CN103595714A - Method using WEB service channel to achieve data transmission - Google Patents

Method using WEB service channel to achieve data transmission Download PDF

Info

Publication number
CN103595714A
CN103595714A CN201310552960.4A CN201310552960A CN103595714A CN 103595714 A CN103595714 A CN 103595714A CN 201310552960 A CN201310552960 A CN 201310552960A CN 103595714 A CN103595714 A CN 103595714A
Authority
CN
China
Prior art keywords
data
request
step
end
receiving
Prior art date
Application number
CN201310552960.4A
Other languages
Chinese (zh)
Inventor
陈祥耀
Original Assignee
福建省视通光电网络有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 福建省视通光电网络有限公司 filed Critical 福建省视通光电网络有限公司
Priority to CN201310552960.4A priority Critical patent/CN103595714A/en
Publication of CN103595714A publication Critical patent/CN103595714A/en

Links

Abstract

The invention provides a method using a WEB service channel to achieve data transmission. Data transmission in a data transmission service channel is HTTP protocol transmission and supports string data types and stream data types, the isolating end of the channel carries out authentication on requests every time, and listed identities are logged in at regular. Meanwhile, the data are encrypted in the channel to guarantee data safety. Finally, the required data are compressed, and HTTP requests are optimized, and the data transmission performance is improved. Furthermore, the method can achieve request interflow between different networks and different data request methods.

Description

一种通过WEB服务通道实现数据传输的方法 A method of data transmission through the WEB service channel

技术领域 FIELD

[0001] 本发明涉及本发明涉及局域网、私有网、万维网数据交互通道的技术领域,尤其涉及一种通过WEB服务通道实现数据传输的方法。 [0001] The present invention relates to the technical field of the present invention relates to a local area network, private network, the World Wide Web data exchange channel, particularly to a data transmission method through the WEB service channel.

背景技术 Background technique

[0002] 随着网络技术的发展,各种网络之间的数据交互越来越重要。 [0002] With the development of network technology, data exchange between various networks are increasingly important. 对于安全级别要求较高的企业、单位来说,必然有隔离私有网与往外网的必要。 For higher security requirements of enterprises and units, the inevitable need to isolate the private network and the external network. 在进行网络隔离的同时,如果隔离通道安全性能、通讯效率低下,则可能造成保密数据的泄漏或服务访问的不便。 Network isolation during the same time, if the security channel isolation, poor communication efficiency, it may cause inconvenience or leakage of confidential data service access.

发明内容 SUMMARY

[0003] 针对现有数据传输服务通道在传输效率及安全上的不足,本发明提出一种通过WEB服务通道实现数据传输的方法;在不同的网络中,实现安全可靠高效的信息互通方式;将服务请求通过服务通道透明传输至另一个网络的服务终端,再将请求返回数据透明返回至请求端。 [0003] for the deficiencies of the prior data transmission in the service channel transmission efficiency and security, the present invention proposes a method for data transmission through the WEB service channel; in different networks, to achieve reliable and efficient information sharing manner; and transparent transmission service request via the service channel to another network, the service terminal, and then returns the requested data is returned to the requester transparent.

[0004] 本发明是这样实现的:一种通过WEB服务通道实现数据传输的方法, [0004] The present invention is implemented as follows: A method for data transmission is achieved by the WEB service channel,

[0005] 步骤1、在所述WEB服务通道的请求端和目标端之间设置有接收端、隔离端和转发端;所述WEB服务通道向外统一建立一访问接口,对不同的服务请求,统一开发HttpRest服务接口,并设定接口参数传递方式; [0005] Step 1, between the request and target-side channel of the WEB service is provided with a receiving end and a forward end of the isolation port; outwardly of the WEB service channel establishing a unified access interface for different service requests, unified development HttpRest service interface, and set the interface parameter passing;

[0006] 步骤2、所述接收端根据请求端传入的参数和请求数据,判断请求端的服务请求是否需要等待目标端返回数据,否,则进入步骤3 ;是,则在请求数据中封装需要返回值的标志,并进入步骤3 ; [0006] Step 2, the receiving end terminal according to the request and the parameters passed in the request data, determines whether the request is a service request needs to wait for the end of data returned from the target, NO, it proceeds to step 3; YES, then the request data needs the package return flag value, and proceeds to step 3;

[0007] 步骤3、接收端解析参数,并生成一唯一的缓存密钥cachekey存于缓存中,作为服务请求的上下文唯一标识,通过缓存密钥cachekey对接收端的所有请求数据和参数进行加密处理; [0007] Step 3, the receiving end resolution parameters, and generates a unique key CacheKey stored in the cache buffer, the context uniquely identifies a service request, processing of all requests to encrypt the data and parameters received by the cache key CacheKey end;

[0008] 步骤4、隔离端接收接收端的请求,并调用转发端注册的接口服务,转发端接收到请求后,对加密的请求数据进行解密,并对参数进行解析分离,还原至请求端调用时的参数状态,完成后调用目标端注册的服务接口; When [0008] Step 4, the isolation port of the receiving terminal receives a request, and forwarding the service call interface side registration, forwarding after receiving the request, the request for the encrypted data is decrypted, and the parameters for analytical separations, to reducing call requester the parameter status, after the completion of call to the target side registered service interfaces;

[0009] 步骤5、目标端返回结果,转发端调用结果后,重新登录隔离端,并将调用的结果作为传输数据,调用隔离端数据发布接口;向接收端推送返回结果; After [0009] Step 5, the target server returns a result, the forward end of the call result, log back end of the isolation, and the results of the call as transmission data, call data publishing interface isolation port; push returns the result to the receiving terminal;

[0010] 步骤6、接收端接收到推送的返回结果后,发送给所述请求端完成数据的传输。 [0010] Step 6, the receiver receives the push returns the result to the requesting end data transmission is completed.

[0011] 本发明具有如下优点:本发明能进行不同网络、不同数据请求方式的请求互通;并对请求方式和请求次数进行优化,提升请求响应时间。 [0011] The present invention has the following advantages: the present invention is capable of different networks, the data request requesting different ways of interworking; and the number of requests that request mode is optimized to enhance the response time of the request. 本发明采用对内单向数据流动,对外透明请求的方式进行通道数据管理。 The present invention uses a one-way flow of data internally, the external transparent manner requested data management channel. 通道内部数据请求采用一次请求一个数据流方向的方式进行安全隔离,对外则为标准的Http请求方式进行透明的数据传输,提高了数据传输安全性。 Internal data channel request to request a data stream using one way direction security isolation, transparent data transfer, compared with the external standard Http request, improve data transmission security. 附图说明 BRIEF DESCRIPTION

[0012] 图1为本发明方法流程示意图。 [0012] FIG 1 is a schematic flow process of the invention.

具体实施方式 Detailed ways

[0013] 本发明的数据传输服务通道中的数据传输均以HTTP协议传输,并支持string数据类型和stream数据类型;隔离端对每次请求都进行身份验证,并定期过期已登录的身份。 [0013] Data transfer services in the channel of the present invention are HTTP transport protocol, and supports data types and string types of data stream; isolation port of each request to authenticate the identity and expire periodically logged. 同时通道内部对数据进行加密,确保数据的安全,对请求的数据进行压缩并对HTTP请求进行优化,提高数据传输性能。 While the inner passage to encrypt data, data security, data compression and the requested HTTP request optimized to improve data transmission performance.

[0014] 请参阅图1所示,本发明为一种通过WEB服务通道实现数据传输的方法, [0014] Please refer to FIG. 1, the present invention is a method of data transmission through the WEB service channel,

[0015] 步骤1、在所述WEB服务通道的请求端和目标端之间设置有接收端、隔离端和转发端;所述WEB服务通道向外统一建立一访问接口,对不同的服务请求,统一开发HttpRest服务接口,并设定接口参数传递方式; [0015] Step 1, between the request and target-side channel of the WEB service is provided with a receiving end and a forward end of the isolation port; outwardly of the WEB service channel establishing a unified access interface for different service requests, unified development HttpRest service interface, and set the interface parameter passing;

[0016] 步骤2、所述接收端根据请求端传入的参数和请求数据,判断请求端的服务请求是否需要等待目标端返回数据,否,则进入步骤3 ;是,则在请求数据中封装需要返回值的标志,并进入步骤3 ; [0016] Step 2, the receiving end terminal according to the request and the parameters passed in the request data, determines whether the request is a service request needs to wait for the end of data returned from the target, NO, it proceeds to step 3; YES, then the request data needs the package return flag value, and proceeds to step 3;

[0017] 步骤3、接收端解析参数,并生成一唯一的缓存密钥cachekey存于缓存中,作为服务请求的上下文唯一标识,通过缓存密钥cachekey对接收端的所有请求数据和参数进行加密处理;加密处理后,接收端调用隔离端数据提交接口,若隔离端返回登录超时,接收端再重新登录; [0017] Step 3, the receiving end resolution parameters, and generates a unique key CacheKey stored in the cache buffer, the context uniquely identifies a service request, processing of all requests to encrypt the data and parameters received by the cache key CacheKey end; after the encryption process, the receiver terminal calls the data submission isolation interfaces, returns login timeout if the isolation port, log back in the receiving end;

[0018] 步骤31、接收端同时执行消息管理任务,维护接收端中每个请求的等待列表; [0018] Step 31, the receiving end while performing message management tasks, in a receiving end to maintain a waiting list for each request;

[0019] 步骤4、隔离端接收接收端的请求,并调用转发端注册的接口服务,转发端接收到请求后,对加密的请求数据进行解密,并对参数进行解析分离,还原至请求端调用时的参数状态,完成后调用目标端注册的服务接口;隔离端返回整个流程的执行状态,不返回目标端调用结果; When [0019] Step 4, the isolation port of the receiving terminal receives a request, and forwarding the service call interface side registration, forwarding after receiving the request, the request for the encrypted data is decrypted, and the parameters for analytical separations, to reducing call requester the parameter status, after the completion of call to the target side registered service interfaces; isolated side returns to performing status of the entire process, not the end result of the call-back targets;

[0020] 步骤5、目标端返回结果,转发端调用结果后,重新登录隔离端,并将调用的结果作为传输数据,调用隔离端数据发布接口;向接收端推送返回结果; After [0020] Step 5, the target server returns a result, the forward end of the call result, log back end of the isolation, and the results of the call as transmission data, call data publishing interface isolation port; push returns the result to the receiving terminal;

[0021] 步骤6、接收端接收到推送的返回结果后,发送给所述请求端完成数据的传输;该步骤具体为:接收端接收到推送的返回结果后,通过在接收时生成的缓存密钥cachekey进行返回结果的上下文相关联;接收端更新缓存中缓存密钥cachekey对应的结果,请求端接收到缓存密钥cachekey对应的结果更新通知后,获取更新后的值和返回结果给请求端。 [0021] Step 6, the receiver receives the push returns the result transmitted data to the end of the completion of the request; this step is specifically: after the receiving end receives the returned result pushed, by generating the reception buffer when the adhesion of cachekey key for returning results associated with the context; receiving end result cache update cache cachekey corresponding key, a key request cache receives a result corresponding to the update notification cachekey obtain updated values ​​and return the results to the requester.

[0022] 其中,所述传递方式分为两种,第一种是在url中传递参数,在post数据中传递数据;第二种是以xml格式封装参数以及数据。 [0022] wherein the transfer mode is divided into two, the first parameter is passed in the url, post data in the data transmission; the second package is in xml format parameters and data.

[0023] 下面结合一具体实施例对本发明作进一步说明: [0023] The following examples in conjunction with a specific embodiment of the present invention is further described:

[0024] 本发明的WEB服务通道的数据数据传输过程: [0024] WEB service data transmission path of the process according to the invention:

[0025] 首先对于不同的服务,统一设计了一样的访问接口,服务调用方式分为两种,一种是在url中传递参数(参数如n,i或0),在post数据中传递数据主题data ;另一种方式为以xml格式封装参数以及数据实体data。 [0025] First, for different services, a unified access interface is designed as a service call is divided into two, one is passed in the url parameters (parameters such as n, i, or 0), the data relating to transfer data in the post data; another way to package xml format and a data entity argument data.

[0026] 接收端在接受到请求后,解析出参数(参数如i),并生成一个唯一的缓存密钥cachekey作为上下文唯一标识存储到缓存中,该缓存同时用于维护请求返回值;接着,接收端对数据进行格式化与加密压缩。 [0026] After receiving the request the receiving end, parsing parameters (eg I), and generates a unique cache key uniquely identifies cachekey as context stored in the cache, while the cache maintenance request for the return value; then, the data receiving terminal with the encrypted and compressed format.

[0027] 处理数据完成后,接收端调用隔离端数据提交接口,如果隔离端返回登录超时,接收端再重新登录,避免每次登录降低性能。 After [0027] completion of data processing, the receiving terminal side call isolation interfaces the data submitted, if the isolation port returns login timeout, log back in the receiving end, each log to avoid performance degradation.

[0028] 隔离端接收接收端数据,并调用转发端注册的服务,返回转发端服务调用状态给接收端。 [0028] The isolated terminal for receiving the data receiving terminal, and call forwarding service registration ends, the state returns call forwarding service end to the receiving end.

[0029] 转发端接收到隔离端的请求后,对数据进行与接收端处理顺序逆向的处理过程。 After [0029] receives request to forward the isolated side, the reverse processing of the data processing procedure of the receiving side. 并对参数i进行解析分离,还原至请求端调用时的参数状态。 Separating and analyzing the parameter i, the reduction parameter status to the requesting terminal during call. 完成后调用目标端注册的服务接口。 After completing the call to the destination end registered service interfaces.

[0030]目标端返回结果后,转发端重新调用隔离端数据发布接口,向接收端推送请求结果O [0030] After the end of the target returns a result, forward end of the end spacer recall data publishing interface, the push request to the receiving end result O

[0031] 接收端接收到推送结果后,由于推送的上下文与请求的上下文并不是同一个上下文,因此需要通过在接收时定义的缓存密钥cachekey进行上下文关联。 After [0031] The receiver receives the push result, since the context pushed context and the request is not the same context, so a context associated with the cache key need cachekey defined when receiving. 接收端更新缓存中缓存密钥cachekey对应的结果,请求接收端接收到缓存密钥cachekey更新通知,获取更新后的值和返回结果给请求端。 Receiving end result cache update cache cachekey corresponding key, a key request buffer cachekey receiving end receives the update notification, and obtain the updated value return the results to the requester.

[0032] 总之,本发明能进行不同网络、不同数据请求方式的请求互通;并对请求方式和请求次数进行优化,提升请求响应时间。 [0032] In summary, the present invention is capable of different networks, the data request requesting different ways of interworking; and the number of requests that request mode is optimized to enhance the response time of the request.

[0033] 以上所述仅为本发明的较佳实施例,凡依本发明申请专利范围所做的均等变化与修饰,皆应属本发明的涵盖范围。 [0033] The foregoing is only preferred embodiments of the present invention, where the application under this invention, modifications and alterations made to the scope of the patent, also belong to the scope of the present invention.

Claims (5)

1.一种通过WEB服务通道实现数据传输的方法,其特征在于: 步骤1、在所述WEB服务通道的请求端和目标端之间设置有接收端、隔离端和转发端;所述WEB服务通道向外统一建立一访问接口,对不同的服务请求,统一开发HttpRest服务接口,并设定接口参数传递方式; 步骤2、所述接收端根据请求端传入的参数和请求数据,判断请求端的服务请求是否需要等待目标端返回数据,否,则进入步骤3 ;是,则在请求数据中封装需要返回值的标志,并进入步骤3 ; 步骤3、接收端解析参数,并生成一唯一的缓存密钥cachekey存于缓存中,作为服务请求的上下文唯一标识,通过缓存密钥cachekey对接收端的所有请求数据和参数进行加密处理; 步骤4、隔离端接收接收端的请求,并调用转发端注册的接口服务,转发端接收到请求后,对加密的请求数据进行解密,并对参数进行解析 A method for implementing data transmission through the WEB service channel, wherein: step 1, between the request and target-side channel of the WEB service is provided with a receiving end and a forward end of the isolation port; the WEB service establishing a unified channel outwardly access interface for different service requests, unified development HttpRest service interface, and set interface parameters passed embodiment; step 2, the receiving end terminal according to the request and the request parameters passed data, if the request end if the service request needs to wait for the target server returns data, NO, proceeds to step 3; YES, then encapsulated in the request data needs to return flag value, and proceeds to step 3; step 3, the receiving end resolution parameters, and generates a unique cache key CacheKey stored in the cache, as the context uniquely identifies the service request, encrypt all requests data parameters received side by caching the key CacheKey; step 4, isolated terminal received by the receiving end a request, and calls the interface to forward end register service, after forwarding receives a request for decrypting the encrypted request data, and parameter parsing 分离,还原至请求端调用时的参数状态,完成后调用目标端注册的服务接口; 步骤5、目标端返回结果,转发端调用结果后,重新登录隔离端,并将调用的结果作为传输数据,调用隔离端数据发布接口;向接收端推送返回结果; 步骤6、接收端接收到推送的返回结果后,发送给所述请求端完成数据的传输。 Separation, restored to the state when the end request parameters call, the call destination end after the completion of registration service interface; Step 5, after the target server returns a result, the forward end of the call result, log back end of the isolation, and the transmission data as the result of the call, call data publishing interface isolation port; push returns the result to the receiving terminal; step 6, after the receiving end receives the push returns the result to the requesting end data transmission is completed.
2.根据权利要求1所述的一种通过WEB服务通道实现数据传输的方法,其特征在于: 所述步骤3进一步包括:加密处理后,接收端调用隔离端数据提交接口,若隔离端返回登录超时,接收端再重新登录。 2. A method according to one of claim 1 through the data transmission channel WEB service claim, wherein: step 3 further comprises: after encryption processing, the receiving terminal data submitted call isolation port interfaces, if the log server returns isolation timeout, the receiver and then log in again.
3.根据权利要求1所述的一种通过WEB服务通道实现数据传输的方法,其特征在于:所述步骤3和步骤4之间进一步包括:步骤31、接收端同时执行消息管理任务,维护接收端中每个请求的等待列表。 3. A method according to one of claim 1 through the data transmission channel WEB service claim, wherein: said step further comprises the step of between 3 and 4: Step 31, the receiving end while performing message management tasks, receiving maintenance end of the waiting list for each request.
4.根据权利要求1所述的一种通过WEB服务通道实现数据传输的方法,其特征在于:所述传递方式分为两种,第一种是在url中传递参数,在post数据中传递数据;第二种是以xml格式封装参数以及数据。 4. A method according to one of claim 1 through the data transmission channel WEB service claim, wherein: said transmission is divided into two, the first parameter is passed in the url, post data in the data transfer ; the second package is in xml format parameters and data.
5.根据权利要求1所述的一种通过WEB服务通道实现数据传输的方法,其特征在于:所述步骤6具体为:接收端接收到推送的返回结果后,通过在接收时生成的缓存密钥cachekey进行返回结果的上下文相关联;接收端更新缓存中缓存密钥cachekey对应的结果,请求端接收到缓存密钥cachekey对应的结果更新通知后,获取更新后的值和返回结果给请求端。 5. A method according to one of claim 1 through the data transmission channel WEB service claim, wherein: said step of specifically 6: After receiving the receiving push return results through the reception buffer when the generated secret cachekey key for returning results associated with the context; receiving end result cache update cache cachekey corresponding key, a key request cache receives a result corresponding to the update notification cachekey obtain updated values ​​and return the results to the requester.
CN201310552960.4A 2013-11-08 2013-11-08 Method using WEB service channel to achieve data transmission CN103595714A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310552960.4A CN103595714A (en) 2013-11-08 2013-11-08 Method using WEB service channel to achieve data transmission

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310552960.4A CN103595714A (en) 2013-11-08 2013-11-08 Method using WEB service channel to achieve data transmission

Publications (1)

Publication Number Publication Date
CN103595714A true CN103595714A (en) 2014-02-19

Family

ID=50085696

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310552960.4A CN103595714A (en) 2013-11-08 2013-11-08 Method using WEB service channel to achieve data transmission

Country Status (1)

Country Link
CN (1) CN103595714A (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030093691A1 (en) * 2001-11-13 2003-05-15 Reefedge, Inc., A Delaware Corporation Enabling secure communication in a clustered or distributed architecture
CN1662899A (en) * 2002-04-19 2005-08-31 计算机联合思想公司 Network service agent
CN1860761A (en) * 2003-06-05 2006-11-08 英特特拉斯特技术公司 Interoperable systems and methods for peer-to-peer service orchestration
CN101018259A (en) * 2006-02-08 2007-08-15 中国电信股份有限公司 Telecom integrated information system and method
CN101043512A (en) * 2006-03-21 2007-09-26 环达电脑(上海)有限公司 Electronic mail system
CN101304392A (en) * 2007-05-10 2008-11-12 中国传媒大学 Parallel application service gateway, system and method for medium asset management
US20090067440A1 (en) * 2007-09-07 2009-03-12 Chadda Sanjay Systems and Methods for Bridging a WAN Accelerator with a Security Gateway
US20110264905A1 (en) * 2010-04-21 2011-10-27 Michael Ovsiannikov Systems and methods for split proxying of ssl via wan appliances

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030093691A1 (en) * 2001-11-13 2003-05-15 Reefedge, Inc., A Delaware Corporation Enabling secure communication in a clustered or distributed architecture
CN1662899A (en) * 2002-04-19 2005-08-31 计算机联合思想公司 Network service agent
CN1860761A (en) * 2003-06-05 2006-11-08 英特特拉斯特技术公司 Interoperable systems and methods for peer-to-peer service orchestration
CN101018259A (en) * 2006-02-08 2007-08-15 中国电信股份有限公司 Telecom integrated information system and method
CN101043512A (en) * 2006-03-21 2007-09-26 环达电脑(上海)有限公司 Electronic mail system
CN101304392A (en) * 2007-05-10 2008-11-12 中国传媒大学 Parallel application service gateway, system and method for medium asset management
US20090067440A1 (en) * 2007-09-07 2009-03-12 Chadda Sanjay Systems and Methods for Bridging a WAN Accelerator with a Security Gateway
US20110264905A1 (en) * 2010-04-21 2011-10-27 Michael Ovsiannikov Systems and methods for split proxying of ssl via wan appliances

Similar Documents

Publication Publication Date Title
US9459936B2 (en) Enterprise client-server system and methods of providing web application support through distributed emulation of websocket communications
CN104904186B (en) A method for the information-centric mesh network protocol layer of the interface element
CN101069169B (en) Caching content and state data at a network element
US8990901B2 (en) Systems and methods for network filtering in VPN
US9100371B2 (en) Highly scalable architecture for application network appliances
US8327005B2 (en) Method to set up application to application communication over a network between applications running on endpoint devices
US9398622B2 (en) System and method for connecting a communication to a client
CN101088245B (en) Performing security functions on a message payload in a network element
US20140044123A1 (en) System and method for real time communicating with a client application
US10038693B2 (en) Facilitating secure network traffic by an application delivery controller
CN102292955B (en) Systems and methods for load balancing real time streaming protocol
US8214505B2 (en) Systems and methods of handling non-HTTP client or server push on HTTP Vserver
US10200353B2 (en) End-to-end M2M service layer sessions
CN102196035B (en) Method and system for providing a unified web service discovery
CN102823218B (en) Methods and apparatus for identity federation gateway
CN100463405C (en) Communication method and system based on group
US20100325418A1 (en) Systems and methods for ssl session cloning - transfer and regeneration of ssl security parameters across cores, homogenous system or heterogeneous systems
CN102292961A (en) A system and method for converting the ip address obtained by the Domain Name Service (DNS)
US10027761B2 (en) Facilitating a secure 3 party network session by a network device
US9882952B2 (en) Bandwidth optimization for remote desktop protocol
KR20100076074A (en) Multicast data stream selection in a communication system
US9203627B2 (en) Systems and methods for flash crowd control and batching OCSP requests via online certificate status protocol
CN104169901B (en) A method for optimizing network content is transferred, the systems and devices
JP5143125B2 (en) Authentication method for inter-domain information communication system, and apparatus
RU2010109899A (en) Transfer service from the provider of special mobile services

Legal Events

Date Code Title Description
C06 Publication
AD01