CN113722066A - Power grid fine-grained containerization service management and control system and method - Google Patents
Power grid fine-grained containerization service management and control system and method Download PDFInfo
- Publication number
- CN113722066A CN113722066A CN202110970925.9A CN202110970925A CN113722066A CN 113722066 A CN113722066 A CN 113722066A CN 202110970925 A CN202110970925 A CN 202110970925A CN 113722066 A CN113722066 A CN 113722066A
- Authority
- CN
- China
- Prior art keywords
- service
- authentication
- management
- submodule
- image
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 27
- 238000007726 management method Methods 0.000 claims abstract description 153
- 238000003860 storage Methods 0.000 claims abstract description 24
- 230000006870 function Effects 0.000 claims description 20
- 238000012544 monitoring process Methods 0.000 claims description 16
- 238000004364 calculation method Methods 0.000 claims description 13
- 238000004590 computer program Methods 0.000 claims description 10
- 230000001276 controlling effect Effects 0.000 claims description 9
- 238000005516 engineering process Methods 0.000 claims description 9
- 230000000007 visual effect Effects 0.000 claims description 5
- 238000013475 authorization Methods 0.000 claims description 4
- 230000001105 regulatory effect Effects 0.000 claims description 4
- 238000010276 construction Methods 0.000 abstract description 6
- 238000012423 maintenance Methods 0.000 abstract description 3
- 238000012384 transportation and delivery Methods 0.000 abstract description 3
- 238000010586 diagram Methods 0.000 description 15
- 238000004519 manufacturing process Methods 0.000 description 5
- 238000012545 processing Methods 0.000 description 5
- 238000011161 development Methods 0.000 description 4
- 230000018109 developmental process Effects 0.000 description 4
- 238000011156 evaluation Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 238000013468 resource allocation Methods 0.000 description 4
- 230000008859 change Effects 0.000 description 3
- 238000013461 design Methods 0.000 description 2
- 238000013508 migration Methods 0.000 description 2
- 230000005012 migration Effects 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 238000005096 rolling process Methods 0.000 description 2
- 230000033772 system development Effects 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000008602 contraction Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 239000002184 metal Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000008447 perception Effects 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 230000009467 reduction Effects 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/46—Multiprogramming arrangements
- G06F9/48—Program initiating; Program switching, e.g. by interrupt
- G06F9/4806—Task transfer initiation or dispatching
- G06F9/4843—Task transfer initiation or dispatching by program, e.g. task dispatcher, supervisor, operating system
- G06F9/4881—Scheduling strategies for dispatcher, e.g. round robin, multi-level priority queues
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/46—Multiprogramming arrangements
- G06F9/50—Allocation of resources, e.g. of the central processing unit [CPU]
- G06F9/5061—Partitioning or combining of resources
- G06F9/5077—Logical partitioning of resources; Management or configuration of virtualized resources
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Facsimiles In General (AREA)
Abstract
The invention relates to a power grid fine-grained containerization service management and control system and a power grid fine-grained containerization service management and control method, and belongs to the field of power system scheduling control. The system of the invention comprises: the regulation and control public container warehouse management module is used for making the split fine-grained service in the power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in the container cluster; the containerized service publishing management module is used for extracting a service image to be published and then loading the service image to a working node of the container cluster; the containerization service management and control module is used for managing and controlling the service mirror image issued by the containerization service issuing management module; the management and control comprises service registration, service calling and service authentication. The invention realizes the quick construction, agile delivery and convenient operation and maintenance of the service, and promotes more support of the current platform to the service architecture.
Description
Technical Field
The invention belongs to the field of power system scheduling control, and particularly relates to a power grid fine-grained containerization service management and control system and method.
Background
With the continuous deepening of the construction of the ultrahigh-voltage interconnected power grid in China, the scale of the power grid is rapidly developed, the structure of the power grid is increasingly complex, national networking is basically formed, higher requirements are put forward on the integrated operation level of the large power grid, the supporting capability of a dispatching control system needs to be further strengthened, the instant sharing level of regulation and control information is continuously improved, the data processing, application calculation and service capabilities are improved, and the wide-area service management and control of fine-grained application services are realized.
The newly developed adduction cloud computing technology has the advantages that a regulation cloud with flexible resource allocation elasticity, centralized and intelligent data utilization, unified and efficient service integration and rapid and convenient application and development is established, the supporting capability of the grid dispatching automation system on-line information synchronous perception, grid operation analysis, dispatching lean management and regulation data deep application is improved, and the regulation cloud becomes a necessary choice for the dispatching automation system development.
Under the promotion of an energy internet technology, a scheduling control system is changed from a chimney type architecture to a shared service-based architecture, the current cloud platform based on a cloud computing virtualization technology has insufficient flexibility in the aspects of service deployment, upgrading, capacity expansion, rollback, offline and the like, and has no better support in the aspects of dynamic expansion, efficient migration and deployment of services and the like.
Disclosure of Invention
The invention mainly aims to overcome the defects of the prior art and provide a system and a method for managing and controlling fine-grained containerized services of a power grid, wherein four modules of release management, service management and control, mirror image management and monitoring management are realized through the top-level design of a containerized service management architecture, a set of service development and operation environment covering all links of development, deployment, commissioning and operation is built, the service is quickly constructed, swiftly delivered and convenient to operate and maintain, more support of the service architecture by a current platform is promoted, reasonable scheduling and arranging and resource allocation of the service are realized, dynamic expansion and contraction can be carried out in a self-adaptive manner when the load is ensured to change, and the high availability of a platform system is promoted.
In order to achieve the purpose, the invention adopts the following technical scheme:
in a first aspect of the present invention, a power grid fine-grained containerization service management and control system is provided, including:
the regulation and control public container warehouse management module is used for making the split fine-grained service in the power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in the container cluster;
the containerized service publishing management module is used for extracting a service image to be published and then loading the service image to a working node of the container cluster;
the containerization service management and control module is used for managing and controlling the service mirror image issued by the containerization service issuing management module; the management and control comprises service registration, service calling and service authentication.
The invention further improves the following steps: the method for extracting the service image to be published by the containerized service publishing management module and then loading the service image to the working node of the container cluster comprises the following steps:
s1: the containerization service release management module is connected with the regulation public container warehouse;
s2: selecting a service mirror image and a version to be released from a regulation public container warehouse list;
s3: configuring service image parameters, wherein the service image parameters comprise: CPU, memory, port, starting mode and environment variable;
s4: judging whether to continue adding the service mirror image, if so, returning to the step S1, otherwise, executing the step S5;
s5: selecting a working node in a container cluster for loading a service image;
s6: obtaining the selected service image from the storage node;
s7: and loading the selected service image to the working node in the selected container cluster.
The invention further improves the following steps: the power grid fine-grained containerization service management and control system further comprises:
and the container resource monitoring and managing module is used for monitoring the cpu and the memory resources occupied by the service mirror image issued to the container cluster working node.
The invention further improves the following steps: the containerized service management and control module comprises a service management submodule and a service authentication submodule;
the service management submodule is used for providing AK/SK application function, service registration and service calling function for each service mirror image, and authenticating the identity of a service caller through the service authentication submodule; the service is called by matching with the service authentication submodule;
the service authentication submodule is used for generating AK/SK, using the AK/SK to authenticate, and performing AK association authorization to perform service authentication.
The invention further improves the following steps: the step of the containerized service management and control module performing service call on the service mirror image issued by the containerized service issuing management module comprises the following steps:
m1: the service management submodule judges whether the called service needs authentication, if the called service does not need authentication, the service is called remotely, if the called service needs authentication, AK/SK configured by the containerized service is read, a signature character string is generated according to calculation of SK, and the service authentication submodule is called for authentication;
m2: the service authentication submodule inquires corresponding SK through the received AK, compares the signature character string generated by calculation with the received signature character string, and returns an authentication result to the service management submodule;
m3: the service management submodule receives the authentication result, if the authentication fails, AK/SK authentication failure information is returned to a calling party, if the authentication succeeds, the service authentication submodule is continuously called, and whether the service calling authority exists or not is judged by the service authentication submodule;
m4: the service authentication submodule inquires whether a caller has service calling authority or not and returns an authentication result to the service management submodule;
m5: and the service management submodule receives the authentication result, returns the unauthorized calling indication information to the caller if the authentication result is not authorized, remotely calls the service if the authentication result is authorized, and returns the calling result to the caller.
The invention further improves the following steps: the regulation and control common container warehouse management module comprises a management submodule and a mirror image submodule;
the management submodule provides an application program interface for mirror image management and provides a visual query function for a mirror image warehouse by adopting an exposed interface mode based on java and RESTFUL standards;
and the mirror image submodule executes control operation on the service mirror image on the container cluster by adopting a mirror image layering and management mode based on a container technology.
In a second aspect, the present invention provides a power grid fine-grained containerization service management and control method, where the method includes:
making a split fine-grained service in a power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in a container cluster;
extracting a service mirror image to be issued, and then loading the service mirror image to a working node of a container cluster;
managing and controlling the issued service mirror image; the management and control comprises service registration, service calling and service authentication.
The invention further improves the following steps: the step of extracting the service image to be published and then loading the service image to the working node of the container cluster specifically includes:
s1: the containerization service release management module is connected with the regulation public container warehouse;
s2: selecting a service mirror image and a version to be released from a regulation public container warehouse list;
s3: configuring service image parameters, wherein the service image parameters comprise: CPU, memory, port, starting mode and environment variable;
s4: judging whether to continue adding the service mirror image, if so, returning to the step S1, otherwise, executing the step S5;
s5: selecting a working node in a container cluster for loading a service image;
s6: obtaining the selected service image from the storage node;
s7: and loading the selected service image to the working node in the selected container cluster.
The invention further improves the following steps: the service invocation specifically comprises the following steps:
m1: the service management submodule judges whether the called service needs authentication, if the called service does not need authentication, the service is called remotely, if the called service needs authentication, AK/SK configured by the containerized service is read, a signature character string is generated according to calculation of SK, and the service authentication submodule is called for authentication;
m2: the service authentication submodule inquires corresponding SK through the received AK, compares the signature character string generated by calculation with the received signature character string, and returns an authentication result to the service management submodule;
m3: the service management submodule receives the authentication result, if the authentication fails, AK/SK authentication failure information is returned to a calling party, if the authentication succeeds, the service authentication submodule is continuously called, and whether the service calling authority exists or not is judged by the service authentication submodule;
m4: the service authentication submodule inquires whether a caller has service calling authority or not and returns an authentication result to the service management submodule;
m5: and the service management submodule receives the authentication result, returns the unauthorized calling indication information to the caller if the authentication result is not authorized, remotely calls the service if the authentication result is authorized, and returns the calling result to the caller.
The invention also provides a power grid fine-grained containerized service management and control system, which comprises a processor and a memory, wherein the processor is used for executing the computer program stored in the memory to realize the power grid fine-grained containerized service management and control method.
Compared with the prior art, the invention has the beneficial effects that:
the invention provides a power grid fine-grained containerized service management and control system and a method by combining the characteristic of power grid intelligent regulation and control cloud service; aiming at the large-scale application of fine-grained containerized services in the energy and power Internet of things construction environment, the container resource monitoring management module, the regulation and control common container warehouse management module and the containerized service release management module based on the full-life-cycle operation of the container-based application are provided with the containerized service management and control module. According to the invention, a lightweight container technology and a micro-service architecture are combined, on the basis of unified resource pool management, aiming at the large-scale application of fine-grained containerization service in the energy and power Internet of things construction environment, the cooperation of all modules realizes the rapid construction, the agile delivery and the convenient operation and maintenance of the service, simultaneously promotes more support of the current platform on the service architecture, realizes the resource allocation and the service calling authentication of the fine-grained containerization service, and promotes the high availability of the platform system.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, are included to provide a further understanding of the invention, and are incorporated in and constitute a part of this specification, illustrate exemplary embodiments of the invention and together with the description serve to explain the invention and not to limit the invention. In the drawings:
FIG. 1 is a functional schematic diagram of a fine-grained containerization service management and control system of a power grid according to the present invention;
FIG. 2 is a flow diagram of service image publication;
FIG. 3 is a schematic flow chart of service mirroring creation and storage;
FIG. 4 is a flow diagram of a service invocation;
fig. 5 is a schematic diagram of a power grid fine-grained containerization service management and control method.
Detailed Description
The present invention will be described in detail below with reference to the embodiments with reference to the attached drawings. It should be noted that the embodiments and features of the embodiments may be combined with each other without conflict.
The following detailed description is exemplary in nature and is intended to provide further details of the invention. Unless otherwise defined, all technical terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of exemplary embodiments according to the invention.
Example 1
Fig. 1 is a schematic structural diagram of a power grid fine-grained containerization service management and control system. As shown in fig. 1, the present invention provides a power grid fine-grained containerization service management and control system, including:
the system comprises a container resource monitoring and managing module, a service mirroring module and a service mirroring module, wherein the container resource monitoring and managing module is used for monitoring cpu and memory resources occupied by a service mirroring issued to a container cluster;
the regulation and control public container warehouse management module is used for making the split fine-grained service in the power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in the container cluster; managing the mirror image warehouse and the manufacturing and uploading functions of various service mirror images, wherein the regulation and control common container warehouse management module provides uniform manufacturing, service mirror image storage, warehouse management and version control functions;
the containerized service publishing management module is used for extracting a service image to be published and then loading the service image to a working node of the container cluster; carrying out full life cycle management on the service mirror image loaded on the working node of the container cluster;
the containerization service management and control module is used for managing and controlling the service mirror image issued by the containerization service issuing management module; the management and control comprises service registration, service calling and service authentication.
The invention provides powerful support for the project development based on the micro-service architecture through container resource management, and solves the long-standing problems of service discovery, dynamic routing, rolling upgrade, load balancing and the like in the traditional distributed system development process. The power grid application is split into a plurality of fine-grained services by the power grid dispatching automation system according to the service scene. By splitting the power grid application into fine-grained services which can be deployed individually, the deployment of the services does not affect other services, and rollback can be performed if the deployment fails, so that the availability of the system can be improved. The power grid application is split into a plurality of fine-grained services, the capacity expansion of the micro-services with higher flow can be conveniently carried out by utilizing a container technology, compared with the traditional capacity expansion of single application, the mode is more flexible, and the resource utilization rate and the performance of the system are improved.
Specifically, the containerized service publishing management module is configured to extract a service image to be published, load the service image to a work node in the container cluster, and perform full-life-cycle management on the service image loaded on the work node of the container cluster. The module provides release management for the service mirror images, the released service mirror images can be checked in a list form, and the service mirror images can be released on line. Before the service image is released to the working nodes in the container cluster, the service image needs to be reasonably configured according to service requirements. Most services can be constructed by filling basic information, and part of services can be constructed after filling high-level configuration according to special requirements of the services. The interface provides basic information and advanced configuration information for displaying the published service images and displaying the service images, and provides starting/stopping, updating the images, viewing and editing operations. And the service edition is edited and modified for the released service image and then is released again, namely the version of the service image is upgraded.
And (3) displaying: showing the details of the published service mirror image in a list and detail form, wherein the details comprise containerization operation states, labels, information of operation instances, historical versions, event logs and the like;
rolling back the version: backing the running service image to the previous specified version;
and (3) deleting: all instances of the run were stopped.
Preferably, as shown in fig. 2, the step of extracting the service image to be published by the containerized service publishing management module and then loading the service image to the work node of the container cluster specifically includes:
s1: connecting and regulating a public container warehouse; the regulation and control public container warehouse is used for displaying each service mirror image information stored in the storage node by the regulation and control public container warehouse management module;
s2: selecting a service mirror image and a version to be released from a regulation public container warehouse list;
s3: configuring service image parameters, wherein the service image parameters comprise: CPU, memory, port, starting mode and environment variable;
s4: judging whether to continue adding the service mirror image, if so, returning to the step S1, otherwise, executing the step S5;
s5: selecting a working node in a container cluster for loading a service image;
s6: obtaining the selected service image from the storage node;
s7: and loading the selected service image to the working node in the selected container cluster.
Referring to fig. 3, the step of making a service in the power grid dispatching automation system into a service image and storing the service image in a storage node in the container cluster specifically includes:
k1: acquiring basic information of a service mirror image;
k2: acquiring an uploaded service program package;
k3: the background is connected with a transfer server with a container environment, and the file is copied to an appointed directory;
k4: filling in the name and version of the service mirror image, and compiling corresponding Dockerfile (text file for constructing the mirror image) script information;
k5: after the information is confirmed, the background executes the service mirror image making command and returns an execution result to the front-end page; if successful, executing the step K6, and if not successful, returning to the step K1;
k6: filling in a service mirror name and a version number, and selecting an item name needing to be associated;
k7: and the background executes service mirror image pushing, uploads the service mirror image pushing to a storage node in the container cluster, and updates and regulates mirror image list information in the public container warehouse.
The containerization service management and control module is used for managing and controlling the service mirror image issued by the containerization service issuing management module; the management and control comprises service registration, service calling and service authentication.
Preferably, the service management and control module includes a service management submodule and a service authentication submodule;
the service management submodule is used for providing AK (access key)/SK (secret key) application functions, service registration and service calling functions for each service image, and the service authentication submodule is used for authenticating and authenticating the identity of a service caller; the service is called by matching with the service authentication submodule;
the service authentication submodule is used for generating AK/SK, using the AK/SK to authenticate, and performing AK association authorization to perform service authentication.
After the service mirror image is successfully published by the containerized service publishing management module, the containerized service management and control module calls service authentication to acquire AK/SK and returns the AK/SK to an application publisher, and the service publisher stores the AK/SK to a local storage; the service uniformly uses a service management and control module registration management interface to register the service, whether the service needs authentication or not can be configured during service registration, if the service needs authentication, a service caller needs to use AK/SK distributed by a containerization service management and control module to carry out identity authentication, and meanwhile, an operator can call the service when the service authenticates and carries out service authorization; if authentication is not required, the service can be directly invoked.
Specifically, as shown in fig. 4, the step of the containerization service management and control module performing service invocation includes:
m1: the service management submodule judges whether the called service needs authentication, if the called service does not need authentication, the service is called remotely, if the called service needs authentication, AK/SK configured by the containerized service is read, a signature character string is generated according to calculation of SK, and the service authentication submodule is called for authentication;
m2: the service authentication submodule inquires corresponding SK through the received AK, compares the signature character string generated by calculation with the received signature character string, and returns an authentication result to the service management submodule;
m3: the service management submodule receives the authentication result, if the authentication fails, AK/SK authentication failure information is returned to a calling party, if the authentication succeeds, the service authentication submodule is continuously called, and whether the service calling authority exists or not is judged by the service authentication submodule;
m4: the service authentication submodule inquires whether a caller has service calling authority or not and returns an authentication result to the service management submodule;
m5: and the service management submodule receives the authentication result, returns the unauthorized calling indication information to the caller if the authentication result is not authorized, remotely calls the service if the authentication result is authorized, and returns the calling result to the caller.
The service authentication interface comprises the following steps:
the containerized service management and control module also provides service index evaluation, and based on the historical running information and the online monitoring information of the service, comprehensive evaluation indexes of the service are constructed, an evaluation system of provincial and local service quality is constructed, and the omnibearing state evaluation of the service is realized. And generating a report of the index information of each dimension according to the period by combining a report tool.
And displaying service operation index information according to different dimensions, wherein specific indexes are shown in a table:
| number (C) | Index name | Description of the index | Statistical period |
| 1 | Number of services | For showing the number of online services | Real time |
| 2 | Number of providers | For showing the number of online providers | Real time |
| 3 | Number of consumers | For showing the number of online consumers | Real time |
| 4 | Call Top10 | Top10 for exposing services with the greatest number of calls | The day |
| 5 | Service time consumption curve | Time-consuming curve for showing calls of service on the day | Real time |
| 6 | Service response curve | Response curve for showing calls of service on the day | Real time |
| 7 | Service invocation list | For exposing application calls over a period of time | Real time |
| 8 | Service dependency relationships | Link diagram for showing dependency relationship between applications | Real time |
| 9 | Service invocation relationship | Used for showing the calling relation between a certain calling and an application | Real time |
And the regulation and control common container warehouse management module is used for managing the mirror image warehouse and mirror image manufacturing, uploading and the like of various application services, and the container warehouse provides functions of unified service mirror image storage and version control.
The regulation and control public container warehouse management can be divided into mirror image warehouse service and mirror image manufacturing uploading and disaster recovery backup service according to functions. And the visualized control operation of the service image is achieved through a globally unified RESTFUL interface. The functional structure for regulating and controlling the common container warehouse management is divided according to the hierarchy, and the functional modules comprise a management submodule, a warehouse submodule and a mirror image submodule.
Preferably, the regulation and control common container warehouse management module comprises a management submodule and a mirror submodule;
the management submodule provides a safe and stable application program interface for mirror image management and provides a visual query function for a mirror image warehouse by adopting an exposed interface mode based on java and RESTFUL standards.
And the mirror image submodule executes control operation on the service mirror image on the container cluster by adopting a mirror image layering and management mode.
And the container resource monitoring and managing module is used for monitoring resources such as cpu, memory and the like occupied by the service mirror image issued to the container cluster.
The monitoring function is realized by monitoring the service mirror image and monitoring the node resources in the container environment, the monitored resource information is mainly the change condition of the resources such as cpu, memory, disk, network and the like, and the operations of capacity expansion and capacity reduction, container migration, reconfiguration of the resources of the containers and the like can be carried out on the containers according to the change condition of the resources.
The embodiment combines the characteristics of the cloud service intelligently regulated and controlled by a power grid, combines the latest technologies in the fields of computers, network science, communication and the like, provides a total architecture and a functional architecture by designing the top layer of a containerized service management architecture, and designs and realizes four modules of container resource monitoring management, regulation and control common container warehouse management, containerized service release management and containerized service management and control. The system realizes quick construction, agile delivery and convenient operation and maintenance of the service, simultaneously promotes more support of the current platform to the service architecture, realizes resource allocation and service calling authentication of containerized service, and promotes high availability of the platform system.
Example 2
Fig. 5 is a schematic diagram of a power grid fine-grained containerization service management and control method. As shown in fig. 5, the present invention further provides a power grid fine-grained containerization service management and control method, where the method includes:
making a split fine-grained service in a power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in a container cluster;
extracting a service mirror image to be issued, and then loading the service mirror image to a working node of a container cluster;
managing and controlling the issued service mirror image; the management and control comprises service registration, service calling and service authentication.
Preferably, the step of extracting the service image to be published and then loading the service image to the work node of the container cluster specifically includes:
s1: the containerization service release management module is connected with the regulation public container warehouse;
s2: selecting a service mirror image and a version to be released from a regulation public container warehouse list;
s3: configuring service image parameters, wherein the service image parameters comprise: CPU, memory, port, starting mode and environment variable;
s4: judging whether to continue adding the service mirror image, if so, returning to the step S1, otherwise, executing the step S5;
s5: selecting a working node in a container cluster for loading a service image;
s6: obtaining the selected service image from the storage node;
s7: and loading the selected service image to the working node in the selected container cluster.
Preferably, the first and second electrodes are formed of a metal,
the service invocation specifically comprises the following steps:
m1: the service management submodule judges whether the called service needs authentication, if not, the service is called remotely, if so, AK/SK configured by the containerized service is read, a signature character string is generated by calculation according to the SK, and the service authentication submodule is called for authentication;
m2: the service authentication submodule inquires corresponding SK through the received AK, compares the signature character string generated by calculation with the received signature character string, and returns the authentication result to the service management submodule;
m3: the service management submodule receives the authentication result, if the authentication fails, AK/SK authentication failure information is returned to the caller, if the authentication succeeds, the service authentication submodule is continuously called, and whether the service calling authority exists or not is judged by the service authentication submodule;
m4: the service authentication submodule inquires whether the caller has service calling authority or not and returns an authentication result to the service management submodule;
m5: and the service management submodule receives the authentication result, returns the unauthorized calling indication information to the caller if the authentication result is not authorized, remotely calls the service if the authentication result is authorized, and returns the calling result to the caller.
Preferably, the step of making the fine-grained service split in the power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in a container cluster node includes the step of providing a mirror image warehouse visual query and operation interface function; the method specifically comprises the following steps:
and an exposed interface mode based on java and RESTFUL standards is adopted, so that a safe and stable application program interface is provided for mirror image management, and a visual query function is provided.
And performing control operation on the service image on the virtual machine or the physical machine by adopting an image layering and management mode based on a container technology.
The specific implementation process of the method steps in this embodiment 2 is the same as the implementation process of the steps executed by each module in embodiment 1, and is not described herein again.
Example 3
The present embodiment provides a power grid fine-grained containerization service management and control system, which includes a processor and a memory, where the processor is configured to execute a computer program stored in the memory to implement the power grid fine-grained containerization service management and control method according to embodiment 2.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Finally, it should be noted that: the above embodiments are only for illustrating the technical solutions of the present invention and not for limiting the same, and although the present invention is described in detail with reference to the above embodiments, those of ordinary skill in the art should understand that: modifications and equivalents may be made to the embodiments of the invention without departing from the spirit and scope of the invention, which is to be covered by the claims.
Claims (10)
1. The utility model provides a power grid fine grit containerization service management and control system which characterized in that includes:
the regulation and control public container warehouse management module is used for making the split fine-grained service in the power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in the container cluster;
the containerized service publishing management module is used for extracting a service image to be published and then loading the service image to a working node of the container cluster;
the containerization service management and control module is used for managing and controlling the service mirror image issued by the containerization service issuing management module; the management and control comprises service registration, service calling and service authentication.
2. The system according to claim 1, wherein the step of extracting the service image to be published by the containerized service publishing management module and then loading the service image to the work node of the container cluster specifically comprises:
s1: the containerization service release management module is connected with the regulation public container warehouse;
s2: selecting a service mirror image and a version to be released from a regulation public container warehouse list;
s3: configuring service image parameters, wherein the service image parameters comprise: CPU, memory, port, starting mode and environment variable;
s4: judging whether to continue adding the service mirror image, if so, returning to the step S1, otherwise, executing the step S5;
s5: selecting a working node in a container cluster for loading a service image;
s6: obtaining the selected service image from the storage node;
s7: and loading the selected service image to the working node in the selected container cluster.
3. The system of claim 1, wherein the grid fine-grained containerization service management and control system further comprises:
and the container resource monitoring and managing module is used for monitoring the cpu and the memory resources occupied by the service mirror image issued to the container cluster working node.
4. The system according to claim 1, wherein the containerization service management and control module comprises a service management submodule and a service authentication submodule;
the service management submodule is used for providing AK/SK application function, service registration and service calling function for each service mirror image, and authenticating the identity of a service caller through the service authentication submodule; the service is called by matching with the service authentication submodule;
the service authentication submodule is used for generating AK/SK, using the AK/SK to authenticate, and performing AK association authorization to perform service authentication.
5. The system according to claim 4, wherein the step of the containerization service management and control module making a service call to the service image published by the containerization service publishing management module includes:
m1: the service management submodule judges whether the called service needs authentication, if the called service does not need authentication, the service is called remotely, if the called service needs authentication, AK/SK configured by the containerized service is read, a signature character string is generated according to calculation of SK, and the service authentication submodule is called for authentication;
m2: the service authentication submodule inquires corresponding SK through the received AK, compares the signature character string generated by calculation with the received signature character string, and returns an authentication result to the service management submodule;
m3: the service management submodule receives the authentication result, if the authentication fails, AK/SK authentication failure information is returned to a calling party, if the authentication succeeds, the service authentication submodule is continuously called, and whether the service calling authority exists or not is judged by the service authentication submodule;
m4: the service authentication submodule inquires whether a caller has service calling authority or not and returns an authentication result to the service management submodule;
m5: and the service management submodule receives the authentication result, returns the unauthorized calling indication information to the caller if the authentication result is not authorized, remotely calls the service if the authentication result is authorized, and returns the calling result to the caller.
6. The system of claim 1, wherein the regulated common container warehouse management module comprises a management submodule and a mirror submodule;
the management submodule provides an application program interface for mirror image management and provides a visual query function for a mirror image warehouse by adopting an exposed interface mode based on java and RESTFUL standards;
and the mirror image submodule executes control operation on the service mirror image on the container cluster by adopting a mirror image layering and management mode based on a container technology.
7. A power grid fine-grained containerization service management and control method is characterized by comprising the following steps:
making a split fine-grained service in a power grid dispatching automation system into a service mirror image and storing the service mirror image in a storage node in a container cluster;
extracting a service mirror image to be issued, and then loading the service mirror image to a working node of a container cluster;
managing and controlling the issued service mirror image; the management and control comprises service registration, service calling and service authentication.
8. The method according to claim 7, wherein the step of extracting the service image to be published and then loading the service image to the work node of the container cluster specifically comprises:
s1: the containerization service release management module is connected with the regulation public container warehouse;
s2: selecting a service mirror image and a version to be released from a regulation public container warehouse list;
s3: configuring service image parameters, wherein the service image parameters comprise: CPU, memory, port, starting mode and environment variable;
s4: judging whether to continue adding the service mirror image, if so, returning to the step S1, otherwise, executing the step S5;
s5: selecting a working node in a container cluster for loading a service image;
s6: obtaining the selected service image from the storage node;
s7: and loading the selected service image to the working node in the selected container cluster.
9. The method according to claim 7, wherein the service invocation specifically comprises the steps of:
m1: the service management submodule judges whether the called service needs authentication, if not, the service is called remotely, if so, AK/SK configured by the containerized service is read, a signature character string is generated by calculation according to the SK, and the service authentication submodule is called for authentication;
m2: the service authentication submodule inquires corresponding SK through the received AK, compares the signature character string generated by calculation with the received signature character string, and returns the authentication result to the service management submodule;
m3: the service management submodule receives the authentication result, if the authentication fails, AK/SK authentication failure information is returned to the caller, if the authentication succeeds, the service authentication submodule is continuously called, and whether the service calling authority exists or not is judged by the service authentication submodule;
m4: the service authentication submodule inquires whether the caller has service calling authority or not and returns an authentication result to the service management submodule;
m5: and the service management submodule receives the authentication result, returns the unauthorized calling indication information to the caller if the authentication result is not authorized, remotely calls the service if the authentication result is authorized, and returns the calling result to the caller.
10. A power grid fine-grained containerized service management and control system, comprising a processor and a memory, wherein the processor is configured to execute a computer program stored in the memory to implement a power grid fine-grained containerized service management and control method according to any one of claims 7 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110970925.9A CN113722066A (en) | 2021-08-23 | 2021-08-23 | Power grid fine-grained containerization service management and control system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110970925.9A CN113722066A (en) | 2021-08-23 | 2021-08-23 | Power grid fine-grained containerization service management and control system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113722066A true CN113722066A (en) | 2021-11-30 |
Family
ID=78677490
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110970925.9A Pending CN113722066A (en) | 2021-08-23 | 2021-08-23 | Power grid fine-grained containerization service management and control system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113722066A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106790483A (en) * | 2016-12-13 | 2017-05-31 | 武汉邮电科学研究院 | Hadoop group systems and fast construction method based on container technique |
| CN107612955A (en) * | 2016-07-12 | 2018-01-19 | 深圳市远行科技股份有限公司 | Micro services provide method, apparatus and system |
| CN110554856A (en) * | 2019-09-06 | 2019-12-10 | 航天科工广信智能技术有限公司 | Micro-service treatment system |
| CN112099917A (en) * | 2020-09-08 | 2020-12-18 | 中国电力科学研究院有限公司 | Regulation and control system containerized application operation management method, system, equipment and medium |
-
2021
- 2021-08-23 CN CN202110970925.9A patent/CN113722066A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107612955A (en) * | 2016-07-12 | 2018-01-19 | 深圳市远行科技股份有限公司 | Micro services provide method, apparatus and system |
| CN106790483A (en) * | 2016-12-13 | 2017-05-31 | 武汉邮电科学研究院 | Hadoop group systems and fast construction method based on container technique |
| CN110554856A (en) * | 2019-09-06 | 2019-12-10 | 航天科工广信智能技术有限公司 | Micro-service treatment system |
| CN112099917A (en) * | 2020-09-08 | 2020-12-18 | 中国电力科学研究院有限公司 | Regulation and control system containerized application operation management method, system, equipment and medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Liu et al. | A survey on workflow management and scheduling in cloud computing | |
| Zhang et al. | Research on key technologies of cloud computing | |
| CN102426543B (en) | Hard and soft restriction is used to be placed on main frame by object | |
| CN111274001B (en) | Micro-service management platform | |
| CN102246152B (en) | Saving program execution state | |
| CN105843182B (en) | A kind of power scheduling accident prediction system and method based on OMS | |
| CN102594919B (en) | Information technology (IT) resource supporting system | |
| CN102103518A (en) | System for managing resources in virtual environment and implementation method thereof | |
| CN102455937A (en) | Web service patterns for globally distributed service fabric | |
| CN102681899A (en) | Virtual computing resource dynamic management system of cloud computing service platform | |
| JP2002189841A (en) | Workflow management method and system, and recording medium storing its processing program | |
| CN104579792A (en) | Architecture and method for achieving centralized management of various types of virtual resources based on multiple adaptive modes | |
| CN106354833A (en) | Platform for achieving data management and sharing exchange on basis of B/S framework | |
| US8549129B2 (en) | Live migration method for large-scale IT management systems | |
| CN102917006A (en) | Method and device for achieving uniform control management of computing resource and object authority | |
| CN111274002A (en) | Construction method and device for supporting PAAS platform, computer equipment and storage medium | |
| CN110134533B (en) | System and method capable of scheduling data in batches | |
| CN105827744A (en) | Data processing method of cloud storage platform | |
| CN113722066A (en) | Power grid fine-grained containerization service management and control system and method | |
| CN115237547A (en) | Unified container cluster hosting system and method for non-intrusive HPC computing cluster | |
| Zhang et al. | Construction of cloud platform for personalized information services in digital library based on cloud computing data processing technology | |
| CN107885834B (en) | Hadoop big data assembly unified verification system | |
| Pan et al. | RETRACTED ARTICLE: Research on process customization technology for intelligent transportation cloud service platform | |
| Lin et al. | A multi-centric model of resource and capability management in cloud simulation | |
| CN111199386A (en) | Workflow engine and implementation method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20211130 |