CN109756477A - A kind of access authority setting method and device based on view networking - Google Patents

A kind of access authority setting method and device based on view networking Download PDF

Info

Publication number
CN109756477A
CN109756477A CN201811429284.0A CN201811429284A CN109756477A CN 109756477 A CN109756477 A CN 109756477A CN 201811429284 A CN201811429284 A CN 201811429284A CN 109756477 A CN109756477 A CN 109756477A
Authority
CN
China
Prior art keywords
view
networking
target
depending
monitoring equipment
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201811429284.0A
Other languages
Chinese (zh)
Other versions
CN109756477B (en
Inventor
李阔
沈军
刘彦辉
孙志强
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Visionvera Information Technology Co Ltd
Original Assignee
Visionvera Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Visionvera Information Technology Co Ltd filed Critical Visionvera Information Technology Co Ltd
Priority to CN201811429284.0A priority Critical patent/CN109756477B/en
Publication of CN109756477A publication Critical patent/CN109756477A/en
Application granted granted Critical
Publication of CN109756477B publication Critical patent/CN109756477B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Abstract

This application provides a kind of access authority setting methods and device based on view networking.Pass through the application, by by least two depending on networked terminals terminal iidentification group be combined into a view network permission group, it then only need to be view networking permission group setting to the access authority of view networking monitoring equipment, it can be realized and be respectively provided with depending on networked terminals to the access authority for regarding networking monitoring equipment, so that setting efficiency can be improved at least two.

Description

A kind of access authority setting method and device based on view networking
Technical field
This application involves view networking technology field, more particularly to it is a kind of based on view networking access authority setting method and Device.
Background technique
It is social now, in order to provide safety precautions and guarantee to the work and life of people, often set at critical positions It is equipped with monitoring camera, the monitoring video flow at critical positions is recorded by monitoring camera, later, arrangement checks that personnel check It whether there is suspicious figure in the monitoring video flow that monitoring camera is recorded, for example, checking whether that there are fugitive personnel etc..
Wherein, check that the monitoring video flow that terminal carrys out the recording of checking monitoring camera can be used in personnel, for example, monitoring is taken the photograph As the monitoring video flow that the monitoring video flow being recorded to is sent to the terminal by head, and terminal reception monitoring camera is sent, and Monitoring video flow is played on the screen, and the personnel of checking can check the monitoring video flow that the terminal plays on the screen.
However, the monitor video for the different location that different monitoring cameras is recorded, the confidentiality of different location is different, because This, the confidentiality of the monitor video for the different location that different monitoring cameras is recorded is different, and needs to arrange much looking into simultaneously The personnel of seeing carry out the monitor video of checking monitoring camera recording, and therefore, it is necessary to be followed successively by each to check that it is respectively set in personnel It can check the monitor video which monitoring camera is recorded, and can not check the monitor video which monitoring camera is recorded.
But when the quantity of monitoring camera is very more, then it may require that expending longer time could look into for each It sees personnel setting completed and check that permission, setting efficiency are lower.
Summary of the invention
To solve the above-mentioned problems, present application illustrates a kind of access authority setting methods and device based on view networking.
In a first aspect, present application illustrates a kind of access authority setting method based on view networking, it is described to include depending on networking Depending on networked server, multiple view networked terminals and multiple view networking monitoring equipment;The view networked server respectively with it is each A communication connection depending on having between networked terminals based on view networking protocol, the view networked server join with each view respectively Having the communication connection based on view networking protocol between net monitoring device, the method is applied in the view networked server, The described method includes:
When the access authority for needing to provide access to identical view networking monitoring equipment depending on networked terminals at least two When, detect whether the view networking permission group for having provided with the access authority;
If there is the view networking permission group for being provided with the access authority, then by at least two views networked terminals Terminal iidentification is added in the networking permission group of the view provided with the access authority;
If there is no the permission group for being provided with the access authority, then view networking permission group is created, by described at least two A terminal iidentification depending on networked terminals is added in the view networking permission group of creation, and institute is arranged for the view of creation networking permission group State access authority.
It is wherein, described that for the view networking permission group of creation, the access authority is set, comprising:
The terminal grade of each view networked terminals in at least two views networked terminals is obtained respectively;
The view networking monitoring equipment for forbidding access is determined according to the terminal grade of acquisition;
In the multiple view networking prison in addition to the view networking monitoring equipment for forbidding access depending in networking monitoring equipment It controls in equipment, determines the view networking addressable view networking monitoring equipment of permission group of creation;
The device identification of the view networking permission group of binding creation and addressable view networking monitoring equipment.
It is wherein, described that the view networking monitoring equipment for forbidding access is determined according to the terminal grade of acquisition, comprising:
It obtains terminal grade and forbids the corresponding relationship between the device identification of the view networking monitoring equipment of access;
Search device identification corresponding with each terminal grade difference respectively in the corresponding relationship;
It will be determined as forbidding the view networking monitoring equipment of access depending on networked devices corresponding to the device identification found.
Wherein, the method also includes:
When the multiple target depending in networked terminals needs to access the multiple view networking monitoring equipment depending on networked terminals In target when regarding networking monitoring equipment, determine the target view networking permission where the terminal iidentification of target view networked terminals Group;
Obtain the target access permission of the target view networking permission group;
Determine that the target is depending on networking monitoring equipment to the target depending on networked terminals according to the target access permission It is no to have access authority;
If the target has an access authority depending on networking monitoring equipment to the target depending on networked terminals, establish described in Target regards the communication connection based on view networking protocol between networked terminals and target view networking monitoring equipment.
If the target does not have access authority, Xiang Suoshu depending on networking monitoring equipment to the target depending on networked terminals Target regards networked terminals and sends denied access notice, and denied access notice is same as indicating the target view networked terminals to the mesh Mark does not have the access authority depending on networking monitoring equipment.
Wherein, described to establish joining between the target view networked terminals and target view networking monitoring equipment based on view The communication connection of fidonetFido, comprising:
The first communication connection of association and the second communication connection, first communication connection include that the target regards networked terminals With the communication connection based on view networking protocol between the view networked server, second communication connection includes the target Depending on the communication connection based on view networking protocol between networking monitoring equipment and the view networked server.
Second aspect, present application illustrates a kind of access authority based on view networking, and device is arranged, described to include depending on networking Depending on networked server, multiple view networked terminals and multiple view networking monitoring equipment;The view networked server respectively with it is each A communication connection depending on having between networked terminals based on view networking protocol, the view networked server join with each view respectively Having the communication connection based on view networking protocol between net monitoring device, described device is applied in the view networked server, Described device includes:
Detection module, for when needing to provide access to identical set depending on networking monitoring depending on networked terminals at least two When standby access authority, the view networking permission group for having provided with the access authority is detected whether;
First adding module, for permission group of networking if there is the view for being provided with the access authority, then by described in extremely Few two terminal iidentifications depending on networked terminals are added in the networking permission group of the view provided with the access authority;
Creation module, for if there is no the permission group for being provided with the access authority, then creating view networking permission group, First adding module, for being added to the view networking permission group of creation depending on the terminal iidentification of networked terminals by described at least two In, setup module is used for and the access authority is arranged for the view of creation networking permission group.
Wherein, the setup module includes:
Acquiring unit, for obtaining the terminal etc. of each view networked terminals in at least two views networked terminals respectively Grade;
First determination unit, for determining the view networking monitoring equipment for forbidding access according to the terminal grade of acquisition;
Second determination unit, for forbidding setting depending on networking monitoring for access depending on removing in networking monitoring equipment the multiple In view networking monitoring equipment other than standby, the view networking addressable view networking monitoring equipment of permission group of creation is determined;
Binding unit, for binding the view networking permission group of creation and the equipment mark of addressable view networking monitoring equipment Know.
Wherein, first determination unit includes:
Subelement is obtained, for obtaining between terminal grade and the device identification of view networking monitoring equipment for forbidding access Corresponding relationship;
Subelement is searched, for searching respectively in the corresponding relationship and each terminal grade is corresponding respectively sets Standby mark;
It determining subelement, forbidding the view of access for will be determined as corresponding to the device identification found depending on networked devices Networking monitoring equipment.
Wherein, described device further include:
Determining module, for needing to access the multiple view depending on networked terminals when the multiple target depending in networked terminals When target in networking monitoring equipment regards networking monitoring equipment, the mesh where the terminal iidentification of the target view networked terminals is determined Mark view networking permission group;
Module is obtained, for obtaining the target access permission of the target view networking permission group;
Determining module joins for determining that the target view networked terminals regard the target according to the target access permission Whether net monitoring device has access authority;
Module is established, if having access right depending on networking monitoring equipment to the target depending on networked terminals for the target Limit then establishes the communication based on view networking protocol between the target view networked terminals and target view networking monitoring equipment Connection.
Sending module, if not having access depending on networking monitoring equipment to the target depending on networked terminals for the target Permission, then send denied access notice to target view networked terminals, and denied access notice is same as indicating the target view connection Network termination does not have the access authority depending on networking monitoring equipment to the target.
Wherein, the module of establishing is specifically used for: the first communication connection of association and the second communication connection, first communication Connection includes the communication connection based on view networking protocol between target view networked terminals and the view networked server, institute Stating the second communication connection includes between the target view networking monitoring equipment and the view networked server based on view networking association The communication connection of view.
The application includes following advantages:
By the application, by being combined into a view depending on the terminal iidentification groups of networked terminals by least two and networking permission group, so It only need to be afterwards view networking permission group setting to the access authority of view networking monitoring equipment, can be realized at least two view networkings eventually End is respectively provided with the access authority to view networking monitoring equipment, so that setting efficiency can be improved.
Detailed description of the invention
Fig. 1 is a kind of networking schematic diagram of view networking of the application;
Fig. 2 is a kind of hardware structural diagram of node server of the application;
Fig. 3 is a kind of hardware structural diagram of access switch of the application;
Fig. 4 is that a kind of Ethernet association of the application turns the hardware structural diagram of gateway;
Fig. 5 is a kind of structural block diagram of access authority setting system based on view networking of the application;
Fig. 6 is a kind of step flow chart of access authority setting method based on view networking of the application;
Fig. 7 is a kind of step flow chart of setting access authority method of the application;
Fig. 8 is a kind of structural block diagram of access authority setting device based on view networking of the application.
Specific embodiment
In order to make the above objects, features, and advantages of the present application more apparent, with reference to the accompanying drawing and it is specific real Applying mode, the present application will be further described in detail.
It is the important milestone of network Development depending on networking, is a real-time network, can be realized HD video real-time Transmission, Push numerous Internet applications to HD video, high definition is face-to-face.
Real-time high-definition video switching technology is used depending on networking, it can be such as high in a network platform by required service Clear video conference, Intellectualized monitoring analysis, emergency command, digital broadcast television, delay TV, the Web-based instruction, shows video monitoring Field live streaming, VOD program request, TV Mail, individual character records (PVR), Intranet (manages) channel by oneself, intelligent video Broadcast Control, information publication All be incorporated into a system platform etc. services such as tens of kinds of videos, voice, picture, text, communication, data, by TV or Computer realizes that high-definition quality video plays.
To make those skilled in the art more fully understand the application, it is introduced below to depending on networking:
Depending on networking, applied portion of techniques is as described below:
Network technology (Network Technology)
Traditional ethernet (Ethernet) is improved depending on the network technology innovation networked, with potential huge on network Video flow.(Circuit is exchanged different from simple network packet packet switch (Packet Switching) or lattice network Switching), Streaming demand is met using Packet Switching depending on networking technology.Has grouping depending on networking technology Flexible, the simple and low price of exchange, is provided simultaneously with the quality and safety assurance of circuit switching, it is virtually electric to realize the whole network switch type The seamless connection of road and data format.
Switching technology (Switching Technology)
Two advantages of asynchronous and packet switch that Ethernet is used depending on networking eliminate Ethernet under the premise of complete compatible and lack It falls into, has the end-to-end seamless connection of the whole network, direct user terminal, directly carrying IP data packet.User data is in network-wide basis It is not required to any format conversion.It is the more advanced form of Ethernet depending on networking, is a real-time exchange platform, can be realized at present mutually The whole network large-scale high-definition realtime video transmission that networking cannot achieve pushes numerous network video applications to high Qinghua, unitizes.
Server technology (Server Technology)
It is different from traditional server, its Streaming Media depending on the server technology in networking and unified video platform Transmission be built upon it is connection-oriented on the basis of, data-handling capacity is unrelated with flow, communication time, single network layer energy Enough transmitted comprising signaling and data.For voice and video business, handled depending on networking and unified video platform Streaming Media Complexity many simpler than data processing, efficiency substantially increase hundred times or more than traditional server.
Reservoir technology (Storage Technology)
The ultrahigh speed reservoir technology of unified video platform in order to adapt to the media content of vast capacity and super-flow and Using state-of-the-art real time operating system, the programme information in server instruction is mapped to specific hard drive space, media Content is no longer pass through server, and moment is directly delivered to user terminal, and user waits typical time less than 0.2 second.It optimizes Sector distribution greatly reduces the mechanical movement of hard disc magnetic head tracking, and resource consumption only accounts for the 20% of the internet ad eundem IP, but The concurrent flow greater than 3 times of traditional disk array is generated, overall efficiency promotes 10 times or more.
Network security technology (Network Security Technology)
Depending on the structural design networked by servicing independent licence system, equipment and the modes such as user data is completely isolated every time The network security problem that puzzlement internet has thoroughly been eradicated from structure, does not need antivirus applet, firewall generally, has prevented black The attack of visitor and virus, structural carefree secure network is provided for user.
It services innovative technology (Service Innovation Technology)
Business and transmission are fused together by unified video platform, whether single user, private user or a net The sum total of network is all only primary automatic connection.User terminal, set-top box or PC are attached directly to unified video platform, obtain rich The multimedia video service of rich colorful various forms.Unified video platform is traditional to substitute with table schema using " menu type " Complicated applications programming, considerably less code, which can be used, can be realized complicated application, realize the new business innovation of " endless ".
Networking depending on networking is as described below:
It is a kind of central controlled network structure depending on networking, which can be Tree Network, Star network, ring network etc. class Type, but centralized control node is needed to control whole network in network on this basis.
As shown in Figure 1, being divided into access net and Metropolitan Area Network (MAN) two parts depending on networking.
The equipment of access mesh portions can be mainly divided into 3 classes: node server, access switch, terminal (including various machines Top box, encoding board, memory etc.).Node server is connected with access switch, and access switch can be with multiple terminal phases Even, and it can connect Ethernet.
Wherein, node server is the node that centralized control functions are played in access net, can control access switch and terminal. Node server can directly be connected with access switch, can also directly be connected with terminal.
Similar, the equipment of metropolitan area mesh portions can also be divided into 3 classes: metropolitan area server, node switch, node serve Device.Metropolitan area server is connected with node switch, and node switch can be connected with multiple node servers.
Wherein, node server is the node server for accessing mesh portions, i.e. node server had both belonged to access wet end Point, and belong to metropolitan area mesh portions.
Metropolitan area server is the node that centralized control functions are played in Metropolitan Area Network (MAN), can control node switch and node serve Device.Metropolitan area server can be directly connected to node switch, can also be directly connected to node server.
It can be seen that be entirely a kind of central controlled network structure of layering depending on networking, and node server and metropolitan area clothes The network controlled under business device can be the various structures such as tree-shaped, star-like, cyclic annular.
Visually claim, access mesh portions can form unified video platform (part in virtual coil), and multiple unified videos are flat Platform can form view networking;Each unified video platform can be interconnected by metropolitan area and wide area depending on networking.
Classify depending on networked devices
1.1 the application's can be mainly divided into 3 classes: server depending on the equipment in networking, interchanger (including Ethernet net Close), terminal (including various set-top boxes, encoding board, memory etc.).Depending on networking can be divided on the whole Metropolitan Area Network (MAN) (or country Net, World Wide Web etc.) and access net.
1.2 equipment for wherein accessing mesh portions can be mainly divided into 3 classes: node server, access switch (including ether Net gateway), terminal (including various set-top boxes, encoding board, memory etc.).
The specific hardware structure of each access network equipment are as follows:
Node server:
As shown in Fig. 2, mainly including Network Interface Module 201, switching engine module 202, CPU module 203, disk array Module 204;
Wherein, Network Interface Module 201, the Bao Jun that CPU module 203, disk array module 204 are come in enter switching engine Module 202;Switching engine module 202 look into the operation of address table 205 to the packet come in, to obtain the navigation information of packet; And the packet is stored according to the navigation information of packet the queue of corresponding pack buffer 206;If the queue of pack buffer 206 is close It is full, then it abandons;All pack buffer queues of 202 poll of switching engine mould, are forwarded: 1) port if meeting the following conditions It is less than to send caching;2) the queue package counting facility is greater than zero.Disk array module 204 mainly realizes the control to hard disk, including The operation such as initialization, read-write to hard disk;CPU module 203 is mainly responsible between access switch, terminal (not shown) Protocol processes, to address table 205 (including descending protocol packet address table, uplink protocol package address table, data packet addressed table) Configuration, and, the configuration to disk array module 204.
Access switch:
As shown in figure 3, mainly including Network Interface Module (downstream network interface module 301, uplink network interface module 302), switching engine module 303 and CPU module 304;
Wherein, the packet (upstream data) that downstream network interface module 301 is come in enters packet detection module 305;Packet detection mould Whether mesh way address (DA), source address (SA), type of data packet and the packet length of the detection packet of block 305 meet the requirements, if met, It then distributes corresponding flow identifier (stream-id), and enters switching engine module 303, otherwise abandon;Uplink network interface mould The packet (downlink data) that block 302 is come in enters switching engine module 303;The data packet that CPU module 204 is come in enters switching engine Module 303;Switching engine module 303 look into the operation of address table 306 to the packet come in, to obtain the navigation information of packet; If the packet into switching engine module 303 is that downstream network interface is gone toward uplink network interface, in conjunction with flow identifier (stream-id) packet is stored in the queue of corresponding pack buffer 307;If the queue of the pack buffer 307 is close full, It abandons;If the packet into switching engine module 303 is not that downstream network interface is gone toward uplink network interface, according to packet Navigation information is stored in the data packet queue of corresponding pack buffer 307;If the queue of the pack buffer 307 is close full, Then abandon.
All pack buffer queues of 303 poll of switching engine module, are divided to two kinds of situations in this application:
If the queue is that downstream network interface is gone toward uplink network interface, meets the following conditions and be forwarded: 1) It is less than that the port sends caching;2) the queue package counting facility is greater than zero;3) token that rate control module generates is obtained;
If the queue is not that downstream network interface is gone toward uplink network interface, meets the following conditions and is forwarded: 1) it is less than to send caching for the port;2) the queue package counting facility is greater than zero.
Rate control module 208 is configured by CPU module 204, to all downlink networks in programmable interval Interface generates token toward the pack buffer queue that uplink network interface is gone, to control the code rate of forwarded upstream.
CPU module 304 is mainly responsible for the protocol processes between node server, the configuration to address table 306, and, Configuration to rate control module 308.
Ethernet association turns gateway:
As shown in figure 4, mainly including Network Interface Module (downstream network interface module 401, uplink network interface module 402), switching engine module 403, CPU module 404, packet detection module 405, rate control module 408, address table 406, Bao Huan Storage 407 and MAC adding module 409, MAC removing module 410.
Wherein, the data packet that downstream network interface module 401 is come in enters packet detection module 405;Packet detection module 405 is examined Ethernet mac DA, ethernet mac SA, Ethernet length or frame type, the view networking destination address of measured data packet DA, whether meet the requirements depending on networking source address SA, depending on networking data Packet type and packet length, corresponding stream is distributed if meeting Identifier (stream-id);Then, MAC DA, MAC SA, length or frame type are subtracted by MAC removing module 410 (2byte), and enter corresponding receive and cache, otherwise abandon;
Downstream network interface module 401 detects the transmission caching of the port, if there is Bao Ze is according to the view of packet networking purpose Address D A knows the ethernet mac DA of corresponding terminal, adds the ethernet mac DA of terminal, Ethernet assists the MAC for turning gateway SA, Ethernet length or frame type, and send.
The function that Ethernet association turns other modules in gateway is similar with access switch.
Terminal:
It mainly include Network Interface Module, Service Processing Module and CPU module;For example, set-top box mainly connects including network Mouth mold block, video/audio encoding and decoding engine modules, CPU module;Encoding board mainly includes Network Interface Module, video encoding engine Module, CPU module;Memory mainly includes Network Interface Module, CPU module and disk array module.
The equipment of 1.3 metropolitan area mesh portions can be mainly divided into 2 classes: node server, node switch, metropolitan area server. Wherein, node switch mainly includes Network Interface Module, switching engine module and CPU module;Metropolitan area server mainly includes Network Interface Module, switching engine module and CPU module are constituted.
2, networking data package definition is regarded
2.1 access network data package definitions
Access net data packet mainly include following sections: destination address (DA), source address (SA), reserve bytes, payload(PDU)、CRC。
As shown in the table, the data packet for accessing net mainly includes following sections:
DA SA Reserved Payload CRC
Wherein:
Destination address (DA) is made of 8 bytes (byte), and first character section indicates type (such as the various associations of data packet Discuss packet, multicast packet, unicast packet etc.), be up to 256 kinds of possibility, the second byte to the 6th byte is metropolitan area net address, Seven, the 8th bytes are access net address;
Source address (SA) is also to be made of 8 bytes (byte), is defined identical as destination address (DA);
Reserve bytes are made of 2 bytes;
The part payload has different length according to the type of different datagrams, is if it is various protocol packages 64 bytes are 32+1024=1056 bytes if it is single group unicast packets words, are not restricted to above 2 kinds certainly;
CRC is made of 4 bytes, and calculation method follows the Ethernet CRC algorithm of standard.
2.2 Metropolitan Area Network (MAN) packet definitions
The topology of Metropolitan Area Network (MAN) is pattern, may there is 2 kinds, connection even of more than two kinds, i.e. node switching between two equipment It can all can exceed that 2 kinds between machine and node server, node switch and node switch, node switch and node server Connection.But the metropolitan area net address of metropolitan area network equipment is uniquely, to close to accurately describe the connection between metropolitan area network equipment System, introduces parameter in this application: label, uniquely to describe a metropolitan area network equipment.
(Multi-Protocol Label Switch, multiprotocol label are handed over by the definition of label and MPLS in this specification Change) label definition it is similar, it is assumed that between equipment A and equipment B there are two connection, then data packet from equipment A to equipment B just There are 2 labels, data packet also there are 2 labels from equipment B to equipment A.Label is divided into label, outgoing label, it is assumed that data packet enters The label (entering label) of equipment A is 0x0000, and the label (outgoing label) when this data packet leaves equipment A may reform into 0x0001.The networking process of Metropolitan Area Network (MAN) is to enter network process under centralized control, also means that address distribution, the label of Metropolitan Area Network (MAN) Distribution be all to be dominated by metropolitan area server, node switch, node server be all passively execute, this point with The label distribution of MPLS is different, and the distribution of the label of MPLS is the result that interchanger, server are negotiated mutually.
