CN112766690A - Hybrid cloud resource management system - Google Patents
Hybrid cloud resource management system Download PDFInfo
- Publication number
- CN112766690A CN112766690A CN202110037483.2A CN202110037483A CN112766690A CN 112766690 A CN112766690 A CN 112766690A CN 202110037483 A CN202110037483 A CN 202110037483A CN 112766690 A CN112766690 A CN 112766690A
- Authority
- CN
- China
- Prior art keywords
- application
- cloud
- resources
- data
- applications
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/06—Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
- G06Q10/063—Operations research, analysis or management
- G06Q10/0631—Resource planning, allocation, distributing or scheduling for enterprises or organisations
- G06Q10/06312—Adjustment or analysis of established resource schedule, e.g. resource or task levelling, or dynamic rescheduling
Abstract
The invention discloses a hybrid cloud resource management system, which comprises: the data acquisition inlet is used for defining the acquisition range and source of data to acquire the data; the application inlet is used for initiating corresponding applications based on resources and components on the cloud of the applications, establishing association between the resources and the applications after the applications of the resources of the server on the cloud pass, establishing association between the components and the applications and application examples, establishing association between basic facilities and the applications, and warehousing data; the authority control module is used for carrying out authority control on application granularity; the log management module is used for performing log management of application granularity; and the resource management module is used for enabling a user to inquire the list and details of the resources/components on the cloud according to the corresponding authority according to the data after being put in storage. Through the technical scheme, the difficulty in collecting information by different platforms brought by the mixed cloud can be reduced, the efficiency is improved by centralized resource management, and the butt joint cost of the internal system products of the enterprise and the products on the cloud is reduced.
Description
Technical Field
The invention relates to the technical field of internet, in particular to a hybrid cloud resource management method and device.
Background
With the rise of cloud native in recent years, various cloud service manufacturers are increasing, and various cloud service products tend to be diversified, so that data of a CMDB (Configuration Management Database) is becoming more complex and Management difficulty is increasing. Therefore, a system capable of effectively and effectively managing various resources under the hybrid cloud architecture is particularly important.
Under the condition that cloud service providers have advantages and advantages, a hybrid cloud architecture becomes a necessary trend. Therefore, how to effectively manage various resources and components provided by different cloud service providers becomes a problem to be solved urgently.
Disclosure of Invention
Aiming at the problems in the related art, the invention provides a hybrid cloud resource management method and device, which can reduce the difficulty in collecting information of different platforms brought by a hybrid cloud, perform centralized management on resources to improve efficiency and reduce the cost for butting system products in an enterprise and products on the cloud.
The technical scheme of the invention is realized as follows:
according to an aspect of the present invention, there is provided a hybrid cloud resource management system including:
the data acquisition inlet is used for defining the acquisition range and source of data to acquire the data, wherein resources and components on the cloud are abstracted and defined into general data;
the application entry is used for initiating corresponding applications based on the resources and the components on the cloud of the applications, establishing association between the resources and the applications after the application of the resources of the server on the cloud passes, establishing association between the components and the applications and application examples, establishing association between basic facilities and the applications, and warehousing data;
the authority control module is used for carrying out authority control on application granularity;
the log management module is used for performing log management of application granularity, wherein an application responsible person configures the authority management and control module and performs log management on the log management module according to the configured corresponding authority; and
and the resource management module is used for enabling a user to query lists and details of resources/components on the cloud according to the data after storage according to the corresponding authority.
According to an embodiment of the invention, the data includes system, application, base image.
According to the embodiment of the invention, when a new system is applied, the service line associated with the system is determined and the service attribution of the system is determined, so that the cost accounting of resources on the cloud is carried out.
According to the embodiment of the invention, when a new application is applied, resource configurations of a system to which the application belongs, a Group (Group) to which a code warehouse belongs, a compilation command, a product deposit path, a development language and version, a type and version of middleware, a base image version, an Http port, a health check address, an associated K8S cluster and a Pod (a minimum and simplest unit which can be created and deployed, a container in which the application is packaged, and in some cases, a plurality of containers) of the K8S cluster are determined.
According to an embodiment of the invention, when a new base image is applied, a base image type, a Dockerfile, and a base image description are selected.
According to the embodiment of the invention, when a page is applied, resources and components of different cloud service providers are classified and aggregated according to types and then are selected by a user, after the application is passed, an interface provided by the cloud service provider is called to automatically complete resource allocation and component configuration, related authority is opened, and information of the resources or the components is associated with the application and data is stored in a warehouse.
According to the embodiment of the invention, after the application of the server resources on the cloud passes, the application is associated with the server instance to generate application instance data, an infrastructure white list application inlet is provided based on the application instance data, workers carry out approval according to the importance degree of the components, and the infrastructure is associated with the application and the data is put into a warehouse after the approval is finished.
According to the embodiment of the invention, the application responsible person configures common authority or production authority for the user corresponding to the application, or configures the common authority or production authority for one user by taking all applications in charge of the application responsible person as a whole, or configures the common authority or production authority of one or more application configuration users for one user in batch.
According to the embodiment of the invention, the application responsible person can view, create, modify and delete the relevant configuration of the log on the cloud of the responsible application, and the relevant configuration of the log on the cloud comprises log collection, log archiving and log restoration.
According to the embodiment of the invention, the user views all resource information stored in the CMDB, wherein the resource information comprises applications, application instances, server instance resources, database instance resources, components on the cloud, K8S clusters, physical machine resources and network resources.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings without creative efforts.
Fig. 1 is a block diagram of a hybrid cloud resource management system according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments that can be derived by one of ordinary skill in the art from the embodiments given herein are intended to be within the scope of the present invention.
Fig. 1 is a block diagram of a hybrid cloud resource management system according to an embodiment of the present invention. Referring to fig. 1, the hybrid cloud resource management system of the present invention may include a data acquisition portal for defining an acquisition scope and a source of data for data acquisition. Abstracting resources and components into data, uniformly defining, limiting the range or format of the data to the maximum extent in a system background according to the characteristics of different resources or components, and providing a standard information acquisition page at the front end of the system. The data may include system, application, base image. When applying for a new base image, a base image type, Dockerfile (for building images), and a base image description are selected.
The application portal (my application module 1-2 in fig. 1) is used to initiate a corresponding application based on the resources and components on the application cloud. And the user gradually completes the application of the resources/components from the cloud manufacturer to the resources/components and then to the specific configuration based on the system and the application in charge of the user. In the application process, the effective association between the system/application and the resource/component can be accurately obtained, and the application of the resource for the component, such as a white list, can be automatically generated according to the association information. The generated application can be automatically approved according to the actual service scene, and can also be associated with other process systems for manual review and approval.
The privilege management module (my privileges 1-3 in fig. 1) is used for privilege management of application granularity. The log management module 1-2 is configured to perform log management of application granularity, where an application principal configures the permission management module and performs log management on the log management module. The user can perform application dimension authority distribution (normal/super) based on the system/application in charge of the user; log management of application dimensions can be performed, including log collection, log archiving and log restoration; management of system/application related resources can be performed, including viewing, applying for, recycling, and the like. Resource management modules 1-6 are used to query the cloud for inventory and details of resources/components.
The hybrid cloud resource management system of the present invention may further include system interfaces 1-4. The system of the invention provides data of various dimensions collected by three functional models of data collection, resource/component application and authority/log/resource management, after being combed, integrated and put in storage, such as: the method comprises the steps of obtaining an interface of an application list which is responsible for a certain user, obtaining an interface of the certain user for application permission, obtaining an interface of the certain user for application node permission, obtaining an interface of certain application details, obtaining query interfaces of various resource lists and the like.
According to the technical scheme, various resources and components on the cloud are abstracted, defined into general data and brought into the system for unified management. The system comprises: the data acquisition inlet is used for accurately defining the acquisition range and the standard source of the data; based on the application entry of the resources/components on the cloud of the application, a user can conveniently and accurately initiate the application; the authority control module of the application granularity, the application responsible person can carry on the configuration maintenance voluntarily; the application-granularity log management module enables an application responsible person to autonomously complete the related configuration of the log on the cloud; and the resource management module can enable a user to inquire lists and details of various resources/components on the cloud according to needs.
The invention aims to enable a research and development team to independently perform inquiry, application and authority management on various resources from different cloud manufacturers in a mixed cloud scene so as to reduce the difficulty in information collection of different platforms brought by the mixed cloud, manage the resources in a centralized manner so as to improve the efficiency and reduce the butt joint cost of system products in an enterprise and products on the cloud.
With continued reference to fig. 1, prior to system commissioning, basic data initialization is performed by Admin (user) in the background management module 1-1, including service line, development language (including version), middleware type (including version), cloud vendor and its resource/component list, environment category, application type, log service blacklist, and member maintenance of management group.
The management group may include an Admin group (Admin may be abbreviated), a project management group (pmo may be abbreviated), and a system management group (sa may be abbreviated as subdivided by a self-building machine room and a cloud service manufacturer). In some embodiments, the Admin group permission is the same as Admin. According to an embodiment of the present invention, the project management group is responsible for the approval of the system/application. The system management group is responsible for maintaining the resource/component list of the self-built machine room or the cloud service manufacturer.
After the system is put into operation, all users can apply for newly building a system/application in the application module 1-2, the application process is the basic data acquisition process of the system/application, and the application process is selected according to the preset options or filling, and the applicant is the application responsible person. According to an embodiment of the present invention, upon application submission, the pending menu bar of the project management team members appears digitally marked to indicate the pending application. After the approval is passed, the corresponding system/application information is put in storage, the whole personnel can inquire the system/application information, and the responsible person can edit the system/application information. The user applies for the resources and components required by the application based on the application in charge of the user, and after the application is submitted, the digital mark appears immediately on the pending menu bar of the project management group member to prompt the pending application. And after the resource application is passed, the resources and the application immediately establish effective association, and the data is stored in a database. And after the component application passes, the component immediately establishes effective association with the application and the application example, and stores the data in a database.
According to the embodiment of the invention, a user maintains a member list of the application through the authority management modules 1-3 based on the application in charge of the user, the maintenance mainly comprises addition and deletion, and each member in the list is distributed with a proper authority aiming at each application, and the authority can comprise a common authority and a super authority.
According to the embodiment of the invention, the user can configure the collection of the logs on the cloud based on the application in charge of the user through the log management module 1-5. According to the embodiment of the invention, the user can perform the configuration of the log archiving on the cloud step by step based on the application which is responsible for the log collecting and configuring on the cloud by the log management module 1-5. Through the log management module 1-5, a user can perform configuration of log restoration on the cloud one step by one step based on the application which is responsible for the user and completes the log filing configuration on the cloud;
the resource management modules 1-6 open the query function of applications, resources and components to all users. The system interface modules 1-4 provide an external rights interface so that the user's rights (e.g., general rights or production rights) for each application can be returned according to the domain user. In an external system using the authority interface provided by the system interface module 1-4, if there is an application inconsistent with the name in the system or not present in the system, the authority management of such application is performed through a virtual application. According to the embodiment of the invention, the maintenance function of the application can be opened for the application responsible person. An approval function of the system/application may be opened to the project management group. And the maintenance functions of physical machine resources and network resources are opened for the self-built machine room system management group. And the maintenance functions of the cloud service component list and the service line are opened for the cloud service manufacturer system management group.
In fig. 1, during the whole execution cycle of the pipeline of the automated delivery platform 2, almost every operation node of each link needs to read the code warehouse address, the compiling command, the product package path, the language version, the middleware version, etc. related to the application in the CMDB management system according to the application to which the pipeline belongs.
And the automatic test platform 3 is used for reading a code warehouse address, a compiling command and the like related to the application in the CMDB management system according to the application to which the test case belongs in the process of executing the test case.
When the release of the application instance is triggered, the autonomous release platform 4 reads a code warehouse address, a compiling command, a product package path, a language version and a middleware version related to the application in the CMDB management system, an environment to which the application instance belongs, a deployment mode of the environment, and the like; when a user logs in an application configuration management system, calling an authority interface of the CMDB management system, and only allowing the user to issue an application instance in an authority range; and in the releasing process, reading the flow control information related to the application in the CMDB management system, and removing and recovering the flow before and after the application is released.
Before application configuration, the application configuration management system 5 pushes relevant application information from the CMDB management system to the application configuration management system; when a user logs in the application configuration management system, the authority interface of the CMDB management system is called, and the user is only allowed to configure the application in the authority range.
Before application configuration, the service management system 6 pushes relevant applications from the CMDB management system to the service management system; the machine management function in the service management system also needs to call a basic information query interface of the CMDB management system in real time to obtain an IP Address (Internet Protocol Address) of an application instance, and to designate a partition to which each IP belongs; the related list of the partitions is obtained through a related interface of a CMDB management system; when a user logs in the application configuration management system, the authority interface of the CMDB management system is called, and the user is only allowed to configure the application in the authority range.
The traffic governance system 7 pushes relevant applications from the CMDB management system to the traffic governance system before application configuration.
In the application release process, the cloud management platform 9 reads a code warehouse address, a compiling command, a product package path, a language version, a middleware version, associated K8S (an open source container cluster management system for automatically deploying, expanding and managing a containerized application) cluster information, and various K8S indexes of different environments, including a health check address, a service mesh (service grid) mode, a request core number, a maximum core number, a request memory, a maximum memory and the like, which are related to an application in the CMDB management system. When a user logs in the application configuration management system, the authority interface of the CMDB management system is called, and the user is only allowed to configure the application in the authority range.
In summary, the system provided by the invention has the beneficial effects that:
the operation of the common user and the management group members is decoupled to the maximum extent, and the management members are reminded in time through a system mail and icon marking mode after the application is submitted;
after the management member passes the approval, automatically creating a document warehouse and a code warehouse, giving a master role to the applicant code warehouse, and performing authority management by the applicant independently;
aiming at the data lists of various resources in the system, the system also provides a downloading function besides an inquiry function so as to reduce the manual communication cost;
the problem that information filling is inaccurate when a user applies for resources/components required by application is solved, a list maintained by a system management group member is fully utilized, the user can quickly and accurately complete filling of application information by means of presetting options, effective associated information is generated immediately after application approval is passed, and data is stored in a warehouse;
the method solves the defects that a user applies various on-cloud log services by means of offline mail, communication is inconvenient, and the flow is low in efficiency, and realizes automation by manually processing the application mode and optimizing the application mode into calling the interface of a cloud service provider;
the method can automatically initiate the application of opening the white list or the network of the application instance according to the incidence relation between the application and the component, saves the time for initiating the application by a user, and avoids the deployment failure and even the system fault possibly caused by the omission of related applications by an application responsible person.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents, improvements and the like that fall within the spirit and principle of the present invention are intended to be included therein.
Claims (10)
1. A hybrid cloud resource management system, comprising:
the data acquisition inlet is used for defining the acquisition range and source of data to acquire the data, wherein resources and components on the cloud are abstracted and defined into general data;
the application entry is used for initiating corresponding applications based on the resources and the components on the cloud of the applications, establishing association between the resources and the applications after the application of the resources of the server on the cloud passes, establishing association between the components and the applications and application examples, establishing association between basic facilities and the applications, and warehousing data;
the authority control module is used for carrying out authority control on application granularity;
the log management module is used for performing log management of application granularity, wherein an application responsible person configures the authority management and control module and performs log management on the log management module according to the configured corresponding authority; and
and the resource management module is used for enabling a user to query lists and details of resources/components on the cloud according to the data after storage according to the corresponding authority.
2. The hybrid cloud resource management system of claim 1, wherein the data comprises a system, an application, a base image.
3. The hybrid cloud resource management system of claim 1, wherein when a new system is applied, a service line associated with the system is determined and its service affiliation is determined for cost accounting of resources on the cloud.
4. The hybrid cloud resource management system of claim 1, wherein when a new application is applied, the system to which the application belongs, the Group (Group) to which the code repository belongs, compilation commands, product deposit paths, development languages and versions, types and versions of middleware, base mirror versions, Http ports, health check addresses, associated K8S cluster, and Pod resource configurations of the K8S cluster are determined.
5. The hybrid cloud resource management system of claim 1, wherein a base image type, a Dockerfile, and a base image description are selected when applying for a new base image.
6. The hybrid cloud resource management system of claim 1, wherein when a page is applied, resources and components of different cloud service providers are classified and aggregated according to types and then provided for a user to select, after the application is passed, an interface provided by the cloud service provider is called to automatically complete resource allocation and component configuration, related permissions are opened, and information of the resources or the components is associated with applications and data is stored in a warehouse.
7. The hybrid cloud resource management system of claim 6, wherein after the application of the server resource on the cloud passes, the application is associated with the server instance to generate application instance data, an infrastructure white list application entry is provided based on the application instance data, the application is approved according to the importance of the component, and the infrastructure is associated with the application and the data is stored in a database after the approval is completed.
8. The hybrid cloud resource management system of claim 1, wherein an application principal configures common rights or production rights for a user corresponding to an application, or configures common rights or production rights for one user with all applications in charge of the application principal as a whole, or configures common rights or production rights for one user with one or more applications in batch for one user.
9. The hybrid cloud resource management system of claim 1, wherein the application principal can view, create, modify, and delete on-cloud log-related configurations of the responsible application, the on-cloud log-related configurations including log collection, log archiving, and log restoration.
10. The hybrid cloud resource management system of claim 1 wherein the user views all resource information stored in the CMDB, including applications, application instances, server instance resources, database instance resources, components on the cloud, K8S clusters, physical machine resources, and network resources.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110037483.2A CN112766690A (en) | 2021-01-12 | 2021-01-12 | Hybrid cloud resource management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110037483.2A CN112766690A (en) | 2021-01-12 | 2021-01-12 | Hybrid cloud resource management system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112766690A true CN112766690A (en) | 2021-05-07 |
Family
ID=75699853
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110037483.2A Pending CN112766690A (en) | 2021-01-12 | 2021-01-12 | Hybrid cloud resource management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112766690A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115904478A (en) * | 2022-12-19 | 2023-04-04 | 安超云软件有限公司 | Cloud platform resource management method and system and electronic equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104508627A (en) * | 2012-10-08 | 2015-04-08 | 惠普发展公司,有限责任合伙企业 | Hybrid cloud environment |
| CN110809017A (en) * | 2019-08-16 | 2020-02-18 | 云南电网有限责任公司玉溪供电局 | Data analysis application platform system based on cloud platform and micro-service framework |
| CN110991981A (en) * | 2019-10-25 | 2020-04-10 | 中国通信服务股份有限公司 | Application method of research and development cloud platform |
| CN111882203A (en) * | 2020-07-24 | 2020-11-03 | 山东管理学院 | Traditional Chinese medicine cloud service experimental system |
-
2021
- 2021-01-12 CN CN202110037483.2A patent/CN112766690A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104508627A (en) * | 2012-10-08 | 2015-04-08 | 惠普发展公司,有限责任合伙企业 | Hybrid cloud environment |
| CN110809017A (en) * | 2019-08-16 | 2020-02-18 | 云南电网有限责任公司玉溪供电局 | Data analysis application platform system based on cloud platform and micro-service framework |
| CN110991981A (en) * | 2019-10-25 | 2020-04-10 | 中国通信服务股份有限公司 | Application method of research and development cloud platform |
| CN111882203A (en) * | 2020-07-24 | 2020-11-03 | 山东管理学院 | Traditional Chinese medicine cloud service experimental system |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115904478A (en) * | 2022-12-19 | 2023-04-04 | 安超云软件有限公司 | Cloud platform resource management method and system and electronic equipment |
| CN115904478B (en) * | 2022-12-19 | 2023-08-22 | 安超云软件有限公司 | Cloud platform resource management method and system and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107370786B (en) | General information management system based on micro-service architecture | |
| CN110971614A (en) | Internet of things adaptation method and system, computer equipment and storage medium | |
| US20040139176A1 (en) | Systems and methods for improving service delivery | |
| US20120317050A1 (en) | Method, computer program product and computer-readable storage medium for the generic creation of a structure tree for describing an it process | |
| CN114115852A (en) | Visual service arranging method, device, equipment and medium | |
| US20090157457A1 (en) | Provisioning and activation using a service catalog | |
| CN111274001A (en) | Micro-service management platform | |
| CN101621405A (en) | Distributed type management monitoring system, monitoring method and establishing method thereof | |
| CN113434158B (en) | Custom management method, device, equipment and medium for big data component | |
| CN101727475B (en) | Method, device and system for acquiring database access process | |
| CN110098952A (en) | A kind of management method and device of server | |
| CN111666099A (en) | Application service publishing system | |
| CN109542583B (en) | Virtual equipment management method based on double buses | |
| US20080229274A1 (en) | Automating Construction of a Data-Source Interface For Component Applications | |
| US20060120353A1 (en) | Systems and methods for VolP service delivery | |
| CN108763323B (en) | Meteorological grid point file application method based on resource set and big data technology | |
| CN114254606A (en) | Microservice framework model | |
| CN111045652B (en) | Power distribution network development and service system | |
| US20130254757A1 (en) | Nesting installations of software products | |
| CN112766690A (en) | Hybrid cloud resource management system | |
| CN114546563A (en) | Multi-tenant page access control method and system | |
| EP2526485B1 (en) | Verification of compatibility among telecommunication network features | |
| CN111510428B (en) | Security resource operation and maintenance platform system and control method | |
| CN115357198B (en) | Mounting method and device of storage volume, storage medium and electronic equipment | |
| CN110908955B (en) | Management system of IO device description file |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |