CN109902493B - Script issuing method and server - Google Patents
Script issuing method and server Download PDFInfo
- Publication number
- CN109902493B CN109902493B CN201910008355.8A CN201910008355A CN109902493B CN 109902493 B CN109902493 B CN 109902493B CN 201910008355 A CN201910008355 A CN 201910008355A CN 109902493 B CN109902493 B CN 109902493B
- Authority
- CN
- China
- Prior art keywords
- script
- identifier
- server
- target
- similarity
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000013515 script Methods 0.000 title claims abstract description 441
- 238000000034 method Methods 0.000 title claims abstract description 29
- 238000012795 verification Methods 0.000 claims abstract description 12
- 238000004590 computer program Methods 0.000 claims description 16
- 239000011159 matrix material Substances 0.000 claims description 12
- 238000003860 storage Methods 0.000 claims description 10
- 238000004364 calculation method Methods 0.000 claims description 4
- 238000012545 processing Methods 0.000 abstract description 7
- 230000006870 function Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 238000011161 development Methods 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 238000012360 testing method Methods 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000009826 distribution Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000035945 sensitivity Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Landscapes
- Information Transfer Between Computers (AREA)
- Stored Programmes (AREA)
Abstract
The invention is suitable for the technical field of data processing, and provides a script issuing method and a server, wherein a script annotation corresponding to a script identifier contained in an issuing instruction is taken as a target script annotation by receiving the script issuing instruction, a target script attribute and a provider server identifier are obtained, if the script attribute does not belong to a preset attribute set, a user which receives the script corresponding to the script identifier in a preset time period is taken as a reference user, the similarity between target user information corresponding to the target user identifier and each reference user information is calculated, whether the script issuing instruction is legal or not is determined according to the similarity, if the script issuing instruction is legal, the script corresponding to the script identifier is encrypted through an encryption rule corresponding to the script identifier, and then issued to the server corresponding to the target user identifier, so that the script is issued and used in a reasonable range, the safety of the script is ensured not to be leaked, and the management verification flow of a central server is fully and intelligently executed.
Description
Technical Field
The invention belongs to the technical field of data processing, and particularly relates to a script issuing method and a server.
Background
In a distributed system such as a large financial institution, each distributed sub-server often needs to repeatedly apply the same script, so in order to improve the efficiency of script development and application, each sub-server often uploads the script developed by itself to a central server for other sub-servers to call, and meanwhile, each sub-server can download the script required by itself from the central server, so that repeated development is avoided.
However, the importance degree of different scripts is different, so that the process of uploading and downloading the scripts may have the phenomenon that the important scripts are leaked or acquired by users with low authority, and the phenomenon may bring great harm to construction companies of the distributed system. At present, the prior art has the problem of low intelligent degree for the issuing management of scripts, and has the problem of low safety in the script issuing process.
Disclosure of Invention
In view of the above, the embodiment of the invention provides a script issuing method and a server, so as to solve the problem of lower security in the script issuing process in the prior art.
A first aspect of an embodiment of the present invention provides a method for issuing a script, including:
receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier; invoking script annotation corresponding to the script identifier as target script annotation, wherein the target script annotation comprises target script attribute and provider server identifier; if the target script attribute belongs to a preset attribute set, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; if the script attribute does not belong to the preset attribute set, taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling target user information corresponding to the target user identifier and reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity; and if the script issuing instruction is legal, encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier, and then issuing the script to the server corresponding to the target user identifier.
A second aspect of an embodiment of the present invention provides a server, including a memory and a processor, where the memory stores a computer program that can be run on the processor, and when the processor executes the computer program, the processor implements the following steps:
receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier; invoking script annotation corresponding to the script identifier as target script annotation, wherein the target script annotation comprises target script attribute and provider server identifier; if the target script attribute belongs to a preset attribute set, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; if the script attribute does not belong to the preset attribute set, taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling target user information corresponding to the target user identifier and reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity; and if the script issuing instruction is legal, encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier, and then issuing the script to the server corresponding to the target user identifier.
A third aspect of an embodiment of the present invention provides a script issuing apparatus, including:
the receiving module is used for receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier; the calling module is used for calling the script annotation corresponding to the script identifier as a target script annotation, wherein the target script annotation comprises a target script attribute and a provider server identifier; the request module is used for sending a issuing request to a server corresponding to the provider server identifier if the target script attribute belongs to a preset attribute set, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; the calculation module is used for taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling the target user information corresponding to the target user identifier and the reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity if the script attribute does not belong to the preset attribute set; and the sending module is used for sending the script corresponding to the script identifier to the server corresponding to the target user identifier after encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier if the script issuing instruction is legal.
A fourth aspect of the embodiments of the present invention provides a computer readable storage medium storing a computer program which when executed by a processor performs the steps of:
receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier; invoking script annotation corresponding to the script identifier as target script annotation, wherein the target script annotation comprises target script attribute and provider server identifier; if the target script attribute belongs to a preset attribute set, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; if the script attribute does not belong to the preset attribute set, taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling target user information corresponding to the target user identifier and reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity; and if the script issuing instruction is legal, encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier, and then issuing the script to the server corresponding to the target user identifier.
In the embodiment of the invention, a script annotation corresponding to a script identifier contained in a issuing instruction is called as a target script annotation by receiving the script issuing instruction, so as to obtain a target script attribute and a provider server identifier, and if the target script attribute belongs to a preset attribute set, a issuing request is sent to a server corresponding to the provider server identifier, so as to determine whether the script issuing instruction is legal or not; if the script attribute does not belong to the preset attribute set, the user receiving the script corresponding to the script identifier in the preset time period is taken as a reference user, the similarity between the target user information corresponding to the target user identifier and each piece of reference user information is calculated, whether the script issuing instruction is legal or not is determined according to the similarity, if the script issuing instruction is legal, the script corresponding to the script identifier is issued to a server corresponding to the target user identifier after being encrypted through an encryption rule and a secret key corresponding to the script identifier, so that the script is issued and used in a reasonable range, the safety of the script is ensured not to be leaked, and the management verification flow of the central server is fully and intelligently executed.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings that are needed in the embodiments or the description of the prior art will be briefly described below, it being obvious that the drawings in the following description are only some embodiments of the present invention, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a flowchart of an implementation of a script issuing method provided by an embodiment of the present invention;
FIG. 2 is a block diagram of a script issuing device according to an embodiment of the present invention;
fig. 3 is a schematic diagram of a server according to an embodiment of the present invention.
Detailed Description
In the following description, for purposes of explanation and not limitation, specific details are set forth such as the particular system architecture, techniques, etc., in order to provide a thorough understanding of the embodiments of the present invention. It will be apparent, however, to one skilled in the art that the present invention may be practiced in other embodiments that depart from these specific details. In other instances, detailed descriptions of well-known systems, devices, circuits, and methods are omitted so as not to obscure the description of the present invention with unnecessary detail.
In order to illustrate the technical scheme of the invention, the following description is made by specific examples.
Fig. 1 shows an implementation flow of a script issuing method provided by an embodiment of the present invention, where the method flow includes steps S101 to S107. The specific implementation principle of each step is as follows.
S101, receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier.
Notably, the embodiment of the invention relates to two types of servers, one is a central server, and the other is a distributed sub-server, wherein the central server is preferably 1, and is used for storing and managing scripts uploaded by the distributed sub-server, analyzing the issuing instruction after receiving the issuing instruction, and issuing the corresponding scripts to the distributed sub-server; the distributed sub-server is used for receiving a request of a user, generating a issuing instruction according to the request, and sending the issuing instruction to the central server so as to receive a script issued by the user.
In the embodiment of the invention, in order to enable the script edited by the engineer of one distributed sub-server to be applied by the engineers of other distributed sub-servers, thereby avoiding repeated editing of the script with the same function, the distributed sub-server uploads the script, script annotation and script identification of the script to the central server before the central server receives the script issuing instruction, and the central server determines whether to store the script. Wherein, in the embodiment of the invention, the script annotation is written by engineers of the distributed sub-server, and the data used for describing parameters of various aspects of the script, for example, the script annotation comprises: script attributes, script type, script compilation parameters, provider server identification of the script, and the like. It will be appreciated that the relevant situation of a script can be understood by script annotation, and that for a central server, a similar script can be determined by script annotation.
Notably, the processing flow of the received script by the central server provided by the embodiment of the invention is as follows:
optionally, firstly, after receiving the script uploaded by the server and the script annotation and the script identifier corresponding to the script, taking the latest received script as the selected script.
And secondly, judging whether the script identification of the selected script exists in the central server. And if the script identification of the selected script exists in the central server, replacing the script identification of the selected script with the script which corresponds to the script identification of the selected script and exists in the central server. And if the script identification of the selected script does not exist in the central server, but the similarity between the script annotation of the selected script and one of the script annotations existing in the central server is greater than a preset annotation similarity threshold, adding codes in the selected script into the script corresponding to the stored script annotation of the central server.
It can be understood that through the steps, redundant scripts can be guaranteed not to be repeatedly stored in the embodiment of the invention, and the storage space of the central server is saved.
Notably, the execution subject of the embodiment of the present invention is a central server, so the following focuses on the analysis of the issued instructions by the central server and the related implementation of managing the stored scripts.
Alternatively, the issuing instructions received by the central server may be sent by the distributed sub-servers to the central server.
In the embodiment of the invention, the script identifier is used for enabling the central server to determine a unique script, and the target user identifier is used for enabling the central server to determine to which user the script corresponding to the script identifier contained in the script issuing instruction is transmitted.
S102, calling the script annotation corresponding to the script identifier as a target script annotation, wherein the target script annotation comprises a target script attribute and a provider server identifier.
In the embodiment of the invention, in order to analyze the attribute of the script corresponding to the script identifier more clearly, so as to judge whether to issue the related script according to the issuing instruction more accurately, more data needs to be called as a reference, so that according to the description, the script annotation corresponding to the received script identifier needs to be called as the target script annotation.
The target script attribute contained in the target script annotation is used to determine what attribute the script corresponding to the script identifier belongs to, for example: the script attributes include: production environment scripts, test class scripts, interface class scripts, system operation and maintenance class scripts, terminal scripts and the like, and the provider server identification is used for indicating which distributed sub-server provides the script corresponding to the script identification.
S103, judging whether the target script attribute belongs to a preset attribute set.
Since the security requirements of the central server for scripts with different attributes are different, in the subsequent execution mode, different script attributes may correspond to different processing steps, so that it is required to first determine whether the target script attribute belongs to a preset attribute set. For example, in the actual implementation process, if the attribute of a script is a production environment script, the sensitivity of the central server to the script is higher, and a more reliable and safe manner is adopted in the subsequent process to determine whether to issue the script and the script issue instruction to the distributed sub-server corresponding to the target user identifier. If the attribute of a script is a test type script, the security requirement of the central server on the script may be low, and a more intelligent and faster mode may be adopted in the subsequent process to determine whether to issue the script and the script issue instruction to the distributed sub-server corresponding to the target user identifier.
In summary, in the embodiment of the present invention, script attributes with high security requirements are stored in a preset attribute set in advance, so that by determining whether the target script attribute belongs to the preset attribute set, a corresponding execution mode is selected in a subsequent process.
And S104, if the target script attribute belongs to a preset attribute set, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier.
As can be appreciated, since the preset attribute sets include script attributes with high security requirements, once the target script attribute belongs to the preset attribute set, in order to meet the security requirements, in the embodiment of the present invention, a sending request needs to be sent to a server corresponding to the provider server identifier, and whether the script sending instruction is legal or not is determined according to the legal or illegal identifier included in the reply information of the server.
S105, if the script attribute does not belong to a preset attribute set, taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling the target user information corresponding to the target user identifier and the reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity.
In the embodiment of the invention, since the script attribute with high security requirement is contained in the preset attribute set, once the target script attribute does not belong to the preset attribute set, the security requirement of the script corresponding to the target script attribute is considered to be low, and whether the script issuing instruction is legal or not can be determined by an automatic verification mode, so that the degree of automation of verification validity is improved.
In the embodiment of the invention, the issuing instruction contains the target user identifier, so the central server can call the user information corresponding to the target user identifier, namely the target user information, and understandably, the target user information can be used for representing the target user. In addition, the user who receives the script corresponding to the script identifier in a preset time period (such as 1 week) is taken as a reference user, the user information of the reference user, namely the reference user information, is called, if the proportion of the reference user information similar to the target user information is high, the user corresponding to the target user identifier is considered to be capable of acquiring the script corresponding to the script identifier, namely the script issuing instruction is legal.
Optionally, calculating the similarity between the target user information and each piece of reference user information includes: converting the target user information into a target user matrix, and converting each piece of reference user information into each piece of reference user matrix respectively; by the formula:calculating the similarity between the target user information and each piece of reference user information, wherein the similarity between the target user information and each piece of reference user information is the V j A reference user matrix for reference user j, where X is a target user matrix and n is the V j And the number of X elements.
Optionally, determining whether the script issuing instruction is legal according to the similarity includes: calculating the average value of the similarity between the target user information and each piece of reference user information, and taking the average value as a similar average value; if the similarity average value is larger than a preset similarity threshold value, judging that the script issuing instruction is legal; and if the similarity average value is not greater than a preset similarity threshold value, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier.
And S106, if the script issuing instruction is legal, encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier, and then issuing the script to the server corresponding to the target user identifier.
In the embodiment of the invention, in order to ensure the safety of the script in the transmission process, the script corresponding to the script identifier is encrypted through the encryption rule and the secret key corresponding to the script identifier.
It can be understood that after the server corresponding to the target user identifier, i.e. the distributed sub-server, receives the encrypted script, the encrypted script is decrypted according to the decryption rule and the key corresponding to the script identifier.
Alternatively, the decryption rules and keys used by the distributed sub-server for decryption may be fixed and pre-stored in the distributed sub-server.
Optionally, in order to improve security of encryption and decryption of the script, after receiving the script issuing instruction, the central server may dynamically select an encryption rule and a generation key corresponding to a script identifier included in the script issuing instruction, and encrypt a script corresponding to the script identifier through the dynamically generated encryption rule and key. However, there is a problem in that the decryption rule and key corresponding to the script identification are not stored in the distributed sub-server in advance, and cannot be decrypted.
For the above reasons, the central server needs to send the decryption rule and the key corresponding to the script identifier to the server corresponding to the target user identifier under certain conditions. Optionally, one implementation manner is as follows: receiving login information corresponding to the target user identifier after receiving a script issuing instruction, wherein the login information comprises an account name and a combined password; splitting the combined password according to a preset combination rule to obtain a login password and a check code; verifying the check code according to a preset check code record corresponding to the target user identifier; verifying the login password according to the account name and a preset login password database; and if the check code and the login password pass verification, transmitting a decryption rule and a secret key corresponding to the script identifier to a server corresponding to the target user identifier.
And S107, if the script issues the illegal instruction, sending an illegal instruction notification to a server corresponding to the target user identifier.
In the embodiment of the invention, the script annotation corresponding to the script identifier contained in the issuing instruction is called as the target script annotation by receiving the script issuing instruction, so as to obtain the target script attribute and the provider server identifier, if the script attribute does not belong to the preset attribute set, the user receiving the script corresponding to the script identifier in the preset time period is taken as the reference user, the similarity between the target user information corresponding to the target user identifier and each piece of reference user information is calculated, whether the script issuing instruction is legal or not is determined according to the similarity, if the script issuing instruction is legal, the script corresponding to the script identifier is encrypted through the encryption rule corresponding to the script identifier, and then issued to the server corresponding to the target user identifier, so that the script is issued and used in a reasonable range, the safety of the script is ensured not to be leaked, and the management verification flow of the central server is fully and intelligently executed.
Corresponding to the method for issuing the script described in the foregoing embodiments, fig. 2 shows a block diagram of a device for issuing the script provided in the embodiment of the present invention, and for convenience of explanation, only the portion relevant to the embodiment of the present invention is shown.
Referring to fig. 2, the apparatus includes:
a receiving module 201, configured to receive a script issuing instruction, where the script issuing instruction includes a script identifier and a target user identifier;
a retrieving module 202, configured to retrieve a script annotation corresponding to the script identifier as a target script annotation, where the target script annotation includes a target script attribute and a provider server identifier;
a request module 203, configured to send a request for issuing to a server corresponding to the provider server identifier if the target script attribute belongs to a preset attribute set, and determine whether the script issuing instruction is legal according to reply information returned by the server corresponding to the provider server identifier;
a calculation module 204, configured to, if the script attribute does not belong to a preset attribute set, take a user that receives a script corresponding to the script identifier in a preset period of time as a reference user, call target user information corresponding to the target user identifier and reference user information of the reference user, calculate similarity between the target user information and each piece of reference user information, and determine whether the script issuing instruction is legal according to the similarity;
and the sending module 205 is configured to send the instruction to the server corresponding to the target user identifier after encrypting the script corresponding to the script identifier by using the encryption rule and the key corresponding to the script identifier if the instruction sent by the script is legal.
Optionally, the apparatus further comprises:
the script receiving module is used for taking the latest received script as a selected script after receiving the script uploaded by the server and the script annotation and the script identifier corresponding to the script;
a replacing module, configured to replace, if the script identifier of the selected script already exists in the central server, a script that exists in the central server and corresponds to the script identifier of the selected script with the selected script;
and the storage module is used for adding codes in the selected script into the script corresponding to the script annotation stored in the central server if the script identification of the selected script does not exist in the central server, but the similarity between the script annotation of the selected script and one of the script annotations existing in the central server is greater than a preset annotation similarity threshold.
Optionally, the computing module further comprises:
the conversion sub-module is used for converting the target user information into a target user matrix and converting each piece of reference user information into each piece of reference user matrix respectively;
a similarity calculation sub-module for calculating a similarity of the object by the formula:calculating the similarity between the target user information and each piece of reference user information, wherein the similarity between the target user information and each piece of reference user information is the V j A reference user matrix for reference user j, where X is a target user matrix and n is the V j And the number of X elements.
Optionally, the computing module further comprises:
the calculating sub-module is used for calculating the average value of the similarity between the target user information and each piece of reference user information to be used as a similar average value;
the first execution sub-module is used for judging that the script issuing instruction is legal if the similarity average value is larger than a preset similarity threshold value;
and the second execution sub-module is used for sending a issuing request to the server corresponding to the provider server identifier if the similarity average value is not greater than a preset similarity threshold value, and determining whether the script issuing instruction is legal or not according to the reply information returned by the server corresponding to the provider server identifier.
Optionally, the apparatus further comprises:
the information receiving module is used for receiving login information corresponding to the target user identifier, wherein the login information comprises an account name and a combined password;
the splitting module is used for splitting the combined password according to a preset combination rule to obtain a login password and a check code;
the first verification module is used for verifying the check code according to a preset check code record corresponding to the target user identifier;
the second verification module is used for verifying the login password according to the account name and a preset login password database;
and the password sending module is used for sending the decryption rule and the secret key corresponding to the script identifier to the server corresponding to the target user identifier if the check code and the login password pass verification.
In the embodiment of the invention, the script annotation corresponding to the script identifier contained in the issuing instruction is called as the target script annotation by receiving the script issuing instruction, so as to obtain the target script attribute and the provider server identifier, if the script attribute does not belong to the preset attribute set, the user receiving the script corresponding to the script identifier in the preset time period is taken as the reference user, the similarity between the target user information corresponding to the target user identifier and each piece of reference user information is calculated, whether the script issuing instruction is legal or not is determined according to the similarity, if the script issuing instruction is legal, the script corresponding to the script identifier is encrypted through the encryption rule corresponding to the script identifier, and then issued to the server corresponding to the target user identifier, so that the script is issued and used in a reasonable range, the safety of the script is ensured not to be leaked, and the management verification flow of the central server is fully and intelligently executed.
Fig. 3 is a schematic diagram of a server according to an embodiment of the present invention. As shown in fig. 3, the server 3 of this embodiment includes: a processor 30, a memory 31 and a computer program 32, such as a script issuing program, stored in said memory 31 and executable on said processor 30. The steps of the above-described respective script issuing method embodiments, such as steps 101 to 107 shown in fig. 1, are implemented when the processor 30 executes the computer program 32. Alternatively, the processor 30 may perform the functions of the modules/units of the apparatus embodiments described above, such as the functions of the units 201 to 205 shown in fig. 2, when executing the computer program 32.
Illustratively, the computer program 32 may be partitioned into one or more modules/units that are stored in the memory 31 and executed by the processor 30 to complete the present invention. The one or more modules/units may be a series of computer program instruction segments capable of performing the specified functions, which instruction segments are used to describe the execution of the computer program 32 in the server 3.
The server 3 may be a computing device such as a desktop computer, a notebook computer, a palm computer, a cloud server, etc. The server may include, but is not limited to, a processor 30, a memory 31. It will be appreciated by those skilled in the art that fig. 3 is merely an example of the server 3 and does not constitute a limitation of the server 3, and may include more or fewer components than shown, or may combine certain components, or different components, e.g., the server may further include input-output devices, network access devices, buses, etc.
