CN112597256A - Method and related device for realizing unified management of big data platform users - Google Patents
Method and related device for realizing unified management of big data platform users Download PDFInfo
- Publication number
- CN112597256A CN112597256A CN202011495084.2A CN202011495084A CN112597256A CN 112597256 A CN112597256 A CN 112597256A CN 202011495084 A CN202011495084 A CN 202011495084A CN 112597256 A CN112597256 A CN 112597256A
- Authority
- CN
- China
- Prior art keywords
- big data
- user information
- data platform
- host system
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 60
- 238000013507 mapping Methods 0.000 claims abstract description 34
- 230000008569 process Effects 0.000 claims abstract description 31
- 238000012544 monitoring process Methods 0.000 claims description 27
- 238000012545 processing Methods 0.000 claims description 9
- 230000004044 response Effects 0.000 claims description 8
- 238000012423 maintenance Methods 0.000 abstract description 5
- 238000007726 management method Methods 0.000 description 46
- 230000006870 function Effects 0.000 description 7
- 238000013475 authorization Methods 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000012217 deletion Methods 0.000 description 2
- 230000037430 deletion Effects 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 238000007792 addition Methods 0.000 description 1
- 238000012550 audit Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000036541 health Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/28—Databases characterised by their database models, e.g. relational or object models
- G06F16/283—Multi-dimensional databases or data warehouses, e.g. MOLAP or ROLAP
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/24—Querying
- G06F16/245—Query processing
- G06F16/2455—Query execution
- G06F16/24552—Database cache management
Landscapes
- Engineering & Computer Science (AREA)
- Databases & Information Systems (AREA)
- Theoretical Computer Science (AREA)
- Data Mining & Analysis (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Computational Linguistics (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The embodiment of the application discloses a method and a related device for realizing unified management of users of a big data platform, users do not need to be created on a corresponding host of a service, the user management flow is simplified, and the maintenance difficulty of the users is reduced. The application includes: storing user information into an LDAP database through a big data security control platform; caching the user information in the LDAP database to a big data platform host system through an SSSD service process; and mapping corresponding users according to the user information cached by the host system of the big data platform.
Description
Technical Field
The embodiment of the application relates to the field of data processing, in particular to a method and a related device for realizing unified management of users of a big data platform.
Background
The big data platform bears various scene service systems, and different service tenants need different accounts to log in and use the big data platform.
In the prior art, tenant creation, resource authority allocation and the like all depend on a host operating system side user, under a multi-tenant environment, a large data platform needs to create, update or delete a system user under a service corresponding host, and if a kerberos authentication function is integrated, according to a yann Container security mechanism, after each data node has to create a tenant corresponding system user, a Container operation and a task can be started, so that the maintenance difficulty of the user is gradually increased along with the increase of the tenants.
Disclosure of Invention
The application provides a method and a related device for realizing unified management of users of a big data platform, users do not need to be created on a corresponding host of a service, user management procedures are simplified, and maintenance difficulty of the users is reduced.
A first aspect of an embodiment of the present application provides a method for implementing unified management of users on a big data platform, including:
storing user information into an LDAP database through a big data security control platform;
caching the user information in the LDAP database to a big data platform host system through an SSSD service process;
and mapping corresponding users according to the user information cached by the host system of the big data platform.
Optionally, before the caching the user information in the LDAP database to a large data platform host system through an SSSD service process, the method further includes:
and carrying out load balancing processing on the LDAP database through a Haproxy load balancer.
Optionally, the load balancing processing on the LDAP database by the Haproxy load balancer includes:
setting two monitoring ports through the Haproxy load balancer, wherein the monitoring ports comprise a read monitoring port and a write monitoring port and are used for checking whether corresponding service responses are healthy or not;
and forwarding a request sent by the big data security management and control platform to a monitoring port corresponding to the Haproxy load balancer to execute read-write operation so as to realize load balancing processing of the request.
Optionally, before the caching the user information in the LDAP database to a large data platform host system through an SSSD service process, the method further includes:
inquiring whether the user information exists in the big data platform host system or not, if so, keeping the user information in the big data platform host system unchanged;
if not, caching the user information into the big data platform host system through the SSSD service process.
Optionally, the mapping, according to the user information cached by the big data platform host system, a corresponding user includes:
querying the user information cached in the big data platform host system;
and mapping the user corresponding to the user information through the SSSD service process.
Optionally, the storing the user information into the LDAP database through the big data security management and control platform includes:
and storing user information created, updated or deleted by a user and/or a group into the LDAP database through a user management module of the big data security management and control platform.
A second aspect of the embodiments of the present application provides an apparatus for implementing unified management of users on a big data platform, including:
the storage unit is used for storing the user information into an LDAP database through a big data security control platform;
the first caching unit is used for caching the user information in the LDAP database to a large data platform host system through an SSSD service process;
and the mapping unit is used for mapping the corresponding user according to the user information cached by the host system of the big data platform.
Optionally, the apparatus further comprises:
and the load balancing unit is used for carrying out load balancing on the LDAP database through a Haproxy load balancer.
Optionally, the load balancing unit includes:
the setting module is used for setting two monitoring ports through the Haproxy load balancer, wherein the monitoring ports comprise a read monitoring port and a write monitoring port and are used for checking whether corresponding service responses are healthy or not;
and the forwarding module is used for forwarding the request sent by the big data security control platform to a monitoring port corresponding to the Haproxy load balancer to execute read-write operation so as to realize load balancing of the request.
Optionally, the apparatus further comprises:
the query unit is used for querying whether the user information exists in the big data platform host system or not;
the maintaining unit is used for maintaining the user information in the large data platform host system unchanged after the inquiring unit inquires that the user information exists;
and the second caching unit is used for caching the user information into the large data platform host system through the SSSD service process after the inquiry unit inquires that the user information is not stored.
A third aspect of the embodiments of the present application provides an apparatus for implementing unified management of users on a big data platform, including:
the device comprises a processor, a memory, an input and output unit and a bus;
the processor is connected with the memory, the input and output unit and the bus;
the processor performs the following operations:
storing user information into an LDAP database through a big data security control platform;
caching the user information in the LDAP database to a big data platform host system through an SSSD service process;
and mapping corresponding users according to the user information cached by the host system of the big data platform.
An embodiment of the present application provides a computer-readable storage medium, where a program is stored on the computer-readable storage medium, and when the program is executed on a computer, the method for implementing unified management of users of a big data platform in any of the above first aspects is executed.
According to the technical scheme, the embodiment of the application has the following advantages:
in the invention, the user information is stored into the LDAP database through the big data security management and control platform, and then the user information is cached to the big data platform host system through the SSSD service process, so that the big data platform host system can directly map the corresponding user according to the user information.
Drawings
Fig. 1 is a schematic flowchart of an embodiment of a method for implementing unified management of users of a big data platform in an embodiment of the present application;
fig. 2 is a schematic flowchart of another embodiment of a method for implementing unified management of users of a big data platform according to an embodiment of the present application;
FIG. 3 is a flowchart illustrating an embodiment of an apparatus for implementing unified management of users of a big data platform according to the present application;
FIG. 4 is a schematic flowchart of another embodiment of an apparatus for implementing unified management of users of a big data platform according to an embodiment of the present application;
fig. 5 is a schematic flowchart of another embodiment of an apparatus for implementing unified management of a big data platform user in this embodiment of the present application.
Detailed Description
In order to make those skilled in the art better understand the technical solution of the present invention, the technical solution in the embodiment of the present invention will be clearly and completely described below with reference to the drawings in the embodiment of the present invention, and it is obvious that the described embodiment is only a part of the embodiment of the present invention, and not all embodiments. All other embodiments, which can be obtained by a person skilled in the art without any inventive step based on the embodiments of the present invention, shall fall within the scope of the present invention.
The application provides a method and a related device for realizing unified management of users of a big data platform, users do not need to be created on a corresponding host of a service, user management procedures are simplified, and maintenance difficulty of the users is reduced.
Referring to fig. 1, an embodiment of the present application provides a method for implementing unified management of a big data platform user, including:
101. storing user information into an LDAP database through a big data security control platform;
it should be noted that, in the present application, the big data security management and control platform refers to a hadoop big data platform, and the security mechanism of the hadoop big data platform includes two aspects, one is identity authentication, i.e. a user needs to provide own identity proof when using the big data platform, and can enter the big data platform if the proof is valid, or else, the user refuses to enter the big data platform; the other is authorization management, and after the user identity authentication passes, the usage right of the user needs to be defined, that is, what component the user can use in the big data platform, what resources can be obtained, and what operation can be performed on the resources can be managed.
LDAP is an abbreviation of Lightweight Directory Access Protocol (LDAP), which is commonly referred to as OpenLDAP. LDAP provides and implements an information service for directory services, which is a specialized distributed database optimized for queries, browsing, and searches. For example, if the number of machine accounts is too large, for example, up to 1000, it is difficult to manage a series of operations such as creation, recovery, authority allocation, password policy, account security audit, etc. of the accounts, at this time, the centralized maintenance and management of the accounts can be realized by the OpenLDAP server, only the managed machine needs to be added to the server, and a series of operations such as addition, deletion, modification, and authority assignment of the accounts only need to be performed at the server, and no separate operation needs to be performed at the client machine. The account and the password of the client are verified through the OpenLDAP server, so that centralized authentication management of the account is realized, and at the moment, an account administrator only needs to maintain the entry of the OpenLDAP server.
In addition, in the embodiment of the present application, the user information stored in the LDAP database includes information such as a user name, a user password, a group to which the user belongs, and a service type, and the specific application is not limited.
102. Caching the user information in the LDAP database to a big data platform host system through an SSSD service process;
it should be noted that, in the present application, an SSSD service process refers to a daemon process that can be used to access various authentication servers, such as LDAP, Kerberos, and the like, and provide authorization.
The SSSD service process is a process between a local user and a data storage, and a local client is firstly connected with the SSSD and then contacts an external resource provider (a remote authentication server) through the SSSD. In the embodiment of the application, the SSSD is connected with the LADP server, the user information stored in the LADP server is cached to the client of the large data platform host system, a large amount of connection of each local client program (the large data platform host system) to a remote authentication server (such as the LADP server) is avoided, all local programs only contact the SSSD, and the SSSD is connected with the remote authentication server or the SSSD cache, so that the load is effectively reduced. In addition, the SSSD service also allows for offline authorization, i.e., the SSSD may cache the user authentication identity of the remote authentication server, which allows the user to continue to be successfully authorized to access the necessary resources while the remote authentication server is down.
103. And mapping corresponding users according to the user information cached by the host system of the big data platform.
It should be noted that, in the embodiment of the present application, the mapping is a username mapping, that is, the username mapping serves as a "clearinghouse" for providing a centralized user mapping service for the client and the server. Using username mappings can create mappings between Windows and UNIX users and group accounts, even though the usernames and group names in the two environments may not be the same; one-to-many mapping is also possible, for example, if separate UNIX accounts need not be maintained for each user, and it is more desirable to provide different levels of access rights using fewer accounts.
In the embodiment of the application, the user name mapping regularly refreshes the mapping database from the source database (LADP database), so that the mapping database (large data platform host system) is ensured to be kept up to date when the Windows and UNIX namespaces are changed, and the mapping database can be refreshed at any time when the source database is known to be changed. In addition, user name mapping data can be backed up and restored at any time.
In the embodiment of the application, the user information is stored into the LDAP database through the big data security management and control platform, and then the user information is cached to the big data platform host system through the SSSD service process, so that the big data platform host system can directly map the corresponding user according to the user information.
The method for implementing unified management of users on a big data platform is described in general above, and a detailed description will be given below.
Referring to fig. 2, another embodiment of the method for implementing unified management of users on a big data platform in the embodiment of the present application includes:
201. storing user information of user and/or group creation, update or deletion into the LDAP database through a user management module of the big data security control platform;
it should be noted that, in the embodiment of the present application, the big data security management and control platform is divided into a plurality of modules, where the user management module is used to create a tenant, set an authority, perform lease management, and the like, write information of the tenant, such as user information of a tenant name, a password, and the like, into the big data security management and control platform, and then store the user information into the LDAP database.
202. Carrying out load balancing processing on the LDAP database through a Haproxy load balancer;
it should be noted that, software load balancing is generally implemented in two ways, one is implemented based on soft load of the operating system, and the other is implemented based on soft load of a third-party application, where HAProxy is implemented based on soft load of the third-party application.
HAProxy supports two main proxy modes, layer 4 mode and layer 7 mode. As used herein, a layer 7 mode is a mode in which the HAProxy analyzes the protocol and can control the protocol by allowing, denying, exchanging, adding, modifying, or deleting the content specified in the request or response.
In addition, it should be noted that Haproxy is only an application agent for load balancing, and cannot provide web services by itself, but the Haproxy is simple in configuration, has a server health check function and a system state monitoring page, and when a backend server of the agent fails, the Haproxy automatically removes the server, and automatically adds the server after the failure is recovered.
When the Haproxy load balancer receives a request from a client, an optimal back-end server is selected through a set load balancing algorithm, a target IP address in the request is modified into a back-end server IP, and the back-end server IP is directly forwarded to the back-end server, so that a load balancing request is completed. In short, a TCP connection is established directly between the client and the server, and the load balancer performs only a router-like forwarding action.
In the embodiment of the application, two monitoring ports are set through a Haproxy load balancer, the monitoring ports comprise a read monitoring port and a write monitoring port and are used for checking whether corresponding service responses are healthy or not, and if the monitoring ports respond normally, a client (a big data security management and control platform) can forward a request to the happroxy to the corresponding monitoring port to execute read-write operation so as to realize load balancing processing of the request. One port is configured with 2 main nodes for write operation; one port configures all 3 slave nodes for read operations.
203. Inquiring whether the user information exists in the big data platform host system or not;
in the embodiment of the present application, when mapping a user, it is required to first query whether user information corresponding to the user is already stored in the big data platform host system, and whether the user information is consistent, if the user information is already stored, execute step 204; if the user information does not exist, step 205 is executed.
204. Keeping user information in the big data platform host system unchanged;
it should be noted that, in the embodiment of the present application, the user information is cached synchronously from the latest user information stored in the LDAP database through the SSSD service.
Furthermore, after step 204 is executed, step 206 is executed directly.
205. Caching the user information in the LDAP database to a big data platform host system through an SSSD service process;
step 205 in this embodiment is similar to step 102 in the previous embodiment, and is not repeated here.
206. Querying the user information cached in the big data platform host system;
it should be noted that, to be mapped with the corresponding user, the content of the user information, such as the user name, the user IP address, etc., is confirmed first, so as to determine the corresponding user.
207. And mapping the user corresponding to the user information through the SSSD service process.
The mapping manner in step 205 in this embodiment is similar to the mapping manner in step 103 in the previous embodiment, and is not described here again.
In the embodiment of the application, a user unified management model is constructed by uniformly storing and managing the mapping relation of users/groups, so that the user management process of the big data platform is simplified, a host user is not established/updated/deleted in a cluster, the user cannot log in a host in the cluster on the host level, and the safety of the big data platform is improved; meanwhile, the data is processed by using the haproxy load balancer, so that the response speed of the server is improved, the problem of network congestion is solved, and the effect of high-quality network access is achieved.
The above describes a method for implementing unified management of users on a big data platform, and the following describes a device for implementing unified management of users on a big data platform:
referring to fig. 3, an embodiment of an apparatus for implementing unified management of a big data platform user in the embodiment of the present application includes:
the storage unit 301 is used for storing the user information into the LDAP database through the big data security control platform;
a first caching unit 302, configured to cache the user information in the LDAP database to a big data platform host system through an SSSD service process;
a mapping unit 303, configured to map a corresponding user according to the user information cached by the big data platform host system.
In this embodiment, the functions of each unit of the device for implementing unified management of a big data platform user correspond to the steps in the embodiment shown in fig. 1, and are not described herein again.
In the embodiment of the present application, the storage unit 301 stores the user information into the LDAP database, and the first cache unit 302 caches the user information to the big data platform host system, so that the big data platform host system can directly map the corresponding user through the mapping unit 303 according to the user information.
The functions of the units of the device for implementing unified management of the big data platform users are described in general, and the functions of the units of the device for implementing unified management of the big data platform users are described in detail below.
Referring to fig. 4, in the embodiment of the present application, another embodiment of a device for implementing unified management of a big data platform user includes:
the storage unit 401 is used for storing the user information into an LDAP database through the big data security management and control platform;
a load balancing unit 402, configured to perform load balancing on the LDAP database through a Haproxy load balancer;
an inquiring unit 403, configured to inquire whether the user information already exists in the big data platform host system;
a holding unit 404, configured to keep the user information in the big data platform host system unchanged after the querying unit queries that the user information already exists;
a second caching unit 405, configured to cache the user information in the big data platform host system through the SSSD service process after the querying unit queries that the user information is not stored;
a mapping unit 406, configured to map a corresponding user according to the user information cached by the host system of the big data platform.
In this embodiment of the application, the load balancing unit 402 may further include:
a setting module 4021, configured to set two listening ports through the Haproxy load balancer, where the listening ports include a read listening port and a write listening port, and are used to check whether a corresponding service response is healthy;
a forwarding module 4022, configured to forward the request sent by the big data security management and control platform to a monitor port corresponding to the Haproxy load balancer to execute a read-write operation, so as to implement load balancing of the request.
In the embodiment of the present application, the functions of each unit module correspond to the steps in the embodiments shown in fig. 1 to fig. 2, and are not described herein again.
Referring to fig. 5, another embodiment of the apparatus for implementing unified management of big data platform users in the embodiment of the present application includes:
a processor 501, a memory 502, an input-output unit 503, and a bus 504;
the processor 501 is connected with the memory 502, the input/output unit 503 and the bus 504;
the processor 501 performs the following operations:
storing user information into an LDAP database through a big data security control platform;
caching the user information in the LDAP database to a big data platform host system through an SSSD service process;
and mapping corresponding users according to the user information cached by the host system of the big data platform.
In this embodiment, the functions of the processor 501 correspond to the steps in the embodiment shown in fig. 1, and are not described herein again.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the several embodiments provided in the present application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present application may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present application may be substantially implemented or contributed to by the prior art, or all or part of the technical solution may be embodied in a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a read-only memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and the like.
Claims (10)
1. A method for realizing unified management of big data platform users is characterized by comprising the following steps:
storing user information into an LDAP database through a big data security control platform;
caching the user information in the LDAP database to a big data platform host system through an SSSD service process;
and mapping corresponding users according to the user information cached by the host system of the big data platform.
2. The method of claim 1, wherein prior to said caching of said user information in said LDAP database to a big data platform host system by an SSSD service process, said method further comprises:
and carrying out load balancing processing on the LDAP database through a Haproxy load balancer.
3. The method of claim 2, wherein the load balancing the LDAP database by a Haproxy load balancer comprises:
setting two monitoring ports through the Haproxy load balancer, wherein the monitoring ports comprise a read monitoring port and a write monitoring port and are used for checking whether corresponding service responses are healthy or not;
and forwarding a request sent by the big data security management and control platform to a monitoring port corresponding to the Haproxy load balancer to execute read-write operation so as to realize load balancing processing of the request.
4. The method of claim 1, wherein prior to said caching of said user information in said LDAP database to a big data platform host system by an SSSD service process, said method further comprises:
inquiring whether the user information exists in the big data platform host system or not, if so, keeping the user information in the big data platform host system unchanged;
if not, caching the user information into the big data platform host system through the SSSD service process.
5. The method of claim 1, wherein mapping the corresponding user according to the user information cached by the big data platform host system comprises:
querying the user information cached in the big data platform host system;
and mapping the user corresponding to the user information through the SSSD service process.
6. The method according to any one of claims 1 to 5, wherein the storing the user information into the LDAP database through the big data security management and control platform comprises:
and storing user information created, updated or deleted by a user and/or a group into the LDAP database through a user management module of the big data security management and control platform.
7. An apparatus for implementing unified management of big data platform users, comprising:
the storage unit is used for storing the user information into an LDAP database through a big data security control platform;
the first caching unit is used for caching the user information in the LDAP database to a large data platform host system through an SSSD service process;
and the mapping unit is used for mapping the corresponding user according to the user information cached by the host system of the big data platform.
8. The apparatus of claim 7, further comprising:
and the load balancing unit is used for carrying out load balancing on the LDAP database through a Haproxy load balancer.
9. The apparatus of claim 8, wherein the load balancing unit comprises:
the setting module is used for setting two monitoring ports through the Haproxy load balancer, wherein the monitoring ports comprise a read monitoring port and a write monitoring port and are used for checking whether corresponding service responses are healthy or not;
and the forwarding module is used for forwarding the request sent by the big data security control platform to a monitoring port corresponding to the Haproxy load balancer to execute read-write operation so as to realize load balancing of the request.
10. The apparatus of claim 7, further comprising:
the query unit is used for querying whether the user information exists in the big data platform host system or not;
the maintaining unit is used for maintaining the user information in the large data platform host system unchanged after the inquiring unit inquires that the user information exists;
and the second caching unit is used for caching the user information into the large data platform host system through the SSSD service process after the inquiry unit inquires that the user information is not stored.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011495084.2A CN112597256A (en) | 2020-12-17 | 2020-12-17 | Method and related device for realizing unified management of big data platform users |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011495084.2A CN112597256A (en) | 2020-12-17 | 2020-12-17 | Method and related device for realizing unified management of big data platform users |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112597256A true CN112597256A (en) | 2021-04-02 |
Family
ID=75196951
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011495084.2A Pending CN112597256A (en) | 2020-12-17 | 2020-12-17 | Method and related device for realizing unified management of big data platform users |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112597256A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114281434A (en) * | 2021-12-15 | 2022-04-05 | 创优数字科技(广东)有限公司 | Applet user information management method, device, computer equipment and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105656903A (en) * | 2016-01-15 | 2016-06-08 | 国家计算机网络与信息安全管理中心 | Hive platform user safety management system and application |
| CN106301791A (en) * | 2016-08-23 | 2017-01-04 | 浪潮电子信息产业股份有限公司 | Method and system for realizing unified user authentication authorization based on big data platform |
| CN108377200A (en) * | 2018-01-19 | 2018-08-07 | 北京大学 | Cloud user management method and system based on LDAP and SLURM |
| CN109617966A (en) * | 2018-12-14 | 2019-04-12 | 武汉烽火信息集成技术有限公司 | A kind of cloud pipe Platform deployment system and method based on Openstack |
-
2020
- 2020-12-17 CN CN202011495084.2A patent/CN112597256A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105656903A (en) * | 2016-01-15 | 2016-06-08 | 国家计算机网络与信息安全管理中心 | Hive platform user safety management system and application |
| CN106301791A (en) * | 2016-08-23 | 2017-01-04 | 浪潮电子信息产业股份有限公司 | Method and system for realizing unified user authentication authorization based on big data platform |
| CN108377200A (en) * | 2018-01-19 | 2018-08-07 | 北京大学 | Cloud user management method and system based on LDAP and SLURM |
| CN109617966A (en) * | 2018-12-14 | 2019-04-12 | 武汉烽火信息集成技术有限公司 | A kind of cloud pipe Platform deployment system and method based on Openstack |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114281434A (en) * | 2021-12-15 | 2022-04-05 | 创优数字科技(广东)有限公司 | Applet user information management method, device, computer equipment and storage medium |
| CN114281434B (en) * | 2021-12-15 | 2022-11-29 | 创优数字科技(广东)有限公司 | Applet user information management method, apparatus, computer device and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2022126968A1 (en) | Micro-service access method, apparatus and device, and storage medium | |
| US10505929B2 (en) | Management and authentication in hosted directory service | |
| US7600230B2 (en) | System and method for managing security meta-data in a reverse proxy | |
| EP1521419B1 (en) | Techniques for securing electronic identities | |
| KR101570892B1 (en) | Method and system of using a local hosted cache and cryptographic hash functions to reduce network traffic | |
| US9641503B2 (en) | Using credentials stored in different directories to access a common endpoint | |
| US8484242B1 (en) | Method and system for transparent database connection pooling and query queuing | |
| JP4699768B2 (en) | Storage system that distributes access load | |
| US8739255B2 (en) | Replicating selected secrets to local domain controllers | |
| US10042916B2 (en) | System and method for storing data in clusters located remotely from each other | |
| US20060026286A1 (en) | System and method for managing user session meta-data in a reverse proxy | |
| EP1738282B1 (en) | Maintaining data integrity in a distributed environment | |
| CN106844111B (en) | Access method of cloud storage network file system | |
| CN112035215A (en) | Node autonomous method, system and device of node cluster and electronic equipment | |
| CA2251150A1 (en) | Distributed system and method for providing sql access to management information in a secure distributed network | |
| WO2021115231A1 (en) | Authentication method and related device | |
| JP7143434B2 (en) | Data caching for cloud services | |
| US9635024B2 (en) | Methods for facilitating improved user authentication using persistent data and devices thereof | |
| US9015790B2 (en) | Integrating sudo rules with entities represented in an LDAP directory | |
| US20090158047A1 (en) | High performance secure caching in the mid-tier | |
| CN112597256A (en) | Method and related device for realizing unified management of big data platform users | |
| US20230412368A1 (en) | Enabling using external tenant master keys | |
| US20070050681A1 (en) | Global user services management for system cluster | |
| CN108337225A (en) | A kind of implementation method of hadoop platform safeties interface | |
| US7577742B1 (en) | Account creation method and apparatus |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |