physical hardware devices, logical virtual machines, and virtual desktop users.
  • the virtual desktop resource management system 102 further includes: a basic configuration module 306, a software management module 309, an allocation module 310, and a Docker container warehouse management module 311.
  • the difference between the basic configuration module 306 and the software management module 309 is as follows: the basic configuration module 306 is used to install a standard operating system and basic used software, and a virtualized driver and an Android startup interceptor module.
  • the software management module 309 is used to install actual working software and/or personalized software. After using the Android desktop created by the basic configuration module 306 in combination with the software management module 309, the user can directly use the software in the system without downloading the software installation package from the Android application store and then install it. use.
  • Virtual desktop operating system 103 Windows, Android, Linux and other operating systems can be installed in the virtual desktop.
  • the Android system When the Android system is installed in the desktop virtual machine (that is, when the terminal device is the Android system), the Android desktop can be provided for use.
  • the virtual desktop operating system 103 includes: a Docker startup processor and a Docker manager.
  • each software template can use the sandbox mechanism of the Docker container and the simultaneous operation mechanism of multiple Docker containers to install the personalized software in the software management module 309 in the Docker container.
  • Each Docker container has downloaded and installed an image file of common software, and these Docker image files are uniformly deployed on the Docker warehouse server.
  • the software management module 309 is assigned to the user's Android desktop, the Android desktop is bound to the software management module 309 and an incremental Docker container image file download is performed, and when the Android system is started, the software management module 309 of this embodiment performs Start directly to run, which means that the Android desktop is bound to different software management modules and installed directly.
  • the user and application software use rights that can be configured in the desktop management platform give different users the right to use different software APP applications.
  • the software hierarchical management system provided by this embodiment can provide users with convenient software, so that users who use the Android desktop do not need to download the installation package, which reduces the installation process and prevents different users from downloading the same software.
  • the issue of version can be controlled by the software management module of the administrator whether there is the right to use the software and the version of the software.
  • the data used by the user is circulated in the virtualized data center, and will not be lost with the loss of the mobile phone. Maintaining personnel, enterprise data security, and users brings great convenience.
  • FIG. 3 is an architectural diagram of an embodiment of a software layered management system according to an embodiment of the present disclosure.
  • the system includes: physical hardware device 104, virtual A desktop operating system 103, a virtual desktop resource management system 102, and a terminal device 101.
  • the physical hardware device 104 includes: a computing, storage, and network virtualization module 301, which is used to provide virtualization capabilities for the physical hardware device, and a function of creating a virtual machine; and a virtual desktop connection protocol server 302, which is used to provide conversion of the virtual machine into The virtual desktop is provided to the user after being connected through the virtual desktop connection protocol client 313.
  • the virtual desktop operating system 103 includes: a desktop agent 303, used to provide interaction between the virtual desktop and the virtual desktop resource management system 102, and the terminal device 101, for example, the use of an external device; the Docker startup processor 304, used to obtain The user software permissions between common software and virtual desktop users and the corresponding software image file obtained from the Docker warehouse server, and transferred to the Android desktop system and then loaded into the Docker manager; and Docker manager 305, used for local Android desktop Start the software in the Docker container.
  • a desktop agent 303 used to provide interaction between the virtual desktop and the virtual desktop resource management system 102, and the terminal device 101, for example, the use of an external device
  • the Docker startup processor 304 used to obtain The user software permissions between common software and virtual desktop users and the corresponding software image file obtained from the Docker warehouse server, and transferred to the Android desktop system and then loaded into the Docker manager
  • Docker manager 305 used for local Android desktop Start the software in the Docker container.
  • the virtual desktop resource management system 102 includes: a basic configuration module 306 for managing basic configuration information required for running a virtual desktop; a desktop user management module 307 for maintaining user information of the virtual desktop, where the user information includes: Accounts, passwords, etc., and at the same time generate multiple virtual desktops based on the basic configuration module of the virtual machine, and assign the virtual desktops to the terminal devices in the system; the resource management module 308 is used to manage and maintain the hardware physical devices, and to the network , Storage management, and resource management and life cycle management of virtual machines; software management module 309, including a software management module composed of basic software management modules and common software management modules, that is, the software management module 309 can be used for basic software and The life cycle management of common software can create and manage the basic software management module of the desktop virtual machine, as well as the creation and management of the common software management module in the desktop; the allocation module 310 is used to allocate the user's authority to use the software. Through the allocation of permissions, to control different users to use different software; and Docker container warehouse
  • the terminal device 101 includes: a virtual desktop connection login client 312, which is used to provide an entrance for a user to log in to the virtual desktop operating system to obtain a list of virtual desktops to be used, wherein a corresponding client is to be installed on the terminal device, and the user is input when used
  • the name and password can be obtained through the virtual desktop resource management system after authentication to obtain a list of available desktops
  • FIG. 4 is a schematic diagram of a system loading template access according to an embodiment of the present disclosure
  • FIG. 5 is a schematic diagram of a Docker warehouse server according to an embodiment of the present disclosure
  • the virtual machine Android desktop is created through the virtual machine system basic software management module.
  • the Android desktop automatically comes with the APP software installed in the basic software management module, and the commonly used software management module is additional software for users. , And has been released to the Docker warehouse server in advance, and can be used in superposition with the software in the basic software management module.
  • the process includes: a. Install the Docker startup processor in advance in the system pre-installed application; b.
  • the Docker startup processor acquires the user Software permissions, and obtain the corresponding Docker container image file from the Docker warehouse server and transfer it to the Android system, and load it into the Docker manager.
  • the Docker manager is responsible for starting the software in the Docker container locally; c.
  • the Android desktop starts Scan the resources in the current system, such as system pre-installed application /system/app, system core component /system/priv-app, user installed application /data/app, etc. d.
  • the Android system After the scan is completed, the Android system obtains complete information Compare with the system configuration file package.xml to determine the update of the files in these directories, and then automatically optimize the system. The process of system optimization is to update the related APP applications. After the update is complete, the Android system starts.
  • a complete Android application interface felt by the user can use the APP software installed in the basic software management module or the APP software superimposed in the common software management module.
  • FIG. 6 is a flowchart 1 of loading an Android desktop according to an embodiment of the present disclosure.
  • the Android desktop is created by the basic software management module, that is, the process of loading the Android desktop when only the software of the basic software management module is owned.
  • the method includes the following steps S601 to S607.
  • step S601 the basic software management module installs the Android virtual desktop.
  • step S602 an Android virtual desktop is generated through the basic software management module and distributed to users.
  • step S603 log in and click to connect to the virtual desktop through the desktop client of the Android mobile terminal.
  • step S604 the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
  • step S605 the Android desktop operating system starts the interceptor and determines that there is no common software in the common software management module.
  • step S606 the system normally scans the local system applications of the Android system and the applications installed in the basic software management module.
  • step S607 the system normally starts the default system program, and at the same time presents the scanned application APP icon to the user.
  • FIGS. 7A and 7B are a flowchart 2 of loading an Android desktop according to an embodiment of the present disclosure.
  • the Android desktop is created by the basic software management module.
  • the software of the commonly used software management module, the Android desktop of the end user has the basic software management module and the software APP of the commonly used software management module, and the method of this process includes the following steps S701 to S710.
  • step S701 the basic software management module installs the basic software of the Android virtual desktop.
  • step S702 the software is installed in a Docker container and deployed in a Docker warehouse server, and converted into software in a common software management module, which is distributed to users for use.
  • the basic software management module can install only the most basic software APP that all users will use, and the software APP used by some people is made into the software in the common software management module and allocated to the corresponding part of the personnel;
  • step S703 an Android desktop is generated through the basic software management module and distributed to users.
  • step S704 the user uses an ordinary Android mobile terminal and installs a desktop client, logs in and clicks to connect to the desktop.
  • step S705 the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
  • step S706 the Android desktop operating system starts the interceptor, obtains software with common software management modules, obtains a list of software available to users, and obtains the corresponding Docker container image file from the Docker warehouse server and passes it to the Android system.
  • step S707 the system normally scans the system application local to the Android system and the APP application software installed in the basic software management module.
  • step S708 the Docker manager loads the software list in the newly added Docker container.
  • step S709 when the user clicks on the icon of the newly added Docker container, the APP application software starts to run independently in the Docker container.
  • step S710 the Android system starts to scan the resources in the current system, obtain complete information and compare it with the system configuration file package.xml, determine the new software APP in the added Docker manager, optimize the system, and load these new additions Software APP, the system finishes starting.
  • FIGS. 8A and 8B are a flowchart 3 of loading an Android desktop according to an embodiment of the present disclosure.
  • the Android desktop is created by software in the basic software management module, while having the software of the basic software management module.
  • the software in the common software management module is superimposed, but it can be filtered according to the user software permissions set by the user.
  • the end user’s Android desktop has the basic software management module and the authorized software APP in the common software management module, and the APP application without authorization Not displayed.
  • the method includes the following steps S801 to S811.
  • step S801 the basic software management module installs the basic software of the Android virtual desktop.
  • step S802 the software is installed in a Docker container and deployed in a Docker warehouse server, and converted into software in a common software management module.
  • different users in the software template allocate different software to use, and decentralize the use according to the characteristics of the users. For example, if the sales staff does not use the financial software of the financial staff, then the financial staff can only be assigned the corresponding software permissions, and the sales staff does not have the permissions, although the software APPs are in a software template on the final financial staff’s Android desktop. Corresponding financial software can be used, and the sales staff will not display this part of the software APP;
  • step S803 an Android desktop is generated through the basic software management module and distributed to users.
  • step S804 the user uses an ordinary Android mobile terminal and installs a desktop client, logs in and clicks to connect to the desktop.
  • step S805 the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
  • step S806 the Android desktop operating system starts the interceptor, obtains the software in the software management module, obtains the software list available to the user, and obtains the corresponding Docker container image file from the Docker warehouse server and passes it to the Android system.
  • step S807 the system normally scans the system application local to the Android system and the APP application software installed in the basic software management module.
  • step S808 the software permission filter is based on the list of available application software APPs configured on the server side of the logged-on Android desktop user, and after filtering, the Docker manager is allowed to load only the software list with permissions.
  • step S809 the Docker manager loads the software list in the newly added Docker container with permissions.
  • step S810 when the user clicks on the icon of the newly added Docker container, the APP application software starts to run independently in the Docker container.
  • step S811 the Android system starts to scan the resources in the current system, obtain complete information and compare it with the system configuration file package.xml, determine the newly added software APP in the added Docker manager, optimize the system, and load these new additions Software APP, the system finishes starting.
  • FIGS. 9A and 9B are a flowchart 4 of loading an Android desktop according to an embodiment of the present disclosure; as shown in FIGS. 9A and 9B, this alternative implementation is similar to alternative implementation three, but in this alternative implementation ,
  • the system supports linear expansion, supports the stacking of software in multiple common software management modules, and supports multiple Docker warehouse servers that store software to meet the increasing software needs of users.
  • the Android desktop is created by the basic software management module. While having the software of the basic software management module, the software in multiple common software management modules is superimposed. At the same time, all newly added software can still be filtered according to the usage rights set by the user.
  • the Android desktop has a basic software management module and software apps with permissions in all common software management modules. Apps without permissions are not displayed.
  • the method includes the following steps S901 to S911.
  • step S901 the basic software management module installs the software of the Android virtual desktop.
  • step S902 the system administrator installs the software in the Docker container in advance and deploys it in the Docker warehouse server, and supports multiple Docker warehouse servers at the same time.
  • the Docker container where the software is installed is converted into a software template, in which different users in the software template are assigned different software to use, and decentralized use is based on the characteristics of the users.
  • different software templates can be assigned according to different attributes of users. If they are sales-oriented, production-oriented, or under management leadership, the software used will be different.
  • the software used by these roles can be made into public software Templates, different software features are made into different software templates, and different software permissions can also be assigned according to different personnel levels.
  • step S903 an Android desktop is generated through the basic software management module and distributed to users.
  • step S904 through the Android mobile terminal and installed a desktop client, log in and click to connect to the desktop.
  • step S905 the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
  • step S906 the Android desktop operating system starts the interceptor, obtains a software template, obtains a list of software permissions that can be used by the user, and obtains corresponding Docker container image files from multiple Docker warehouse servers and passes it to the Android system.
  • step S907 the system normally scans the system application local to the Android system and the APP application software installed in the basic template.
  • step S908 the software permission filter is based on the list of available application software APPs configured on the server side of the logged-on Android desktop user, and after filtering, the Docker manager is allowed to load only the software list with permissions.
  • step S909 the Docker manager loads the software list in the newly added Docker container with permission.
  • step S910 when the user clicks the icon of the newly added Docker container, the APP application software starts to run independently in the Docker container.
  • step S911 the Android system starts to scan the resources in the current system, obtain complete information and compare it with the system configuration file package.xml, determine the new software APP in the added Docker manager, optimize the system, and load these new additions Software APP, the system finishes starting.
  • users can use Android virtual desktops on mobile devices or in the Windows operating system, and can control the Android software used in different layers according to different users.
  • Android software can be installed free of use You can start the operation directly, and you can set different people to use different software.
  • each software is saved before downloading the installation package and carrying out cumbersome installation before use, reducing the learning cost of using the Android system, and all the data will be in the server and storage of the computing center Circulation, there is no usage data on the terminal, and it cannot be transferred to the terminal.
  • This embodiment implements the software-free installation process on the basis of the Android virtualized desktop, and controls the software use rights according to different user rights, which improves the user's ease of use and guarantees user data security.
  • a terminal device in a software hierarchical management system for selecting a virtual machine from a list of virtual machines to be used by logging in to an installed client, and based on the selected virtual machine based on a desktop connection protocol Connected to a remote virtual desktop;
  • a virtual desktop resource management system is used to manage the virtual desktop operating system and virtual machine resources to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system.
  • the image files of common software are distributed in multiple different containers; the virtual desktop operating system is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system.
  • modules or steps of the present disclosure can be implemented by a general-purpose computing device, they can be concentrated on a single computing device, or distributed in a network composed of multiple computing devices Above, in an embodiment, they can be implemented with program code executable by the computing device, so that they can be stored in the storage device to be executed by the computing device, and in some cases, may be different from here
  • the steps shown or described are performed in the order of, or they are made into individual integrated circuit modules respectively, or multiple modules or steps among them are made into a single integrated circuit module to achieve. In this way, the present disclosure is not limited to any specific combination of hardware and software.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Human Computer Interaction (AREA)
  • Stored Programmes (AREA)

Abstract

Provided by the present disclosure is a software hierarchical management system, comprising: a terminal device used for selecting, by means of logging onto an installed client, a virtual machine from a list of virtual machines to be used, and connecting to a far-end virtual desktop on the basis of a desktop connection protocol according to the selected virtual machine; a virtual desktop resource management system used for managing a virtual desktop operating system and virtual machine resources so as to provide basic configuration and a plurality of pieces of commonly used software to a virtual desktop of the virtual desktop operating system, wherein image files of the plurality of pieces of commonly used software are distributed in a plurality of different containers; and a virtual desktop operating system which is installed on a physical hardware device and which is used for obtaining the basic configuration of the virtual desktop from the virtual desktop resource management system.

Description

软件分层管理系统Software layered management system 技术领域Technical field
本公开涉及(但不限于)通信领域。This disclosure relates to, but is not limited to, the field of communications.
背景技术Background technique
手机、移动终端已经无法离开人们生活,并且从普通生活场景下的使用已经渗透到了工作场景,如公司提供手机邮箱、移动办公系统、内部交流等,这些数据的流转都会在移动端内进行,若手机丢失,将会对这些数据造成极大的安全隐患。Mobile phones and mobile terminals have been unable to leave people's lives, and the use from ordinary life scenarios has penetrated into work scenarios, such as the company's mobile phone mailbox, mobile office system, internal communication, etc., these data will be transferred in the mobile terminal, if Losing the phone will cause great security risks to these data.
随着云计算业务的迅猛发展,云化的虚拟桌面技术已在运营商、政企、学校等场景广泛应用,包括自己搭建的私有云和可运营的公有云。With the rapid development of cloud computing services, cloud-based virtual desktop technology has been widely used in scenarios such as operators, government enterprises, and schools, including private clouds built by ourselves and operable public clouds.
虚拟桌面基础架构(Virtual Desktop Infrastructure,简称VDI),通过服务器虚拟化实现了对硬件的抽象,资源的分配、调度和管理,虚拟桌面与宿主操作系统及多个虚拟桌面间的隔离等功能,并通过协议使得瘦客户机端与服务器端展示云桌面映像。在虚拟化技术基础上,仍以虚拟的Windows系统桌面和Linux系统桌面为主流,而还没有虚拟出Android操作系统的云桌面在移动设备上使用,并且目前Android系统上使用的软件,是根据个人使用喜好自由下载APP(Application)软件自行安装后使用,不能免安装就直接使用软件,并且软件不能根据用户属性分配规则控制软件的使用权限。因此,用户在使用移动设备,尤其手机,在遗失或密码被盗后,个人数据和工作数据即会丢失,信息安全受到极大威胁。Virtual Desktop Infrastructure (VDI), through server virtualization, realizes the abstraction of hardware, resource allocation, scheduling and management, the isolation of virtual desktops from the host operating system and multiple virtual desktops, and Through the agreement, the thin client side and the server side can display the cloud desktop image. Based on the virtualization technology, the virtual Windows system desktop and Linux system desktop are still the mainstream, and there is no virtual cloud desktop for the Android operating system to be used on mobile devices, and the software currently used on the Android system is based on personal Download APP(Application) software freely according to your preferences and use it after installation. You cannot directly use the software without installation, and the software cannot control the use rights of the software according to user attribute assignment rules. Therefore, when users use mobile devices, especially mobile phones, personal data and work data will be lost after the password is lost or stolen, and information security is greatly threatened.
发明内容Summary of the invention
根据本公开的一个实施例,提供了一种软件分层管理系统,包括:终端设备、虚拟桌面资源管理系统和安装在物理硬件设备上的虚拟桌面操作系统;其中,所述终端设备用于通过登录安装的客户端以从待使用的虚拟机列表中选择虚拟机,并根据所选择的虚拟机基于桌 面连接协议连接到远端的虚拟桌面;所述虚拟桌面资源管理系统用于对所述虚拟桌面操作系统和虚拟机资源进行管理,以向所述虚拟桌面操作系统的虚拟桌面提供基础配置和多个常用软件,其中,多个常用软件的镜像文件分布在多个不同的容器中;并且所述虚拟桌面操作系统用于从所述虚拟桌面资源管理系统获取虚拟桌面的基础配置。According to an embodiment of the present disclosure, a software layered management system is provided, including: a terminal device, a virtual desktop resource management system, and a virtual desktop operating system installed on a physical hardware device; wherein, the terminal device is used to Log in to the installed client to select a virtual machine from the list of virtual machines to be used, and connect to the remote virtual desktop based on the desktop connection protocol according to the selected virtual machine; the virtual desktop resource management system is used to Desktop operating system and virtual machine resources are managed to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system, wherein the image files of multiple common software are distributed in multiple different containers; and The virtual desktop operating system is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system.
附图说明BRIEF DESCRIPTION
图1是根据本公开实施例的软件分层管理系统的结构示意图;FIG. 1 is a schematic structural diagram of a software layered management system according to an embodiment of the present disclosure;
图2是根据本公开实施例的软件分层管理系统的架构图;2 is an architecture diagram of a software layered management system according to an embodiment of the present disclosure;
图3是根据本公开实施例的软件分层管理系统的架构图;3 is an architecture diagram of a software layered management system according to an embodiment of the present disclosure;
图4是根据本公开实施例的软件分层管理系统加载模版访问示意图;4 is a schematic diagram of access to a loading template of a software layered management system according to an embodiment of the present disclosure;
图5是根据本公开实施例的Docker容器仓库的结构示意图;5 is a schematic structural diagram of a Docker container warehouse according to an embodiment of the present disclosure;
图6是根据本公开实施例的加载Android桌面的流程图一;6 is a flowchart 1 of loading an Android desktop according to an embodiment of the present disclosure;
图7A是根据本公开实施例的加载Android桌面的流程图二;7A is a flowchart 2 of loading an Android desktop according to an embodiment of the present disclosure;
图7B是根据本公开实施例的加载Android桌面的流程图二;7B is a flowchart 2 of loading an Android desktop according to an embodiment of the present disclosure;
图8A是根据本公开实施例的加载Android桌面的流程图三;8A is a flowchart 3 of loading an Android desktop according to an embodiment of the present disclosure;
图8B是根据本公开实施例的加载Android桌面的流程图三;8B is a flowchart 3 of loading an Android desktop according to an embodiment of the present disclosure;
图9A是根据本公开实施例的加载Android桌面的流程图四;以及9A is a flowchart 4 of loading an Android desktop according to an embodiment of the present disclosure; and
图9B是根据本公开实施例的加载Android桌面的流程图四。9B is a flowchart 4 of loading an Android desktop according to an embodiment of the present disclosure.
具体实施方式detailed description
下文中将参考附图并结合实施例来详细说明本公开。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。Hereinafter, the present disclosure will be described in detail with reference to the accompanying drawings and in conjunction with the embodiments. It should be noted that the embodiments in the present application and the features in the embodiments can be combined with each other if there is no conflict.
需要说明的是,本公开的说明书和权利要求书及上述附图中的术语“第一”、“第二”等是用于区别类似的对象,而不必用于描述特定的顺序或先后次序。It should be noted that the terms “first”, “second”, etc. in the specification and claims of the present disclosure and the above drawings are used to distinguish similar objects, and do not have to be used to describe a specific order or sequence.
本公开实施例提供了一种软件分层管理系统,图1是根据本公 开实施例的软件分层管理系统的结构示意图,如图1所示,该系统包括:终端设备101、虚拟桌面资源管理系统102和安装在物理硬件设备上的虚拟桌面操作系统103。终端设备101用于通过登录安装的客户端以从待使用的虚拟机列表中选择虚拟机,并根据所选择的虚拟机基于桌面连接协议连接到远端的虚拟桌面。虚拟桌面资源管理系统102用于对虚拟桌面操作系统103和虚拟机资源进行管理,以向虚拟桌面操作系统103的虚拟桌面提供基础配置和多个常用软件,其中,多个常用软件的镜像文件分布在多个不同的容器中。虚拟桌面操作系统103用于从虚拟桌面资源管理系统获取虚拟桌面的基础配置。An embodiment of the present disclosure provides a software layered management system. FIG. 1 is a schematic structural diagram of a software layered management system according to an embodiment of the present disclosure. As shown in FIG. 1, the system includes: a terminal device 101 and virtual desktop resource management The system 102 and the virtual desktop operating system 103 installed on the physical hardware device. The terminal device 101 is used to select a virtual machine from a list of virtual machines to be used by logging in the installed client, and connect to a remote virtual desktop based on the desktop connection protocol according to the selected virtual machine. The virtual desktop resource management system 102 is used to manage the virtual desktop operating system 103 and virtual machine resources to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system 103, where the image files of multiple common software are distributed In multiple different containers. The virtual desktop operating system 103 is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system.
在本实施例的可选实施方式中,该虚拟桌面资源管理系统102包括:基础配置模块,用于管理运行虚拟桌面所需的基础配置信息;软件管理模块,用于对基础配置信息和常用软件的生命周期进行管理,并且用于对基础配置信息和常用软件进行创建和管理;分配模块,用于设置常用软件与虚拟桌面用户之间的权限;Docker容器仓库管理模块,用于为软件管理模块中的软件提供安装仓库,其中,安装仓库包括多个容器,在每个容器中下载并安装一个常用软件的镜像文件。In an optional implementation manner of this embodiment, the virtual desktop resource management system 102 includes: a basic configuration module for managing basic configuration information required to run a virtual desktop; and a software management module for basic configuration information and common software Management of the life cycle of the software, and is used to create and manage basic configuration information and common software; allocation module, used to set permissions between common software and virtual desktop users; Docker container warehouse management module, used for software management module The software in provides an installation warehouse, where the installation warehouse includes multiple containers, and an image file of common software is downloaded and installed in each container.
此外,在本实施例的可选实施方式中,该虚拟桌面操作系统103还可以包括:Docker启动处理器,用于获取常用软件与虚拟桌面用户之间的权限,以及根据权限从Docker容器仓库管理模块中获取对应的常用软件的镜像文件,并加载到Docker管理器中;以及Docker管理器,用于在虚拟桌面操作系统的虚拟桌面本地启动所述Docker容器仓库管理模块中的软件。In addition, in an optional implementation manner of this embodiment, the virtual desktop operating system 103 may further include: a Docker startup processor, used to obtain permissions between commonly used software and virtual desktop users, and manage from the Docker container warehouse according to the permissions Obtain the image file of the corresponding common software from the module and load it into the Docker manager; and the Docker manager to start the software in the Docker container warehouse management module locally on the virtual desktop of the virtual desktop operating system.
通过上述Docker容器仓库管理模块将常用软件安装到不同的仓库中,进而通过获取该软件的镜像文件就能够直接使用该软件,实现了软件的免安装,此外,将常用软件安装到不同的仓库中实现了软件的分层管理,而且设置常用软件与虚拟桌面用户之间的权限关系,实现了不同的虚拟桌面用户具有不同的软件使用权限,进一步实现了软件的管理,提高了安全性。Install the common software to different warehouses through the above Docker container warehouse management module, and then use the software directly by obtaining the image file of the software, which realizes the free installation of the software. In addition, the common software is installed in different warehouses The hierarchical management of software is realized, and the permission relationship between commonly used software and virtual desktop users is set, so that different virtual desktop users have different software use permissions, which further realizes software management and improves security.
需要说明的是,本实施例中涉及到的基础配置信息包括:操作 系统的配置信息和运行操作系统的基础软件和驱动信息;常用软件包括:办公软件和/或个性化软件。图2是根据本公开实施例的虚拟桌面的管理系统的在一实施方式中结构示意图,如图2所示,物理硬件设备104,用于将一台主机服务器的资源虚拟化为多台逻辑虚拟机,并通过桌面协议服务端和桌面协议以虚拟桌面的方式提供给终端设备101。It should be noted that the basic configuration information involved in this embodiment includes: configuration information of the operating system and basic software and driver information of the operating system; commonly used software includes office software and/or personalized software. 2 is a schematic structural diagram of an implementation mode of a virtual desktop management system according to an embodiment of the present disclosure. As shown in FIG. 2, a physical hardware device 104 is used to virtualize the resources of one host server into multiple logical virtual Computer, and provide it to the terminal device 101 in the form of virtual desktop through the desktop protocol server and the desktop protocol.
其中,在本实施例的一个可选实施方式中,该物理硬件设备104包括:计算、存储以及网络虚拟化模块,用于为所述物理硬件设备提供虚拟化能力,创建所述虚拟机的功能;以及虚拟桌面连接协议服务端,用于通过虚拟机获取虚拟桌面,并在终端设备通过桌面协议与桌面协议客户端连接后将虚拟桌面提供到终端设备。Among them, in an optional implementation manner of this embodiment, the physical hardware device 104 includes: a computing, storage, and network virtualization module, configured to provide a virtualization capability for the physical hardware device and create a function of the virtual machine ; And the virtual desktop connection protocol server, used to obtain virtual desktops through virtual machines, and provide virtual desktops to terminal devices after the terminal device is connected to the desktop protocol client through the desktop protocol.
在本实施例的可选实施方式中,该虚拟桌面资源管理系统102还可以包括:桌面用户管理模块,用于对虚拟桌面的用户信息进行维护,并基于虚拟机的基础配置模块生成多个虚拟桌面,并将虚拟桌面分配给系统中的用户,其中,用户信息至少包括:账号、密码;以及资源管理模块,用于对硬件物理设备的管理和维护,对网络和存储的管理,以及对虚拟机进行资源管理和生命周期管理。In an optional implementation manner of this embodiment, the virtual desktop resource management system 102 may further include: a desktop user management module, configured to maintain user information of the virtual desktop, and generate multiple virtual machines based on the basic configuration module of the virtual machine Desktop, and assign the virtual desktop to users in the system, where the user information includes at least: account number, password; and resource management module, used to manage and maintain the hardware physical equipment, network and storage management, and virtual Machine for resource management and life cycle management.
进一步地,在本实施例的可选实施方式中,该虚拟桌面操作系统103还包括:桌面代理,用于提供虚拟桌面与虚拟桌面资源管理系统以及与终端设备之间的交互。Further, in an optional implementation manner of this embodiment, the virtual desktop operating system 103 further includes: a desktop agent, configured to provide interaction between the virtual desktop and the virtual desktop resource management system and the terminal device.
在本实施例的另一个可选实施方式中,该终端设备包括:虚拟桌面连接登录客户端,用于提供用户登录到虚拟桌面操作系统获取待使用的虚拟桌面列表的入口;以及虚拟桌面连接协议客户端,用于可通过桌面协议连接虚拟桌面并使用虚拟桌面。In another optional implementation manner of this embodiment, the terminal device includes: a virtual desktop connection login client, which is used to provide an entry for a user to log in to the virtual desktop operating system to obtain a list of virtual desktops to be used; and a virtual desktop connection protocol The client is used to connect to and use the virtual desktop through the desktop protocol.
下面结合本实施例的可选实施例对本申请进行详细说明。The application will be described in detail below in conjunction with the optional embodiment of this embodiment.
本实施例提供一种软件分层管理系统,用于实现使用Android虚拟桌面及其在桌面内使用软件分层,以及Android桌面的软件免下载安装包免安装即可直接使用,并且可以根据不同用户属性使用不同软件的效果。This embodiment provides a software hierarchical management system, which is used to implement the use of Android virtual desktops and the use of software hierarchies within the desktop, and the Android desktop software can be used directly without downloading installation packages and without installation, and can be used according to different users Attributes use different software effects.
在本实施例中,该软件分层管理系统包括:物理硬件设备104、虚拟桌面资源管理系统102、终端设备101、虚拟桌面操作系统103,其中,终端设备101在终端设备上安装虚拟桌面连接登录客户端312和虚拟桌面连接协议客户端313。可连接虚拟桌面的终端设备的类型可以是Windows系统PC机、Linux系统瘦终端机、移动Android、iOS设备等,通过虚拟桌面连接登录客户端312可以进行用户的鉴权登录,以获取用户可以使用的虚拟桌面虚拟机列表,进而通过桌面连接协议即可连接到远端的虚拟桌面。In this embodiment, the software layered management system includes: a physical hardware device 104, a virtual desktop resource management system 102, a terminal device 101, and a virtual desktop operating system 103, where the terminal device 101 installs a virtual desktop connection login on the terminal device The client 312 and the virtual desktop connection protocol client 313. The type of terminal device that can be connected to the virtual desktop can be a Windows system PC, a Linux system thin terminal, a mobile Android, an iOS device, etc. The client 312 can be logged in through the virtual desktop connection to authenticate the user to obtain the user can use List of virtual desktop virtual machines, and then you can connect to the remote virtual desktop through the desktop connection protocol.
物理硬件设备104安装有虚拟化主机系统,将一台主机服务器虚拟出计算、存储、网络资源,分配给多台逻辑虚拟机使用。在物理硬件设备104上安装虚拟桌面连接协议服务端302,终端设备通过虚拟桌面连接协议客户端313连接虚拟桌面连接协议服务端302,进而终端就可以通过桌面协议连接虚拟机,并以虚拟桌面方式将虚拟桌面提供给用户使用。The physical hardware device 104 is installed with a virtualized host system, and virtualizes computing, storage, and network resources from one host server to multiple logical virtual machines for use. Install the virtual desktop connection protocol server 302 on the physical hardware device 104, the terminal device connects to the virtual desktop connection protocol server 302 through the virtual desktop connection protocol client 313, and then the terminal can connect to the virtual machine through the desktop protocol and use the virtual desktop mode Provide virtual desktops to users.
虚拟桌面资源管理系统102用于对计算、存储、网络资源等虚拟机资源管理、分配和维护,提供桌面模版、软件模版的管理维护,提供桌面使用者的用户信息维护和桌面虚拟机的分配等。可以对物理硬件设备、逻辑虚拟机、虚拟桌面用户等进行统一管理。为实现Android桌面的软件分层,虚拟桌面资源管理系统102进一步包括:基础配置模块306、软件管理模块309、分配模块310、Docker容器仓库管理模块311。The virtual desktop resource management system 102 is used to manage, allocate, and maintain virtual machine resources such as computing, storage, and network resources, provide management and maintenance of desktop templates and software templates, provide user information maintenance for desktop users, and allocate desktop virtual machines, etc. . It can perform unified management on physical hardware devices, logical virtual machines, and virtual desktop users. In order to realize the software layering of the Android desktop, the virtual desktop resource management system 102 further includes: a basic configuration module 306, a software management module 309, an allocation module 310, and a Docker container warehouse management module 311.
基础配置模块306和软件管理模块309的区别为:基础配置模块306,用于安装标准的操作系统和基本使用的软件,及虚拟化驱动和Android启动拦截器模块。软件管理模块309,用于安装实际的工作软件和/或个性化软件。用户在使用通过基础配置模块306创建出的Android桌面并结合软件管理模块309后,就可以直接使用系统内的软件,不需要再从Android应用商店等下载软件安装包再去安装,而直接就可以使用。The difference between the basic configuration module 306 and the software management module 309 is as follows: the basic configuration module 306 is used to install a standard operating system and basic used software, and a virtualized driver and an Android startup interceptor module. The software management module 309 is used to install actual working software and/or personalized software. After using the Android desktop created by the basic configuration module 306 in combination with the software management module 309, the user can directly use the software in the system without downloading the software installation package from the Android application store and then install it. use.
虚拟桌面操作系统103:虚拟桌面内可以安装Windows、Android、 Linux等操作系统。当桌面虚拟机内安装的是Android系统时(即终端设备是Android系统的情况下),即可提供Android桌面使用。为实现Android桌面软件分层功能,该虚拟桌面操作系统103包括:Docker启动处理器、Docker管理器。Virtual desktop operating system 103: Windows, Android, Linux and other operating systems can be installed in the virtual desktop. When the Android system is installed in the desktop virtual machine (that is, when the terminal device is the Android system), the Android desktop can be provided for use. In order to realize the layering function of the Android desktop software, the virtual desktop operating system 103 includes: a Docker startup processor and a Docker manager.
需要说明的是,为了实现同一软件的相同版本,每个软件模版可以使用Docker容器的沙箱机制和可多Docker容器同时运行机制,将软件管理模块309中的个性化软件安装在Docker容器中,每个Docker容器已下载并安装好一个常用软件的镜像文件,这些Docker镜像文件统一部署在Docker仓库服务器上。当软件管理模块309分配给用户Android桌面后,Android桌面与软件管理模块309绑定并进行增量式的Docker容器镜像文件下载,并在Android系统启动时,通过本实施例的软件管理模块309进行启动直接运行,即达到了Android桌面绑定不同软件管理模块并且免安装直接使用的效果。同时,可在桌面管理平台中配置的用户与应用软件使用权限,给予不同用户使用不同软件APP应用的权限。It should be noted that in order to achieve the same version of the same software, each software template can use the sandbox mechanism of the Docker container and the simultaneous operation mechanism of multiple Docker containers to install the personalized software in the software management module 309 in the Docker container. Each Docker container has downloaded and installed an image file of common software, and these Docker image files are uniformly deployed on the Docker warehouse server. After the software management module 309 is assigned to the user's Android desktop, the Android desktop is bound to the software management module 309 and an incremental Docker container image file download is performed, and when the Android system is started, the software management module 309 of this embodiment performs Start directly to run, which means that the Android desktop is bound to different software management modules and installed directly. At the same time, the user and application software use rights that can be configured in the desktop management platform give different users the right to use different software APP applications.
需要说明的是,相关技术中Windows系统环境也存在软件分层的技术,但Windows系统需要包括注册表和应用文件两部分,同时无法使用Docker技术,因此会采用编写驱动在底层完成对文件的拦截和处理,将系统使用的文件指向应用软件的目录中,因此只能针对软件管理模块中的所有软件进行控制可使用或不可使用,无法针对每个用户对每个应用控制可使用或不可使用。It should be noted that in the related technology, there are also software layering technologies in the Windows system environment, but the Windows system needs to include two parts of the registry and application files, and Docker technology cannot be used at the same time, so the writing driver will be used to intercept the files at the bottom. And processing, pointing the files used by the system to the directory of the application software, so it can only be controlled or not available for all software in the software management module, and cannot be used or not available for each user for each application.
通过本实施例提供的软件分层管理系统,可以非常方便的提供给用户使用的软件,让使用Android桌面的用户不需要再下载安装包,减少安装的过程,也避免了不同用户下载同一软件不同版本的问题,都可以由管理员的软件管理模块统一管控是否有使用软件的权限和软件的版本,同时用户使用的数据都在虚拟化数据中心中流转,不会随手机丢失而丢失,给企业维护人员、企业数据安全及使用的用户带来极大的便利。The software hierarchical management system provided by this embodiment can provide users with convenient software, so that users who use the Android desktop do not need to download the installation package, which reduces the installation process and prevents different users from downloading the same software. The issue of version can be controlled by the software management module of the administrator whether there is the right to use the software and the version of the software. At the same time, the data used by the user is circulated in the virtualized data center, and will not be lost with the loss of the mobile phone. Maintaining personnel, enterprise data security, and users brings great convenience.
下面结合本实施例的具体实施方式和附图对本案进行详细说明。The case will be described in detail below in conjunction with the specific implementation of this embodiment and the drawings.
首先结合图3对本系统的框架进行说明,图3是根据本公开实施例的软件分层管理系统在一实施方式中的架构图,如图3所示,该系统包括:物理硬件设备104、虚拟桌面操作系统103、虚拟桌面资源管理系统102、终端设备101。物理硬件设备104包括:计算、存储以及网络虚拟化模块301,用于为物理硬件设备提供虚拟化能力,创建虚拟机的功能;以及虚拟桌面连接协议服务端302,用于提供将虚拟机转换为虚拟桌面,并通过虚拟桌面连接协议客户端313连接后提供给用户。First, the framework of the system will be described with reference to FIG. 3, which is an architectural diagram of an embodiment of a software layered management system according to an embodiment of the present disclosure. As shown in FIG. 3, the system includes: physical hardware device 104, virtual A desktop operating system 103, a virtual desktop resource management system 102, and a terminal device 101. The physical hardware device 104 includes: a computing, storage, and network virtualization module 301, which is used to provide virtualization capabilities for the physical hardware device, and a function of creating a virtual machine; and a virtual desktop connection protocol server 302, which is used to provide conversion of the virtual machine into The virtual desktop is provided to the user after being connected through the virtual desktop connection protocol client 313.
虚拟桌面操作系统103包括:桌面代理303,用于提供虚拟桌面与虚拟桌面资源管理系统102、以及与终端设备101之间的交互,例如,外部设备的使用;Docker启动处理器304,用于获取常用软件与虚拟桌面用户之间的用户软件权限和从Docker仓库服务器中获取对应软件镜像文件,并传递到Android桌面系统之后加载到Docker管理器中;以及Docker管理器305,用于在Android桌面本地启动Docker容器中的软件。The virtual desktop operating system 103 includes: a desktop agent 303, used to provide interaction between the virtual desktop and the virtual desktop resource management system 102, and the terminal device 101, for example, the use of an external device; the Docker startup processor 304, used to obtain The user software permissions between common software and virtual desktop users and the corresponding software image file obtained from the Docker warehouse server, and transferred to the Android desktop system and then loaded into the Docker manager; and Docker manager 305, used for local Android desktop Start the software in the Docker container.
虚拟桌面资源管理系统102包括:基础配置模块306,用于管理运行虚拟桌面所需的基础配置信息;桌面用户管理模块307,用于对虚拟桌面的用户信息进行维护,其中,该用户信息包括:账号、密码等,同时并基于虚拟机的基础配置模块生成多个虚拟桌面,并将虚拟桌面分配给系统中的终端设备;资源管理模块308,用于对硬件物理设备的管理和维护,对网络、存储的管理,以及对虚拟机进行资源管理和生命周期管理;软件管理模块309,包括由基础软件管理模块和常用软件管理模块组成的软件管理模块,即该软件管理模块309可对基础软件和常用软件进行生命周期管理,可以对桌面虚拟机基础软件管理模块进行创建和管理,以及对桌面内常用软件管理模块进行创建和管理;分配模块310,用于对用户使用软件的权限的分配。通过权限的分配,以控制不同用户使用不同的软件;以及Docker容器仓库管理模块311,为软件管理模块309中的软件提供安装仓库,其中,所述安装仓库包括多个容器,每个容器中下载并安装一个常用软件的镜像文件。The virtual desktop resource management system 102 includes: a basic configuration module 306 for managing basic configuration information required for running a virtual desktop; a desktop user management module 307 for maintaining user information of the virtual desktop, where the user information includes: Accounts, passwords, etc., and at the same time generate multiple virtual desktops based on the basic configuration module of the virtual machine, and assign the virtual desktops to the terminal devices in the system; the resource management module 308 is used to manage and maintain the hardware physical devices, and to the network , Storage management, and resource management and life cycle management of virtual machines; software management module 309, including a software management module composed of basic software management modules and common software management modules, that is, the software management module 309 can be used for basic software and The life cycle management of common software can create and manage the basic software management module of the desktop virtual machine, as well as the creation and management of the common software management module in the desktop; the allocation module 310 is used to allocate the user's authority to use the software. Through the allocation of permissions, to control different users to use different software; and Docker container warehouse management module 311, provides an installation warehouse for the software in the software management module 309, wherein the installation warehouse includes multiple containers, each container download And install an image file of commonly used software.
终端设备101包括:虚拟桌面连接登录客户端312,用于提供用户登录到虚拟桌面操作系统获取待使用的虚拟桌面列表的入口,其中,在终端设备上要安装对应的客户端,使用时输入用户名和密码,通过到虚拟桌面资源管理系统鉴权后即可获取到可用的桌面列表;以及虚拟桌面连接协议客户端313,通过点击获取虚拟桌面连接登录客户端312的桌面列表,即可通过桌面协议连接桌面并使用。The terminal device 101 includes: a virtual desktop connection login client 312, which is used to provide an entrance for a user to log in to the virtual desktop operating system to obtain a list of virtual desktops to be used, wherein a corresponding client is to be installed on the terminal device, and the user is input when used The name and password can be obtained through the virtual desktop resource management system after authentication to obtain a list of available desktops; and virtual desktop connection protocol client 313, click to obtain the virtual desktop connection login client 312 desktop list, you can use the desktop protocol Connect to the desktop and use.
结合上述图3的框架图以及下述图4至图9对本申请进行进一步的说明,图4是根据本公开实施例的系统加载模版访问示意图,图5是根据本公开实施例的Docker仓库服务器示意图,如图4和图5所示,通过虚拟机系统基础软件管理模块创建虚拟机Android桌面,Android桌面内自动带有基础软件管理模块中安装的APP软件,常用软件管理模块为用户额外分配的软件,并已提前发布到Docker仓库服务器中,可以与基础软件管理模块中的软件叠加进行使用。The present application will be further described in conjunction with the above frame diagram of FIG. 3 and the following FIGS. 4 to 9, FIG. 4 is a schematic diagram of a system loading template access according to an embodiment of the present disclosure, and FIG. 5 is a schematic diagram of a Docker warehouse server according to an embodiment of the present disclosure As shown in Figure 4 and Figure 5, the virtual machine Android desktop is created through the virtual machine system basic software management module. The Android desktop automatically comes with the APP software installed in the basic software management module, and the commonly used software management module is additional software for users. , And has been released to the Docker warehouse server in advance, and can be used in superposition with the software in the basic software management module.
当基础软件管理模块与常用软件管理模块在同一个桌面虚拟机叠加使用的过程包括:a.系统预装应用中提前安装Docker启动处理器;b.当Android桌面启动时,Docker启动处理器获取用户软件权限,并从Docker仓库服务器中获取对应Docker容器镜像文件传递到Android系统中,同时加载到Docker管理器中,Docker管理器负责在本地启动Docker容器中的软件;c.在Android桌面启动时会对当前系统中的资源进行扫描,如系统预装应用/system/app,系统核心组件/system/priv-app,用户安装应用/data/app等;d.扫描完成后,Android系统获取完整的信息与系统配置文件package.xml进行比对,判断这些目录下的文件发生的更新,之后自动进行系统优化,系统优化的过程即更新相关的APP应用,更新完成后,Android系统真正启动。When the basic software management module and common software management modules are superimposed on the same desktop virtual machine, the process includes: a. Install the Docker startup processor in advance in the system pre-installed application; b. When the Android desktop starts, the Docker startup processor acquires the user Software permissions, and obtain the corresponding Docker container image file from the Docker warehouse server and transfer it to the Android system, and load it into the Docker manager. The Docker manager is responsible for starting the software in the Docker container locally; c. When the Android desktop starts Scan the resources in the current system, such as system pre-installed application /system/app, system core component /system/priv-app, user installed application /data/app, etc. d. After the scan is completed, the Android system obtains complete information Compare with the system configuration file package.xml to determine the update of the files in these directories, and then automatically optimize the system. The process of system optimization is to update the related APP applications. After the update is complete, the Android system starts.
此后,用户感受到的一个完整Android应用界面,即可使用基础软件管理模块中安装的APP软件,也可使用常用软件管理模块中叠加后的APP软件。After that, a complete Android application interface felt by the user can use the APP software installed in the basic software management module or the APP software superimposed in the common software management module.
基于上述说明书结合本实施例的可选实施方式进行举例说明;An example is described based on the above description in combination with the optional implementation manner of this embodiment;
可选实施方式一Alternative Embodiment One
图6是根据本公开实施例的加载Android桌面的流程图一,如图6所示,Android桌面通过基础软件管理模块创建,即只拥有基础软件管理模块的软件时,加载Android桌面的过程,该方法包括如下步骤S601至S607。FIG. 6 is a flowchart 1 of loading an Android desktop according to an embodiment of the present disclosure. As shown in FIG. 6, the Android desktop is created by the basic software management module, that is, the process of loading the Android desktop when only the software of the basic software management module is owned. The method includes the following steps S601 to S607.
在步骤S601,基础软件管理模块安装好Android虚拟桌面。In step S601, the basic software management module installs the Android virtual desktop.
在步骤S602,将通过基础软件管理模块生成Android虚拟桌面,分给用户使用。In step S602, an Android virtual desktop is generated through the basic software management module and distributed to users.
在步骤S603,通过Android手机终端的桌面客户端,登录并点击连接虚拟桌面。In step S603, log in and click to connect to the virtual desktop through the desktop client of the Android mobile terminal.
在步骤S604,通过桌面协议连接远端虚拟化服务器中心的Android虚拟桌面,通过协议将Android桌面启动过程呈现给终端设备上。In step S604, the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
在步骤S605,Android桌面操作系统启动拦截器,判断没有常用软件管理模块中的常用软件。In step S605, the Android desktop operating system starts the interceptor and determines that there is no common software in the common software management module.
在步骤S606,系统正常扫描Android系统本地的系统应用、基础软件管理模块中安装的应用。In step S606, the system normally scans the local system applications of the Android system and the applications installed in the basic software management module.
在步骤S607,系统正常启动默认的系统程序,同时展现给用户扫描到的应用APP图标。In step S607, the system normally starts the default system program, and at the same time presents the scanned application APP icon to the user.
可选实施方式二Optional embodiment two
图7A和图7B是根据本公开实施例的加载Android桌面的流程图二,如图7A和图7B所示,Android桌面通过基础软件管理模块创建,拥有基础软件管理模块的软件的同时,叠加了常用软件管理模块的软件,最终用户的Android桌面拥有基础软件管理模块和常用软件管理模块的软件APP,该流程的方法包括如下步骤S701至S710。FIGS. 7A and 7B are a flowchart 2 of loading an Android desktop according to an embodiment of the present disclosure. As shown in FIGS. 7A and 7B, the Android desktop is created by the basic software management module. The software of the commonly used software management module, the Android desktop of the end user has the basic software management module and the software APP of the commonly used software management module, and the method of this process includes the following steps S701 to S710.
在步骤S701,基础软件管理模块安装好Android虚拟桌面的基础软件。In step S701, the basic software management module installs the basic software of the Android virtual desktop.
在步骤S702,将软件安装在Docker容器中,并部署在Docker 仓库服务器中,并转换为常用软件管理模块中的软件,分配给用户可以使用。In step S702, the software is installed in a Docker container and deployed in a Docker warehouse server, and converted into software in a common software management module, which is distributed to users for use.
例如,基础软件管理模块中可以只安装所有使用者都会用到的最基础的软件APP,而针对部分人使用的软件APP做成常用软件管理模块中的软件,分配给对应的部分人员使用;For example, the basic software management module can install only the most basic software APP that all users will use, and the software APP used by some people is made into the software in the common software management module and allocated to the corresponding part of the personnel;
在步骤S703,通过基础软件管理模块生成Android桌面,并分给用户使用。In step S703, an Android desktop is generated through the basic software management module and distributed to users.
在步骤S704,用户使用普通的Android手机终端并安装了桌面客户端,登录并点击连接桌面。In step S704, the user uses an ordinary Android mobile terminal and installs a desktop client, logs in and clicks to connect to the desktop.
在步骤S705,通过桌面协议连接远端虚拟化服务器中心的Android虚拟桌面,通过协议将Android桌面启动过程呈现给终端设备上。In step S705, the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
在步骤S706,Android桌面操作系统启动拦截器,获取到有常用软件管理模块的软件,获取用户可使用的软件列表,并从Docker仓库服务器中获取对应Docker容器镜像文件传递到Android系统中。In step S706, the Android desktop operating system starts the interceptor, obtains software with common software management modules, obtains a list of software available to users, and obtains the corresponding Docker container image file from the Docker warehouse server and passes it to the Android system.
在步骤S707,系统正常扫描Android系统本地的系统应用、基础软件管理模块中安装的APP应用软件。In step S707, the system normally scans the system application local to the Android system and the APP application software installed in the basic software management module.
在步骤S708,Docker管理器加载新增的Docker容器中的软件清单。In step S708, the Docker manager loads the software list in the newly added Docker container.
在步骤S709,当用户点击新增的Docker容器的图标时,APP应用软件即在Docker容器内开始独立运行。In step S709, when the user clicks on the icon of the newly added Docker container, the APP application software starts to run independently in the Docker container.
在步骤S710,Android系统启动扫描当前系统中的资源,获取完整的信息与系统配置文件package.xml进行比对,判断增加的Docker管理器中的新增软件APP,进行系统优化,加载这些新增软件APP,系统完成启动。In step S710, the Android system starts to scan the resources in the current system, obtain complete information and compare it with the system configuration file package.xml, determine the new software APP in the added Docker manager, optimize the system, and load these new additions Software APP, the system finishes starting.
Android系统同时展现给用户的是基础软件管理模块中的应用APP和常用软件管理模块中的软件应用APP的合集。What the Android system shows to the user at the same time is the collection of the application APP in the basic software management module and the software application APP in the common software management module.
可选实施方式三Optional embodiment three
图8A和图8B是根据本公开实施例的加载Android桌面的流程图三,如图8A和图8B所示,Android桌面通过基础软件管理模块中的软件创建,拥有基础软件管理模块的软件的同时,叠加了常用软件管理模块中的软件,但可以根据用户设置的使用软件权限进行过滤,最终用户的Android桌面拥有基础软件管理模块和常用软件管理模块中有权限的软件APP,没有权限的APP应用不展示。该方法包括如下步骤S801至S811。8A and 8B are a flowchart 3 of loading an Android desktop according to an embodiment of the present disclosure. As shown in FIGS. 8A and 8B, the Android desktop is created by software in the basic software management module, while having the software of the basic software management module. , The software in the common software management module is superimposed, but it can be filtered according to the user software permissions set by the user. The end user’s Android desktop has the basic software management module and the authorized software APP in the common software management module, and the APP application without authorization Not displayed. The method includes the following steps S801 to S811.
在步骤S801,基础软件管理模块安装好Android虚拟桌面的基础软件。In step S801, the basic software management module installs the basic software of the Android virtual desktop.
在步骤S802,将软件安装在Docker容器中,并部署在Docker仓库服务器中,并转换为常用软件管理模块中的软件。In step S802, the software is installed in a Docker container and deployed in a Docker warehouse server, and converted into software in a common software management module.
其中,软件模版中不同用户分配不同软件使用,根据用户的特征进行分权使用。例如,销售人员不会用到财务人员的财务软件,那就可以只给财务人员分配对应软件的权限,而销售人员没有权限,虽然软件APP都在一个软件模版中,在最终财务人员的Android桌面中可以使用对应的财务软件,而销售人员就没有这部分软件APP的显示;Among them, different users in the software template allocate different software to use, and decentralize the use according to the characteristics of the users. For example, if the sales staff does not use the financial software of the financial staff, then the financial staff can only be assigned the corresponding software permissions, and the sales staff does not have the permissions, although the software APPs are in a software template on the final financial staff’s Android desktop. Corresponding financial software can be used, and the sales staff will not display this part of the software APP;
在步骤S803,通过基础软件管理模块生成Android桌面,并分给用户使用。In step S803, an Android desktop is generated through the basic software management module and distributed to users.
在步骤S804,用户使用普通的Android手机终端并安装了桌面客户端,登录并点击连接桌面。In step S804, the user uses an ordinary Android mobile terminal and installs a desktop client, logs in and clicks to connect to the desktop.
在步骤S805,通过桌面协议连接远端虚拟化服务器中心的Android虚拟桌面,通过协议将Android桌面启动过程呈现给终端设备上。In step S805, the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
在步骤S806,Android桌面操作系统启动拦截器,获取到有软件管理模块中的软件,获取用户可使用的软件列表,并从Docker仓库服务器中获取对应Docker容器镜像文件传递到Android系统中。In step S806, the Android desktop operating system starts the interceptor, obtains the software in the software management module, obtains the software list available to the user, and obtains the corresponding Docker container image file from the Docker warehouse server and passes it to the Android system.
在步骤S807,系统正常扫描Android系统本地的系统应用、基础软件管理模块中安装的APP应用软件。In step S807, the system normally scans the system application local to the Android system and the APP application software installed in the basic software management module.
在步骤S808,软件权限过滤器,根据登录Android桌面用户在服务器端配置的可用应用软件APP列表,进行过滤后,让Docker管理器只加载有权限的软件清单。In step S808, the software permission filter is based on the list of available application software APPs configured on the server side of the logged-on Android desktop user, and after filtering, the Docker manager is allowed to load only the software list with permissions.
在步骤S809,Docker管理器加载有权限的新增的Docker容器中的软件清单。In step S809, the Docker manager loads the software list in the newly added Docker container with permissions.
在步骤S810;当用户点击新增的Docker容器的图标时,APP应用软件即在Docker容器内开始独立运行。In step S810; when the user clicks on the icon of the newly added Docker container, the APP application software starts to run independently in the Docker container.
在步骤S811,Android系统启动扫描当前系统中的资源,获取完整的信息与系统配置文件package.xml进行比对,判断增加的Docker管理器中的新增软件APP,进行系统优化,加载这些新增软件APP,系统完成启动。In step S811, the Android system starts to scan the resources in the current system, obtain complete information and compare it with the system configuration file package.xml, determine the newly added software APP in the added Docker manager, optimize the system, and load these new additions Software APP, the system finishes starting.
其中,Android系统同时展现给用户的是基础软件管理模块中应用APP和常用软件管理模块中用户有权限使用的应用软件APP的合集。Among them, what the Android system shows to the user at the same time is a collection of application APPs in the basic software management module and application software APPs that the user has permission to use in the common software management module.
可选实施方式四Optional embodiment four
图9A和图9B是根据本公开实施例的加载Android桌面的流程图四;如图9A和图9B所示,该可选实施方式与可选实施方式三类似,但在本可选实施方式中,系统支持线性扩展,支持多个常用软件管理模块中的软件进行叠加,支持从多个存放软件的Docker仓库服务器,以便满足用户逐渐增多的软件需求。Android桌面通过基础软件管理模块创建,拥有基础软件管理模块的软件的同时,叠加了多个常用软件管理模块中的软件,同时所有新增的软件仍可以根据用户设置的使用权限进行过滤,最终用户的Android桌面拥有基础软件管理模块和所有常用软件管理模块中有权限的软件APP,没有权限的APP应用不展示,该方法包括如下步骤S901至S911。9A and 9B are a flowchart 4 of loading an Android desktop according to an embodiment of the present disclosure; as shown in FIGS. 9A and 9B, this alternative implementation is similar to alternative implementation three, but in this alternative implementation , The system supports linear expansion, supports the stacking of software in multiple common software management modules, and supports multiple Docker warehouse servers that store software to meet the increasing software needs of users. The Android desktop is created by the basic software management module. While having the software of the basic software management module, the software in multiple common software management modules is superimposed. At the same time, all newly added software can still be filtered according to the usage rights set by the user. The end user The Android desktop has a basic software management module and software apps with permissions in all common software management modules. Apps without permissions are not displayed. The method includes the following steps S901 to S911.
在步骤S901,基础软件管理模块安装好Android虚拟桌面的软件。In step S901, the basic software management module installs the software of the Android virtual desktop.
在步骤S902,系统管理员提前将软件安装在Docker容器中,并部署在Docker仓库服务器中,同时支持多个Docker仓库服务器。In step S902, the system administrator installs the software in the Docker container in advance and deploys it in the Docker warehouse server, and supports multiple Docker warehouse servers at the same time.
也就是说,可以根据软件属性不同存放在不同的仓库服务器,便于区分和管理。其中,安装软件的Docker容器转换为软件模版,其中,软件模版中不同用户分配不同软件使用,根据用户的特征进行分权使用。例如,可以根据用户不同的属性,分配不同的软件模版,如有面向销售的,面向生产的,有管理层领导的,使用的软件会有不同,可将这些角色共同使用的软件做成公共软件模版,将不同的特性软件做成不同的软件模版,并且也可根据不同人员的等级,分配不同的软件权限。In other words, it can be stored in different warehouse servers according to different software attributes, which is easy to distinguish and manage. Among them, the Docker container where the software is installed is converted into a software template, in which different users in the software template are assigned different software to use, and decentralized use is based on the characteristics of the users. For example, different software templates can be assigned according to different attributes of users. If they are sales-oriented, production-oriented, or under management leadership, the software used will be different. The software used by these roles can be made into public software Templates, different software features are made into different software templates, and different software permissions can also be assigned according to different personnel levels.
在步骤S903,通过基础软件管理模块生成Android桌面,并分给用户使用。In step S903, an Android desktop is generated through the basic software management module and distributed to users.
在步骤S904,通过Android手机终端并安装了桌面客户端,登录并点击连接桌面。In step S904, through the Android mobile terminal and installed a desktop client, log in and click to connect to the desktop.
在步骤S905,通过桌面协议连接远端虚拟化服务器中心的Android虚拟桌面,通过协议将Android桌面启动过程呈现给终端设备上。In step S905, the Android virtual desktop in the remote virtualization server center is connected through the desktop protocol, and the Android desktop startup process is presented to the terminal device through the protocol.
在步骤S906,Android桌面操作系统启动拦截器,获取到有软件模版,获取用户可使用的软件权限列表,并从多个Docker仓库服务器中获取对应Docker容器镜像文件传递到Android系统中。In step S906, the Android desktop operating system starts the interceptor, obtains a software template, obtains a list of software permissions that can be used by the user, and obtains corresponding Docker container image files from multiple Docker warehouse servers and passes it to the Android system.
在步骤S907,系统正常扫描Android系统本地的系统应用、基础模版中安装的APP应用软件。In step S907, the system normally scans the system application local to the Android system and the APP application software installed in the basic template.
在步骤S908,软件权限过滤器,根据登录Android桌面用户在服务器端配置的可用应用软件APP列表,进行过滤后,让Docker管理器只加载有权限的软件清单。In step S908, the software permission filter is based on the list of available application software APPs configured on the server side of the logged-on Android desktop user, and after filtering, the Docker manager is allowed to load only the software list with permissions.
在步骤S909,Docker管理器加载有权限的新增的Docker容器中的软件清单。In step S909, the Docker manager loads the software list in the newly added Docker container with permission.
在步骤S910,当用户点击新增的Docker容器的图标时,APP应用软件即在Docker容器内开始独立运行。In step S910, when the user clicks the icon of the newly added Docker container, the APP application software starts to run independently in the Docker container.
在步骤S911,Android系统启动扫描当前系统中的资源,获取 完整的信息与系统配置文件package.xml进行比对,判断增加的Docker管理器中的新增软件APP,进行系统优化,加载这些新增软件APP,系统完成启动。In step S911, the Android system starts to scan the resources in the current system, obtain complete information and compare it with the system configuration file package.xml, determine the new software APP in the added Docker manager, optimize the system, and load these new additions Software APP, the system finishes starting.
其中,Android系统同时展现给用户的是基础软件管理模块中应用APP和常用软件管理模块中用户有权限使用的应用软件APP的合集。Among them, what the Android system shows to the user at the same time is a collection of application APPs in the basic software management module and application software APPs that the user has permission to use in the common software management module.
通过本实施例,用户可以使用在移动设备上、或windows操作系统内,都可以使用Android虚拟桌面,并且可以根据不同用户对使用的Android软件进行分层控制,同时Android软件在使用时可以免安装即可直接启动运行,并且可设置不同人员使用不同的软件。用户在使用Android虚拟桌面时,免去了每个软件要单独下载安装包并进行繁琐的安装后才能使用,减少对Android系统使用的学习成本,并且所有的数据都会在计算中心的服务器和存储中流转,终端上没有任何使用数据,也无法转移到终端上。本实施例实现了Android虚拟化桌面基础上软件免安装过程即使用,并且根据不同用户权限控制软件使用权限,提高了用户的易用性和保障了用户数据安全性。Through this embodiment, users can use Android virtual desktops on mobile devices or in the Windows operating system, and can control the Android software used in different layers according to different users. At the same time, Android software can be installed free of use You can start the operation directly, and you can set different people to use different software. When users use the Android virtual desktop, each software is saved before downloading the installation package and carrying out cumbersome installation before use, reducing the learning cost of using the Android system, and all the data will be in the server and storage of the computing center Circulation, there is no usage data on the terminal, and it cannot be transferred to the terminal. This embodiment implements the software-free installation process on the basis of the Android virtualized desktop, and controls the software use rights according to different user rights, which improves the user's ease of use and guarantees user data security.
通过本发明,提供了一种软件分层管理系统中的终端设备,用于通过登录安装的客户端以从待使用的虚拟机列表中选择虚拟机,并根据所选择的虚拟机基于桌面连接协议连接到远端的虚拟桌面;虚拟桌面资源管理系统,用于对虚拟桌面操作系统和虚拟机资源进行管理以向虚拟桌面操作系统的虚拟桌面提供基础配置和多个常用软件,其中,所述多个常用软件的镜像文件分布在多个不同的容器中;虚拟桌面操作系统,用于从虚拟桌面资源管理系统获取虚拟桌面的基础配置。通过本发明,解决了相关技术中基于Android系统的虚拟桌面中的APP需要下载后才能使用而不能免安装直接使用,以及无法对软件进行分层管理的问题,达到了提供用户体验的效果。Through the present invention, a terminal device in a software hierarchical management system is provided for selecting a virtual machine from a list of virtual machines to be used by logging in to an installed client, and based on the selected virtual machine based on a desktop connection protocol Connected to a remote virtual desktop; a virtual desktop resource management system is used to manage the virtual desktop operating system and virtual machine resources to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system. The image files of common software are distributed in multiple different containers; the virtual desktop operating system is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system. The invention solves the problems that the APP in the virtual desktop based on the Android system in the related art needs to be downloaded before it can be used without installation and without layered management of the software, and the effect of providing a user experience is achieved.
显然,本领域的技术人员应该明白,上述的本公开的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,在一实施方式中,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存 储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本公开不限制于任何特定的硬件和软件结合。Obviously, those skilled in the art should understand that the above-mentioned modules or steps of the present disclosure can be implemented by a general-purpose computing device, they can be concentrated on a single computing device, or distributed in a network composed of multiple computing devices Above, in an embodiment, they can be implemented with program code executable by the computing device, so that they can be stored in the storage device to be executed by the computing device, and in some cases, may be different from here The steps shown or described are performed in the order of, or they are made into individual integrated circuit modules respectively, or multiple modules or steps among them are made into a single integrated circuit module to achieve. In this way, the present disclosure is not limited to any specific combination of hardware and software.
以上所述仅为本公开的优选实施例而已,并不用于限制本公开,对于本领域的技术人员来说,本公开可以有各种更改和变化。凡在本公开的原则之内,所作的任何修改、等同替换、改进等,均应包含在本公开的保护范围之内。The above are only preferred embodiments of the present disclosure, and are not intended to limit the present disclosure. For those skilled in the art, the present disclosure may have various modifications and changes. Any modification, equivalent replacement, improvement, etc. made within the principles of this disclosure shall be included in the protection scope of this disclosure.

Claims (9)

  1. 一种软件分层管理系统,包括:终端设备、虚拟桌面资源管理系统和安装在物理硬件设备上的虚拟桌面操作系统,其中,A software hierarchical management system includes: a terminal device, a virtual desktop resource management system, and a virtual desktop operating system installed on a physical hardware device, where,
    所述终端设备用于通过登录安装的客户端以从待使用的虚拟机列表中选择虚拟机,并根据所选择的虚拟机基于桌面连接协议连接到远端的虚拟桌面;The terminal device is used to select a virtual machine from a list of virtual machines to be used by logging in the installed client, and connect to a remote virtual desktop based on the desktop connection protocol according to the selected virtual machine;
    所述虚拟桌面资源管理系统用于对所述虚拟桌面操作系统和虚拟机资源进行管理,以向所述虚拟桌面操作系统的虚拟桌面提供基础配置和多个常用软件,其中,所述多个常用软件的镜像文件分布在多个不同的容器中;并且The virtual desktop resource management system is used to manage the virtual desktop operating system and virtual machine resources to provide basic configuration and multiple common software to the virtual desktop of the virtual desktop operating system, wherein the multiple common The software image files are distributed in multiple different containers; and
    所述虚拟桌面操作系统用于从所述虚拟桌面资源管理系统获取虚拟桌面的基础配置。The virtual desktop operating system is used to obtain the basic configuration of the virtual desktop from the virtual desktop resource management system.
  2. 根据权利要求1所述的系统,其中,所述虚拟桌面资源管理系统包括:The system of claim 1, wherein the virtual desktop resource management system includes:
    基础配置模块,用于管理运行所述虚拟桌面所需的基础配置信息;A basic configuration module, used to manage basic configuration information required for running the virtual desktop;
    软件管理模块,用于对基础配置信息和所述常用软件的生命周期进行管理,并且用于对所述基础配置信息和所述常用软件进行创建和管理;The software management module is used to manage the basic configuration information and the life cycle of the common software, and is used to create and manage the basic configuration information and the common software;
    分配模块,用于设置所述常用软件与虚拟桌面用户之间的权限;以及An allocation module for setting permissions between the commonly used software and virtual desktop users; and
    Docker容器仓库管理模块,用于为所述软件管理模块中的软件提供安装仓库,其中,所述安装仓库包括多个容器,在每个容器中下载并安装一个常用软件的镜像文件。A Docker container warehouse management module is used to provide an installation warehouse for the software in the software management module, wherein the installation warehouse includes multiple containers, and an image file of common software is downloaded and installed in each container.
  3. 根据权利要求2所述的系统,其中,所述虚拟桌面操作系统包括:The system of claim 2, wherein the virtual desktop operating system includes:
    Docker启动处理器,用于获取所述常用软件与虚拟桌面用户之间的权限,以及根据所述权限从所述Docker容器仓库管理模块中获取对应常用软件的镜像文件,并加载到Docker管理器中;以及The Docker startup processor is used to obtain the permission between the common software and the virtual desktop user, and obtain the image file corresponding to the common software from the Docker container warehouse management module according to the permission, and load it into the Docker manager ;as well as
    所述Docker管理器,用于在虚拟桌面操作系统的虚拟桌面本地启动所述Docker容器仓库管理模块中的软件。The Docker manager is used to start the software in the Docker container warehouse management module locally on the virtual desktop of the virtual desktop operating system.
  4. 根据权利要求1所述的系统,其中,The system of claim 1, wherein:
    所述物理硬件设备用于将一台主机服务器的资源虚拟化为多台逻辑虚拟机,并通过虚拟桌面连接协议服务器和桌面协议以虚拟桌面的方式提供给所述终端设备。The physical hardware device is used to virtualize the resources of one host server into multiple logical virtual machines, and provide them to the terminal device in a virtual desktop manner through a virtual desktop connection protocol server and a desktop protocol.
  5. 根据权利要求4所述的系统,其中,所述虚拟桌面资源管理系统还包括:The system according to claim 4, wherein the virtual desktop resource management system further comprises:
    桌面用户管理模块,用于对虚拟桌面的用户信息进行维护,并基于所述虚拟机的基础配置模块生成多个虚拟桌面,并将所述虚拟桌面分配给系统中的用户,其中,所述用户信息至少包括:账号、密码。The desktop user management module is used to maintain user information of the virtual desktop, generate multiple virtual desktops based on the basic configuration module of the virtual machine, and distribute the virtual desktops to users in the system, wherein the user The information includes at least: account number and password.
  6. 根据权利要求5所述的系统,其中,所述虚拟桌面操作系统还包括:The system according to claim 5, wherein the virtual desktop operating system further comprises:
    桌面代理,用于提供虚拟桌面与所述虚拟桌面资源管理系统以及与所述终端设备之间的交互。The desktop agent is used to provide interaction between the virtual desktop and the virtual desktop resource management system and the terminal device.
  7. 根据权利要求2所述的系统,其中,所述终端设备包括:The system according to claim 2, wherein the terminal device comprises:
    虚拟桌面连接登录客户端,用于提供用户登录到虚拟桌面操作系统获取待使用的虚拟桌面列表的入口;以及The virtual desktop connection login client is used to provide an entry for users to log in to the virtual desktop operating system to obtain a list of virtual desktops to be used; and
    虚拟桌面连接协议客户端,用于可通过桌面协议连接虚拟桌面并使用虚拟桌面。The virtual desktop connection protocol client is used to connect to and use the virtual desktop through the desktop protocol.
  8. 根据权利要求4所述的系统,其中,所述物理硬件设备包括:The system according to claim 4, wherein the physical hardware device comprises:
    计算、存储以及网络虚拟化模块,用于为所述物理硬件设备提 供虚拟化能力,创建所述虚拟机的功能;以及A computing, storage, and network virtualization module, used to provide virtualization capabilities for the physical hardware device and create functions of the virtual machine; and
    虚拟桌面连接协议服务端,用于通过所述虚拟机获取所述虚拟桌面,并在所述终端设备通过桌面协议与桌面协议客户端连接后将所述虚拟桌面提供到所述终端设备。The virtual desktop connection protocol server is used to obtain the virtual desktop through the virtual machine, and provide the virtual desktop to the terminal device after the terminal device is connected to the desktop protocol client through the desktop protocol.
  9. 根据权利要求2所述的系统,其中,所述基础配置信息包括操作系统的配置信息和运行所述操作系统的基础软件和驱动信息,并且所述常用软件包括办公软件和/或个性化软件。The system according to claim 2, wherein the basic configuration information includes configuration information of an operating system and basic software and driver information for running the operating system, and the commonly used software includes office software and/or personalized software.
PCT/CN2019/128258 2018-12-26 2019-12-25 Software hierarchical management system WO2020135492A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201811605422.6 2018-12-26
CN201811605422.6A CN111367599B (en) 2018-12-26 2018-12-26 Software hierarchical management system

Publications (1)

Publication Number Publication Date
WO2020135492A1 true WO2020135492A1 (en) 2020-07-02

Family

ID=71126369

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/128258 WO2020135492A1 (en) 2018-12-26 2019-12-25 Software hierarchical management system

Country Status (2)

Country Link
CN (1) CN111367599B (en)
WO (1) WO2020135492A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112084007A (en) * 2020-09-10 2020-12-15 星辰天合(北京)数据科技有限公司 NAS storage upgrading method and device based on virtual machine technology
CN115826995A (en) * 2022-10-31 2023-03-21 北京凯思昊鹏软件工程技术有限公司 Distributed mirror image construction system
CN116483505A (en) * 2023-05-08 2023-07-25 江苏云之遥信息科技有限公司 Intelligent multifunctional cloud desktop system

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112579143A (en) * 2020-12-24 2021-03-30 江苏杰瑞信息科技有限公司 Management platform system for designing software information security
CN112667365B (en) * 2021-01-22 2022-11-15 山东浪潮科学研究院有限公司 System, method and equipment for issuing desktop application based on cloud edge cooperation
CN113191729A (en) * 2021-04-26 2021-07-30 西安雷风电子科技有限公司 Cloud desktop management method and system
CN114546667A (en) * 2022-04-25 2022-05-27 杭州筋斗腾云科技有限公司 Management method and system of instant office space and computer equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8683466B2 (en) * 2011-05-24 2014-03-25 Vmware, Inc. System and method for generating a virtual desktop
CN106199696A (en) * 2016-06-29 2016-12-07 中国石油天然气股份有限公司 Earthquake data processing system and method
CN107577937A (en) * 2017-09-01 2018-01-12 深信服科技股份有限公司 A kind of application program guard method and system
CN108021425A (en) * 2017-12-28 2018-05-11 南开大学 A kind of virtual desktop system and operation method for integrating multiple Graphics Application windows
CN108694065A (en) * 2017-04-10 2018-10-23 鸿富锦精密电子(天津)有限公司 virtual desktop system and virtual desktop control method

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106959882A (en) * 2016-01-12 2017-07-18 深圳市深信服电子科技有限公司 Virtual desktop implementation method and device

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8683466B2 (en) * 2011-05-24 2014-03-25 Vmware, Inc. System and method for generating a virtual desktop
CN106199696A (en) * 2016-06-29 2016-12-07 中国石油天然气股份有限公司 Earthquake data processing system and method
CN108694065A (en) * 2017-04-10 2018-10-23 鸿富锦精密电子(天津)有限公司 virtual desktop system and virtual desktop control method
CN107577937A (en) * 2017-09-01 2018-01-12 深信服科技股份有限公司 A kind of application program guard method and system
CN108021425A (en) * 2017-12-28 2018-05-11 南开大学 A kind of virtual desktop system and operation method for integrating multiple Graphics Application windows

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112084007A (en) * 2020-09-10 2020-12-15 星辰天合(北京)数据科技有限公司 NAS storage upgrading method and device based on virtual machine technology
CN115826995A (en) * 2022-10-31 2023-03-21 北京凯思昊鹏软件工程技术有限公司 Distributed mirror image construction system
CN115826995B (en) * 2022-10-31 2023-07-14 北京凯思昊鹏软件工程技术有限公司 Distributed mirror image construction system
CN116483505A (en) * 2023-05-08 2023-07-25 江苏云之遥信息科技有限公司 Intelligent multifunctional cloud desktop system
CN116483505B (en) * 2023-05-08 2024-03-19 江苏云之遥信息科技有限公司 Intelligent multifunctional cloud desktop system

Also Published As

Publication number Publication date
CN111367599B (en) 2023-03-24
CN111367599A (en) 2020-07-03

Similar Documents

Publication Publication Date Title
WO2020135492A1 (en) Software hierarchical management system
EP3588356B1 (en) Cross-application identity and access management
CN107004095B (en) Context-based cloud security guarantee system
US9244671B2 (en) System and method for deploying preconfigured software
US10558407B2 (en) Availability of devices based on location
US10133525B2 (en) Autonomous secure printing
EP2992669B1 (en) Image analysis and management
CN108604187B (en) Hosted virtual machine deployment
US10331599B2 (en) Employing session level restrictions to limit access to a redirected interface of a composite device
US9985949B2 (en) Secure assertion attribute for a federated log in
CN105378768A (en) Proximity and context aware mobile workspaces in enterprise systems
US20180004585A1 (en) Application Programming Interface (API) Hub
CN105247531A (en) Providing managed browser
US20200067933A1 (en) Directory access sharing across web services accounts
US10846463B2 (en) Document object model (DOM) element location platform
US20140096208A1 (en) Automated system and method for provisioning and managing cloud desktop services
CA3073068A1 (en) Wrapping continuation tokens to support paging for multiple servers across different geolocations
WO2020140264A1 (en) Application publishing in a virtualized environment
WO2022133373A1 (en) Native application integration for enhanced remote desktop experiences
EP2750350B1 (en) System and method for deploying preconfigured software
US11385946B2 (en) Real-time file system event mapping to cloud events
KR102436673B1 (en) Backup encryption system for files and folders in a virtual environment built on the basis of cloud infrastructure
Preston et al. Using Chef Provisioning to Provision Machines
CN113906392A (en) System and method for providing different versions of virtual applications

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19902654

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 16.11.2021)

122 Ep: pct application non-entry in european phase

Ref document number: 19902654

Country of ref document: EP

Kind code of ref document: A1