The processor 30 may be a central processing unit (Central Processing Unit, CPU), other general purpose processors, digital signal processors (Digital Signal Processor, DSP), application specific integrated circuits (Application Specific Integrated Circuit, ASIC), off-the-shelf programmable gate arrays (Field-Programmable Gate Array, FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, or the like. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
The memory 31 may be an internal storage unit of the server 3, such as a hard disk or a memory of the server 3. The memory 31 may be an external storage device of the server 3, such as a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card) or the like, which are provided on the server 3. Further, the memory 31 may also include both an internal storage unit and an external storage device of the server 3. The memory 31 is used for storing the computer program as well as other programs and data required by the server. The memory 31 may also be used for temporarily storing data that has been output or is to be output.
It will be apparent to those skilled in the art that, for convenience and brevity of description, only the above-described division of the functional units and modules is illustrated, and in practical application, the above-described functional distribution may be performed by different functional units and modules according to needs, i.e. the internal structure of the apparatus is divided into different functional units or modules to perform all or part of the above-described functions. The functional units and modules in the embodiment may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit, where the integrated units may be implemented in a form of hardware or a form of a software functional unit. In addition, specific names of the functional units and modules are only for convenience of distinguishing from each other, and are not used for limiting the protection scope of the present application. The specific working process of the units and modules in the above system may refer to the corresponding process in the foregoing method embodiment, which is not described herein again.
In the foregoing embodiments, the descriptions of the embodiments are emphasized, and in part, not described or illustrated in any particular embodiment, reference is made to the related descriptions of other embodiments.
The units described as separate units may or may not be physically separate, and units shown as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
The integrated modules/units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer readable storage medium. Based on such understanding, the present invention may implement all or part of the flow of the method of the above embodiment, or may be implemented by a computer program to instruct related hardware, where the computer program may be stored in a computer readable storage medium.
The above embodiments are only for illustrating the technical solution of the present invention, and not for limiting the same; although the invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present invention, and are intended to be included in the scope of the present invention.
Claims (8)
1. The script issuing method is characterized by comprising the following steps:
receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier;
invoking script annotation corresponding to the script identifier as target script annotation, wherein the target script annotation comprises target script attribute and provider server identifier;
if the target script attribute belongs to a preset attribute set, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; the preset attribute set is a security requirement height attribute set;
if the script attribute does not belong to the preset attribute set, taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling target user information corresponding to the target user identifier and reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity;
if the script issuing instruction is legal, encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier, and then issuing the script to the server corresponding to the target user identifier;
the determining whether the script issuing instruction is legal according to the similarity comprises the following steps:
calculating the average value of the similarity between the target user information and each piece of reference user information, and taking the average value as a similar average value;
if the similarity average value is larger than a preset similarity threshold value, judging that the script issuing instruction is legal;
and if the similarity average value is not greater than a preset similarity threshold value, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier.
2. The method for issuing a script according to claim 1, further comprising, before said receiving a script issuing instruction:
after receiving the script uploaded by the server and script annotation and script identification corresponding to the script, taking the latest received script as a selected script;
if the script identification of the selected script exists in the central server, replacing the script which corresponds to the script identification of the selected script and exists in the central server with the selected script;
and if the script identification of the selected script does not exist in the central server, but the similarity between the script annotation of the selected script and one of the script annotations existing in the central server is greater than a preset annotation similarity threshold, adding codes in the selected script into the script corresponding to the stored script annotation of the central server.
3. The script issuing method according to claim 1, wherein the calculating the similarity between the target user information and each of the reference user information includes:
converting the target user information into a target user matrix, and converting each piece of reference user information into each piece of reference user matrix respectively;
by the formula:calculating the similarity between the target user information and each piece of reference user information, wherein the V j A reference user matrix for reference user j, where X is a target user matrix and n is the V j The number of elements of said X; s is S j And the similarity between the target user information and each piece of reference user information is obtained.
4. The method for issuing a script according to claim 1, further comprising, after the receiving a script issuing instruction:
receiving login information corresponding to the target user identifier, wherein the login information comprises an account name and a combined password;
splitting the combined password according to a preset combination rule to obtain a login password and a check code;
verifying the check code according to a preset check code record corresponding to the target user identifier;
verifying the login password according to the account name and a preset login password database;
and if the check code and the login password pass verification, transmitting a decryption rule and a secret key corresponding to the script identifier to a server corresponding to the target user identifier.
5. A server comprising a memory and a processor, said memory storing a computer program executable on said processor, characterized in that said processor, when executing said computer program, performs the steps of:
receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier;
invoking script annotation corresponding to the script identifier as target script annotation, wherein the target script annotation comprises target script attribute and provider server identifier;
if the target script attribute belongs to a preset attribute set, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; the preset attribute set is a security requirement height attribute set;
if the script attribute does not belong to the preset attribute set, taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling target user information corresponding to the target user identifier and reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity;
if the script issuing instruction is legal, encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier, and then issuing the script to the server corresponding to the target user identifier;
the determining whether the script issuing instruction is legal according to the similarity comprises the following steps:
calculating the average value of the similarity between the target user information and each piece of reference user information, and taking the average value as a similar average value;
if the similarity average value is larger than a preset similarity threshold value, judging that the script issuing instruction is legal;
and if the similarity average value is not greater than a preset similarity threshold value, sending a issuing request to a server corresponding to the provider server identifier, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier.
6. The server of claim 5, further comprising, after the receiving the script issuing the command:
receiving login information corresponding to the target user identifier, wherein the login information comprises an account name and a combined password;
splitting the combined password according to a preset combination rule to obtain a login password and a check code;
verifying the check code according to a preset check code record corresponding to the target user identifier;
verifying the login password according to the account name and a preset login password database;
and if the check code and the login password pass verification, transmitting a decryption rule and a secret key corresponding to the script identifier to a server corresponding to the target user identifier.
7. A script issuing device, characterized in that the device comprises:
the receiving module is used for receiving a script issuing instruction, wherein the script issuing instruction comprises a script identifier and a target user identifier;
the calling module is used for calling the script annotation corresponding to the script identifier as a target script annotation, wherein the target script annotation comprises a target script attribute and a provider server identifier;
the request module is used for sending a issuing request to a server corresponding to the provider server identifier if the target script attribute belongs to a preset attribute set, and determining whether the script issuing instruction is legal or not according to reply information returned by the server corresponding to the provider server identifier; the preset attribute set is a security requirement height attribute set;
the calculation module is used for taking the user which receives the script corresponding to the script identifier in a preset time period as a reference user, calling the target user information corresponding to the target user identifier and the reference user information of the reference user, calculating the similarity between the target user information and each piece of reference user information, and determining whether the script issuing instruction is legal or not according to the similarity if the script attribute does not belong to the preset attribute set;
the sending module is used for sending the script corresponding to the script identifier to the server corresponding to the target user identifier after encrypting the script corresponding to the script identifier through the encryption rule and the key corresponding to the script identifier if the script issuing instruction is legal;
the computing module further includes:
the calculating sub-module is used for calculating the average value of the similarity between the target user information and each piece of reference user information to be used as a similar average value;
the first execution sub-module is used for judging that the script issuing instruction is legal if the similarity average value is larger than a preset similarity threshold value;
and the second execution sub-module is used for sending a issuing request to the server corresponding to the provider server identifier if the similarity average value is not greater than a preset similarity threshold value, and determining whether the script issuing instruction is legal or not according to the reply information returned by the server corresponding to the provider server identifier.
8. A computer readable storage medium storing a computer program, characterized in that the computer program when executed by a processor implements the steps of the method according to any one of claims 1 to 4.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910008355.8A CN109902493B (en) | 2019-01-04 | 2019-01-04 | Script issuing method and server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910008355.8A CN109902493B (en) | 2019-01-04 | 2019-01-04 | Script issuing method and server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109902493A CN109902493A (en) | 2019-06-18 |
| CN109902493B true CN109902493B (en) | 2023-12-22 |
Family
ID=66943549
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910008355.8A Active CN109902493B (en) | 2019-01-04 | 2019-01-04 | Script issuing method and server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109902493B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112214205B (en) * | 2020-10-10 | 2023-09-26 | 中国平安人寿保险股份有限公司 | Method, device, equipment and storage medium for setting menu path |
| CN112948773B (en) * | 2021-02-07 | 2024-05-24 | 深圳市大梦龙途文化传播有限公司 | Script encryption and decryption method, terminal equipment and readable storage medium |
| CN113709513B (en) * | 2021-08-30 | 2023-03-10 | 广州方硅信息技术有限公司 | Equipment fingerprint processing method, user side, server, system and storage medium |
| CN115150191B (en) * | 2022-07-29 | 2024-06-14 | 郑州浪潮数据技术有限公司 | Cross-region cloud management platform information interaction method and related components |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPH11212850A (en) * | 1998-01-29 | 1999-08-06 | Hitachi Ltd | Encipherment common file transmission and reception system |
| CN105471812A (en) * | 2014-06-20 | 2016-04-06 | 北京奇虎科技有限公司 | Method and system for acquiring network video resource |
| CN107517179A (en) * | 2016-06-15 | 2017-12-26 | 阿里巴巴集团控股有限公司 | A kind of method for authenticating, device and system |
| CN107871266A (en) * | 2016-09-28 | 2018-04-03 | 菜鸟智能物流控股有限公司 | Method for acquiring interactive certificate and related device |
| CN108009439A (en) * | 2016-11-28 | 2018-05-08 | 北京车和家信息技术有限责任公司 | The method, apparatus and system of resource request |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| ES2857674T3 (en) * | 2014-11-24 | 2021-09-29 | Idemia France | Implicit file creation in APDU scripts |
-
2019
- 2019-01-04 CN CN201910008355.8A patent/CN109902493B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPH11212850A (en) * | 1998-01-29 | 1999-08-06 | Hitachi Ltd | Encipherment common file transmission and reception system |
| CN105471812A (en) * | 2014-06-20 | 2016-04-06 | 北京奇虎科技有限公司 | Method and system for acquiring network video resource |
| CN107517179A (en) * | 2016-06-15 | 2017-12-26 | 阿里巴巴集团控股有限公司 | A kind of method for authenticating, device and system |
| CN107871266A (en) * | 2016-09-28 | 2018-04-03 | 菜鸟智能物流控股有限公司 | Method for acquiring interactive certificate and related device |
| CN108009439A (en) * | 2016-11-28 | 2018-05-08 | 北京车和家信息技术有限责任公司 | The method, apparatus and system of resource request |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109902493A (en) | 2019-06-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109902493B (en) | Script issuing method and server | |
| CN108734028B (en) | Data management method based on block chain, block chain link point and storage medium | |
| TW201947446A (en) | Blockchain-based information supervision method and device | |
| CN112100460B (en) | Block chain-based network page evidence storing method, device, medium and electronic equipment | |
| US20180196875A1 (en) | Determining repeat website users via browser uniqueness tracking | |
| CN111563016B (en) | Log collection and analysis method and device, computer system and readable storage medium | |
| US10902132B2 (en) | Private verification for FPGA bitstreams | |
| CN110932859B (en) | User information processing method, device and equipment and readable storage medium | |
| CN111767095A (en) | Micro-service generation method and device, terminal equipment and storage medium | |
| CN110784450A (en) | Single sign-on method and device based on browser | |
| CN111694749A (en) | Automatic interface testing method and device, computer equipment and readable storage medium | |
| CN111914029A (en) | Block chain-based medical data calling method and device, electronic equipment and medium | |
| CN113438134B (en) | Request message processing method, device, server and medium | |
| CN112417178B (en) | Document template definition-based on-chain contract processing method and device and electronic equipment | |
| CN113472883A (en) | Method, device and equipment for storing data based on block chain and storage medium | |
| CN110324416B (en) | Download path tracking method, device, server, terminal and medium | |
| US20180227288A1 (en) | Password security | |
| US11575499B2 (en) | Self auditing blockchain | |
| CN109241163B (en) | Electronic certificate generation method and terminal equipment | |
| CN111488095A (en) | User login management method and device | |
| CN110381114B (en) | Interface request parameter processing method and device, terminal equipment and medium | |
| CN112685077A (en) | Data modification method, system, computer device and computer readable storage medium | |
| CN114625407A (en) | Method, system, equipment and storage medium for implementing AB experiment | |
| CN112667638A (en) | Dynamic report generation method and device, terminal equipment and readable storage medium | |
| CN112580307A (en) | Multi-data source access method, device, system and readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |