CN108804910A - account management system - Google Patents
account management system Download PDFInfo
- Publication number
- CN108804910A CN108804910A CN201810584233.9A CN201810584233A CN108804910A CN 108804910 A CN108804910 A CN 108804910A CN 201810584233 A CN201810584233 A CN 201810584233A CN 108804910 A CN108804910 A CN 108804910A
- Authority
- CN
- China
- Prior art keywords
- account management
- account
- instruction
- management instruction
- queue
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
Abstract
The present invention relates to identity management techniques fields, provide a kind of account management system, including identity management system, account management instruction queue and at least one application system, and wherein identity management system is at least used to send account management instruction to account management instruction queue;Account management instruction queue is at least used to receiving and caching account management instruction;And application system is at least used for:Account management instruction is obtained from account management instruction queue, is operated according to account management instruction execution account management.By establishing account management instruction queue, identity management system is only responsible for sending account operational order to message queue, application system from account management instruction queue acquisition instruction and execute management operation, reach identity management system and the non-dependent purpose of application system both sides, promotes stability and the flexibility of identity management system.
Description
Technical field
The present invention relates to identity management techniques fields, and in particular to a kind of account management system.
Background technology
The account of application system is managed be identity management system a critical function, identity management system passes through
The system integration is called application system Account interface to carry out the increasing of account, the operations such as delete, change, looking into, is realized to multiple application system accounts
Number unified management.
Existing account management integrated technology is to directly invoke application system account by identity management system by customized development
Number interface realizes that the management to application account operates.Such realization method makes to form between identity management system and application system
Close coupling relationship, has accessed that application system changes or the access of new application system is required for suitable in identity management system
It is modified with code, the implementation and maintenance cost, system flexibility and stability for resulting in great number decline.
For example, Fig. 1 is Organization Chart (wherein, webservice interfaces, that is, network service interface of the prior art;REST interfaces
It is the abbreviation of declarative state transfer (REpresentational State Transfer, REST) interface;In Socket interfaces
Literary fame is sockets interface, and two on network program realizes the exchange of data, this company by a two-way communication connection
The one end connect is known as a socke), Party A implements identity management system, implements personnel by Party B and has accessed X (A-X) such as
The account management of five (A-E) application systems.After running a period of time, A system business changes, and needs to obtain when account creates
Subscriber directory number can additionally be obtained;B, C system, which redeploys, has replaced IP address;D, the account management operation of E systems is unstable
It is fixed, need investigation problem.In the prior art, it is a part for identity management system, first due to calling the code of each operation system
Fang Wufa is debugged and is changed to it.Any demand change occurs or all Party B personnel can only be required to repair after breaking down
Change, redeploy identity management system so that O&M cost is excessively high, and the actual effect that account management is implemented often is had a greatly reduced quality.
Therefore, it is necessary to a kind of new account management systems.
Above- mentioned information is only used for reinforcing the understanding of the background to the present invention, therefore it disclosed in the background technology part
May include the information not constituted to the prior art known to persons of ordinary skill in the art.
Invention content
The purpose of the present invention is to provide a kind of account management systems, and then are overcome at least to a certain extent due to correlation
One or more problem caused by the limitation and defect of technology.
Other characteristics and advantages of the present invention will be apparent from by the following detailed description, or partially by the present invention
Practice and acquistion.
Example embodiment according to the present invention discloses a kind of account management system, which is characterized in that including Identity Management
System, account management instruction queue and at least one application system, wherein
Identity management system is at least used to send account management instruction to account management instruction queue;
Account management instruction queue is at least used to receiving and caching account management instruction;And
Application system is at least used for:Account management instruction is obtained from account management instruction queue, is referred to according to account management
It enables and executes account management operation.
An example embodiment according to the present invention, wherein application system are multiple.
An example embodiment according to the present invention, application system include command analysis module and application account management mould
Block, wherein command analysis module are used to parse account management instruction, after being used for according to parsing using account management module
The corresponding account management code of account management instruction calls come execute account management operation.
An example embodiment according to the present invention, wherein identity management system are additionally operable to the account submitted according to administrator
Manage request content construction account management instruction.
The instruction of an example embodiment according to the present invention, wherein account management include to the action type data of account and
Account attribute data.
An example embodiment according to the present invention, wherein account management instruction queue are using among enterprise-level message queue
Part.
An example embodiment according to the present invention, wherein enterprise-level Message Queuing Middleware be Rabbit MQ or
Active MQ。
An example embodiment according to the present invention, wherein account management instruction queue are additionally operable to:
Account management is instructed and carries out End to End Encryption;And/or
Account management instruction is route, to ensure that the application system for only having account management instruction specified could obtain pair
The instruction answered.
It is AMQP that an example embodiment according to the present invention, the wherein message of account management instruction queue, which obtain agreement,.
An example embodiment according to the present invention, wherein reception and caching account management instruction include:From Identity Management
System receives instruction, is not cached in account management instruction queue by the instruction that application system executes.
Example embodiment according to the present invention, by establishing account management instruction queue, identity management system is only responsible for
To message queue send account operational order, application system from account management instruction queue acquisition instruction and execute management behaviour
Make, reach identity management system and the non-dependent purpose of application system both sides, promoted identity management system stability and
Flexibility.
It should be understood that above general description and following detailed description is merely exemplary, this can not be limited
Invention.
Description of the drawings
Its example embodiment is described in detail by referring to accompanying drawing, above and other target of the invention, feature and advantage will
It becomes more fully apparent.
Fig. 1 shows the Organization Chart of account management system in the prior art.
Fig. 2 shows the block diagrams according to an account management system of an of the invention example embodiment.
Fig. 3 shows the realization step of account management system progress account management through the invention.
Specific example embodiment
Example embodiment is described more fully with reference to the drawings.However, example embodiment can be with a variety of shapes
Formula is implemented, and is not understood as limited to example set forth herein;On the contrary, providing these example embodiments makes the present invention's
Description will be more full and complete, and the design of example embodiment is comprehensively communicated to those skilled in the art.Attached drawing
Only schematic illustrations of the invention, are not necessarily drawn to scale.Identical reference numeral indicates same or like in figure
Part, thus repetition thereof will be omitted.
In addition, described feature, structure or characteristic can be incorporated in one or more examples in any suitable manner
In embodiment.In the following description, many details are provided to provide filling to the example embodiment of the present invention
Sub-argument solution.It will be appreciated, however, by one skilled in the art that technical scheme of the present invention can be put into practice and omit the specific detail
In it is one or more, or other methods, constituent element, step may be used etc..In other cases, it is not shown in detail or retouches
State known features, method, realization or operation to avoid a presumptuous guest usurps the role of the host and so that each aspect of the present invention thickens.
Some block diagrams shown in attached drawing are functional entitys, not necessarily must be with physically or logically independent entity phase
It is corresponding.Software form may be used to realize these functional entitys, or in one or more hardware modules or integrated circuit in fact
These existing functional entitys, or these functions reality is realized in heterogeneous networks and/or processor device and/or microcontroller device
Body.
The purpose of the present invention is to provide a kind of account management systems, including identity management system, account management to instruct team
Row and at least one application system, wherein identity management system, which are at least used to send account management to account management instruction queue, to be referred to
It enables;Account management instruction queue is at least used to receiving and caching account management instruction;And application system is at least used for:From account
It manages and obtains account management instruction in instruction queue, operated according to account management instruction execution account management.By establishing account
Instruction queue is managed, identity management system is only responsible for sending account operational order to message queue, and application system is from account management
In instruction queue acquisition instruction and execute management operation, reach identity management system and the non-dependent mesh of application system both sides
, promote stability and the flexibility of identity management system.
It is described in detail with reference to Fig. 2-3 pairs of account management systems of the invention, wherein Fig. 2 shows according to this hair
The block diagram of one account management system of a bright example embodiment;Fig. 3 shows that account management system carries out account through the invention
Number management realization step.
Fig. 2 shows the block diagrams according to an account management system of an of the invention example embodiment.As shown in Fig. 2, account
Number management system includes identity management system 1, account management instruction queue 2 and at least one application system 3, wherein Identity Management
System 1 is at least used to send account management instruction to account management instruction queue 2;Account management instruction queue 2 is at least used to connect
It receives and caching account management instructs;And application system 3 is at least used for:Account management is obtained from account management instruction queue to refer to
It enables, is operated according to account management instruction execution account management.In the account management system of the present invention, identity management system is to account
Number management instruction queue sends account management instruction, and application system acquisition instruction and can be held directly from account management instruction queue
Dynamic access new opplication, dynamic adjustment account management interface, decoupling identity management system and application system are realized in row operation, from
And increase flexibility, stability, reduce the purpose for implementing O&M cost.
It 2 is described as follows below in conjunction with the accompanying drawings:
1. identity management system after receiving account management operation, is only responsible for sending account to account management instruction queue
Management instruction, management instruction are contained to the action type of account (increase, delete, look into, change, disabling/enabling etc.) and account attribute number
According to (account name and other account attributes, such as mailbox, phone).
2. application account is integrated to can be used following manner:Application system is transformed, is directly integrated by application system:It answers
With system 3 from account management instruction queue directly acquire account management instruct and execute account management operation.Application system 3 can wrap
It includes command analysis module 31 and applies account management module 32, wherein command analysis module 31 is used to instruct account management and carry out
Parsing is used to be held according to the corresponding account management code of the account management instruction calls after parsing using account management module 32
Row account management operates.
3. enterprise-level Message Queuing Middleware can be used in account management instruction queue, as (MQ full name are Rabbit MQ
Message Queue, message queue (MQ) are a kind of application programs to the communication means of application program, and Rabbit MQ are one
Reusable enterprise messaging system) or Active MQ (ActiveMQ be Apache produce, popular, powerful the increasing income of ability disappears
Cease bus) etc., major function includes:
A) it receives and caches:It receives and instructs from identity management system, the instruction being not carried out caches in the queue.
B) transmission encryption:It does not receive, acquisition instruction carries out End to End Encryption, guarantee data safety.
C) it route:Ensure only to instruct specified/corresponding application system that can obtain the account pipe for being sent to application system
Reason instruction.
An example embodiment according to the present invention, wherein application system are multiple (being not shown in Fig. 2 multiple).
Below in conjunction with the accompanying drawings 3 pairs through the invention account management system carry out account management realization step carry out specifically
It is bright as follows:
Step 1:Administrator is increased, is deleted, being changed in certain application system by browser access identity management system, request
Account data.But the present invention is not limited thereto, and account management request can also have other sources and channel.
Step 2.1:Identity management system connects the account management request of administrator's submission, and account pipe is constructed according to request content
Reason instruction, director data format can be JSON (JavaScript Object Notation, JS object numbered musical notations, a kind of light weight
The data interaction format of grade)/XML (eXtensible Markup Language, extensible markup language) format, instruction is at least
Including account action type and account attribute.After account management instructs construction complete, identity management system sends it to account
Manage instruction queue.
Step 2.2:It after account management instruction queue receives account management instruction, is cached, waits for adapter/application
It obtains, the Message Queuing Middleware, such as Rabbit MQ, Active MQ etc. of enterprise-level can be used in account management instruction queue.
Step 3.1:Adapter obtains agreement, such as AMQP (Advanced Message according to the message of instruction queue
Queuing Protocol, advanced message queue protocol, the application layer standard level message team of an offer unified message service
Row agreement), account management instruction is obtained from account management instruction queue.
Step 3.2:Application system parsing account management instructs and calls corresponding account management code to execute account pipe
Command content is managed, the respective operations of account management are completed.
By above detailed description, those skilled in the art is it can be readily appreciated that account pipe according to the ... of the embodiment of the present invention
Reason system has the following advantages.
Example embodiment according to the present invention, by establishing account management instruction queue, identity management system is only responsible for
To message queue send account operational order, application system from account management instruction queue acquisition instruction and execute management behaviour
Make, reach identity management system and the non-dependent purpose of application system both sides, promoted identity management system stability and
Flexibility.
Those skilled in the art after considering the specification and implementing the invention disclosed here, will readily occur to its of the present invention
Its embodiment.The present invention is directed to cover the present invention any variations, uses, or adaptations, these modifications, purposes or
Person's adaptive change follows the general principle of the present invention and includes undocumented common knowledge in the art of the invention
Or conventional techniques.The description and examples are only to be considered as illustrative, and true scope and spirit of the invention are by following
Claim is pointed out.
It should be understood that the invention is not limited in the precision architectures for being described above and being shown in the accompanying drawings, and
And various modifications and changes may be made without departing from the scope thereof.The scope of the present invention is limited only by the attached claims.
Claims (10)
1. a kind of account management system, which is characterized in that including identity management system, account management instruction queue and at least one
Application system, wherein
Identity management system is at least used to send account management instruction to account management instruction queue;
Account management instruction queue is at least used to receiving and caching account management instruction;And
Application system is at least used for:Account management instruction is obtained from account management instruction queue, is held according to account management instruction
Row account management operates.
2. system according to claim 1, which is characterized in that wherein application system is multiple.
3. system according to claim 1, which is characterized in that application system includes command analysis module and application account pipe
Module is managed, wherein command analysis module is used to parse account management instruction, is used for according to solution using account management module
The corresponding account management code of account management instruction calls after analysis operates to execute account management.
4. system according to claim 1, which is characterized in that wherein identity management system is additionally operable to be submitted according to administrator
Account management request content construction account management instruction.
5. system according to claim 1, which is characterized in that wherein account management instruction includes the action type to account
Data and account attribute data.
6. system according to claim 1, which is characterized in that wherein account management instruction queue uses enterprise-level message team
Row middleware.
7. system according to claim 6, which is characterized in that wherein enterprise-level Message Queuing Middleware is Rabbit MQ
Or Active MQ.
8. system according to claim 1, which is characterized in that wherein account management instruction queue is additionally operable to:
Account management is instructed and carries out End to End Encryption;And/or
Account management instruction is route, to ensure that it is corresponding that the application system for only having account management instruction specified could obtain
Instruction.
9. system according to claim 1, which is characterized in that wherein account management instruction queue message obtain agreement be
AMQP。
10. system according to claim 1, which is characterized in that wherein receiving and cache account management instruction includes:From body
Part management system receives instruction, is not cached in account management instruction queue by the instruction that application system executes.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810584233.9A CN108804910A (en) | 2018-06-08 | 2018-06-08 | account management system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810584233.9A CN108804910A (en) | 2018-06-08 | 2018-06-08 | account management system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN108804910A true CN108804910A (en) | 2018-11-13 |
Family
ID=64087709
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810584233.9A Pending CN108804910A (en) | 2018-06-08 | 2018-06-08 | account management system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108804910A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109872128A (en) * | 2019-02-01 | 2019-06-11 | 北京众图识人科技有限公司 | The identity management system and method for complex relationship can be handled |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101360309A (en) * | 2007-08-03 | 2009-02-04 | 华为技术有限公司 | Execution method, apparatus and system for service open command |
US20120254221A1 (en) * | 2011-03-29 | 2012-10-04 | Salesforce.Com, Inc. | Systems and methods for performing record actions in a multi-tenant database and application system |
CN105577808A (en) * | 2015-12-29 | 2016-05-11 | 中国建设银行股份有限公司 | Supervision reporting method and system |
CN107392766A (en) * | 2017-07-25 | 2017-11-24 | 上海壹账通金融科技有限公司 | Method for processing business, adapter and computer-readable recording medium |
-
2018
- 2018-06-08 CN CN201810584233.9A patent/CN108804910A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101360309A (en) * | 2007-08-03 | 2009-02-04 | 华为技术有限公司 | Execution method, apparatus and system for service open command |
US20120254221A1 (en) * | 2011-03-29 | 2012-10-04 | Salesforce.Com, Inc. | Systems and methods for performing record actions in a multi-tenant database and application system |
CN105577808A (en) * | 2015-12-29 | 2016-05-11 | 中国建设银行股份有限公司 | Supervision reporting method and system |
CN107392766A (en) * | 2017-07-25 | 2017-11-24 | 上海壹账通金融科技有限公司 | Method for processing business, adapter and computer-readable recording medium |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109872128A (en) * | 2019-02-01 | 2019-06-11 | 北京众图识人科技有限公司 | The identity management system and method for complex relationship can be handled |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107623729B (en) | Caching method, caching equipment and caching service system | |
US20130254266A1 (en) | Global api deployment and routing | |
KR102407334B1 (en) | Gateway apparatus and operating method thereof | |
US20200274897A1 (en) | Method and apparatus for processing data | |
KR20140101607A (en) | Apparatus and method for managing database in data distribution service | |
CN104536890A (en) | Testing system, method and device | |
CN112565439B (en) | Internet of things communication method and system | |
CN109451014A (en) | A kind of WebService agency plant and its transparent proxy method | |
US8340652B2 (en) | System and method of waste management | |
US9128886B2 (en) | Computer implemented method, computer system, electronic interface, mobile computing device and computer readable medium | |
CN111770122B (en) | Service communication proxy SCP registration method, service calling method and network equipment | |
CN111917838A (en) | Processing method and device based on micro service, storage medium and electronic device | |
CN108804910A (en) | account management system | |
CN112689020A (en) | Message transmission method, message middleware, electronic equipment and storage medium | |
CN114968617B (en) | API conversion system, access request processing method thereof, electronic equipment and medium | |
CN108712444A (en) | Account management system | |
CN116647552A (en) | Service processing method and system in heterogeneous micro-service cluster, terminal and storage medium | |
CN113553206B (en) | Data event execution method and device, electronic equipment and computer readable medium | |
CN115460265A (en) | Interface calling method, device, equipment and medium | |
CN103269327A (en) | Method for realizing general file data service based on agent mechanism | |
CN113973135A (en) | Data caching processing method and device, caching grid platform and storage medium | |
CN101686156A (en) | Terminal and method for realizing local caching of network service data | |
CN114745367B (en) | Data transmission method, device, electronic equipment and storage medium | |
CN113452670B (en) | Phishing blocking method, device, equipment and medium based on SDN network | |
CN112235398A (en) | Data transmission method supporting large data volume |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181113 |
|
RJ01 | Rejection of invention patent application after publication |