CN109450984B

CN109450984B - Cloud architecture management method and device and computer readable storage medium

Info

Publication number: CN109450984B
Application number: CN201811204531.7A
Authority: CN
Inventors: 赖秋林
Original assignee: Sangfor Technologies Co Ltd
Current assignee: Sangfor Technologies Co Ltd
Priority date: 2018-10-16
Filing date: 2018-10-16
Publication date: 2021-12-21
Anticipated expiration: 2038-10-16
Also published as: CN109450984A

Abstract

The embodiment of the invention discloses a management method of a cloud architecture, which comprises the following steps: receiving a first request sent by an operator; the first request carries a first identifier of an operator and first authentication information, and the first identifier is used for identifying the operator; responding to the first request, and determining whether the authentication for the operator passes according to the first identifier and the first authentication information; if the authentication for the operator passes, setting the first account to have a first function; the first account is an account associated with an operator, and the first function is used for managing a user account. The embodiment of the invention also discloses a management device of the cloud architecture and a computer readable storage medium.

Description

Cloud architecture management method and device and computer readable storage medium

Technical Field

The embodiment of the invention relates to the technical field of management of cloud architecture in the communication field, in particular to a management method and equipment of the cloud architecture and a computer-readable storage medium.

Background

The operation and maintenance of the cloud can greatly reduce investment of enterprises in infrastructure, and more attention is paid to business improvement and innovation. With the popularization and development of the cloud, more and more enterprises realize that the cloud can bring various benefits to enterprise informatization construction. In the cloud architecture, a cloud manufacturer provides cloud service resources through a cloud platform, and a cloud operator is an enterprise between the cloud manufacturer and a cloud user and can help the cloud user to better use the cloud service resources.

However, at present, cloud service resources can only be uniformly managed by cloud manufacturers, and cloud operators cannot participate in the management.

Disclosure of Invention

In view of this, embodiments of the present invention are expected to provide a method and an apparatus for managing a cloud architecture, and a computer-readable storage medium, so as to solve the problem that in the related art, only a cloud manufacturer can perform unified management on cloud service resources, and a cloud operator cannot participate in the management.

In order to achieve the purpose, the technical scheme of the invention is realized as follows:

a management method of a cloud architecture is applied to a cloud platform system and comprises the following steps:

receiving a first request sent by an operator; the first request carries a first identifier of an operator and first authentication information, wherein the first identifier is used for identifying the operator;

determining whether the authentication for the operator passes according to the first identifier and the first authentication information in response to the first request;

if the authentication for the operator passes, setting a first account to have a first function; wherein the first account is an account associated with the operator, and the first function is used for managing a user account.

A management method of a cloud architecture is applied to an operator system, and comprises the following steps:

receiving a second request sent by the group-type enterprise; the second request carries a second identifier and second authentication information of the group type enterprise, and the second identifier is used for identifying the group type enterprise;

responding to the second request, and determining whether the authentication aiming at the group type enterprise passes or not according to the second identification and the second authentication information;

if the authentication for the group type enterprise is passed, setting the group type enterprise to have a second function; wherein the second function is to manage a third account; the third account is an account associated with the target user.

A management method of cloud architecture is applied to a group type enterprise system, and the method also comprises the following steps:

receiving a fifth request sent by the target user; the fifth request comprises third application information of cloud service resources and a third identifier of the target user, and the third identifier is used for identifying the target user;

and generating third target information according to the third identification and the third application information, and sending the third target information to the target user.

A cloud platform system, the cloud platform system comprising: a first processor, a first memory, and a first communication bus;

the first communication bus is used for realizing communication connection between the first processor and the first memory;

the first processor is configured to execute a hypervisor of the cloud architecture stored in the first memory to implement the steps of:

An operator system, the operator system comprising: a second processor, a second memory, and a second communication bus;

the second communication bus is used for realizing communication connection between the second processor and the second memory;

the second processor is configured to execute a hypervisor of the cloud architecture stored in the second memory to implement the steps of:

A corporate enterprise system, comprising: a third processor, a third memory, and a third communication bus;

the third communication bus is used for realizing communication connection between the third processor and the third memory;

the third processor is configured to execute a hypervisor of the cloud architecture stored in the third memory to implement the following steps:

A cloud platform system, the cloud platform system comprising: a first receiving unit, a first processing unit and a second processing unit, wherein:

the first receiving unit is used for receiving a first request sent by an operator; the first request carries a first identifier of an operator and first authentication information, wherein the first identifier is used for identifying the operator;

the first processing unit is used for responding to the first request, and determining whether the authentication for the operator passes according to the first identifier and the first authentication information;

the second processing unit is used for setting a first account to have a first function if the authentication of the operator passes; wherein the first account is an account associated with the operator, and the first function is used for managing a user account.

An operator system, the operator system comprising: a second receiving unit, a third processing unit and a fourth processing unit, wherein:

the second receiving unit is used for receiving a second request sent by the shipping group type enterprise; the second request carries a second identifier and second authentication information of the group type enterprise, and the second identifier is used for identifying the group type enterprise;

the third processing unit is configured to determine, in response to the second request, whether the authentication for the group-type enterprise passes according to the second identifier and the second authentication information;

the fourth processing unit is configured to set the transportation group type enterprise to have a second function if the authentication for the group type enterprise passes; wherein the second function is to manage a third account; the third account is an account associated with the target user.

A corporate enterprise system, comprising: a third receiving unit and a fifth processing unit, wherein:

the third receiving unit is configured to receive a fifth request sent by the target user; the fifth request comprises third application information of cloud service resources and a third identifier of the target user, and the third identifier is used for identifying the target user;

and the fifth processing unit is used for generating third target information according to the third identifier and the third application information and sending fourth target information to the target user.

A computer-readable storage medium storing one or more programs, the one or more programs being executable by one or more processors to implement the steps of the management method of the cloud architecture described above.

The cloud architecture management method, the cloud architecture management device and the computer-readable storage medium provided by the embodiment of the invention receive a first request sent by an operator; the first request carries a first identifier of an operator and first authentication information, and the first identifier is used for identifying the operator; responding to the first request, and determining whether the authentication for the operator passes according to the first identifier and the first authentication information; if the authentication for the operator passes, setting the first account to have a first function; the first account is an account related to an operator, and the first function is used for managing a user account; that is to say, after the authentication of the cloud platform system to the operator is passed, a function for managing the user account may be set for the first account associated with the operator, so that the first account associated with the operator may manage the user account, for example, manage the user account using the cloud service resources, the problem that in the related art, cloud service resources can only be uniformly managed by a cloud manufacturer and the cloud operator cannot participate in management is solved, the cloud operator is brought into an organization management architecture of the cloud, the management of the cloud operator to the cloud architecture is realized, the cloud architecture is optimized, and the cloud is better served for enterprise informatization construction.

Drawings

Fig. 1 is a schematic structural diagram of a cloud architecture in the related art according to an embodiment of the present invention;

fig. 2 is a flowchart illustrating a management method of a cloud architecture according to an embodiment of the present invention;

fig. 3 is a schematic structural diagram of a cloud architecture according to an embodiment of the present invention;

fig. 4 is a flowchart illustrating a management method of another cloud architecture according to an embodiment of the present invention;

fig. 5 is a flowchart illustrating a management method of a cloud architecture according to another embodiment of the present invention;

fig. 6 is a schematic structural diagram of another cloud architecture according to an embodiment of the present invention;

fig. 7 is a schematic structural diagram of a cloud platform system according to an embodiment of the present invention;

fig. 8 is a schematic structural diagram of an operator system according to an embodiment of the present invention;

fig. 9 is a schematic structural diagram of a corporate enterprise system according to an embodiment of the present invention;

fig. 10 is a schematic structural diagram of another cloud platform system according to an embodiment of the present invention;

fig. 11 is a schematic structural diagram of another operator system provided in the embodiment of the present invention;

fig. 12 is a schematic structural diagram of another corporate enterprise system according to an embodiment of the present invention.

Detailed Description

The technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention.

It should be appreciated that reference throughout this specification to "an embodiment of the present invention" or "an embodiment described previously" means that a particular feature, structure or characteristic described in connection with the embodiment is included in at least one embodiment of the present invention. Thus, the appearances of the phrase "in an embodiment of the present invention" or "in the foregoing embodiments" in various places throughout the specification are not necessarily all referring to the same embodiment. Furthermore, the particular features, structures, or characteristics may be combined in any suitable manner in one or more embodiments. In various embodiments of the present invention, the sequence numbers of the above-mentioned processes do not mean the execution sequence, and the execution sequence of each process should be determined by its function and inherent logic, and should not constitute any limitation on the implementation process of the embodiments of the present invention. The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.

Referring to fig. 1, in the related art, a user corresponds to a tenant, and the user logs in a cloud platform through a public interface provided by a cloud platform system corresponding to a cloud manufacturer, so that the cloud manufacturer obtains all cloud users through the cloud platform system, where the cloud users refer to users who have accessed a cloud framework; the cloud manufacturer sets a uniform price for the cloud service resources through the cloud platform system, and then determines how many cloud users are allocated to the cloud operator, namely the cloud service provider; then, the cloud operator checks how many cloud service resources are used by the cloud users distributed to the cloud operator, and extracts service fees according to the unified price set by the cloud manufacturer; that is to say, in the related art, the cloud manufacturer does not allocate to the part of the cloud users of the cloud operator, the cloud operator cannot know the cloud user, the uniform price set by the cloud manufacturer for the cloud service resource cannot be changed, and the cloud operator can only extract the service fee based on the price, that is, the cloud operator does not have the management authority in the cloud framework.

Such a cloud architecture has the following problems: the cloud operator and the cloud user do not have the autonomy and cannot achieve the aim of autonomous operation; the price-adjusting right is completely mastered by an administrator of the cloud platform system, and the administrator of the cloud platform system adjusts the price of the cloud service resources at any time, so that a cloud service provider cannot make a flexible business strategy according to the conditions of specific projects, and the relationship between the cloud service provider and a cloud user cannot be guaranteed; the corporate enterprises included by the cloud users can only use the user-level accounts or the cloud service provider accounts, and the financial separate settlement cannot be realized for the collective group company; an administrator of the cloud platform system can adjust prices at any time, and Information Technology (IT) plans which are originally formulated by each cloud user are directly influenced.

In the embodiment of the invention, the cloud platform system corresponding to the cloud manufacturer can allocate the management authority to the account in the operator system corresponding to the cloud operator through the cloud platform administrator, wherein the management authority not only comprises the authority for authenticating the user accessing the cloud architecture, but also comprises the authority for adjusting the price set for the cloud service resources by aiming at the cloud platform system, so that the cloud operator system can flexibly make the operation strategy. Here, the cloud service resources include a broadband and a storage capacity, and it should be noted that the management method of the cloud architecture provided by the embodiment of the present invention may be used in a cloud architecture, where the cloud architecture includes a public cloud architecture, a private cloud architecture, and a hybrid cloud architecture, and further serves enterprise information construction. Here, the names involved in the embodiments of the present invention are explained:

public cloud: the cloud manufacturer provides a business mode and a platform of services such as computing, network, storage, safety and the like directly to external users through own infrastructure.

Cloud operation: the users of the public cloud, including their servers, conduct business activities with respect to the resources used by the public cloud.

Cloud manufacturer: and providing a manufacturer with public cloud basic resources and services, wherein the cloud manufacturer corresponds to the cloud platform system.

Cloud platform administrator: and for the administrator with absolute authority on the whole cloud platform, a cloud manufacturer can log in the cloud platform system through a cloud platform administrator.

The cloud operator is also called a cloud service provider: an enterprise between a cloud manufacturer and a cloud user helps a target user to better use the cloud manufacturer to provide services, and meanwhile, the enterprise can also serve as a service provider of cloud service resources to directly provide services for an end user, and the target user refers to a user who finally uses the cloud service resources.

Group type enterprises: for managing the target user.

The target user: and finally, the users using the cloud service resources are allocated with user accounts by the group service to use the cloud service resources.

And (4) sub-account: the accounts below the target user generally refer to accounts which help the group-type enterprise to manage cloud service resources or accounts for which the target user divides a management range, and the authority of the accounts is a subset of the authority of the target user.

Pricing: specific prices are set for different cloud service resources and serve as a cost basis for the target user to use the cloud service resources.

Charging: after the cloud service resources are used by cloud users, the costs and the summary of various resources are counted according to a pricing strategy, and a certain report and trend mode is made on the costs and the summary.

An embodiment of the present invention provides a management method of a cloud architecture, and as shown in fig. 2, the method includes the following steps:

step 101, a cloud platform system receives a first request sent by an operator.

The first request carries a first identifier of an operator and first authentication information, and the first identifier is used for identifying the operator.

The first request is used for requesting access to the cloud platform system, the first authentication information is used for verifying whether the operator has the right to access the cloud platform, and the first identifier can be used as a factor for managing the operator by the cloud platform system.

In the embodiment of the invention, a cloud manufacturer can log in the cloud platform system and access the cloud platform system through a cloud platform administrator.

And 102, the cloud platform system responds to the first request, and determines whether the authentication for the operator passes according to the first identifier and the first authentication information.

Here, after the cloud platform system receives a first request sent by an operator, the cloud platform system responds to the first request, a first identifier and first authentication information carried in the request are obtained, the cloud platform system confirms which operator the identity of the operator is according to the first identifier, and then the first authentication information is compared with first preset authentication information, if the first authentication information is the same as the first preset authentication information, the cloud platform system determines that the authentication for an operator server passes, and at this time, the cloud platform system can set a first account for the operator passing the authentication through by a cloud platform administrator. In turn, the operator may log into the operator system via the first account to access the operator system.

The cloud platform administrator may manage the first account via a first management policy, e.g., the cloud platform administrator sets a first price for cloud service resources allocated to the first account. It should be noted that the setting of the first price by the cloud platform administrator may include: and the cloud platform administrator sets a first price corresponding to the first identifier for the operator according to the first identifier. Here, the first price corresponding to different first identifiers may not be identical; the first price corresponding to different first identifiers may also be the same.

And 103, if the authentication for the operator passes, setting the operator to have a first function by the cloud platform system.

Wherein the first function is for managing user accounts.

After the cloud platform system determines that the authentication for the operator passes, a cloud platform administrator in the cloud platform system takes a first account associated with the operator as a next-level node, and sets a first function, namely a first authority, for the first account; after the cloud platform administrator sets the first function for the first account, the first account has the authority of managing the next-level user account of the first account. In the embodiment of the present invention, the authority for managing the next-level user account of the user account may include an authority authentication function when the next-level object accesses the cloud architecture, and may further include a function of pricing cloud service resources acquired by the next-level object.

Here, when the cloud platform system, the operator system, and the user account are included in the cloud architecture, the user account is a next-level object of the first account of the operator system. For example, after the cloud platform system sets the first account to have the first function, the operator authenticates the user requesting to access the cloud infrastructure through the first account, and after the authentication is passed, sets the user account for the user, and the operator may manage the cloud service resources used by the user account through the first account, for example, the operator may set the second price through the first account and send the second price to the user account. It should be noted that the setting of the second price by the first account may include: and the first account sets a second price corresponding to the user identification for the user account according to the user identification. Here, the second price corresponding to different user identifiers may not be completely the same; the second price for different user identities may also be the same.

In this embodiment of the present invention, if the authentication of the operator in step 103 passes, the cloud platform system sets the first account to have the first function, and may be implemented by the following steps:

if the authentication for the operator passes, the cloud platform system acquires a first management strategy of the cloud platform system for the first account; and setting a second management strategy of the first account for the user account according to the first management strategy.

Here, taking a first management policy as an example of a pricing policy, if authentication for an operator passes, a cloud platform system acquires the first pricing policy of the cloud platform system for the first account; and setting a second pricing strategy of the first account aiming at the user account according to the first pricing strategy.

Further, the first account may manage the user account according to a second management policy. For example, the first account charges for cloud service resources used by the user account according to the second pricing policy.

Exemplarily, referring to fig. 3, when the cloud architecture includes a cloud platform system, an operator system, a group-type enterprise system, and a target user, where the cloud platform system corresponds to a cloud manufacturer, and the cloud manufacturer logs in the cloud platform system through a cloud platform administrator, so as to perform authority management on a next-level account of the cloud platform administrator, and also manage the next-level account using cloud service resources; the operator system corresponds to an operator, the operator logs in the operator system through a first account, the first account is also called as a service provider manager, and then authority management is carried out on a next-level account of the first account, and cloud service resources used by the next-level account can be managed; the group type enterprise system corresponds to a group type enterprise, the group type enterprise logs in the group type enterprise system through a second account, the second account is also called as a user manager, and then the authority management is carried out on the next level account of the second account, and the cloud service resources used by the next level account can be managed; the target user, i.e., the end user, is the end user of the cloud service resource, and the target user may set the sub-account to assist the second account in managing the usage of the cloud service resource.

The cloud architecture management method provided by the embodiment of the invention receives a first request sent by an operator; the first request carries a first identifier of an operator and first authentication information, and the first identifier is used for identifying the operator; responding to the first request, and determining whether the authentication for the operator passes according to the first identifier and the first authentication information; if the authentication for the operator passes, setting the first account to have a first function; the first account is an account related to an operator, and the first function is used for managing a user account; that is to say, after the authentication of the cloud platform system to the operator is passed, a function for managing the user account may be set for the first account associated with the operator, so that the first account associated with the operator may manage the user account, for example, manage the user account using the cloud service resources, the problem that in the related art, cloud service resources can only be uniformly managed by a cloud manufacturer and the cloud operator cannot participate in management is solved, the cloud operator is brought into an organization management architecture of the cloud, the management of the cloud operator to the cloud architecture is realized, the cloud architecture is optimized, and the cloud is better served for enterprise informatization construction.

Based on the foregoing embodiments, an embodiment of the present invention provides a management method for a cloud architecture, where the method includes the following steps:

step 201, a cloud platform system receives a first request sent by an operator.

Step 202, the cloud platform system responds to the first request, and determines whether the authentication for the operator passes according to the first identifier and the first authentication information.

Step 203, if the authentication for the operator passes, the cloud platform system sets the first account to have the first function.

The first account is an account associated with an operator, and the first function is used for managing a user account.

And step 204, the cloud platform system receives a second request sent by the group type enterprise.

The second request carries a second identifier and second authentication information of the group type enterprise, and the second identifier is used for identifying the group type enterprise.

Here, the group-type enterprise system corresponds to a group-type enterprise, and when a previous node of the group-type enterprise system is an operator system, the group-type enterprise system may send a second request to the operator system or the cloud platform system through a service manager; assuming that the group-type enterprise system sends the second request to the cloud platform system, the cloud platform system may receive the second request sent by the group-type enterprise system.

Step 205, the cloud platform system responds to the second request, and sends the second authentication information to the first account according to the second identifier.

Here, since only the upper level has the authority to authenticate the lower level, after receiving the second request sent by the shipping group type enterprise, the cloud platform system sends the second authentication information to the operator system according to the second identifier in response to the second request, so that the operator system authenticates the group type enterprise.

And step 206, the operator system determines whether the authentication for the group type enterprise is passed according to the second authentication information, and sets the second account to have the second function when the authentication for the group type enterprise is passed.

The second function is used for managing a third account, and the third account is an account associated with the target user.

Here, the operator system determines whether the authentication for the corporate type enterprise is passed according to the second authentication information, and sets the second account to have a second function such as setting that the second account can manage the third account, performing authority authentication on the third account, and pricing setting for cloud service resources when the authentication for the corporate type enterprise is passed.

In the embodiment of the present invention, after the above organization architecture effect is achieved, it is further necessary to ensure the pricing permission of each layer of administrator to meet the flexible operation requirement of each layer of administrator, and the multi-level pricing operation architecture implemented in the embodiment of the present invention is as follows:

a cloud platform administrator can set uniform pricing to serve as a default price of a subordinate service manager; the cloud platform administrator can set different pricing for different service manager as the resource unit price of the service manager; when the cloud platform administrator does not set the price of the service provider administrator, the service provider administrator inherits the unified pricing set by the cloud platform administrator by default.

The service manager can set the uniform pricing to be used as the default price of the subordinate user manager; the service manager can set different pricing for different user managers as the resource unit price of the user manager; and when the service manager does not set the price of the user manager, the user manager inherits the uniform pricing set by the service manager by default.

A user administrator can set uniform pricing for serving as a default price of an end user, namely a target user; the user administrator can set different pricing for different target users as the resource unit price of the target users; and when the user administrator does not set the price of the target user, the target user defaults to adopt the uniform pricing set by the user administrator.

The target user is used as the final user of the resource, pricing is not needed to be set, and only the unit price of the resource set by the upper level is checked. After the target user uses the resources, a complete resource consumption list is generated by combining the resource unit price of the user, and a user administrator can settle accounts according to the consumption list and the corresponding target user.

The resource use conditions of all target users subordinate to the user administrator are combined with the resource unit price calculation of the user administrator to generate a complete resource consumption list of the user administrator, and the superior service manager can settle accounts according to the complete resource consumption list and the corresponding user administrator.

The resource use conditions of all group-type enterprises under the service manager are combined with the resource unit price calculation of the service manager to generate a complete resource consumption list of the service manager, and the superior cloud platform manager can follow the complete resource consumption list and the corresponding service manager to calculate.

It should be noted that, for the descriptions of the same steps and the same contents in this embodiment as those in other embodiments, reference may be made to the descriptions in other embodiments, which are not described herein again.

Based on the foregoing embodiments, an embodiment of the present invention provides a management method for a cloud architecture, where in the embodiment of the present invention, an operator includes at least two operators, and the method includes the following steps:

step 301, the cloud platform system receives a first request sent by an operator.

Step 302, the cloud platform system responds to the first request, and determines whether the authentication for the operator passes according to the first identifier and the first authentication information.

And 303, if the authentication for the operator passes, setting the first account to have a first function by the cloud platform system.

Step 304, the cloud platform system receives a third request sent by an operator; the third request carries first application information and a first identifier of the cloud service resource aiming at the cloud platform system.

Here, the first application information may be price application information.

Step 305, the cloud platform system generates first target information corresponding to the first identifier according to the first identifier and the first application information, and sends the first target information to the operator.

Here, after receiving the third request, the cloud platform system acquires the first application information and the first identifier carried in the third request, and generates first target information corresponding to the first identifier according to the first identifier and the first application information; for example, the cloud platform system sets a first target price corresponding to the identifier of the operator according to the price applied by the operator and the identifier of the operator. Here, when the first target price is set, since the cloud platform system may manage the operator, it may determine a historical demand amount of the cloud service resource according to the operator identifier and give an appropriate target price based on the current price.

Based on the foregoing embodiments, an embodiment of the present invention provides a management method for a cloud architecture, and referring to fig. 4, in the embodiment of the present invention, the method includes the following steps:

step 401, the operator system receives a second request sent by the shipping group type enterprise.

Step 402, the operator system responds to the second request, and determines whether the authentication for the group-type enterprise passes according to the second identifier and the second authentication information.

Step 403, if the authentication for the group type enterprise is passed, the operator system sets the group type enterprise to have the second function.

Wherein the second function is to manage a third account; the third account is an account associated with the target user.

Step 404, the corporate enterprise system manages a third account according to the second function.

In this embodiment of the present invention, if the authentication for the group type enterprise system in step 403 passes, the operator system sets the group type enterprise to have the second function, and the following steps are performed:

if the authentication for the group type enterprise is passed, acquiring a third management strategy of the operator system for the second account; and setting a fourth management strategy of the second account to the third account according to the third management strategy.

Here, the third management policy may be a third pricing policy, and the fourth management policy may be a fourth pricing policy, i.e. the carrier system may set the second account to have the right to price the second terminal.

Correspondingly, the group-type enterprise system managing the third account in step 404 according to the second function may be implemented by the following steps:

and the group type enterprise system manages the third account according to the fourth management strategy.

Here, the group-type enterprise system charges the cloud service resources used by the third account according to the fourth pricing policy.

Based on the foregoing embodiments, an embodiment of the present invention provides a management method for a cloud architecture, where in the embodiment of the present invention, the method includes the following steps:

step 501, the operator system receives a second request sent by the shipping group type enterprise.

Step 502, the operator system responds to the second request, and determines whether the authentication for the group-type enterprise passes according to the second identifier and the second authentication information.

Step 503, if the authentication for the group type enterprise is passed, the operator system sets the second account to have the second function.

The second account is an account associated with the group type enterprise, and the second function is used for managing a third account; the third account is an account associated with the target user.

In the embodiment of the present invention, after the step 503, if the authentication for the corporate enterprise passes, and the operator system sets the second account to have the second function, step 504 or step 505 to step 506 may be further executed:

and step 504, the operator system manages the group type enterprise according to the second management strategy.

Step 505, the operator system receives a fourth request sent by the group type enterprise.

The fourth request carries second application information and a second identifier aiming at the cloud service resources of the cloud platform system;

step 506, the operator system generates second target information according to the second identifier and the second application information, and sends the second target information to the group-type enterprise.

Here, after receiving the fourth request, the operator system obtains the second application information and the second identifier carried in the fourth request, and generates second target information corresponding to the second identifier according to the second identifier and the second application information; for example, the operator system sets a second target price corresponding to the second identifier according to the price applied by the group type enterprise and the second identifier. Here, since the operator system can manage the corporate type enterprise when setting the second target price, it can determine the required amount of the historical cloud service resources according to the second identifier corresponding to the corporate type enterprise and give an appropriate target price based on the current price.

Based on the foregoing embodiments, an embodiment of the present invention provides a management method for a cloud architecture, and referring to fig. 5, in the embodiment of the present invention, the method includes the following steps:

step 601, the group type enterprise system receives a fifth request sent by the target user.

The fifth request comprises third application information of the cloud service resources and a third identifier of the target user, and the third identifier is used for identifying the target user.

Here, the corporate enterprise, which is a manager of the cloud service resources, does not use the cloud service resources, and the corporate enterprise can manage the use of the cloud service resources by the target users.

Step 602, the group-type enterprise system generates third target information according to the third identifier and the third application information, and sends the third target information to the target user.

Here, the target user is an end user of the cloud service resource, and after the cloud service resource is used, a complete resource consumption list is generated according to the resource unit price of the user, and a user administrator can settle accounts according to the consumption list and the corresponding user. The target user can also apply pricing to the upper-level enterprise, namely the group-type enterprise, so that the use price of the cloud service resource suitable for the target user can be obtained conveniently.

For example, referring to fig. 6, in practical applications, in order to operate more flexibly, only one resource unit price per layer of administrator cannot meet the requirement that some items have different price requirements for the same resource. For example, a user who is added with points, that is, a user who applies for using cloud service resources for multiple times, often requires a better discount on the basis of a previous price. Therefore, an order management needs to be added on the above architecture to meet the scenario of different pricing of the same resource. The implemented architecture is shown in the following figure:

the user can submit different price applications according to different project resource requirements, an upper layer user administrator forms an individual order after approval, resources contained in the order are calculated according to the price of the order and are independent of the default resource unit price, and other old resources and newly added resources which do not provide price applications are also calculated according to the default resource unit price. The user's complete consumption list includes the order and the default consumption list quantity portion.

The user administrator can submit different price applications according to different project resource requirements, and an upper-layer service manager forms an independent order after approval, so that the resources contained in the order are calculated according to the price of the order and are independent of the default resource unit price, and other old resources and newly added resources which do not make price applications are also calculated according to the default resource unit price. The user administrator's complete consumption list includes the order and the default consumption list quantity section.

The service manager can submit different price applications according to different project resource requirements, and an upper cloud platform manager forms an individual order after approval, so that resources contained in the order are calculated according to the price of the order and are independent of the default resource unit price, and other old resources and newly added resources which do not make price applications are also calculated according to the default resource unit price to form a consumption list. The complete consumption list of the service manager includes the order and the default consumption list quantity section.

Through the organization architecture and the pricing architecture, independent operation requirements of cloud manufacturers, cloud service providers and group enterprises can be met, flexible business activities can be met through the order application approval system, the win-win effect is finally achieved, more enterprises can use the cloud better, and cloud services can serve the whole enterprise informatization improvement and innovation better.

In the embodiment of the invention, the cloud manufacturer authenticates the operator, the operator authenticates the user, and cross-level authentication cannot be performed. The cloud manufacturer sets the price of the cloud service resources, and the cloud operator can set the price which is not completely the same for different users or the same price for different users according to the price set by the cloud manufacturer; obviously, in the embodiment of the present invention, members of all levels in the cloud architecture except for the user of the cloud service resource are all administrators and all have administrative permissions, such as permission to set a price and permission to authenticate a next level, it should be noted that the administrator of the previous level only manages the administrator of the next level, and does not perform cross-level management, so that the administrator accounts of all levels can flexibly make an operation policy.

In the embodiment of the invention, aiming at the problem that the existing cloud platforms can not meet the operation requirements, an operation architecture which is in accordance with the win-win situation of cloud users, cloud service providers and cloud manufacturers is provided. Through the structure optimization, the enterprises can better use the cloud, and more benefits beneficial to the development of the enterprises are obtained. The embodiment of the invention solves the defects of the existing cloud platform architectures in the following ways:

through the mode of the multilevel organizational structure, cloud service providers and group type enterprise users are brought into an organizational management system of a public cloud, the effect of non-cross-level management is achieved, and the authority of each level is directly related to the upper level and the lower level, so that more autonomy and independent authority of each level are met, and better operation can be performed on the lower level independently of the upper level.

Through all providing pricing permission at each level, the last level only prices the next level, does not do the distribution mode of cross-level pricing, can let the business at each level obtain the guarantee.

Different pricing strategies are provided for different next-level users, and different orders are set at different prices, so that cloud service providers and enterprise users can make more flexible business strategies on specific projects.

Through a mode of a multi-level organization structure, the corporate enterprise can be brought into a unified structure of a cloud platform, the corporate enterprise can directly manage users of an operation set corporate sub-company, different charging strategies can be set for the sub-company, and the requirement of separately settling the finance of the corporate and the sub-company is met.

Through the multi-level organization structure and the independent pricing mode at all levels, the influence of the cloud platform administrator on the final user by adjusting prices at any time can be avoided, the business relation at all levels is kept to be stably carried out, and meanwhile, the IT planning of each enterprise can be more stable.

Based on the foregoing embodiment, an embodiment of the present invention provides a cloud platform system, where the cloud platform system may be applied to the management method of the cloud architecture provided in the embodiment corresponding to fig. 1, and referring to fig. 7, the cloud platform system 7 may include: a first processor 71, a first memory 72, and a first communication bus 73;

the first communication bus 73 is used for realizing communication connection between the first processor 71 and the first memory 72;

the first processor 73 is configured to execute a management program of the cloud architecture stored in the first memory 72 to implement the following steps:

It should be noted that, in this embodiment, a specific implementation process of the step executed in each unit and/or module may refer to an implementation process in the management method for a cloud architecture provided in the embodiment corresponding to fig. 2, and details are not described here.

Based on the foregoing embodiment, an embodiment of the present invention provides an operator system, where the operator system may be applied to the management method of the cloud architecture provided in the embodiment corresponding to fig. 2, and as shown in fig. 8, the operator system 80 may include: a second processor 801, a second memory 802, and a second communication bus 803;

the second communication bus 803 is used for realizing communication connection between the second processor 801 and the second memory 802;

the second processor 803 is configured to execute a hypervisor of the cloud architecture stored in the second memory 802 to implement the following steps:

Based on the foregoing embodiments, an embodiment of the present invention provides a corporate enterprise system, where the corporate enterprise system may be applied to the cloud architecture management method provided in the embodiment corresponding to fig. 3, and as shown in fig. 9, the corporate enterprise system 9 may include: a third processor 91, a third memory 92 and a third communication bus 93;

the third communication bus 93 is used for realizing communication connection between the third processor 91 and the third memory 92;

the third processor 93 is configured to execute a hypervisor of the cloud architecture stored in the third memory 92 to implement the following steps:

It should be noted that, in this embodiment, a specific implementation process of the step executed in each unit and/or module may refer to an implementation process in the management method for a cloud architecture provided in the embodiment corresponding to fig. 3, and details are not described here.

Based on the foregoing embodiments, an embodiment of the present invention provides a cloud platform system, and referring to fig. 10, the cloud platform system 10 includes: a first receiving unit 101, a first processing unit 102 and a second processing unit 103, wherein:

a first receiving unit 101, configured to receive a first request sent by an operator; the first request carries a first identifier of an operator and first authentication information, wherein the first identifier is used for identifying the operator;

a first processing unit 102, configured to determine, in response to the first request, whether authentication for the operator passes according to the first identifier and first authentication information;

the second processing unit 103 is configured to set the first account to have a first function if the authentication for the operator passes; wherein the first account is an account associated with the operator, and the first function is used for managing a user account.

It should be noted that, in this embodiment, a specific implementation process of the step executed in each unit and/or module may refer to an implementation process in the management method for a cloud architecture provided in the embodiment corresponding to fig. 1, and details are not described here.

Based on the foregoing embodiments, an embodiment of the present invention provides an operator system, and as shown in fig. 11, the operator system 11 includes: a second receiving unit 111, a third processing unit 112 and a fourth processing unit 113, wherein:

a second receiving unit 111, configured to receive a second request sent by the transportation group type enterprise; the second request carries a second identifier and second authentication information of the group type enterprise, and the second identifier is used for identifying the group type enterprise;

a third processing unit 112, configured to determine, in response to the second request, whether the authentication for the group-type enterprise passes according to the second identifier and the second authentication information;

a fourth processing unit 113, configured to set the transportation group type enterprise to have a second function if the authentication for the group type enterprise passes; wherein the second function is to manage a third account; the third account is an account associated with the target user.

Based on the foregoing embodiments, an embodiment of the present invention provides a corporate enterprise system, and as shown in fig. 12, the corporate enterprise system 12 includes: a third receiving unit 121 and a fifth processing unit 122, wherein:

a third receiving unit 121, configured to receive a fifth request sent by the target user; the fifth request comprises third application information of cloud service resources and a third identifier of the target user, and the third identifier is used for identifying the target user;

and the fifth processing unit 122 is configured to generate third target information according to the third identifier and the third application information, and send the third target information to the target user.

Based on the foregoing embodiments, embodiments of the present invention provide a computer-readable storage medium storing one or more programs, where the one or more programs are executable by one or more processors to implement the steps of the management method of the cloud architecture provided in the embodiments corresponding to fig. 1 to 3.

The computer storage medium may be a Memory such as a Read Only Memory (ROM), a Programmable Read Only Memory (PROM), an Erasable Programmable Read Only Memory (EPROM), an Electrically Erasable Programmable Read Only Memory (EEPROM), a magnetic Random Access Memory (FRAM), a Flash Memory (Flash Memory), a magnetic surface Memory, an optical Disc, or a Compact Disc Read-Only Memory (CD-ROM); and may be various electronic devices such as mobile phones, computers, tablet devices, personal digital assistants, etc., including one or any combination of the above-mentioned memories.

It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, recitation of an element by the phrase "comprising an … …" does not exclude the presence of other like elements in the process, method, article, or apparatus that comprises the element.

The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.

Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal device (such as a mobile phone, a computer, a server, an air conditioner, or a network device) to execute the method described in the embodiments of the present invention.

The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

The above description is only a preferred embodiment of the present invention, and not intended to limit the scope of the present invention, and all modifications of equivalent structures and equivalent processes, which are made by using the contents of the present specification and the accompanying drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.

Claims

1. A management method of a cloud architecture is applied to a cloud platform system, and comprises the following steps:

if the authentication for the operator passes, setting a first account to have a first function; wherein the first account is an account associated with the operator, and the first function is used for managing a user account;

receiving a third request sent by the operator; the third request carries first application information and the first identifier of the cloud service resource of the cloud platform system; the first application information comprises price application information;

and generating first target information corresponding to the first identifier according to the first identifier and the first application information, and sending the first target information to the operator.

2. The method of claim 1, wherein setting the first account to have a first function if the authentication for the operator is passed comprises:

if the authentication for the operator passes, acquiring a first management strategy of the cloud platform system for the first account;

and setting a second management strategy of the first account for the user account according to the first management strategy.

3. The method of claim 1, wherein after setting the first account to have the first function if the authentication for the operator is passed, the method comprises:

receiving a second request sent by the group type enterprise; the second request carries a second identifier and second authentication information of the group type enterprise, and the second identifier is used for identifying the group type enterprise;

responding to the second request, sending the second authentication information to the first account according to the second identifier, so that when the first account determines that the authentication for the group-type enterprise is passed according to the second authentication information, the second account is set to have a second function; wherein the second account is an account associated with the corporate enterprise; the second function is to manage a third account; the third account is an account associated with the target user; the user accounts include the second account and the third account.

4. A management method of a cloud architecture is characterized in that the method is applied to an operator system, and the method comprises the following steps:

if the authentication aiming at the group type enterprise passes, setting the group type enterprise to have a second function; wherein the second function is to manage a third account; the third account is an account associated with the target user;

receiving a fourth request sent by the group type enterprise; the fourth request carries second application information and the second identifier of the cloud service resource of the cloud platform system; the second application information comprises price application information;

and generating second target information according to the second identification and the second application information, and sending the second target information to the group type enterprise.

5. The method of claim 4, wherein setting the corporate enterprise to have a second function if the authentication for the corporate enterprise passes comprises:

if the authentication for the group type enterprise is passed, acquiring a third management strategy of the operator system for a second account; wherein the second account is an account associated with the corporate enterprise;

and setting a fourth management strategy of the second account to the third account according to the third management strategy.

6. The method of claim 5, wherein after obtaining a third management policy of the operator system for a second account if the authentication for the corporate enterprise is passed, the method further comprises:

and managing the group type enterprises according to the third management strategy.

7. A management method of a cloud architecture is applied to a group type enterprise system, and the method further comprises the following steps:

sending a second request to the operator system; the second request carries a second identifier and second authentication information of the corporate enterprise, wherein the second identifier is used for identifying the corporate enterprise; the second identification and the second authentication information are used for determining whether the group type enterprise has a second function; wherein the second function is to manage a third account; the third account is an account associated with the target user;

receiving a fifth request sent by the target user; the fifth request comprises third application information of cloud service resources and a third identifier of the target user, and the third identifier is used for identifying the target user; the third application information comprises price application information;

8. A cloud platform system, the cloud platform system comprising: a first processor, a first memory, and a first communication bus;

the first processor is configured to execute a hypervisor of a cloud architecture stored in a first memory to implement the steps of:

9. A carrier system, the carrier system comprising: a second processor, a second memory, and a second communication bus;

10. A corporate enterprise system, comprising: a third processor, a third memory, and a third communication bus;

11. A cloud platform system, the cloud platform system comprising: a first receiving unit, a first processing unit and a second processing unit, wherein:

the second processing unit is used for setting a first account to have a first function if the authentication of the operator passes; wherein the first account is an account associated with the operator, and the first function is used for managing a user account;

the first processing unit is further configured to receive a third request sent by the operator; the third request carries first application information and the first identifier of the cloud service resource of the cloud platform system; the first application information comprises price application information;

the second processing unit is further configured to generate first target information corresponding to the first identifier according to the first identifier and the first application information, and send the first target information to the operator.

12. A carrier system, the carrier system comprising: a second receiving unit, a third processing unit and a fourth processing unit, wherein:

the second receiving unit is used for receiving a second request sent by the group type enterprise; the second request carries a second identifier and second authentication information of the group type enterprise, and the second identifier is used for identifying the group type enterprise;

the fourth processing unit is configured to set the corporate enterprise to have a second function if the authentication for the corporate enterprise passes; wherein the second function is to manage a third account; the third account is an account associated with the target user;

the third processing unit is further configured to receive a fourth request sent by the group-type enterprise; the fourth request carries second application information and the second identifier of the cloud service resource of the cloud platform system; the second application information comprises price application information;

and the fourth processing unit is further configured to generate second target information according to the second identifier and the second application information, and send the second target information to the group-type enterprise.

13. A corporate enterprise system, comprising: a third receiving unit and a fifth processing unit, wherein:

the fifth processing unit is configured to send a second request to the operator system; the second request carries a second identifier and second authentication information of the corporate enterprise, wherein the second identifier is used for identifying the corporate enterprise; the second identification and the second authentication information are used for determining whether the group type enterprise has a second function; wherein the second function is to manage a third account; the third account is an account associated with the target user;

the third receiving unit is configured to receive a fifth request sent by the target user; the fifth request comprises third application information of cloud service resources and a third identifier of the target user, and the third identifier is used for identifying the target user; the third application information comprises price application information;

and the fifth processing unit is used for generating third target information according to a third identifier and the third application information and sending the third target information to the target user.

14. A computer readable storage medium, characterized in that the computer readable storage medium stores one or more programs executable by one or more processors to implement the steps of the management method of the cloud architecture of any one of claims 1 to 3, 4 to 6 or 7.