As shown in the table, the data packet of Metropolitan Area Network (MAN) mainly includes following sections:
DA SA Reserved Label Payload CRC
That is destination address (DA), source address (SA), reserve bytes (Reserved), label, payload (PDU), CRC.Its In, the format of label, which can refer to, such as gives a definition: label is 32bit, wherein high 16bit retains, only with low 16bit, its position Set is between the reserve bytes and payload of data packet.
Based on the above-mentioned characteristic of view networking, one of core idea of the application is proposed, it then follows the agreement for regarding networking passes through By at least two depending on networked terminals terminal iidentification group be combined into a view networking permission group, then only need to for view networking permission group setting To the access authority of view networking monitoring equipment, it can be realized and be respectively provided with depending on networked terminals to view networking monitoring equipment at least two Access authority, so that setting efficiency can be improved.
Referring to Fig. 5, a kind of structural block diagram of access authority setting system based on view networking of the application is shown, this is System includes view networked server 01, multiple view networked terminals 02 and multiple view networking monitoring equipment 03;The view the Internet services Device 01 is respectively with each depending on having the communication connection based on view networking protocol, the view networked server between networked terminals 02 01 is applied to each depending on having the communication connection based on view networking protocol, the method between networking monitoring equipment 03 respectively In the view networked server, which comprises
Referring to Fig. 6, a kind of step flow chart of access authority setting method based on view networking of the application is shown, it should Method can be applied in view networked server 01 shown in fig. 5, and this method can specifically include following steps:
In step s101, when needing to provide access to identical set depending on networking monitoring depending on networked terminals at least two When standby access authority, the view networking permission group for having provided with the access authority is detected whether;
In this application, the corresponding addressable view networking monitoring equipment depending on networking permission group, may existing multiple views Networking permission group, each, can be depending on the device identification that networking permission group includes that at least one regards networking monitoring equipment In existing multiple view networking permission groups, search whether there is the device identification view networking monitoring equipment identical with this for including The identical view networking permission group of device identification, if there is the device identification for including setting depending on networking monitoring equipment identical with this It is standby to identify identical view networking permission group, then by the device identification of the device identification for including view networking monitoring equipment identical with this It is identical to be determined as the view networking permission group provided with the access authority depending on networking permission group, if there is no the equipment mark for including Know the identical view networking permission group of device identification of view networking monitoring equipment identical with this, it is determined that there is no be provided with the visit Ask the permission group of permission.
At least two views are networked in step s 102 if there is the view networking permission group for being provided with the access authority The terminal iidentification of terminal is added in the networking permission group of the view provided with access authority;
So that at least two can be provided with access authority depending on networking monitoring equipment to identical later depending on networked terminals.
If there is no the permission group for being provided with the access authority, in step s 103, creation view networking permission group is near Few two terminal iidentifications depending on networked terminals are added in the view networking permission group of creation, and setting depending on networking permission group for creation Set access authority.
So that at least two can be provided with access authority depending on networking monitoring equipment to identical later depending on networked terminals.
By the application, by being combined into a view depending on the terminal iidentification groups of networked terminals by least two and networking permission group, so It only need to be afterwards view networking permission group setting to the access authority of view networking monitoring equipment, can be realized at least two view networkings eventually End is respectively provided with the access authority to view networking monitoring equipment, so that setting efficiency can be improved.
It needs to access in multiple view networking monitoring equipment depending on networked terminals when multiple targets depending in networked terminals later When target regards networking monitoring equipment, the target view networking permission group where the terminal iidentification of target view networked terminals is determined;It obtains The target access permission of target view networking permission group;It determines that target view networked terminals regard target according to target access permission to network Whether monitoring device has access authority;If target has access authority depending on networking monitoring equipment to target depending on networked terminals, Then establish the communication connection based on view networking protocol between target view networked terminals and target view networking monitoring equipment.Association the One communication connection and the second communication connection, the first communication connection is including target view networked terminals and regards the base between networked server In the communication connection of view networking protocol, the second communication connection includes between target view networking monitoring equipment and view networked server Communication connection based on view networking protocol.
If target does not have access authority depending on networking monitoring equipment to target depending on networked terminals, networking is regarded eventually to target End sends denied access notice, and denied access notice, which is same as instruction target, does not have target depending on networking monitoring equipment depending on networked terminals Standby access authority, to prompt ownership goal not have access authority depending on networking monitoring equipment to target depending on networked terminals.
Wherein, when the view for creation networks permission group setting access authority, referring to Fig. 7, it is real following process can be passed through It is existing, comprising:
In step s 201, the terminal grade of each view networked terminals at least two view networked terminals is obtained respectively;
Wherein it is possible to obtain the corresponding relationship between the terminal iidentification of terminal and the terminal grade of terminal;Then for extremely Any one view networked terminals in few two view networked terminals, search the end with the view networked terminals respectively in the corresponding relationship End identifies corresponding terminal grade;And the terminal grade as the view networked terminals, at least two view networked terminals Other each view networked terminals.
In step S202, the view networking monitoring equipment for forbidding access is determined according to the terminal grade of acquisition;
Wherein it is possible to obtain the corresponding pass between terminal grade and the device identification for the view networking monitoring equipment for forbidding access System;Search device identification corresponding with each terminal grade difference respectively in corresponding relationship;The equipment mark that will be found It is determined as the view networking monitoring equipment for forbidding accessing depending on networked devices corresponding to knowing.
Different terminal grades is corresponding to forbid what is accessed can have repetition depending on networking monitoring equipment, if there is repeating, then Deduplication.
In step S203, it is multiple depending in networking monitoring equipment in addition to the view networking monitoring equipment for forbidding access The view networking addressable view networking monitoring equipment of permission group depending in networking monitoring equipment, determining creation;
In step S204, the view networking permission group of creation and the equipment mark of addressable view networking monitoring equipment are bound Know.
It should be noted that for simple description, therefore, it is stated as a series of action groups for embodiment of the method It closes, but those skilled in the art should understand that, the embodiment of the present application is not limited by the described action sequence, because according to According to the embodiment of the present application, some steps may be performed in other sequences or simultaneously.Secondly, those skilled in the art also should Know, the embodiments described in the specification are all preferred embodiments, and related movement not necessarily the application is implemented Necessary to example.
Referring to Fig. 8, a kind of structural block diagram of access authority setting device based on view networking of the application is shown, it is described It include view networked server, multiple view networked terminals and multiple view networking monitoring equipment depending on networking;The view networked server Respectively with each depending on have between networked terminals based on view networking protocol communication connection, the view networked server respectively with Each is networked depending on having the communication connection based on view networking protocol, described device between networking monitoring equipment applied to the view In server, described device includes:
Detection module 11 needs to provide access to identical view networking monitoring depending on networked terminals at least two for working as When the access authority of equipment, the view networking permission group for having provided with the access authority is detected whether;
First adding module 12 then will be described for permission group of networking if there is the view for being provided with the access authority At least two depending on networked terminals terminal iidentification be added to the view provided with the access authority networking permission group in;
Creation module 13, for if there is no the permission group for being provided with the access authority, then creating view networking permission Group, the first adding module 14, for being added to the view networking power of creation depending on the terminal iidentification of networked terminals by described at least two In limit group, setup module 15 is used for and the access authority is arranged for the view of creation networking permission group.
Wherein, the setup module 15 includes:
Acquiring unit, for obtaining the terminal etc. of each view networked terminals in at least two views networked terminals respectively Grade;
First determination unit, for determining the view networking monitoring equipment for forbidding access according to the terminal grade of acquisition;
Second determination unit, for forbidding setting depending on networking monitoring for access depending on removing in networking monitoring equipment the multiple In view networking monitoring equipment other than standby, the view networking addressable view networking monitoring equipment of permission group of creation is determined;
Binding unit, for binding the view networking permission group of creation and the equipment mark of addressable view networking monitoring equipment Know.
Wherein, first determination unit includes:
Subelement is obtained, for obtaining between terminal grade and the device identification of view networking monitoring equipment for forbidding access Corresponding relationship;
Subelement is searched, for searching respectively in the corresponding relationship and each terminal grade is corresponding respectively sets Standby mark;
It determining subelement, forbidding the view of access for will be determined as corresponding to the device identification found depending on networked devices Networking monitoring equipment.
Wherein, described device further include:
Determining module, for needing to access the multiple view depending on networked terminals when the multiple target depending in networked terminals When target in networking monitoring equipment regards networking monitoring equipment, the mesh where the terminal iidentification of the target view networked terminals is determined Mark view networking permission group;
Module is obtained, for obtaining the target access permission of the target view networking permission group;
Determining module joins for determining that the target view networked terminals regard the target according to the target access permission Whether net monitoring device has access authority;
Module is established, if having access right depending on networking monitoring equipment to the target depending on networked terminals for the target Limit then establishes the communication based on view networking protocol between the target view networked terminals and target view networking monitoring equipment Connection.
Sending module, if not having access depending on networking monitoring equipment to the target depending on networked terminals for the target Permission, then send denied access notice to target view networked terminals, and denied access notice is same as indicating the target view connection Network termination does not have the access authority depending on networking monitoring equipment to the target.
Wherein, the module of establishing is specifically used for: the first communication connection of association and the second communication connection, first communication Connection includes the communication connection based on view networking protocol between target view networked terminals and the view networked server, institute Stating the second communication connection includes between the target view networking monitoring equipment and the view networked server based on view networking association The communication connection of view.
By the application, by being combined into a view depending on the terminal iidentification groups of networked terminals by least two and networking permission group, so It only need to be afterwards view networking permission group setting to the access authority of view networking monitoring equipment, can be realized at least two view networkings eventually End is respectively provided with the access authority to view networking monitoring equipment, so that setting efficiency can be improved.
For device embodiment, since it is basically similar to the method embodiment, related so being described relatively simple Place illustrates referring to the part of embodiment of the method.
All the embodiments in this specification are described in a progressive manner, the highlights of each of the examples are with The difference of other embodiments, the same or similar parts between the embodiments can be referred to each other.
It should be understood by those skilled in the art that, the embodiments of the present application may be provided as method, apparatus or calculating Machine program product.Therefore, the embodiment of the present application can be used complete hardware embodiment, complete software embodiment or combine software and The form of the embodiment of hardware aspect.Moreover, the embodiment of the present application can be used one or more wherein include computer can With in the computer-usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.) of program code The form of the computer program product of implementation.
The embodiment of the present application is referring to according to the method for the embodiment of the present application, terminal device (system) and computer program The flowchart and/or the block diagram of product describes.It should be understood that flowchart and/or the block diagram can be realized by computer program instructions In each flow and/or block and flowchart and/or the block diagram in process and/or box combination.It can provide these Computer program instructions are set to general purpose computer, special purpose computer, Embedded Processor or other programmable data processing terminals Standby processor is to generate a machine, so that being held by the processor of computer or other programmable data processing terminal devices Capable instruction generates for realizing in one or more flows of the flowchart and/or one or more blocks of the block diagram The device of specified function.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing terminal devices In computer-readable memory operate in a specific manner, so that instruction stored in the computer readable memory generates packet The manufacture of command device is included, which realizes in one side of one or more flows of the flowchart and/or block diagram The function of being specified in frame or multiple boxes.
These computer program instructions can also be loaded into computer or other programmable data processing terminal devices, so that Series of operation steps are executed on computer or other programmable terminal equipments to generate computer implemented processing, thus The instruction executed on computer or other programmable terminal equipments is provided for realizing in one or more flows of the flowchart And/or in one or more blocks of the block diagram specify function the step of.
Although preferred embodiments of the embodiments of the present application have been described, once a person skilled in the art knows bases This creative concept, then additional changes and modifications can be made to these embodiments.So the following claims are intended to be interpreted as Including preferred embodiment and all change and modification within the scope of the embodiments of the present application.
Finally, it is to be noted that, herein, relational terms such as first and second and the like be used merely to by One entity or operation are distinguished with another entity or operation, without necessarily requiring or implying these entities or operation Between there are any actual relationship or orders.Moreover, the terms "include", "comprise" or its any other variant meaning Covering non-exclusive inclusion, so that process, method, article or terminal device including a series of elements not only wrap Those elements are included, but also including other elements that are not explicitly listed, or further includes for this process, method, article Or the element that terminal device is intrinsic.In the absence of more restrictions, being wanted by what sentence "including a ..." limited Element, it is not excluded that there is also other identical elements in process, method, article or the terminal device for including the element.
Above to a kind of access authority setting method and device based on view networking provided herein, carry out in detail It introduces, specific examples are used herein to illustrate the principle and implementation manner of the present application, the explanation of above embodiments It is merely used to help understand the present processes and its core concept;At the same time, for those skilled in the art, according to this The thought of application, there will be changes in the specific implementation manner and application range, in conclusion the content of the present specification is not answered It is interpreted as the limitation to the application.

Claims (10)

1. a kind of access authority setting method based on view networking, which is characterized in that view networking include regard networked server, Multiple view networked terminals and multiple view networking monitoring equipment;The view networked server respectively with each view networked terminals it Between have based on view networking protocol communication connection, the view networked server respectively each regard networking monitoring equipment between Have the communication connection based on view networking protocol, the method is applied in the view networked server, which comprises
When needing to provide access to the access authority of identical view networking monitoring equipment depending on networked terminals at least two, inspection It surveys with the presence or absence of the view networking permission group provided with the access authority;
If there is the view networking permission group for being provided with the access authority, then by the terminal of at least two views networked terminals Mark is added in the networking permission group of the view provided with the access authority;
If there is no the permission group for being provided with the access authority, then view networking permission group is created, described at least two are regarded The terminal iidentification of networked terminals is added in the view networking permission group of creation, and the visit is arranged for the view of creation networking permission group Ask permission.
2. the access is arranged in permission group the method according to claim 1, wherein the view for creation is networked Permission, comprising:
The terminal grade of each view networked terminals in at least two views networked terminals is obtained respectively;
The view networking monitoring equipment for forbidding access is determined according to the terminal grade of acquisition;
It is the multiple depending in networking monitoring equipment except forbid access depending on networking monitoring equipment in addition to set depending on networking monitoring In standby, the view networking addressable view networking monitoring equipment of permission group of creation is determined;
The device identification of the view networking permission group of binding creation and addressable view networking monitoring equipment.
3. according to the method described in claim 2, it is characterized in that, described determined according to the terminal grade of acquisition forbids access Depending on networking monitoring equipment, comprising:
It obtains terminal grade and forbids the corresponding relationship between the device identification of the view networking monitoring equipment of access;
Search device identification corresponding with each terminal grade difference respectively in the corresponding relationship;
It will be determined as forbidding the view networking monitoring equipment of access depending on networked devices corresponding to the device identification found.
4. according to the method described in claim 3, it is characterized in that, the method also includes:
When the multiple target depending in networked terminals needs to access in the multiple view networking monitoring equipment depending on networked terminals When target regards networking monitoring equipment, the target view networking permission group where the terminal iidentification of the target view networked terminals is determined;
Obtain the target access permission of the target view networking permission group;
Determine whether the target has the target depending on networking monitoring equipment depending on networked terminals according to the target access permission Standby access authority;
If the target has access authority depending on networking monitoring equipment to the target depending on networked terminals, the target is established Depending on the communication connection based on view networking protocol between networked terminals and target view networking monitoring equipment;
If the target does not have access authority depending on networking monitoring equipment to the target depending on networked terminals, to the target Denied access notice is sent depending on networked terminals, denied access notice is same as indicating that the target view networked terminals regard the target Networking monitoring equipment does not have the access authority.
5. according to the method described in claim 4, it is characterized in that, described establish the target view networked terminals and the target Depending on the communication connection based on view networking protocol between networking monitoring equipment, comprising:
The first communication connection of association and the second communication connection, first communication connection include target view networked terminals and institute The communication connection based on view networking protocol between view networked server is stated, second communication connection includes target view connection The communication connection based on view networking protocol between net monitoring device and the view networked server.
6. device is arranged in a kind of access authority based on view networking, which is characterized in that view networking include regard networked server, Multiple view networked terminals and multiple view networking monitoring equipment;The view networked server respectively with each view networked terminals it Between have based on view networking protocol communication connection, the view networked server respectively each regard networking monitoring equipment between Has the communication connection based on view networking protocol, described device is applied in the view networked server, and described device includes:
Detection module needs to provide access to identical view networking monitoring equipment depending on networked terminals at least two for working as When access authority, the view networking permission group for having provided with the access authority is detected whether;
First adding module, for permission group of networking if there is the view for being provided with the access authority, then by described at least two A terminal iidentification depending on networked terminals is added in the networking permission group of the view provided with the access authority;
Creation module regards networking permission group for if there is no the permission group for being provided with the access authority, then creating, and first Adding module, for by described at least two depending on networked terminals terminal iidentification be added to creation view networking permission group in, if Module is set, be used for and the access authority is set for the view of creation networking permission group.
7. device according to claim 6, which is characterized in that the setup module includes:
Acquiring unit, for obtaining the terminal grade of each view networked terminals in at least two views networked terminals respectively;
First determination unit, for determining the view networking monitoring equipment for forbidding access according to the terminal grade of acquisition;
Second determination unit, for it is the multiple depending in networking monitoring equipment except forbid the view networking monitoring equipment of access with In outer view networking monitoring equipment, the view networking addressable view networking monitoring equipment of permission group of creation is determined;
Binding unit, the device identification of view networking permission group and addressable view networking monitoring equipment for binding creation.
8. device according to claim 7, which is characterized in that first determination unit includes:
Subelement is obtained, it is corresponding between terminal grade and the device identification for the view networking monitoring equipment for forbidding access for obtaining Relationship;
Subelement is searched, for searching equipment mark corresponding with each terminal grade difference respectively in the corresponding relationship Know;
Subelement is determined, for will be determined as forbidding the view of access to network depending on networked devices corresponding to the device identification found Monitoring device.
9. device according to claim 8, which is characterized in that described device further include:
Determining module, for needing to access the multiple view networking depending on networked terminals when the multiple target depending in networked terminals When target in monitoring device regards networking monitoring equipment, the target view where the terminal iidentification of the target view networked terminals is determined Networking permission group;
Module is obtained, for obtaining the target access permission of the target view networking permission group;
Determining module, for determining that the target view networked terminals regard networking prison to the target according to the target access permission Whether control equipment has access authority;
Module is established, if having access authority depending on networking monitoring equipment to the target depending on networked terminals for the target, Then establish the communication link based on view networking protocol between the target view networked terminals and target view networking monitoring equipment It connects;
Sending module, if not having access right depending on networking monitoring equipment to the target depending on networked terminals for the target Limit, then send denied access notice to target view networked terminals, and denied access notice is same as indicating the target view networking Terminal does not have the access authority depending on networking monitoring equipment to the target.
10. device according to claim 9, which is characterized in that the module of establishing is specifically used for: the first communication link of association It connects and is regarded between networked terminals and the view networked server with the second communication connection, first communication connection including the target The communication connection based on view networking protocol, second communication connection includes the target view networking monitoring equipment and view The communication connection based on view networking protocol between networked server.
CN201811429284.0A 2018-11-27 2018-11-27 Access authority setting method and device based on video network Active CN109756477B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811429284.0A CN109756477B (en) 2018-11-27 2018-11-27 Access authority setting method and device based on video network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811429284.0A CN109756477B (en) 2018-11-27 2018-11-27 Access authority setting method and device based on video network

Publications (2)

Publication Number Publication Date
CN109756477A true CN109756477A (en) 2019-05-14
CN109756477B CN109756477B (en) 2021-02-02

Family

ID=66402545

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811429284.0A Active CN109756477B (en) 2018-11-27 2018-11-27 Access authority setting method and device based on video network

Country Status (1)

Country Link
CN (1) CN109756477B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1889684A (en) * 2006-07-24 2007-01-03 华为技术有限公司 Long-distance monitoring business realizing method, system and terminal equipment between video information terminals
CN101184214A (en) * 2007-12-07 2008-05-21 中兴通讯股份有限公司 Method of managing user authority in monitoring system
US20080307486A1 (en) * 2007-06-11 2008-12-11 Microsoft Corporation Entity based access management
CN101661281A (en) * 2008-08-28 2010-03-03 上海宝信软件股份有限公司 Method for handing over control authority in distributed monitoring system
US20140002847A1 (en) * 2012-06-29 2014-01-02 Canon Kabushiki Kaisha Information processing apparatus and method of controlling the same, and storage medium
CN106161335A (en) * 2015-03-25 2016-11-23 北京视联动力国际信息技术有限公司 A kind for the treatment of method and apparatus of network packet
CN108023910A (en) * 2016-11-01 2018-05-11 北京视联动力国际信息技术有限公司 A kind of terminal monitoring method and system based on regarding networking
CN108632238A (en) * 2017-09-18 2018-10-09 北京视联动力国际信息技术有限公司 A kind of method and apparatus of permission control

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1889684A (en) * 2006-07-24 2007-01-03 华为技术有限公司 Long-distance monitoring business realizing method, system and terminal equipment between video information terminals
US20080307486A1 (en) * 2007-06-11 2008-12-11 Microsoft Corporation Entity based access management
CN101184214A (en) * 2007-12-07 2008-05-21 中兴通讯股份有限公司 Method of managing user authority in monitoring system
CN101661281A (en) * 2008-08-28 2010-03-03 上海宝信软件股份有限公司 Method for handing over control authority in distributed monitoring system
US20140002847A1 (en) * 2012-06-29 2014-01-02 Canon Kabushiki Kaisha Information processing apparatus and method of controlling the same, and storage medium
CN106161335A (en) * 2015-03-25 2016-11-23 北京视联动力国际信息技术有限公司 A kind for the treatment of method and apparatus of network packet
CN108023910A (en) * 2016-11-01 2018-05-11 北京视联动力国际信息技术有限公司 A kind of terminal monitoring method and system based on regarding networking
CN108632238A (en) * 2017-09-18 2018-10-09 北京视联动力国际信息技术有限公司 A kind of method and apparatus of permission control

Also Published As

Publication number Publication date
CN109756477B (en) 2021-02-02

Similar Documents

Publication Publication Date Title
CN106341515B (en) A kind of monitoring method and device of terminal
CN108173803B (en) A kind of networked by view accesses the method and view connection cat server-side of internet
CN108881799B (en) A kind of system and method carrying out view networked video meeting
CN108462589B (en) A kind of method for connecting network and device of terminal
CN108632238A (en) A kind of method and apparatus of permission control
CN108965224A (en) A kind of method and apparatus of video on demand
CN109617956A (en) A kind of data processing method and device
CN109889779A (en) A kind for the treatment of method and apparatus of packet out-ordering
CN109150665A (en) A kind of bandwidth test method and apparatus
CN109587002A (en) A kind of condition detection method and system regarding networking monitoring equipment
CN109788247A (en) A kind of method and apparatus monitoring instruction identification
CN109743526A (en) A kind of communication connection method for building up and system based on view networking
CN109284265A (en) A kind of date storage method and system
CN110233982A (en) A kind of monitoring method and device based on view networking
CN109743284A (en) A kind of method for processing video frequency and system based on view networking
CN109729184A (en) A kind of method and apparatus of view networking service processing
CN109151519A (en) A kind of configuration distribution method and system based on view networking
CN109743555A (en) A kind of information processing method and system based on view networking
CN110493149A (en) A kind of method and apparatus of Message processing
CN110149497A (en) A kind of view networked data transmission method, apparatus, system and readable storage medium storing program for executing
CN110134892A (en) A kind of loading method and system monitoring the Resources list
CN109586851A (en) Data transmission method and device based on view networking
CN109698953A (en) A kind of condition detection method and system regarding networking monitoring equipment
CN109889759A (en) A kind of exchange method and system regarding networked video meeting
CN110049069A (en) A kind of data capture method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant