CN106534084A - Admission control method and equipment - Google Patents
Admission control method and equipment Download PDFInfo
- Publication number
- CN106534084A CN106534084A CN201610932245.7A CN201610932245A CN106534084A CN 106534084 A CN106534084 A CN 106534084A CN 201610932245 A CN201610932245 A CN 201610932245A CN 106534084 A CN106534084 A CN 106534084A
- Authority
- CN
- China
- Prior art keywords
- license
- permission flag
- facilities
- equipments
- permit server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 54
- 230000004913 activation Effects 0.000 claims abstract description 57
- 230000009466 transformation Effects 0.000 claims description 20
- 230000004044 response Effects 0.000 claims description 12
- 230000005540 biological transmission Effects 0.000 claims description 4
- 230000006870 function Effects 0.000 description 23
- 238000010586 diagram Methods 0.000 description 12
- 230000008569 process Effects 0.000 description 4
- 238000004891 communication Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 230000009286 beneficial effect Effects 0.000 description 2
- 238000004590 computer program Methods 0.000 description 2
- 238000002360 preparation method Methods 0.000 description 2
- 206010068052 Mosaicism Diseases 0.000 description 1
- 238000012356 Product development Methods 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000006378 damage Effects 0.000 description 1
- 238000000151 deposition Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 210000003765 sex chromosome Anatomy 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/105—Arrangements for software license management or administration, e.g. for managing licenses at corporate level
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Technology Law (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Multimedia (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention relates to an admission control method and equipment. The admission control method includes the steps: sending an admission identifier to admission implementation equipment, wherein the admission identifier is used for identifying the admission content; receiving an activation request sent from the admission implementation equipment, wherein the activation request includes a unique identifier of the admission implementation equipment and the admission identifier; according to the admission identifier, acquiring the admission content corresponding to the admission identifier, and according to the admission content and the unique identifier of the admission implementation equipment, generating an admission file; and sending the admission file to the admission implementation equipment. The admission control method and equipment can improve controllability and flexibility of admission.
Description
Technical field
The application is related to field of computer technology, more particularly to a kind of permission control method and equipment.
Background technology
License (English name is License) is that the use range of the product that supplier is bought to operator is authorized
A kind of form.Supplier can control the difference in functionality with authorizing product by License.Also just say, for identical product, supply
Answer business that the product mandate of different operators difference use range by different License, can be authorized.Thereby reduce supply
Business safeguards the work of multiple different product versions, saves product development cost.
In prior art, in order to prevent License from being used by multiple equipment, typically can be in License files comprising real
The facility information of License files is applied, to realize implementing the binding of License equipment and License files.
However, as the development of cloud computing technology, public cloud are more and more extensive with the use of private clound, products & services are equal
Develop towards virtualization direction.Virtualized feature be use on demand, elastic telescopic, it is desirable to Internet resources can be according to the industry of user
Business situation is quickly adjusted.In cloud platform, the product such as server, switch, router, fire wall is embodied with service form,
User on time or presses flow charging.As the permission control method of prior art is the mark of facilities and equipments of securing permission in advance
Know to make License files, and License files are supplied to into license facilities and equipments.However, in cloud platform, in user
The mark of user equipment can not be obtained before purchase service, therefore the method that prior art is provided cannot be applied to cloud platform
On.
The content of the invention
To solve existing technical problem, the application expects to provide a kind of permission control method and equipment, Ke Yiti
The controllability of high license and flexibility.
According to the first aspect of the embodiment of the present application, there is provided a kind of permission control method, methods described include:To license
Facilities and equipments send permission flag, and the permission flag is used to identify licensed content;Receive what the license facilities and equipments sent
Activation request, unique mark of the activation request bag containing the license facilities and equipments and the permission flag;According to described
Permission flag obtains corresponding with permission flag licensed content, according to the licensed content and the license facilities and equipments
Unique mark generates license file;The license file is sent to the license facilities and equipments.
Alternatively, methods described also includes:Obtain corresponding with permission flag permitted device transformation value and
The number of devices value of license is activated, has judged the corresponding number of devices value for having activated license of the permission flag whether less than institute
State permitted device transformation value;It is described that licensed content corresponding with the permission flag, root are obtained according to the permission flag
License file is generated according to the unique mark of the licensed content and the license facilities and equipments to be specially:If judging the mark admissible
Know the corresponding number of devices value for having activated license and be less than the permitted device transformation value, then obtained according to the permission flag
Take licensed content corresponding with the permission flag, given birth to according to the unique mark of the licensed content and the license facilities and equipments
Into license file.
Alternatively, methods described also includes:Preserve the unique mark of the license facilities and equipments;Update and the mark admissible
Know the corresponding number of devices value for having activated license.
Alternatively, methods described also includes:Revocation license request is received, the revocation license request includes the mark admissible
Know and the unique mark for permitting facilities and equipments;According to the permission flag and unique mark of the license facilities and equipments
Know and delete corresponding license file;Update the number of devices value for having activated license corresponding with the permission flag.
According to the second aspect of the embodiment of the present application, there is provided a kind of permission control method, it is applied to permit facilities and equipments,
Including:The permission flag that permit server sends is received, the permission flag is used to identify licensed content;To the licensed service
Device sends activation request, unique mark of the activation request bag containing the license facilities and equipments and the permission flag;Connect
Receive the license file that the permit server sends.
Alternatively, methods described also includes:Revocation license request is sent to the permit server, the revocation license please
Seek the unique mark comprising the permission flag and the license facilities and equipments;Receive the revocation that the permit server sends
Permission response message.
According to the third aspect of the embodiment of the present application, there is provided a kind of permit server equipment, the equipment include:First
Sending module, for sending permission flag to license facilities and equipments, the permission flag is used to identify licensed content;First receives
Module, for receiving the activation request that the license facilities and equipments send, the activation request bag contains the license facilities and equipments
Unique mark and the permission flag;License file generation module, is permitted with described for being obtained according to the permission flag
Corresponding licensed content can be identified, license text is generated according to the unique mark of the licensed content and the license facilities and equipments
Part;Second sending module, for sending the license file to the license facilities and equipments.
Alternatively, the equipment also includes:Judge module, for obtaining permitted device number corresponding with the permission flag
Measure higher limit and activated the number of devices value of license, judge the corresponding number of devices for having activated license of the permission flag
Whether value is less than the permitted device transformation value;If the license file generation module is sentenced specifically for the judge module
The corresponding number of devices value for having activated license of the permission flag of breaking is less than the permitted device transformation value, then according to institute
State permission flag obtain corresponding with permission flag licensed content, according to the licensed content and the license facilities and equipments
Unique mark generate license file.
Alternatively, the equipment also includes:Preserving module, preserves the unique mark of the license facilities and equipments;First more
New module, for updating the number of devices value for having activated license corresponding with the permission flag.
Alternatively, the equipment also includes:Second receiver module, for receiving revocation license request, the revocation license
Request bag contains the unique mark of the permission flag and the license facilities and equipments;Removing module, for according to the license
The unique mark of mark and the license facilities and equipments deletes corresponding license file;Second update module, for update with
The corresponding number of devices value for having activated license of the permission flag.
According to the fourth aspect of the embodiment of the present application, there is provided a kind of license facilities and equipments, including:First receiver module,
For receiving the permission flag of permit server transmission, the permission flag is used to identify licensed content;First sending module, uses
In to the permit server send activation request, it is described activation request bag containing it is described license facilities and equipments unique mark and
The permission flag;Second receiver module, for receiving the license file that the permit server sends.
Alternatively, the equipment also includes:Second sending module, please for sending revocation license to the permit server
Ask, the revocation license request includes the unique mark of the permission flag and the license facilities and equipments;3rd receives mould
Block, for receiving the revocation permission response message that the permit server sends.
In terms of the 5th of the embodiment of the present application, there is provided for the equipment of admissions control, include memory, and
One or more than one program, one of them or more than one program storage is in memory, and is configured to by one
Individual or more than one computing device is one or more than one program bag contains the instruction for being used to carrying out following operation:To
License facilities and equipments send permission flag, and the permission flag is used to identify licensed content;Receive the license facilities and equipments to send out
The activation request sent, unique mark of the activation request bag containing the license facilities and equipments and the permission flag;According to
The permission flag obtains licensed content corresponding with the permission flag, implements to set according to the licensed content and the license
Standby unique mark generates license file;The license file is sent to the license facilities and equipments.
Alternatively, it is described process implement body be additionally operable to perform one or more than one program bag containing for carry out with
The instruction of lower operation:Obtain permitted device transformation value corresponding with the permission flag and activate the number of devices of license
Whether value, judge the corresponding number of devices value for having activated license of the permission flag less than the permitted device transformation
Value;If judging the corresponding number of devices value for having activated license of the permission flag less than the permitted device transformation value,
Corresponding with permission flag licensed content is obtained according to the permission flag then, according to the licensed content and the license
The unique mark of facilities and equipments generates license file.
Alternatively, it is described process implement body be additionally operable to perform one or more than one program bag containing for carry out with
The instruction of lower operation:Preserve the unique mark of the license facilities and equipments;Update activated perhaps corresponding with the permission flag
Can number of devices value.
Alternatively, it is described process implement body be additionally operable to perform one or more than one program bag containing for carry out with
The instruction of lower operation:Revocation license request is received, the revocation license request includes the permission flag and the license reality
Arrange standby unique mark;Corresponding license is deleted according to the unique mark of the permission flag and the license facilities and equipments
File;Update the number of devices value for having activated license corresponding with the permission flag.
In terms of the 6th of the embodiment of the present application, there is provided for the equipment of admissions control, include memory, and
One or more than one program, one of them or more than one program storage is in memory, and is configured to by one
Individual or more than one computing device is one or more than one program bag contains the instruction for being used to carrying out following operation:Connect
The permission flag that permit server sends is received, the permission flag is used to identify licensed content;Send to the permit server
Activation request, unique mark of the activation request bag containing the license facilities and equipments and the permission flag;Receive described
The license file that permit server sends.
Alternatively, it is described process implement body be additionally operable to perform one or more than one program bag containing for carry out with
The instruction of lower operation:Revocation license request is sent to the permit server, the revocation license request includes the mark admissible
Know and the unique mark for permitting facilities and equipments;Receive the revocation permission response message that the permit server sends.
The embodiment of the present application one side has the beneficial effect that:Permission control method and equipment that the application is provided, can be with
Sent for identifying the permission flag of licensed content from permit server to license facilities and equipments, and receive the license enforcement and set
The activation request of the unique mark comprising the license facilities and equipments and the permission flag that preparation is sent, and permitted according to described
Corresponding licensed content can be identified, the unique mark of the license facilities and equipments generates license file, be set to the license enforcement
Preparation send the license file.As permission flag can distinguish the content of license, therefore can be that different licenses are implemented to set
Prepare and make license file one-to-one with the equipment and corresponding with the licensing function that the equipment needs, it is convenient, flexible,
Controllability is strong.
Description of the drawings
For the technical scheme being illustrated more clearly that in the embodiment of the present application, below will be to making needed for embodiment description
Accompanying drawing is briefly described, it should be apparent that, drawings in the following description are only some embodiments of the present application, for
For those of ordinary skill in the art, without having to pay creative labor, can be obtaining which according to these accompanying drawings
His accompanying drawing.
The permission control method flow chart that Fig. 1 is provided for one embodiment of the application;
The permission control method flow chart that Fig. 2 is provided for the another embodiment of the application;
The permission control method flow chart that Fig. 3 is provided for one embodiment of the application;
The permission control method flow chart that Fig. 4 is provided for the application another embodiment;
Fig. 5 is one application scenarios schematic diagram of the application;
Fig. 6 is the application Another Application schematic diagram of a scenario;
A kind of permit server equipment schematic diagram that Fig. 7 is provided for the embodiment of the present application;
A kind of license facilities and equipments schematic diagram that Fig. 8 is provided for the embodiment of the present application;
Fig. 9 is the block diagram of the admissions control equipment that one embodiment of the application is provided;
Figure 10 is the block diagram of the admissions control equipment that another embodiment of the application is provided.
Specific embodiment
The purpose of the application is to expect to provide a kind of permission control method and equipment, can improve the controllability of license with
Flexibility.
To enable present invention purpose, feature, advantage more obvious and understandable, below in conjunction with the application
Accompanying drawing in embodiment, is described to the technical scheme in the embodiment of the present application, it is clear that described embodiment is only this
Apply for a part of embodiment, and not all embodiments.Based on the embodiment in the application, those of ordinary skill in the art are not having
The every other embodiment obtained under the premise of making creative work, belongs to the scope of the application protection.
As shown in figure 1, the permission control method flow chart provided for one embodiment of the application, is applied to permit server,
Specifically can for example include:
S101, permit server send permission flag to license facilities and equipments, and the permission flag is used to identify in license
Hold.
When implementing, permit server is the equipment for sending license file, and license facilities and equipments are using the license
The equipment of file.Under possible application scenarios, the permit server carries out permission for device service provider
Equipment, the license facilities and equipments be cloud platform provider be located equipment or user equipment.
Illustrate, permit server can need the quantity of the function and needs for using according to license facilities and equipments,
License order is previously generated and preserves, the license order can include:(1) permission flag, for identifying the content of license.Lift
Example explanation, the permission flag can be order number (Business ID), be for being supplied to license facilities and equipments to be used to activate
Sequence number.Certainly, permission flag can also be other marks, as long as different licensed contents can be distinguished.(2) permit
Content.Product function and corresponding admissible parameter that the licensed content is included in including license file.Illustrate, it is a certain
Product has A, B, C, D, E, F, G, H this 8 functions, and 1 corresponding licensed content of permission flag includes A, B, C, D this four work(
Energy.2 corresponding licensed content of permission flag includes C, D, E, F, G, H this 6 functions.In the corresponding license of different permission flags
Appearance is different, and the scope or species of license is also different, it is allowed to which the product function that user uses is also different.(3) License Status.
In some embodiments, permit server can also preserve License Status.The License Status can include permit server
Middle preservation, the equipment for having activated license corresponding with the permission flag quantity and it is corresponding with the permission flag permitted
Can equipment higher limit.Illustrate, correspondence permission flag 1, the license total quantity which is arranged are 100.When initial, activate perhaps
Can number of devices be 0.Permit server often sends a license file to license facilities and equipments, then an activation is permitted
The quantity of equipment add 1.
Permit server is after the corresponding relation of permission flag and permission flag with licensed content is preserved, you can with to perhaps
Can the facilities and equipments transmission permission flag.It should be noted that the corresponding licensed content of same permission flag is identical.
S102, permit server receive the activation request that the license facilities and equipments send, and the activation request bag contains institute
State the unique mark and the permission flag of license facilities and equipments.
In some embodiments, permit that facilities and equipments, when activation license is needed, send to the permit server and swash
Request living.The activation request bag contains the unique mark of the permission flag and license facilities and equipments.In a kind of possible reality
In existing mode, the unique mark of the license facilities and equipments is that (English full name is Universally to general unique identifier
Unique Identifier, English abbreviation are UUID).Wherein, UUID generally refers to the numeral generated on a machine, it
Ensure to aerial all machines when same it is all unique, therefore can be with one equipment of unique mark or example.In cloud
Under the application scenarios of platform, after user creates a customer instance in cloud platform, i.e., the unique mark of the example can be obtained
UUID.Certainly, the unique mark of the license facilities and equipments can also be other marks, as long as can uniquely distinguish license implementing
Equipment or example.The activation request further comprises the permission flag, be permitted for identifying license facilities and equipments request
Can content.Illustrate, license facilities and equipments such as cloud platform provider is sent out to permit server when activation license is needed
The activation comprising UUID and order number is sent to ask.
S103, permit server obtain licensed content corresponding with the permission flag according to the permission flag, according to
The unique mark of the licensed content and the license facilities and equipments generates license file.
In some embodiments, after the permit server receives the activation request, judge the activation request
Comprising permission flag whether there is, if it does not exist, then abandon it is described request do not carry out subsequent treatment.If judging the license
Mark is present, then further obtain permitted device transformation value corresponding with the permission flag and activated setting for license
Whether standby quantitative value, judge the corresponding number of devices value for having activated license of the permission flag less than the permitted device quantity
Higher limit.If the corresponding number of devices value for having activated license of the permission flag is not less than the permitted device transformation
Value, then abandoning the request does not carry out subsequent treatment.If judging the corresponding number of devices value for having activated license of the permission flag
Less than the permitted device transformation value, then obtained in license corresponding with the permission flag according to the permission flag
Hold, license file is generated according to the unique mark of the licensed content and the license facilities and equipments.It should be noted that according to
Permission flag can obtain the content of license, and the content of the license is used to identify various functions and the phase that license file is included
The admissible parameter answered.Illustrate, the admissible parameter can be the specific numerical value of a certain function, such as the network equipment
Speech, admissible parameter can be the quantity of number of concurrent, or the term of validity of a certain function etc..Illustrate again, generating license text
During part, license file (License) can be generated according to UUID and the licensed content.Generate the side of license file
Formula can be flexile.For example, the license file (License) of generation can be the form of character string, comprising will authorize
The function and parameter of license and encryption information, wherein, the encryption information issues the legitimacy at license end for guarantee.Citing
Illustrate, the content of license file (License) is plaintext, concrete form can be:UUID+ licensed contents+signature.Wherein,
Licensed content includes function to be authorized and admissible parameter.It is described to sign for recognizing whether the License is permitted by legal
Can server issue.Corresponding key sign to being stored in permit server respectively and permit in facilities and equipments.Another
In a little possible embodiments, the content of the license file (License) can be ciphertext, and its form can be:UUID+
Licensed content.The licensed content includes function to be authorized and admissible parameter.The content of license file can be encrypted.
The key of decryption is to being stored in permit server respectively and permit in facilities and equipments.The license facilities and equipments are asked
The equipment of License is decrypted using the License after the private key pair encryption preserved on equipment when License is received.Enter
Whether one step ground, license facilities and equipments can also be verified to License, verify the License by legal License
Server is issued.In this embodiment, permit server can be made according to permission flag such as order number and be permitted with described
The license file that corresponding licensed content meets can be identified.For the scene of volume licensing, as long as permit server is same
A collection of (such as 100 equipment or customer instance) generates same permission flag (such as order number), it becomes possible to distinguish this 100
Licensing function and parameter required for platform equipment, individually specifies the function and parameter of its needs without the need for each equipment, reduces
Data interaction between permit server and license facilities and equipments, flexibly and easily.On the other hand, the permission flag can with permitted
Can equipment higher limit association so that the controllable quantity of license, enhance the controllability of license.
S104, permit server send the license file to the license facilities and equipments.
In some embodiments, methods described also includes:Preserve the unique mark of the license facilities and equipments;Update with
The corresponding number of devices value for having activated license of the permission flag.Illustrate, permit server preserves license facilities and equipments
Unique mark, and the permission flag corresponding number of devices for having activated license is added 1.
Referring to Fig. 2, for the permission control method flow chart that the another embodiment of the application is provided.
Applicant has found that during the application is realized, in order to extend the resilient expansion of cloud platform, needs not only can
Increase the license instance of operation at any time, license should be cancelled at any time.For example, after customer instance is destroyed, equivalent to product not
Reuse, the license of this hold facility should be reclaimed in this case, no longer take the license quantity in limit, it is no
Then with establishment, the destruction of product example, license numbers can increase always, until reaching the full quota.This is unacceptable, because
After destroying for software instances, service can not be provided.Take license null(NUL)s.Therefore, this application provides a kind of license
The method of revocation.
As shown in Fig. 2 after method S104 shown in Fig. 1, can further include:
S105, permit server receive revocation license request, the revocation license request include the permission flag and
The unique mark of the license facilities and equipments.
It is previously noted that permit server have recorded the corresponding number of devices value for having activated license of permission flag, also record
Each has activated the unique mark of the equipment of license, such as UUID.If license facilities and equipments do not use a certain product, can
To send revocation license request to permit server.Permission flag and the license reality are carried in the revocation license request
Arrange standby unique mark.Illustrate, in the revocation license request, include order number and UUID.
S106, permit server delete correspondence according to the unique mark of the permission flag and the license facilities and equipments
License file.
After permit server receives the revocation license request, judge that the permission flag whether there is, if do not deposited
, then abandon it is described request do not carry out subsequent treatment.If judging, the permission flag is present, and determines whether that the license is real
Arrange standby unique mark whether there is.If it does not exist, then abandoning the request does not carry out subsequent treatment.If judging described being permitted
Can facilities and equipments unique mark exist, by the permission flag associate, and it is described license facilities and equipments unique mark pair
The license file answered is deleted.
S107, permit server update the number of devices value for having activated license corresponding with the permission flag.
When implementing, the number of devices value for having activated license corresponding with the permission flag is subtracted 1 by permit server.
It is introduced in the permission control method of license facilities and equipments side application with reference to Fig. 3 and Fig. 4.
Referring to Fig. 3, for the permission control method flow chart that one embodiment of the application is provided, methods described can for example be wrapped
Include:
S301, permits that facilities and equipments receive the permission flag that permit server sends, and the permission flag is permitted for mark
Can content.
When implementing, the license facilities and equipments are the equipment using the license file.In a possible application
Under scene, the permit server is the equipment that device service provider carries out permission, and the license facilities and equipments are cloud
Equipment or user equipment that platform provider is located.The permission flag, for identifying the content of license.Illustrate, institute
It can be order number (Business ID) to state permission flag, be the sequence number for being supplied to license facilities and equipments to be used for activation.
Certainly, permission flag can also be other marks, as long as different licensed contents can be distinguished.
S302, license facilities and equipments send activation request to the permit server, and the activation request bag is permitted containing described
Can facilities and equipments unique mark and the permission flag.
Permit server is sent after permission flag to license facilities and equipments, and license facilities and equipments can just apply the license
Identify to permit server and send activation request.The activation request bag contains the permission flag and permits facilities and equipments only
One mark.In a kind of possible implementation, the unique mark of the license facilities and equipments is general unique identifier (English
Full name is Universally Unique Identifier, and English abbreviation is UUID).Wherein, UUID is generally referred in a machine
The numeral generated on device, it ensure to aerial all machines when same be all it is unique, therefore can be with unique mark one
Equipment or example.Under the application scenarios of cloud platform, after user creates a customer instance in cloud platform, i.e., institute can be obtained
State unique mark UUID of example.Certainly, the unique mark of the license facilities and equipments can also be other marks, as long as can
It is unique to distinguish license facilities and equipments or example.The activation request further comprises the permission flag, be permitted for mark
Can facilities and equipments request license content.Illustrate, license facilities and equipments such as cloud platform provider is needing activation license
When, the request of the activation comprising UUID and order number is sent to permit server.
S303, permits that facilities and equipments receive the license file that the permit server sends.
The license file contains product function and the corresponding admissible parameter that license is used.
Referring to Fig. 4, for the permission control method flow chart that the application another embodiment is provided.
In this embodiment, after the method shown in Fig. 3 performs S303, step can also be included:
S304, license facilities and equipments send revocation license request, the revocation license request bag to the permit server
Unique mark containing the permission flag and the license facilities and equipments.
If license facilities and equipments do not use a certain product, revocation license request can be sent to permit server.Institute
The unique mark of permission flag and the license facilities and equipments is carried in stating revocation license request.Illustrate, the revocation
Order number and UUID are included in license request.
S305, permits that facilities and equipments receive the revocation permission response message that the permit server sends.
Permit server is deleting associating with the permission flag, corresponding with the unique mark of the license facilities and equipments
License file after, can to license facilities and equipments send response message.
The permission control method that the application is provided is illustrated with reference to several concrete application scenes.Referring to Fig. 5 it is
One application scenarios schematic diagram of the application.Fig. 5 illustrates permission control method by taking private clound as an example.As shown in figure 5, cloud platform is provided
Business's equipment can send order request to license (License) server of service provider, and the order request needs to indicate
The licensed number of needs and the corresponding function of the license.Permit server generates license order, and the license order can be with
Including order number, licensed content, license status data.Permit server sends the order number to cloud platform provider equipment.
User sends application to cloud platform provider equipment using user equipment and creates example request, cloud platform provider equipment response institute
State request and create example.Cloud platform provider equipment sends activation line License request, the request bag contain order number and
UUID.Permit server generates license file (License) according to the corresponding order contents of the order number and the UUID,
The License is sent to the cloud platform provider equipment.Cloud platform provider equipment sends returning result to user equipment,
The License can be included.It should be noted that illustrating by taking private clound as an example above, the implementation class of public cloud
Seemingly, simply user equipment can be directly interacted with permit server.Illustrate.The step 1 shown in Fig. 5,2,3,4
Afterwards, i.e., after the cloud platform provider equipment response request creates example, user equipment directly can be sent to permit server
Activation line License is asked, and the request bag contains order number and UUID.Permit server is corresponding according to the order number
Order contents and the UUID generate license file (License), send the License to user equipment.
Referring to Fig. 6, it is the application Another Application schematic diagram of a scenario.In another application scenarios, user equipment can be with
Send application and destroy example request, cloud platform provider equipment destroys example in response to the request.Then, cloud platform provider
Equipment sends revocation license request to permit server, for applying for the corresponding license of release.Permit server is permitted according to revocation
Can the order number that contains of request bag and UUID, delete corresponding license file, discharge the license, and update and activated permitted device
Quantity, will the quantity subtract 1.It should be noted that illustrating by taking private clound as an example above, the implementation of public cloud
Similar, simply user equipment can be directly interacted with permit server.Illustrate, user equipment can send application pin
Example request is ruined, cloud platform provider equipment destroys example in response to the request.Then, user equipment can be to licensed service
Device sends revocation license request, for applying for the corresponding license of release.Permit server is according to ordering that revocation license request is included
Odd numbers and UUID, delete corresponding license file, discharge the license, and update the quantity for having activated permitted device, Ji Jiangsuo
State quantity and subtract 1.
In the embodiment of the present application, permission flag (such as order number) is introduced in License servers, in each order number
The license of the identical function of fixed qty can be included.Before license facilities and equipments activation line license, service is provided
Business only need to specify the license quantity that the order number can issue and the function that these license possess according to the demand of client
, while the activation for every equipment is asked, the license for producing contains unique mark of license facilities and equipments again
Know, the control permitted can be realized.On the other hand, this mode of the application by permission flag (such as order number), solves
Control problem when equipment elasticity extends in cloud platform.As order number is comprising the characteristic for specifying function license, solve
The problem of distinct device mandate difference in functionality in cloud platform, while solving flexibility and timeliness sex chromosome mosaicism.Additionally, order number is included
Specified quantity can be while the characteristic of running example, solves the demand of resilient expansion in cloud platform.Authorize in order number
License can change with destroying with the establishment of example, but transformation is fixed.In sum, the side that the application is provided
Method flexibility is strong, and license controllability is strong.
It is more than detailed description that the permission control method provided to the embodiment of the present application is carried out, below the application is carried
For equipment be described in detail.
Referring to Fig. 7, for a kind of permit server equipment schematic diagram that the embodiment of the present application is provided.
A kind of permit server equipment 700, the equipment 700 include:
First sending module 701, for sending permission flag to license facilities and equipments, the permission flag is permitted for mark
Can content.
First receiver module 702, for receiving the activation request that the license facilities and equipments send, the activation request bag
Unique mark containing the license facilities and equipments and the permission flag.
License file generation module 703, for obtaining license corresponding with the permission flag according to the permission flag
Content, generates license file according to the unique mark of the licensed content and the license facilities and equipments.
Second sending module 704, for sending the license file to the license facilities and equipments.
In some embodiments, the equipment also includes:Judge module, it is corresponding with the permission flag for obtaining
Permitted device transformation value and the number of devices value of license is activated, judged that the permission flag is corresponding and activated license
Number of devices value whether be less than the permitted device transformation value;If the license file generation module is specifically for described
Judge module judges that the corresponding number of devices value for having activated license of the permission flag is less than the permitted device transformation
Value, then obtain corresponding with permission flag licensed content according to the permission flag, according to the licensed content and described
The unique mark of license facilities and equipments generates license file.
In some embodiments, the equipment also includes:Preserving module, preserves unique mark of the license facilities and equipments
Know;First update module, for updating the number of devices value for having activated license corresponding with the permission flag.
In some embodiments, the equipment also includes:Second receiver module, for receiving revocation license request, institute
State unique mark of the revocation license request comprising the permission flag and the license facilities and equipments;Removing module, for root
Corresponding license file is deleted according to the unique mark of the permission flag and the license facilities and equipments;Second update module,
For updating the number of devices value for having activated license corresponding with the permission flag.
Referring to Fig. 8, for a kind of license facilities and equipments schematic diagram that the embodiment of the present application is provided.
A kind of license facilities and equipments 800, including:
First receiver module 801, for receiving the permission flag of permit server transmission, the permission flag is used to identify
Licensed content.
First sending module 802, for sending activation request to the permit server, the activation request bag is containing described
The unique mark and the permission flag of license facilities and equipments.
Second receiver module 803, for receiving the license file that the permit server sends.
In some embodiments, the equipment also includes:
Second sending module, for sending revocation license request, the revocation license request bag to the permit server
Unique mark containing the permission flag and the license facilities and equipments;3rd receiver module, for receiving the license clothes
The revocation permission response message that business device sends.
The function of above-mentioned each module may correspond to the process step of the above-mentioned permission control method of Fig. 1 to Fig. 6 detailed descriptions,
Repeat no more in this.
Referring to Fig. 9, it is the block diagram of the equipment of the admissions control that another embodiment of the application is provided.Including:At at least one
Reason device 901 (such as CPU), memory 902 and at least one communication bus 903, for realizing that the connection between these equipment is led to
Letter.The executable module that processor 901 is stored in being used to perform memory 902, such as computer program.Memory 902 may
Comprising high-speed random access memory (RAM:Random Access Memory), it is also possible to also including non-labile memory
(non-volatile memory), for example, at least one magnetic disc store.One or more than one program storage are in memory
In, and be configured to by one or more than one processor 901 performs one or more than one program bag containing being used for
Carry out the instruction of following operation:Permission flag is sent to license facilities and equipments, the permission flag is used to identify licensed content;Connect
Receive it is described license facilities and equipments send activation request, it is described activation request bag containing it is described license facilities and equipments unique mark with
And the permission flag;Licensed content corresponding with the permission flag is obtained according to the permission flag, according to the license
The unique mark of content and the license facilities and equipments generates license file;The license text is sent to the license facilities and equipments
Part.
In some embodiments, processor 901 is specifically for performing one or more than one program bag containing use
In the instruction for carrying out following operation:Obtain permitted device transformation value corresponding with the permission flag and activate license
Number of devices value, judge the corresponding number of devices value for having activated license of the permission flag whether less than the permitted device
Transformation value;If judging, the corresponding number of devices value for having activated license of the permission flag is less than the permitted device quantity
Higher limit, then corresponding with permission flag licensed content is obtained according to the permission flag, according to the licensed content and
The unique mark of the license facilities and equipments generates license file.
In some embodiments, processor 901 is specifically for performing one or more than one program bag containing use
In the instruction for carrying out following operation:Preserve the unique mark of the license facilities and equipments;Update corresponding with the permission flag
The number of devices value of license is activated.
In some embodiments, processor 901 is specifically for performing one or more than one program bag containing use
In the instruction for carrying out following operation:
Revocation license request is received, the revocation license request includes the permission flag and the license facilities and equipments
Unique mark;Corresponding license file is deleted according to the unique mark of the permission flag and the license facilities and equipments;
Update the number of devices value for having activated license corresponding with the permission flag.
Referring to Figure 10, it is the block diagram of the equipment of the admissions control that another embodiment of the application is provided.Including:At at least one
Reason device 1001 (such as CPU), memory 1002 and at least one communication bus 1003, for realizing the connection between these equipment
Communication.The executable module that processor 1001 is stored in being used to perform memory 1002, such as computer program.Memory 1002
High-speed random access memory (RAM may be included:Random Access Memory), it is also possible to also deposit including non-labile
Reservoir (non-volatile memory), for example, at least one magnetic disc store.One or more than one program storage are in depositing
In reservoir, and it is configured to by one or more than one processor 1001 performs one or more than one program bag and contains
For carrying out the instruction of following operation:The permission flag that permit server sends is received, the permission flag is used to identify license
Content;Activation request, unique mark of the activation request bag containing the license facilities and equipments are sent to the permit server
And the permission flag;Receive the license file that the permit server sends.
In some embodiments, processor 1001 is specifically for performing one or more than one program bag containing use
In the instruction for carrying out following operation:Revocation license request is sent to the permit server, the revocation license request includes institute
State the unique mark of permission flag and the license facilities and equipments;Receive the revocation permission response that the permit server sends
Message.
Professional should further appreciate that, with reference to each example of the embodiments described herein description
Module and algorithm steps, can with electronic hardware, computer software or the two be implemented in combination in, it is hard in order to clearly demonstrate
The interchangeability of part and software, generally describes the composition and step of each example in the above description according to function.
These functions actually with hardware or software mode performing, depending on the application-specific and design constraint of technical scheme.
Professional and technical personnel can use different methods to realize to each specific application described function, but this realization
It is not considered that exceeding scope of the present application.
Hardware, computing device can be used with reference to the method for the embodiments described herein description or the step of algorithm
Software module, or the combination of the two is implementing.Software module can be placed in random access memory (RAM), internal memory, read-only storage
(ROM), electrically programmable ROM, electrically erasable ROM, register, hard disk, moveable magnetic disc, CD-ROM or technical field
In any other form of storage medium well known to interior.
Above-described specific embodiment, the purpose, technical scheme and beneficial effect to the application have been carried out further
Describe in detail, the be should be understood that specific embodiment that the foregoing is only the application, be not used to limit the application
Protection domain, all any modification, equivalent substitution and improvements within spirit herein and principle, done etc. all should include
Within the protection domain of the application.
Claims (10)
1. a kind of permission control method, it is characterised in that be applied to permit server, including:
Permission flag is sent to license facilities and equipments, the permission flag is used to identify licensed content;
The activation request that the license facilities and equipments send is received, the activation request bag is unique containing the license facilities and equipments
Mark and the permission flag;
Corresponding with permission flag licensed content is obtained according to the permission flag, according to the licensed content and described is permitted
Can facilities and equipments unique mark generate license file;
The license file is sent to the license facilities and equipments.
2. method according to claim 1, it is characterised in that methods described also includes:
Obtain permitted device transformation value corresponding with the permission flag and activated the number of devices value of license, judge
Whether the corresponding number of devices value for having activated license of the permission flag is less than the permitted device transformation value;
It is described corresponding with permission flag licensed content is obtained according to the permission flag, according to the licensed content and institute
The unique mark generation license file for stating license facilities and equipments is specially:
If judging the corresponding number of devices value for having activated license of the permission flag less than the permitted device transformation value,
Corresponding with permission flag licensed content is obtained according to the permission flag then, according to the licensed content and the license
The unique mark of facilities and equipments generates license file.
3. method according to claim 1 and 2, it is characterised in that methods described also includes:
Preserve the unique mark of the license facilities and equipments;
Update the number of devices value for having activated license corresponding with the permission flag.
4. method according to claim 1, it is characterised in that methods described also includes:
Revocation license request is received, the revocation license request includes the permission flag and the license facilities and equipments only
One mark;
Corresponding license file is deleted according to the unique mark of the permission flag and the license facilities and equipments;
Update the number of devices value for having activated license corresponding with the permission flag.
5. a kind of permission control method, it is characterised in that be applied to permit facilities and equipments, including:
The permission flag that permit server sends is received, the permission flag is used to identify licensed content;
To the permit server send activation request, it is described activation request bag containing it is described license facilities and equipments unique mark with
And the permission flag;
Receive the license file that the permit server sends.
6. method according to claim 5, it is characterised in that methods described also includes:
Revocation license request is sent to the permit server, the revocation license request includes the permission flag and described
The unique mark of license facilities and equipments;
Receive the revocation permission response message that the permit server sends.
7. a kind of permit server equipment, it is characterised in that include:
First sending module, for sending permission flag to license facilities and equipments, the permission flag is used to identify licensed content;
First receiver module, for receiving the activation request that the license facilities and equipments send, the activation request bag is containing described
The unique mark and the permission flag of license facilities and equipments;
License file generation module, for obtaining licensed content corresponding with the permission flag, root according to the permission flag
License file is generated according to the unique mark of the licensed content and the license facilities and equipments;
Second sending module, for sending the license file to the license facilities and equipments.
8. it is a kind of to permit facilities and equipments, it is characterised in that to include:
First receiver module, for receiving the permission flag of permit server transmission, the permission flag is used to identify in license
Hold;
First sending module, for sending activation request to the permit server, the activation request bag is real containing the license
Arrange standby unique mark and the permission flag;
Second receiver module, for receiving the license file that the permit server sends.
9. a kind of equipment for admissions control, includes memory, and one or more than one program, one of them
Or more than one program storage is in memory, and it is configured to one by one or more than one computing device
Or more than one program bag contains the instruction for being used to carrying out following operation:
Permission flag is sent to license facilities and equipments, the permission flag is used to identify licensed content;
The activation request that the license facilities and equipments send is received, the activation request bag is unique containing the license facilities and equipments
Mark and the permission flag;
Corresponding with permission flag licensed content is obtained according to the permission flag, according to the licensed content and described is permitted
Can facilities and equipments unique mark generate license file;
The license file is sent to the license facilities and equipments.
10. a kind of equipment for admissions control, includes memory, and one or more than one program, wherein one
Individual or more than one program storage is in memory, and is configured to one by described in one or more than one computing device
Individual or more than one program bag contains the instruction for being used to carrying out following operation:
The permission flag that permit server sends is received, the permission flag is used to identify licensed content;
To the permit server send activation request, it is described activation request bag containing it is described license facilities and equipments unique mark with
And the permission flag;
Receive the license file that the permit server sends.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610932245.7A CN106534084A (en) | 2016-10-24 | 2016-10-24 | Admission control method and equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610932245.7A CN106534084A (en) | 2016-10-24 | 2016-10-24 | Admission control method and equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106534084A true CN106534084A (en) | 2017-03-22 |
Family
ID=58291582
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610932245.7A Pending CN106534084A (en) | 2016-10-24 | 2016-10-24 | Admission control method and equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106534084A (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109218259A (en) * | 2017-06-30 | 2019-01-15 | 中兴通讯股份有限公司 | License management method and device, APPLM functional entity and computer readable storage medium |
| CN109285044A (en) * | 2017-07-19 | 2019-01-29 | 发那科株式会社 | Using sales administration server system |
| CN109285045A (en) * | 2017-07-19 | 2019-01-29 | 发那科株式会社 | Using sales administration server system |
| CN109286652A (en) * | 2017-07-19 | 2019-01-29 | 发那科株式会社 | Using sales administration server system and Edge Server |
| CN109614114A (en) * | 2018-11-12 | 2019-04-12 | 东软集团股份有限公司 | Acquisition methods, device, readable storage medium storing program for executing and the electronic equipment of License file |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101170446A (en) * | 2007-12-03 | 2008-04-30 | 华为技术有限公司 | A license management method, server, client and system |
| CN101657823A (en) * | 2007-04-11 | 2010-02-24 | 日本电气株式会社 | Content use system and advertisement content use method |
| US20100251382A1 (en) * | 2009-03-24 | 2010-09-30 | Norifumi Goto | Content reproducing device and content reproducing method |
| CN102281300A (en) * | 2011-08-24 | 2011-12-14 | 中国联合网络通信集团有限公司 | digital rights management license distribution method and system, server and terminal |
| CN102340521A (en) * | 2010-07-14 | 2012-02-01 | 中国联合网络通信集团有限公司 | Method for obtaining license, method for playing media content and user terminal |
| US20150047053A1 (en) * | 2013-08-08 | 2015-02-12 | Founder Apabi Technology Limited | Server, terminal, and transfer method for digital content under copyright protection |
-
2016
- 2016-10-24 CN CN201610932245.7A patent/CN106534084A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101657823A (en) * | 2007-04-11 | 2010-02-24 | 日本电气株式会社 | Content use system and advertisement content use method |
| CN101170446A (en) * | 2007-12-03 | 2008-04-30 | 华为技术有限公司 | A license management method, server, client and system |
| US20100251382A1 (en) * | 2009-03-24 | 2010-09-30 | Norifumi Goto | Content reproducing device and content reproducing method |
| CN102340521A (en) * | 2010-07-14 | 2012-02-01 | 中国联合网络通信集团有限公司 | Method for obtaining license, method for playing media content and user terminal |
| CN102281300A (en) * | 2011-08-24 | 2011-12-14 | 中国联合网络通信集团有限公司 | digital rights management license distribution method and system, server and terminal |
| US20150047053A1 (en) * | 2013-08-08 | 2015-02-12 | Founder Apabi Technology Limited | Server, terminal, and transfer method for digital content under copyright protection |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109218259A (en) * | 2017-06-30 | 2019-01-15 | 中兴通讯股份有限公司 | License management method and device, APPLM functional entity and computer readable storage medium |
| CN109218259B (en) * | 2017-06-30 | 2022-03-29 | 中兴通讯股份有限公司 | License management method and device, APPLM functional entity and computer readable storage medium |
| CN109285044A (en) * | 2017-07-19 | 2019-01-29 | 发那科株式会社 | Using sales administration server system |
| CN109285045A (en) * | 2017-07-19 | 2019-01-29 | 发那科株式会社 | Using sales administration server system |
| CN109286652A (en) * | 2017-07-19 | 2019-01-29 | 发那科株式会社 | Using sales administration server system and Edge Server |
| US10740811B2 (en) | 2017-07-19 | 2020-08-11 | Fanuc Corporation | Application sales management server systems and method |
| US10909597B2 (en) | 2017-07-19 | 2021-02-02 | Fanuc Corporation | Application sales management server system and method |
| CN109286652B (en) * | 2017-07-19 | 2021-07-13 | 发那科株式会社 | Application sales management server system and edge server |
| CN109614114A (en) * | 2018-11-12 | 2019-04-12 | 东软集团股份有限公司 | Acquisition methods, device, readable storage medium storing program for executing and the electronic equipment of License file |
| CN109614114B (en) * | 2018-11-12 | 2022-02-08 | 东软集团股份有限公司 | License file acquisition method and device, readable storage medium and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105027493B (en) | Safety moving application connection bus | |
| CN106534084A (en) | Admission control method and equipment | |
| CN103685138B (en) | The authentication method of the Android platform application software that mobile interchange is online and system | |
| US8539222B2 (en) | System for securing virtual machine disks on a remote shared storage subsystem | |
| CN101189633B (en) | Method and equipment for carrying out authorizing rights issuers in content delivering system | |
| CN106936577B (en) | Method, terminal and system for certificate application | |
| CN112165382B (en) | Software authorization method and device, authorization server side and terminal equipment | |
| CN109417545A (en) | For downloading the technology of network insertion profile | |
| CN103109297A (en) | Data distribution device, data distribution system, client device, data distribution method, data reception method, program and recording medium | |
| CN109587146A (en) | Method for managing object and system based on block chain | |
| CN106936774A (en) | Authentication method and system in credible performing environment | |
| JP2010514000A (en) | Method for securely storing program state data in an electronic device | |
| CN104753674A (en) | Application identity authentication method and device | |
| CN111178884A (en) | Information processing method, device, equipment and readable storage medium | |
| US10298388B2 (en) | Workload encryption key | |
| CN111311258B (en) | Block chain-based trusted transaction method, device, system, equipment and medium | |
| CN104702575A (en) | Account management method, management platform and account management system | |
| CN112291201A (en) | Service request transmission method and device and electronic equipment | |
| CN114339745A (en) | Key distribution method, system and related equipment | |
| CN111311341A (en) | Bill processing method, apparatus and medium | |
| CN109039615A (en) | Utilize the method and relevant device and storage medium of SSL VPN agreement acquisition quantum key | |
| CN114372242A (en) | Ciphertext data processing method, authority management server and decryption server | |
| CN103560948B (en) | Communication means, equipment and system between virtual machine | |
| US20090282245A1 (en) | Security method and system for media playback devices | |
| KR20070056820A (en) | System and method for self-made contents distribution using digital rights management |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170322 |