CN107766707A - The method and apparatus that user's request is responded in application container engine - Google Patents

The method and apparatus that user's request is responded in application container engine Download PDF

Info

Publication number
CN107766707A
CN107766707A CN201710958639.4A CN201710958639A CN107766707A CN 107766707 A CN107766707 A CN 107766707A CN 201710958639 A CN201710958639 A CN 201710958639A CN 107766707 A CN107766707 A CN 107766707A
Authority
CN
China
Prior art keywords
user
container
image file
information
management
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710958639.4A
Other languages
Chinese (zh)
Other versions
CN107766707B (en
Inventor
代振宇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Suzhou Wave Intelligent Technology Co Ltd
Original Assignee
Zhengzhou Yunhai Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhengzhou Yunhai Information Technology Co Ltd filed Critical Zhengzhou Yunhai Information Technology Co Ltd
Priority to CN201710958639.4A priority Critical patent/CN107766707B/en
Publication of CN107766707A publication Critical patent/CN107766707A/en
Application granted granted Critical
Publication of CN107766707B publication Critical patent/CN107766707B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/30Creation or generation of source code
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/445Program loading or initiating
    • G06F9/44521Dynamic linking or loading; Link editing at or after load time, e.g. Java class loading
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Abstract

The invention discloses a kind of method and apparatus that user's request is responded in application container engine.Methods described includes:After receiving user and carrying out Docker management requests, the user type of the user is obtained;Whether the user type for judging the user is domestic consumer;If the user type of the user is domestic consumer, according to the management strategy pre-set, user management Docker authority is authorized;After the authority that the user gets management Docker, the Docker of user management request is responded.

Description

The method and apparatus that user's request is responded in application container engine
Technical field
The present invention relates to field of information processing, espespecially a kind of method and dress that user's request is responded in application container engine Put.
Background technology
Docker is the application container an increased income engine, allow developer can pack they application and rely on bag arrive In one transplantable container, then it is published on any popular Linux machines, client-server (C/ can also be used S) architecture mode, using long-range API, (Application Programming Interface, application programming interface carry out pipe Reason and establishment Docker containers.
Docker containers are created by Docker mirror images, and wherein the relation of container and mirror image is similar to OOP In object and class.It is prevailing with Docker technologies, there are several key points to need to solve during being managed to container:
1st, Docker orders domestic consumer is not carried out authority;
If the 2, Docker adds root prescription formulas, user has the authority for performing Docker, increases the pipe to Docker Manage authority, it is possible to cause security risk;
3rd, under the precursor for assuming safety, cumbersome search procedure will be undergone when domestic consumer performs every time, is not had Method efficiently manages oneself container.Easily occur it is time-consuming, with wrong or a series of bad results such as delete by mistake.
The content of the invention
In order to solve above-mentioned at least one technical problem, user is responded in application container engine the invention provides one kind The method and apparatus of request.
In order to reach the object of the invention, the invention provides a kind of side that user's request is responded in application container engine Method, it is characterised in that including:
After receiving user and carrying out Docker management requests, the user type of the user is obtained;
Whether the user type for judging the user is domestic consumer;
If the user type of the user is domestic consumer, according to the management strategy pre-set, the user is authorized Manage Docker authority;
After the authority that the user gets management Docker, the Docker of user management request is responded.
Wherein, methods described also has following features:The Docker of response user management request, including:
After receiving user and establishing the management request of container, the list information of image file is exported;
Receive the target image file that the user selects from the list information;
The container for establishing the target image file is asked with responding the management for establishing container, and records the container Identification information.
Wherein, methods described also has following features:Methods described also includes:
After the completion of container foundation, the mark of the container and the corresponding relation of following at least one information are recorded, wherein Described information includes user profile, container storage address, temporal information and mirror image title.
Wherein, methods described also has following features:The Docker of response user management request, including:
After receiving user and inquiring about the management request of container, user profile in management request is obtained;
According to the user profile and the corresponding relation of container identification prestored, container corresponding to the user profile is searched Mark;
Export the information of container corresponding to the container identification.
Wherein, methods described also has following features:The Docker of response user management request, including:
After the management request of image file of the existing container of user's change is received, obtain user in management request and believe The identification information of image file after breath, the identification information of container and change;
According to the user profile and the corresponding relation of image file prestored, mirror image corresponding to the user profile is searched The identification information of file;
Judge change after image file identification information whether image file corresponding to the user profile mark In information, judged result is obtained;
If it is judged that not exist, then image file is deleted in container corresponding to the container identification, and load change Mirror image corresponding to the identification information of the image file after more.
A kind of device that user's request is responded in application container engine, including:
Acquisition module, it is existing after receiving user and carrying out Docker management requests, obtain the user type of the user;
Judge module, for judging whether the user type of the user is domestic consumer;
Authorization module, if the user type for the user is domestic consumer, according to the management plan pre-set Slightly, user management Docker authority is authorized;
Respond module, after the authority for managing Docker is got in the user, respond the Docker of the user Management request.
Wherein, described device also has following features:The respond module includes:
First output unit, for after receiving user and establishing the management request of container, exporting the list of image file Information;
Receiving unit, the target image file selected for receiving the user from the list information;
Unit is established, is asked for establishing the container of the target image file with responding the management for establishing container, And record the identification information of the container.
Wherein, described device also has following features:Described device also includes:
Logging modle, after the completion of being established in container, record the mark of the container and following at least one information Corresponding relation, wherein described information include user profile, container storage address, temporal information and mirror image title.
Wherein, described device also has following features:The respond module includes:
First acquisition unit, for after receiving user and inquiring about the management request of container, obtaining user in management request Information;
First searching unit, for the corresponding relation according to the user profile that prestores and container identification, described in lookup Container identification corresponding to user profile;
Second output unit, for exporting the information of container corresponding to the container identification.
Wherein, described device also has following features:The respond module includes:
Second acquisition module, for after the management request of image file of the existing container of user's change is received, obtaining The identification information of image file in management request after user profile, the identification information of container and change;
Second searching unit, for the corresponding relation according to the user profile that prestores and image file, described in lookup The identification information of image file corresponding to user profile;
Judging unit, for judging the identification information of the image file after changing whether in mirror corresponding to the user profile As file identification information in, obtain judged result;
Loading unit, for if it is judged that not exist, then deleting mirror image in container corresponding to the container identification File, and load mirror image corresponding to identification information of the image file after change.
Embodiment provided by the invention, by being identified and judging to user type, domestic consumer is authorized, is The management request for responding the Docker of the user provides safeguard, and solves rights concerns, improves Docker application.
Other features and advantages of the present invention will be illustrated in the following description, also, partly becomes from specification Obtain it is clear that or being understood by implementing the present invention.The purpose of the present invention and other advantages can be by specification, rights Specifically noted structure is realized and obtained in claim and accompanying drawing.
Brief description of the drawings
Accompanying drawing is used for providing further understanding technical solution of the present invention, and a part for constitution instruction, with this The embodiment of application is used to explain technical scheme together, does not form the limitation to technical solution of the present invention.
Fig. 1 is the flow chart of the method provided by the invention that user's request is responded in application container engine;
Fig. 2 is the structure chart of the device provided by the invention that user's request is responded in application container engine.
Embodiment
For the object, technical solutions and advantages of the present invention are more clearly understood, below in conjunction with accompanying drawing to the present invention Embodiment be described in detail.It should be noted that in the case where not conflicting, in the embodiment and embodiment in the application Feature can mutually be combined.
Can be in the computer system of such as one group computer executable instructions the flow of accompanying drawing illustrates the step of Perform.Also, although logical order is shown in flow charts, in some cases, can be with suitable different from herein Sequence performs shown or described step.
Fig. 1 is the flow chart of the method provided by the invention that user's request is responded in application container engine.Side shown in Fig. 1 Method includes:
Step 101, after receiving user and carrying out Docker management requests, obtain the user type of the user;
Specifically, the user of Docker management requests is initiated, due to being used in existing system for user type to be common Family is no administration authority, therefore, it is necessary to obtain the user type of the user before management request is responded;
Whether step 102, the user type for judging the user are domestic consumer;
Specifically, by judging whether the user type of the user is domestic consumer, to determine the need for the user Carry out specially treated;
If step 103, the user type of the user are domestic consumer, according to the management strategy pre-set, award Give user management Docker authority;
Specifically, as domestic consumer, the user is currently no administration authority, therefore, it is necessary to is opened for the user Authority, while also to take into account safety factor, can be open to the part in domestic consumer, therefore, can be according to being actually needed Security strategy is set, controls a part of domestic consumer that there is the authority;
Step 104, after getting the authority for managing Docker in the user, respond the Docker of user management Request.
Specifically, after detecting that the user has permission, the management request of the user is being responded.
Embodiment of the method provided by the invention, by being identified and judging to user type, domestic consumer is awarded Power, provided safeguard to respond the Docker of user management request, solve rights concerns, improve Docker application Scope.
The embodiment of the method provided is invented to book below to be described further:
To realize that the response to user management request sets DockerEngine files, this file is core document, the inside Contain following functional unit:
Dockerrun, for creating a vessel process design;
Dockerenter, designed for entering a vessel process;
Dockerdestory, for destroying a vessel process design;
Dockermanage, designed for integrated management approach.
Wherein, DockerEngine files need root to authorize, and purpose is that domestic consumer can perform DockerEngine texts Part specific method is:
[root@node2~] #vim/etc/sudoers
Addition
ALL ALL=(root)
NOPASSWD:/usr/local/Docker-inspur/bin/DockerEngine
When user needs to establish a container, the method for processing is as follows:
After receiving user and establishing the management request of container, the list information of image file is exported;
Receive the target image file that the user selects from the list information;
The container for establishing the target image file is asked with responding the management for establishing container, and records the container Identification information.
The method provided by the invention for establishing container specifically includes:
Dockerrun methods are needed to obtain Docker image listings by Docker images, and list is compiled Number, user can input oneself and which mirror image create the numbering of container with and then create container, and the container is existed by-d parameters Running background, and the time of the container of each establishment, establishment user, the information such as No. iD are recorded.Will carry driving Etc. information, it is fixed under a catalogue.Pass through-v carries.
After the completion of container foundation, the mark of the container and the corresponding relation of following at least one information are recorded, wherein Described information includes user profile, container storage address, temporal information and mirror image title.
Specifically, passing through -- cidfile records the ID number of container startup, and date obtains timestamp, Docker images Mirror image title is obtained, then file name form is $ { USER }, and on the date, content is container id, mirror image title.Such as:
Filename:root,2017-08-24-09:37:04
No. Id:82c68d872cb0ca591473827c4e8694207a2683919
Mirror image name:10.166.15.103:5000/Dockermxnet:latest
After the completion of easily establishing, user can be responded to the inquiry request for the container having built up, including:
After receiving user and inquiring about the management request of container, user profile in management request is obtained;
According to the user profile and the corresponding relation of container identification prestored, container corresponding to the user profile is searched Mark;
Export the information of container corresponding to the container identification.
Specifically, Dockerenter methods need the information of container list stored by Dockerrun, with active user Active user's information of container list is filtered out for keyword, if current is root user, lists the container of all users, and compile Number, user inputs numbering, into container root user corresponding to numbering, then lists all user's containers, and numbers, user's input Numbering, delete container corresponding to numbering.
Wherein, in program execution, Dockerenter traversal All Fileses, information is printed and numbered, and by user Name, ID, it is deposited into inside array and numbers with CSV.Numbered corresponding to user's input, then trigger Docker exec-it $ ID/bin/bash orders, into container.
Certainly, user can also call Dockerdestory to destroy container, then travel through All Files, by information printing simultaneously Numbering, and by user name, ID, be deposited into inside array and number with CSV.Number, then trigger corresponding to user's input Docker rm-f $ id commands, destroy container.
After the management request of image file of the existing container of user's change is received, obtain user in management request and believe The identification information of image file after breath, the identification information of container and change;
According to the user profile and the corresponding relation of image file prestored, mirror image corresponding to the user profile is searched The identification information of file;
Judge change after image file identification information whether image file corresponding to the user profile mark In information, judged result is obtained;
If it is judged that not exist, then image file is deleted in container corresponding to the container identification, and load change Mirror image corresponding to the identification information of the image file after more.
Specifically, aforesaid operations, Dockermanage method integrations are realized using Dockermanage integrated managements Outside multiple methods, including above three method, the mirror image commit methods submitted also are integrated with, upload is mirrored to privately owned warehouse Method push, and download and be mirrored to nation method pull.For example, into destroy container call Dockerenter with Dockerdestory methods, during commit containers, then All Files is traveled through, information is printed and numbered, and by user name, ID, It is deposited into inside array and numbers with CSV.Numbered corresponding to user's input, perform commit $ ID mirror images names so as to by mirror As submitting.During Push mirror images, perform Docker images and list images lists and number, and by mirror image title, compiled Number, user inputs reference numeral, then lists existing mirror image title and tag in Current warehouse, and waits user's input will The mirror image title and tag of submission, try not and existing repetition, otherwise can be capped.It is defaulted as current mirror image title tag For current time stamp, Docker push IP/image are performed afterwards.Pull is similar with push, performs opposite operation.
Wherein, Dockerrun, Dockerenter, Dockerdestory, Dockermanager method need to be passed to commonly The user name of user, it is Docker administration orders which user performs to distinguish, is easy to post-recorded, screens, enter, delete The container of oneself is managed except waiting, other people is not disturbed while is not also disturbed by other people.
Due to Docker can only root perform, if by way of the addition group, allow domestic consumer to have and perform Docker Root authority, then domestic consumer can at will perform Docker orders, so cause container dangerous, it is easy to cause to grasp by mistake Make, therefore, when user's request performs foundation, inquiry and deletes and change the request of container, it is necessary to make to the user further Authentication, determine whether to perform the authority of the specific operation, judge have the authority after, just respond the operation.At this Invention is provided in example, and by Dockerrun, Dockerenter, Dockerdestory, tetra- methods of Dockermanager are write Enter in DockerEngine, and authorized by root to DockerEngine, to provide access security.
In order to which domestic consumer's name is passed in DockerEngine, then another write order is needed, call these four methods.Other According to required by oneself, different parameters are passed to, such as, it is necessary to be passed to the catalogue of carry by-v parameters when Dockerrun ,-d is passed Enter device number etc..
In the above-mentioned methods, user only needs to perform above-mentioned four kinds of methods, can be managed with the container to oneself, leads to The screening of script is crossed, root can see the information of all users, and the container of all domestic consumers is operated.
Fig. 2 is the structure chart of the device provided by the invention that user's request is responded in application container engine.Filled shown in Fig. 2 Put including:
Acquisition module 201, it is existing after receiving user and carrying out Docker management requests, obtain the user class of the user Type;
Judge module 202, for judging whether the user type of the user is domestic consumer;
Authorization module 203, if the user type for the user is domestic consumer, according to the management pre-set Strategy, authorize user management Docker authority;
Respond module 204, after the authority for managing Docker is got in the user, respond the user's Docker management request.
In a device embodiment provided by the invention, the respond module 204 includes:
First output unit, for after receiving user and establishing the management request of container, exporting the list of image file Information;
Receiving unit, the target image file selected for receiving the user from the list information;
Unit is established, is asked for establishing the container of the target image file with responding the management for establishing container, And record the identification information of the container.
In a device embodiment provided by the invention, described device also includes:
Logging modle, after the completion of being established in container, record the mark of the container and following at least one information Corresponding relation, wherein described information include user profile, container storage address, temporal information and mirror image title.
In a device embodiment provided by the invention, the respond module 204 includes:
First acquisition unit, for after receiving user and inquiring about the management request of container, obtaining user in management request Information;
First searching unit, for the corresponding relation according to the user profile that prestores and container identification, described in lookup Container identification corresponding to user profile;
Second output unit, for exporting the information of container corresponding to the container identification.
In a device embodiment provided by the invention, the respond module 204 includes:
Second acquisition module, for after the management request of image file of the existing container of user's change is received, obtaining The identification information of image file in management request after user profile, the identification information of container and change;
Second searching unit, for the corresponding relation according to the user profile that prestores and image file, described in lookup The identification information of image file corresponding to user profile;
Judging unit, for judging the identification information of the image file after changing whether in mirror corresponding to the user profile As file identification information in, obtain judged result;
Loading unit, for if it is judged that not exist, then deleting mirror image in container corresponding to the container identification File, and load mirror image corresponding to identification information of the image file after change.
Device embodiment provided by the invention, by being identified and judging to user type, domestic consumer is awarded Power, provided safeguard to respond the Docker of user management request, solve rights concerns, improve Docker application Scope.
One of ordinary skill in the art will appreciate that all or part of step of above-described embodiment can use computer journey Sequence flow realizes that the computer program can be stored in a computer-readable recording medium, the computer program exists (such as system, unit, device) performs on corresponding hardware platform, upon execution, including the step of embodiment of the method it One or its combination.
Alternatively, all or part of step of above-described embodiment can also realize that these steps can using integrated circuit To be fabricated to integrated circuit modules one by one respectively, or the multiple modules or step in them are fabricated to single integrated electricity Road module is realized.So, the present invention is not restricted to any specific hardware and software combination.
Each device/functional module/functional unit in above-described embodiment can be realized using general computing device, it Can concentrate on single computing device, can also be distributed on the network that multiple computing devices are formed.
Each device/functional module/functional unit in above-described embodiment realized in the form of software function module and as Independent production marketing in use, can be stored in a computer read/write memory medium.Computer mentioned above Read/write memory medium can be read-only storage, disk or CD etc..
The foregoing is only a specific embodiment of the invention, but protection scope of the present invention is not limited thereto, any Those familiar with the art the invention discloses technical scope in, change or replacement can be readily occurred in, should all be contained Cover within protection scope of the present invention.Therefore, protection scope of the present invention should be defined by the protection domain described in claim.

Claims (10)

  1. A kind of 1. method that user's request is responded in application container engine, it is characterised in that including:
    After receiving user and carrying out Docker management requests, the user type of the user is obtained;
    Whether the user type for judging the user is domestic consumer;
    If the user type of the user is domestic consumer, according to the management strategy pre-set, the user management is authorized Docker authority;
    After the authority that the user gets management Docker, the Docker of user management request is responded.
  2. 2. according to the method for claim 1, it is characterised in that the Docker of response user management request, Including:
    After receiving user and establishing the management request of container, the list information of image file is exported;
    Receive the target image file that the user selects from the list information;
    The container for establishing the target image file is asked with responding the management for establishing container, and records the mark of the container Know information.
  3. 3. according to the method for claim 2, it is characterised in that methods described also includes:
    After the completion of container foundation, the mark of the container and the corresponding relation of following at least one information are recorded, wherein described Information includes user profile, container storage address, temporal information and mirror image title.
  4. 4. according to the method for claim 3, it is characterised in that the Docker of response user management request, Including:
    After receiving user and inquiring about the management request of container, user profile in management request is obtained;
    According to the user profile and the corresponding relation of container identification prestored, container mark corresponding to the user profile is searched Know;
    Export the information of container corresponding to the container identification.
  5. 5. according to the method for claim 3, it is characterised in that the Docker of response user management request, Including:
    After the management request of image file of the existing container of user's change is received, obtain user profile in management request, hold The identification information of image file after the identification information of device and change;
    According to the user profile and the corresponding relation of image file prestored, image file corresponding to the user profile is searched Identification information;
    Judge change after image file identification information whether image file corresponding to the user profile identification information In, obtain judged result;
    If it is judged that not exist, then image file is deleted in container corresponding to the container identification, and after loading change Image file mirror image corresponding to identification information.
  6. A kind of 6. device that user's request is responded in application container engine, it is characterised in that including:
    Acquisition module, it is existing after receiving user and carrying out Docker management requests, obtain the user type of the user;
    Judge module, for judging whether the user type of the user is domestic consumer;
    Authorization module, if the user type for the user is domestic consumer, according to the management strategy pre-set, award Give user management Docker authority;
    Respond module, after the authority for managing Docker is got in the user, respond the Docker of user pipe Reason request.
  7. 7. device according to claim 6, it is characterised in that the respond module includes:
    First output unit, for after receiving user and establishing the management request of container, exporting the list information of image file;
    Receiving unit, the target image file selected for receiving the user from the list information;
    Unit is established, is asked for establishing the container of the target image file with responding the management for establishing container, and remember Record the identification information of the container.
  8. 8. device according to claim 7, it is characterised in that described device also includes:
    Logging modle, after the completion of being established in container, record the mark of the container and the correspondence of following at least one information Relation, wherein described information include user profile, container storage address, temporal information and mirror image title.
  9. 9. device according to claim 8, it is characterised in that the respond module includes:
    First acquisition unit, for after receiving user and inquiring about the management request of container, obtaining user profile in management request;
    First searching unit, for according to the user profile and the corresponding relation of container identification prestored, searching the user Container identification corresponding to information;
    Second output unit, for exporting the information of container corresponding to the container identification.
  10. 10. device according to claim 8, it is characterised in that the respond module includes:
    Second acquisition module, for after the management request of image file of the existing container of user's change is received, obtaining management The identification information of image file in request after user profile, the identification information of container and change;
    Second searching unit, for according to the user profile and the corresponding relation of image file prestored, searching the user The identification information of image file corresponding to information;
    Judging unit, for judging the identification information of the image file after changing whether in mirror image text corresponding to the user profile In the identification information of part, judged result is obtained;
    Loading unit, for if it is judged that not exist, then deleting image file in container corresponding to the container identification, And load mirror image corresponding to identification information of the image file after change.
CN201710958639.4A 2017-10-16 2017-10-16 Method and apparatus for responding to user request in application container engine Active CN107766707B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710958639.4A CN107766707B (en) 2017-10-16 2017-10-16 Method and apparatus for responding to user request in application container engine

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710958639.4A CN107766707B (en) 2017-10-16 2017-10-16 Method and apparatus for responding to user request in application container engine

Publications (2)

Publication Number Publication Date
CN107766707A true CN107766707A (en) 2018-03-06
CN107766707B CN107766707B (en) 2020-02-04

Family

ID=61268699

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710958639.4A Active CN107766707B (en) 2017-10-16 2017-10-16 Method and apparatus for responding to user request in application container engine

Country Status (1)

Country Link
CN (1) CN107766707B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109376525A (en) * 2018-09-14 2019-02-22 网宿科技股份有限公司 Reminding method, Linux server and the computer readable storage medium of Linux server
CN111880832A (en) * 2020-08-03 2020-11-03 上海嗨酷强供应链信息技术有限公司 Mirror image management method based on docker containerization technology
CN112148419A (en) * 2019-06-28 2020-12-29 杭州海康威视数字技术股份有限公司 Mirror image management method, device and system in cloud platform and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105160269A (en) * 2015-08-13 2015-12-16 浪潮电子信息产业股份有限公司 Method and apparatus for accessing data in Docker container
CN106020930A (en) * 2016-05-13 2016-10-12 深圳市中润四方信息技术有限公司 Application container based application management method and system
CN106528224A (en) * 2016-11-03 2017-03-22 腾讯科技(深圳)有限公司 Content updating method and system for Docker container, and server
CN106845183A (en) * 2017-01-24 2017-06-13 郑州云海信息技术有限公司 A kind of application container engine management method and system
CN106897147A (en) * 2017-02-24 2017-06-27 郑州云海信息技术有限公司 A kind of application container engine container resource regulating method and device

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105160269A (en) * 2015-08-13 2015-12-16 浪潮电子信息产业股份有限公司 Method and apparatus for accessing data in Docker container
CN106020930A (en) * 2016-05-13 2016-10-12 深圳市中润四方信息技术有限公司 Application container based application management method and system
CN106528224A (en) * 2016-11-03 2017-03-22 腾讯科技(深圳)有限公司 Content updating method and system for Docker container, and server
CN106845183A (en) * 2017-01-24 2017-06-13 郑州云海信息技术有限公司 A kind of application container engine management method and system
CN106897147A (en) * 2017-02-24 2017-06-27 郑州云海信息技术有限公司 A kind of application container engine container resource regulating method and device

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
刘凯: "我们为什么不允许非root用户在CentOS直接运行", 《HTTP://CLOUD.51CTO.COM/ART/201508/488478.HTM》 *
过去的我: "解决普通用户无法使用docker命令的问题", 《HTTPS://BLOG.CSDN.NET/ACA_JINGRU/ARTICLE/DETAILS/51943083》 *

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109376525A (en) * 2018-09-14 2019-02-22 网宿科技股份有限公司 Reminding method, Linux server and the computer readable storage medium of Linux server
CN109376525B (en) * 2018-09-14 2020-11-03 网宿科技股份有限公司 Prompting method of Linux server, Linux server and computer readable storage medium
CN112148419A (en) * 2019-06-28 2020-12-29 杭州海康威视数字技术股份有限公司 Mirror image management method, device and system in cloud platform and storage medium
CN112148419B (en) * 2019-06-28 2024-01-02 杭州海康威视数字技术股份有限公司 Mirror image management method, device and system in cloud platform and storage medium
CN111880832A (en) * 2020-08-03 2020-11-03 上海嗨酷强供应链信息技术有限公司 Mirror image management method based on docker containerization technology

Also Published As

Publication number Publication date
CN107766707B (en) 2020-02-04

Similar Documents

Publication Publication Date Title
Badger et al. A domain and type enforcement UNIX prototype
CN106202452B (en) Unified data resource management system and method for big data platform
CN104144158B (en) Method and apparatus for the automatic agreement based on strategy
US6205466B1 (en) Infrastructure for an open digital services marketplace
US9230083B2 (en) Securing application information in system-wide search engines
CN107766707A (en) The method and apparatus that user's request is responded in application container engine
CN1866214B (en) Installation method and apparatus
US20070255677A1 (en) Method and apparatus for browsing search results via a virtual file system
CN107643927A (en) A kind of united portal method, apparatus and system
NO340412B1 (en) Security in synchronization applications for similar devices
ZA200507837B (en) Local and remote management of lock systems from a network
CN107426152B (en) Multitask security isolation system and method under cloud platform actual situation Interconnection Environment
CN108289098A (en) Right management method and device, server, the medium of distributed file system
CN103500304A (en) Virtual machine personalized security monitoring system and method based on Xen
CN109656886A (en) File system implementation method, device, equipment and storage medium based on key-value pair
JP2009003549A (en) Data management device, data management method, data management program, and data management program storage medium
CN110197064A (en) Process handling method and device, storage medium and electronic device
CN107392014A (en) The SQL injection defence method and system changed at random based on database structure
JP2008117220A (en) User management system, user management program and user management method
US8806203B2 (en) Server-side security for untrusted clients using directory hiding
Liu et al. Smart hardware hybrid secure searchable encryption in cloud with IoT privacy management for smart home system
CN108228793A (en) Acquisition methods, device and the terminal applies of data
CN108418957A (en) Intelligent mobile phone intervenes the method, apparatus and vehicle of onboard system
CN109829334A (en) Data box configuration, use and bookkeeping methods and its operation system based on block chain
EP3924864A1 (en) Computer systems and methods for assisting with the completion of online forms

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right

Effective date of registration: 20191227

Address after: 215100 No. 1 Guanpu Road, Guoxiang Street, Wuzhong Economic Development Zone, Suzhou City, Jiangsu Province

Applicant after: Suzhou Wave Intelligent Technology Co., Ltd.

Address before: 450018 Henan province Zheng Dong New District of Zhengzhou City Xinyi Road No. 278 16 floor room 1601

Applicant before: Zhengzhou Yunhai Information Technology Co. Ltd.

TA01 Transfer of patent application right
GR01 Patent grant
GR01 Patent grant