CN113886808A - Operation approval method and device, communication server and user terminal - Google Patents
Operation approval method and device, communication server and user terminal Download PDFInfo
- Publication number
- CN113886808A CN113886808A CN202111166686.8A CN202111166686A CN113886808A CN 113886808 A CN113886808 A CN 113886808A CN 202111166686 A CN202111166686 A CN 202111166686A CN 113886808 A CN113886808 A CN 113886808A
- Authority
- CN
- China
- Prior art keywords
- approval
- request
- operation instruction
- application
- result
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 179
- 238000004891 communication Methods 0.000 title claims abstract description 139
- 230000008569 process Effects 0.000 claims abstract description 118
- 238000004590 computer program Methods 0.000 claims description 17
- 238000012545 processing Methods 0.000 claims description 12
- 238000001514 detection method Methods 0.000 claims description 10
- 238000012550 audit Methods 0.000 claims description 8
- 238000010586 diagram Methods 0.000 description 5
- 238000007726 management method Methods 0.000 description 4
- 230000006870 function Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Mathematical Physics (AREA)
- User Interface Of Digital Computer (AREA)
Abstract
The invention discloses an operation approval method, an operation approval device, a communication server, a user terminal and a computer readable storage medium, wherein the method is applied to the communication server and comprises the following steps: acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in a user terminal; the target operation instruction is an operation instruction corresponding to the communication approval process; detecting a request approval result corresponding to the approval query request; sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result; according to the invention, the communication server detects the request approval result corresponding to the approval query request, the communication server of the communication software is utilized to approve the target operation of the virtual desktop in the user terminal, the communication software can be combined to realize the first approval and then the execution of the target operation in the virtual desktop, the safety of the virtual desktop is ensured, and the approval efficiency and the user experience are improved.
Description
Technical Field
The invention relates to the field of virtual desktop computing, in particular to an operation approval method, an operation approval device, a communication server, a user terminal and a computer-readable storage medium.
Background
The VDC (Virtual Desktop access management system) can provide functions of user authentication management, fine-grained policy control, unified monitoring and management of the Desktop/cloud terminal and the like for the Desktop cloud, and can deliver the cloud Desktop more safely and reliably.
At present, in industries such as finance, government and the like, the management of important operations (such as file export operation, virtual machine expansion operation and the like) of a user in a virtual desktop is extremely strict, and the important operations can be allowed to be executed only after the important operations are approved by a manager; for example, for file export operation in a virtual desktop, export is allowed after the file export operation passes the approval of a manager, so as to avoid data leakage. Therefore, how to provide convenient examination and approval for important operations in the virtual desktop and improve examination and approval efficiency is a problem which needs to be solved urgently nowadays.
Disclosure of Invention
The invention aims to provide an operation approval method, an operation approval device, a communication server, a user terminal and a computer readable storage medium, so that important operations in a virtual desktop are approved by using communication software, and the approval efficiency and the user experience are improved.
In order to solve the above technical problem, the present invention provides an operation approval method, applied to a communication server, comprising:
acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in a user terminal; the target operation instruction is an operation instruction corresponding to a communication approval process;
detecting a request approval result corresponding to the approval query request;
and sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result.
Optionally, the detecting a request approval result corresponding to the approval query request includes:
detecting an application approval result of the approval application corresponding to the pre-application information in the approval query request;
and determining the request approval result according to the application approval result.
Optionally, before detecting an application approval result of an approval application corresponding to the pre-application information in the approval query request, the method further includes:
receiving an approval application corresponding to the communication approval process and sent by the user terminal;
sending application information corresponding to the approval application to an administrator terminal;
and determining the application approval result according to the application approval information corresponding to the approval application returned by the administrator terminal.
Optionally, when the communication approval process includes a file export application process, determining the request approval result according to the application approval result includes:
if the application approval result is approval pass, detecting whether derived file information in the approval query request is matched with approval file information in the approval application;
if so, determining that the request approval result is approved;
if not, determining that the request approval result is that the approval is not passed.
Optionally, the method further includes:
acquiring an approval process configuration request sent by an administrator terminal; the approval process configuration request comprises preset approval process selection information;
configuring the communication approval process according to the approval process configuration request; and the communication approval process comprises a preset approval process corresponding to the preset approval process selection information.
The invention also provides an operation approval device, which is applied to a communication server and comprises the following components:
the request acquisition module is used for acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in the user terminal; the target operation instruction is an operation instruction corresponding to a communication approval process;
the examination and approval detection module is used for detecting a request examination and approval result corresponding to the examination and approval query request;
and the result sending module is used for sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result.
The present invention also provides a communication server, comprising:
a memory for storing a computer program;
a processor for implementing the steps of the operation approval method applied to the communication server as described above when executing the computer program.
The invention also provides an operation approval method, which is applied to the user terminal and comprises the following steps:
generating and sending an approval query request to a communication server according to the obtained target operation instruction in the virtual desktop; the target operation instruction is an operation instruction corresponding to a communication approval process;
receiving a request approval result corresponding to the approval query request returned by the communication server;
and processing the target operation instruction according to the request approval result.
Optionally, the generating and sending an approval query request to the communication server according to the obtained target operation instruction in the virtual desktop includes:
after the target operation instruction is obtained, displaying a pre-application information output frame;
and generating the examination and approval query request according to the pre-application information input in the pre-application information output box.
Optionally, when the communication approval process includes a file export application process, the method further includes:
disabling clipboard functionality in the virtual desktop.
Optionally, the processing the target operation instruction according to the request approval result includes:
if the request approval result is approval passing, executing the target operation instruction;
and if the request approval result is not approval pass, rejecting the target operation instruction.
Optionally, the communication approval process includes a file export application process, and when the target operation instruction is the file export operation instruction corresponding to the file export application process, executing the target operation instruction includes:
and recording audit information of the export file corresponding to the file export operation instruction.
The invention also provides an operation approval device, which is applied to a user terminal and comprises the following components:
the request generation module is used for generating and sending an approval query request to the communication server according to the obtained target operation instruction in the virtual desktop; the target operation instruction is an operation instruction corresponding to a communication approval process;
the examination and approval receiving module is used for receiving a request examination and approval result corresponding to the examination and approval query request returned by the communication server;
and the approval processing module is used for processing the target operation instruction according to the request approval result.
The present invention also provides a user terminal, comprising:
a memory for storing a computer program;
and a processor, configured to implement the steps of the operation approval method applied to the user terminal as described above when executing the computer program.
Furthermore, the present invention provides a computer-readable storage medium having stored thereon a computer program which, when executed by a processor, implements the steps of the operation approval method applied to a communication server as described above or the operation approval method applied to a user terminal as described above.
The invention provides an operation approval method, which is applied to a communication server and comprises the following steps: acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in a user terminal; the target operation instruction is an operation instruction corresponding to the communication approval process; detecting a request approval result corresponding to the approval query request; sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result;
therefore, the communication server detects the request approval result corresponding to the approval query request, the communication server of the communication software is used for approving the target operation of the virtual desktop in the user terminal, the communication software can be combined to realize the first approval and the second execution of the target operation in the virtual desktop, the safety of the virtual desktop is ensured, and the approval efficiency and the user experience are improved. In addition, the invention also provides an operation approval device, a communication server, a user terminal and a computer readable storage medium, and the operation approval device, the communication server, the user terminal and the computer readable storage medium also have the beneficial effects.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the provided drawings without creative efforts.
FIG. 1 is a flow chart of an operation approval method according to an embodiment of the present invention;
FIG. 2 is a diagram illustrating a selection interface of a default approval process according to another operation approval method of the present invention;
FIG. 3 is a block diagram of an operation approval apparatus according to an embodiment of the present invention;
FIG. 4 is a flow chart of another method for operational approval provided by an embodiment of the present invention;
fig. 5 is a block diagram of another operation approval apparatus according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, fig. 1 is a flowchart illustrating an operation approval method according to an embodiment of the present invention. The method is applied to a communication server and can comprise the following steps:
step 101: acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in a user terminal; and the target operation instruction is an operation instruction corresponding to the communication approval process.
It is understood that the communication server in this embodiment may be a server of real-time communication software such as a pocket assistant (MOA), a nail, an enterprise WeChat, a flybook, and an enterprise office system. The user terminal in this step may be a client device corresponding to the communication server. The target operation instruction in this step may be an operation instruction of an operation (i.e., a target operation) that needs to be approved by using a communication approval process of the communication server in the virtual desktop, that is, the user may perform an operation on the virtual desktop in the user terminal to generate the target operation instruction, so as to control the user terminal to complete the target operation of the virtual desktop.
Specifically, the communication approval process in this embodiment may be an approval process of an operation that a virtual desktop in a user terminal configured in a communication server needs to be approved. The specific number and type of the communication approval process in this embodiment may be set by a designer according to a practical scenario and a user requirement, for example, the communication approval process may include a export file application process corresponding to a file export operation instruction, that is, an export file application process for approving a file export operation of a virtual desktop; the communication approval process may also include a virtual machine number expansion application process corresponding to the virtual machine number expansion operation instruction, that is, a virtual machine number expansion operation application process for approving the virtual machine number expansion operation of the virtual desktop; the communication approval process may further include a new user application process corresponding to the new user operation instruction, that is, a new user application process for approving the new user operation of the virtual desktop. The present embodiment does not set any limit to this.
Correspondingly, in this embodiment, the communication approval process may be a preset fixed approval process, that is, a designer may set a fixed communication approval process and a communication approval process in the communication server according to the approval requirement of a manager on the virtual desktop, or configure an established approval process in the communication server according to the approval requirement of the manager, that is, the communication server may configure the communication approval process according to an approval process configuration request sent by a manager terminal; for example, the administrator may operate the administrator terminal according to the requirement of the administrator terminal, and select a required approval process from a preset approval process (e.g., a new user application process, a virtual machine number expansion application process, a file export application process, and the like in fig. 2), so that the administrator terminal may generate and send an approval process configuration request to the communication server, and the communication server may configure a communication approval process corresponding to the approval process configuration request; that is, the approval process configuration request includes the preset approval process selection information, so that the configured communication approval process may include the preset approval process corresponding to the preset approval process selection information.
It should be noted that the examination and approval query request in this step may be a request for querying the examination and approval condition of the target operation instruction. For the specific content of the approval query request in the step, the designer can set the content according to the practical scene and the user requirement, for example, in this embodiment, the user submits the approval application to the communication server in advance, so that the manager approves the content corresponding to the target operation instruction in the approval application submitted by the user, and the situation that the manager is notified to approve the target operation instruction when the target operation instruction needs to be executed or the same content is approved for multiple times is avoided; that is, the approval query request in this step may include information of the approval application (i.e., pre-application information), such as the application form number of the approval application. The examination and approval query request in this step may also include target operation instruction information, such as export file information corresponding to the file export operation instruction, for example, a file name or a unique feature value. The present embodiment does not set any limit to this.
Correspondingly, the step can also comprise receiving an approval application corresponding to the communication approval process sent by the user terminal; sending application information corresponding to the approval application to an administrator terminal; and determining an application approval result according to application approval information corresponding to the approval application returned by the administrator terminal. For example, when the communication approval process includes a file export application process, a user may submit an approval application (i.e., an export file application) corresponding to the file export application process to the communication server through the user terminal, where the approval application may include an export file and export reason information, so as to facilitate the administrator to audit; the communication server can send application information (such as application content information, examination and approval progress information and the like) corresponding to the examination and approval application to the administrator terminal, so that an administrator can conveniently and rapidly examine the examination and approval application at the administrator terminal; the communication server may determine an approval result (i.e., an application approval result) of the approval application according to application approval information, which is returned by the administrator terminal and corresponds to the approval application and is approved or not approved. If the received application approval information is approved, the communication server can determine that the application approval result is approved; when the received application approval information is approved, determining that the application approval result is approved; and when the application approval information is not received, determining that the application approval result is in an approval failure state or an approval failure state.
Step 102: and detecting a request approval result corresponding to the approval query request.
The request approval result in this step may be an approval result of the approval query request.
Specifically, the specific manner of detecting the request approval result corresponding to the approval query request by the communication server in the step can be set by a designer according to a practical scene and user requirements, for example, the communication server can detect the application approval result of the approval application corresponding to the pre-application information according to the pre-application information in the approval query request; determining a request approval result according to the application approval result so as to reduce the detection calculation amount of the request approval result through the detection of the application approval result; for example, when the target operation instruction is a file export operation instruction, the communication server firstly detects an application approval result of an approval application corresponding to an application form number in the approval query request; determining a request approval result of the approval query request according to an application approval result of the approval application; if the approval result of the application is approved, judging whether the exported file information (such as a unique characteristic value) in the approval query request is matched with the approved file information in the detected approval application; if so, determining that the approval result of the request is approved; if not, determining that the approval result of the request is that the approval is not passed; if the application approval result is that the approval is not passed, determining that the request approval result is that the approval is not passed; and if the application approval result is in an unapproved state, determining that the request approval result is that the approval is not passed, or determining that the request approval result is that the approval is not completed, so as to prompt a user to wait for the administrator to examine and approve the application. For example, after a user opens a file export tool in the virtual machine and selects a file to be copied (i.e., an export file) to generate a target operation instruction, the file export tool may pop up an input box of an application form number, and if the user does not input the application form number, the file copy fails; after a user inputs a flow sheet number to generate an approval query request, the user terminal can call an MOA interface to send the approval query request to an MOA communication server so as to verify the unique characteristic value of a file by using the MOA communication server, and if the unique characteristic value of an attachment of an approval application corresponding to an approved application sheet number is equal to the characteristic value of the file to be copied, the file is allowed to be copied; and if the verification fails, rejecting the copied file.
Correspondingly, when the application approval result is approval pass, the communication server can send the detected approval file information (such as a unique characteristic value) in the approval application as a request approval result to the user terminal, so that the user terminal can detect whether the export file information corresponding to the file export operation instruction is matched with the approval file information in the request approval result, and further can automatically judge whether the file export operation instruction is executed.
Correspondingly, the communication server can also directly detect the request approval result according to the target operation instruction information in the approval query request; for example, when the target operation instruction is a file export operation instruction, the communication server may determine whether export file information (such as a unique characteristic value) in the approval query request matches any approval file information in all approved approval applications; if so, determining that the approval result of the request is approved; if not, determining that the approval result of the request is that the approval is not passed.
Step 103: and sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result.
It can be understood that, in this step, the communication server returns the approval result (i.e., the request approval result) corresponding to the approval query request to the user terminal, so that the user terminal can process the target operation instruction according to the returned request approval result, thereby implementing the first approval and then the execution of the target operation, and ensuring the security of the virtual desktop.
For example, after the communication server sends the request approval result that the audit fails to pass to the user terminal, the user terminal may reject the target operation instruction to avoid the execution of the target operation instruction that the audit fails to pass; if the target operation instruction is a file export operation instruction, the user terminal can refuse to export the export file corresponding to the file export operation instruction when the request approval result corresponding to the file export operation instruction is that the approval is not passed, so that data leakage in the virtual desktop is prevented. After the communication server sends the request approval result which is not passed by the approval to the user terminal, the user terminal can refuse the target operation instruction and output the information that the approval of the administrator is not completed, so that the user can be promoted to wait for the administrator to finish the approval and send the approval query request; and after the communication server sends the approval result of the approved request to the user terminal, the user terminal can execute the target operation instruction to complete the approved target operation.
In the embodiment of the invention, the communication server detects the request approval result corresponding to the approval query request, the communication server of the communication software is used for approving the target operation of the virtual desktop in the user terminal, and the communication software can be combined to realize the first approval and the second execution of the target operation in the virtual desktop, so that the safety of the virtual desktop is ensured, and the approval efficiency and the user experience are improved.
Corresponding to the above method embodiment, an operation approval apparatus applied to the communication server is further provided in the embodiments of the present invention, and the operation approval apparatus applied to the communication server described below and the operation approval method applied to the communication server described above may be referred to correspondingly.
Referring to fig. 3, fig. 3 is a block diagram of an operation approval apparatus according to an embodiment of the present invention. The device is applied to a communication server and can comprise:
the request acquisition module 10 is configured to acquire an approval query request corresponding to a target operation instruction of a virtual desktop in a user terminal; the target operation instruction is an operation instruction corresponding to the communication approval process;
the approval detection module 20 is used for detecting a request approval result corresponding to the approval query request;
and the result sending module 30 is configured to send the request approval result to the user terminal, so that the target operation instruction is processed according to the request approval result.
Optionally, the approval detection module 20 may include:
the application detection sub-module is used for detecting an application approval result of the approval application corresponding to the pre-application information in the approval query request;
and the request detection submodule is used for determining a request approval result according to the application approval result.
Optionally, the apparatus may further include:
the application receiving module is used for receiving an approval application corresponding to the communication approval process sent by the user terminal;
the examination and approval sending module is used for sending application information corresponding to the examination and approval application to the administrator terminal;
and the application determining module is used for determining an application approval result according to the application approval information corresponding to the approval application returned by the administrator terminal.
Optionally, the request detection sub-module may include:
the matching unit is used for detecting whether the export file information in the examination and approval query request is matched with the examination and approval file information in the examination and approval application if the examination and approval result of the application is that the examination and approval is passed; if so, determining that the approval result of the request is approved; if not, determining that the approval result of the request is that the approval is not passed.
Optionally, the apparatus may further include:
the configuration acquisition module is used for acquiring an approval process configuration request sent by the administrator terminal; the approval process configuration request comprises preset approval process selection information;
the process configuration module is used for configuring a communication approval process according to the approval process configuration request; the communication approval process comprises a preset approval process corresponding to the preset approval process selection information.
In the embodiment of the invention, the approval detection module 20 detects the request approval result corresponding to the approval query request, the communication server of the communication software is used for approving the target operation of the virtual desktop in the user terminal, and the communication software can be combined to realize the first approval and the second execution of the target operation in the virtual desktop, so that the safety of the virtual desktop is ensured, and the approval efficiency and the user experience are improved.
Corresponding to the above method embodiment, the embodiment of the present invention further provides a communication server, and the communication server described below and the operation approval method applied to the communication server described above may be referred to in correspondence.
A communications server, comprising: a memory for storing a computer program; and a processor for implementing the steps of the operation approval method applied to the communication server as provided in the above embodiments when executing the computer program.
The communication server provided by this embodiment may be a server of real-time communication software.
Based on the above embodiment, the embodiment of the present invention further provides an operation approval method applied to a user terminal, so as to process an operation instruction approved by a communication server through the user terminal; the operation approval method applied to the user terminal described below and the operation approval method applied to the communication server described above may be referred to in correspondence with each other.
Referring to fig. 4, fig. 4 is a flowchart illustrating another operation approval method according to an embodiment of the present invention. The method is applied to the user terminal and can comprise the following steps:
step 201: generating and sending an approval query request to a communication server according to the obtained target operation instruction in the virtual desktop; and the target operation instruction is an operation instruction corresponding to the communication approval process.
It can be understood that the user terminal in this embodiment may be a client device corresponding to the communication server, that is, a terminal running communication software corresponding to the communication server, for example, the user terminal may run communication software corresponding to the communication server in the virtual desktop.
Specifically, in this step, the user terminal may generate and send an approval query request corresponding to the target operation instruction to the communication server after acquiring the target operation instruction; for example, when the approval query request includes the pre-application information (such as an application form number), the user terminal displays a pre-application information output box after acquiring the target operation instruction; generating an approval query request according to the pre-application information and the target operation instruction input in the pre-application information output box; if a user opens a file export tool in the virtual machine, and selects a file to be copied (namely an export file) to generate a target operation instruction, the file export tool can pop up an input box of an application form number, and if the user does not input the application form number, the file copying is failed; after the user inputs the process sheet number to generate an approval query request, the user terminal can call the MOA interface to send the approval query request to the MOA communication server. The user terminal can also directly generate and send an approval query request to the communication server according to the target operation instruction; if the target operation instruction is a file export operation instruction, the user terminal can generate and approve the query request to the communication server according to export file information (such as a unique characteristic value) corresponding to the file export operation instruction, so that the communication server can determine a request approval result corresponding to the approval query request by judging whether the export file information in the approval query request is matched with any approval file information in all approved approval applications.
Further, when the communication approval process in this embodiment includes a file export application process, the user terminal may disable the clipboard function in the virtual desktop, so that the user is only allowed to copy out a file by using the file export operation that the approval passes, and data is prevented from being leaked from other data channels.
Step 202: and receiving a request approval result corresponding to the approval query request returned by the communication server.
Step 203: and processing the target operation instruction according to the request approval result.
Specifically, the specific manner in which the user terminal processes the target operation instruction according to the approval request result in this step may be set by the designer, for example, the user terminal may execute the target operation instruction when the approval request result is that the approval is passed; and when the request approval result is not approved (such as the approval is not passed or the approval is not completed), rejecting the target operation instruction. The user terminal can also judge whether the export file information corresponding to the target operation instruction is matched with the approval file information in the request approval result when the request approval result is the approval file information (such as a unique characteristic value) in the approval application; if yes, a target operation instruction is given; if not, rejecting the target operation instruction; and when the request approval result is that the approval is not passed or the approval is not completed, rejecting the target operation instruction.
Further, when the communication approval process in this embodiment includes a file export application process, if the target operation instruction is a file export operation instruction corresponding to the file export application process, the user terminal may record audit information, such as a file name, export time, user information, and the like, of an export file corresponding to the file export operation instruction in the process of executing the file export operation instruction, so as to implement retrospective tracing by using the recorded audit information.
In the embodiment of the invention, the target operation instruction is processed according to the request approval result returned by the communication server, the communication server of the communication software is used for approving the target operation of the virtual desktop in the user terminal, the communication software can be combined to realize the first approval and the second execution of the target operation in the virtual desktop, the safety of the virtual desktop is ensured, and the approval efficiency and the user experience are improved.
Corresponding to the above method embodiment, the embodiment of the present invention further provides an operation approval apparatus applied to the user terminal, and the operation approval apparatus applied to the user terminal described below and the operation approval method applied to the user terminal described above may be referred to in correspondence with each other.
Referring to fig. 5, fig. 5 is a block diagram illustrating another operation approval apparatus according to an embodiment of the present invention. The device is applied to the user terminal and can comprise:
the request generation module 40 is configured to generate and send an approval query request to the communication server according to the obtained target operation instruction in the virtual desktop; the target operation instruction is an operation instruction corresponding to the communication approval process;
the approval receiving module 50 is configured to receive a request approval result corresponding to the approval query request returned by the communication server;
and the approval processing module 60 is configured to process the target operation instruction according to the request approval result.
Optionally, the request generating module 40 may include:
the display sub-module is used for displaying the pre-application information output frame after the target operation instruction is acquired;
and the generation submodule is used for generating an approval query request according to the pre-application information input in the pre-application information output box.
Optionally, when the communication approval process includes a file export application process, the apparatus may further include:
and the disabling module is used for disabling the clipboard function in the virtual desktop.
Optionally, the approval processing module 60 may include:
the execution submodule is used for executing the target operation instruction if the request approval result is approval pass;
and the rejecting submodule is used for rejecting the target operation instruction if the request approval result is not approved.
Optionally, the communication approval process includes a file export application process, and when the target operation instruction is a file export operation instruction corresponding to the file export application process, the execution sub-module may include:
and the recording unit is used for recording audit information of the export file corresponding to the file export operation instruction.
In this embodiment, the approval processing module 60 processes the target operation instruction according to the request approval result returned by the communication server, the communication server of the communication software is used to approve the target operation of the virtual desktop in the user terminal, and the communication software can be combined to implement first approval and then execution of the target operation in the virtual desktop, so that the security of the virtual desktop is ensured, and the approval efficiency and the user experience are improved.
Corresponding to the above method embodiment, the embodiment of the present invention further provides a user terminal, and the user terminal described below and the operation approval method applied to the user terminal described above may be referred to in a corresponding manner.
A user terminal, comprising: a memory for storing a computer program; and a processor, configured to implement the steps of the operation approval method applied to the user terminal as provided in the above embodiment when executing the computer program.
The user terminal provided by this embodiment may be a client device running real-time communication software.
Corresponding to the above method embodiment, the embodiment of the present invention further provides a readable storage medium, and a readable storage medium described below and an operation approval method described above may be referred to in correspondence.
A readable storage medium, on which a computer program is stored, and when being executed by a processor, the computer program implements the steps of the operation approval method applied to the communication server or the operation approval method applied to the user terminal provided by the above method embodiments.
The readable storage medium may be a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and various other readable storage media capable of storing program codes.
The embodiments are described in a progressive manner in the specification, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other. The device, the communication server, the user terminal and the computer-readable storage medium disclosed by the embodiments correspond to the method disclosed by the embodiments, so that the description is relatively simple, and the relevant points can be referred to the description of the method part.
The operation approval method, the operation approval apparatus, the communication server, the user terminal, and the computer-readable storage medium according to the present invention are described in detail above. The principles and embodiments of the present invention are explained herein using specific examples, which are presented only to assist in understanding the method and its core concepts. It should be noted that, for those skilled in the art, it is possible to make various improvements and modifications to the present invention without departing from the principle of the present invention, and those improvements and modifications also fall within the scope of the claims of the present invention.
Claims (15)
1. An operation approval method applied to a communication server includes:
acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in a user terminal; the target operation instruction is an operation instruction corresponding to a communication approval process;
detecting a request approval result corresponding to the approval query request;
and sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result.
2. The operation approval method according to claim 1, wherein the detecting of the request approval result corresponding to the approval query request comprises:
detecting an application approval result of the approval application corresponding to the pre-application information in the approval query request;
and determining the request approval result according to the application approval result.
3. The operation approval method according to claim 2, wherein before detecting an application approval result of the approval application corresponding to the pre-application information in the approval query request, the method further comprises:
receiving an approval application corresponding to the communication approval process and sent by the user terminal;
sending application information corresponding to the approval application to an administrator terminal;
and determining the application approval result according to the application approval information corresponding to the approval application returned by the administrator terminal.
4. The operation approval method according to claim 2, wherein when the communication approval process includes a file export application process, the determining the request approval result according to the application approval result includes:
if the application approval result is approval pass, detecting whether derived file information in the approval query request is matched with approval file information in the approval application;
if so, determining that the request approval result is approved;
if not, determining that the request approval result is that the approval is not passed.
5. The operation approval method according to claim 1, further comprising:
acquiring an approval process configuration request sent by an administrator terminal; the approval process configuration request comprises preset approval process selection information;
configuring the communication approval process according to the approval process configuration request; and the communication approval process comprises a preset approval process corresponding to the preset approval process selection information.
6. An operation approval apparatus applied to a communication server, comprising:
the request acquisition module is used for acquiring an approval query request corresponding to a target operation instruction of a virtual desktop in the user terminal; the target operation instruction is an operation instruction corresponding to a communication approval process;
the examination and approval detection module is used for detecting a request examination and approval result corresponding to the examination and approval query request;
and the result sending module is used for sending the request approval result to the user terminal so as to process the target operation instruction according to the request approval result.
7. A communications server, comprising:
a memory for storing a computer program;
a processor for implementing the steps of the operational approval method of any one of claims 1 to 5 when executing said computer program.
8. An operation approval method applied to a user terminal includes:
generating and sending an approval query request to a communication server according to the obtained target operation instruction in the virtual desktop; the target operation instruction is an operation instruction corresponding to a communication approval process;
receiving a request approval result corresponding to the approval query request returned by the communication server;
and processing the target operation instruction according to the request approval result.
9. The operation approval method according to claim 8, wherein the generating and sending an approval query request to a communication server according to the obtained target operation instruction in the virtual desktop comprises:
after the target operation instruction is obtained, displaying a pre-application information output frame;
and generating the examination and approval query request according to the pre-application information input in the pre-application information output box.
10. The operation approval method according to claim 8, wherein when the communication approval process includes a file export application process, the method further comprises:
disabling clipboard functionality in the virtual desktop.
11. The operation approval method according to claim 8, wherein the processing the target operation command according to the request approval result comprises:
if the request approval result is approval passing, executing the target operation instruction;
and if the request approval result is not approval pass, rejecting the target operation instruction.
12. The operation approval method according to claim 11, wherein the communication approval process includes a file export application process, and when the target operation instruction is a file export operation instruction corresponding to the file export application process, the executing the target operation instruction includes:
and recording audit information of the export file corresponding to the file export operation instruction.
13. An operation approval apparatus applied to a user terminal, comprising:
the request generation module is used for generating and sending an approval query request to the communication server according to the obtained target operation instruction in the virtual desktop; the target operation instruction is an operation instruction corresponding to a communication approval process;
the examination and approval receiving module is used for receiving a request examination and approval result corresponding to the examination and approval query request returned by the communication server;
and the approval processing module is used for processing the target operation instruction according to the request approval result.
14. A user terminal, comprising:
a memory for storing a computer program;
a processor for implementing the steps of the operational approval method of any one of claims 8 to 12 when executing said computer program.
15. A computer-readable storage medium, characterized in that a computer program is stored thereon, which computer program, when being executed by a processor, carries out the steps of the operational approval method according to any one of claims 1 to 5 or the operational approval method according to any one of claims 8 to 12.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111166686.8A CN113886808A (en) | 2021-09-30 | 2021-09-30 | Operation approval method and device, communication server and user terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111166686.8A CN113886808A (en) | 2021-09-30 | 2021-09-30 | Operation approval method and device, communication server and user terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113886808A true CN113886808A (en) | 2022-01-04 |
Family
ID=79005281
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111166686.8A Pending CN113886808A (en) | 2021-09-30 | 2021-09-30 | Operation approval method and device, communication server and user terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113886808A (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150113528A1 (en) * | 2013-10-21 | 2015-04-23 | Electronics And Telecommunications Research Institute | Virtual desktop service apparatus and method |
| CN107580009A (en) * | 2016-07-04 | 2018-01-12 | 北京新岸线网络技术有限公司 | A kind of verifying video content method and system |
| CN108712385A (en) * | 2018-04-18 | 2018-10-26 | 平安科技(深圳)有限公司 | Data capture method, device, computer equipment and storage medium |
| CN109639652A (en) * | 2018-11-22 | 2019-04-16 | 贵州华云创谷科技有限公司 | The method and system of data access between a kind of net based on security isolation |
| US20200210214A1 (en) * | 2019-01-02 | 2020-07-02 | Vmware, Inc. | Auditing clipboard operations in virtual desktop environments |
| CN111695876A (en) * | 2020-06-16 | 2020-09-22 | 北京同邦卓益科技有限公司 | Approval process processing method, device, equipment and storage medium |
-
2021
- 2021-09-30 CN CN202111166686.8A patent/CN113886808A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150113528A1 (en) * | 2013-10-21 | 2015-04-23 | Electronics And Telecommunications Research Institute | Virtual desktop service apparatus and method |
| CN107580009A (en) * | 2016-07-04 | 2018-01-12 | 北京新岸线网络技术有限公司 | A kind of verifying video content method and system |
| CN108712385A (en) * | 2018-04-18 | 2018-10-26 | 平安科技(深圳)有限公司 | Data capture method, device, computer equipment and storage medium |
| CN109639652A (en) * | 2018-11-22 | 2019-04-16 | 贵州华云创谷科技有限公司 | The method and system of data access between a kind of net based on security isolation |
| US20200210214A1 (en) * | 2019-01-02 | 2020-07-02 | Vmware, Inc. | Auditing clipboard operations in virtual desktop environments |
| CN111695876A (en) * | 2020-06-16 | 2020-09-22 | 北京同邦卓益科技有限公司 | Approval process processing method, device, equipment and storage medium |
Non-Patent Citations (1)
| Title |
|---|
| 关兆雄;庞维欣;: "基于Powershell脚本语言的虚拟桌面管理研究", 自动化技术与应用, no. 09, 25 September 2018 (2018-09-25), pages 39 - 42 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2020233219A1 (en) | Abnormal problem locating method and device, apparatus and computer readable storage medium | |
| US20230004411A1 (en) | Method, apparatus and device for generating bare metal server linux system | |
| CN107104923B (en) | Account binding and service processing method and device | |
| CN109062965B (en) | Big data analysis system, server, data processing method and storage medium | |
| CN113434396A (en) | Interface test method, device, equipment, storage medium and program product | |
| CN110795162B (en) | Method and device for generating container mirror image file | |
| RU2006103986A (en) | METHOD FOR ADMINISTRATING SOFTWARE COMPONENTS INTEGRATED INTO MOBILE SYSTEM | |
| CN113297153A (en) | Data export method, device, equipment and storage medium | |
| CN112947907B (en) | Method for creating code branches | |
| WO2019062020A1 (en) | Asynchronous task unified processing method and apparatus, and storage medium | |
| CN112835856A (en) | Log data query method and device, equipment and medium | |
| CN113886808A (en) | Operation approval method and device, communication server and user terminal | |
| CN114070856B (en) | Data processing method, device, system, operation and maintenance auditing equipment and storage medium | |
| CN115774581A (en) | Method and related apparatus for executing robot feet | |
| CN113312661B (en) | User authorization system, method and device and electronic equipment | |
| CN113792326B (en) | File content copy limiting method and device | |
| JP2614341B2 (en) | Migration system for replacing old and new computer systems | |
| CN114356441B (en) | Plug-in preloading method and device, electronic equipment and storage medium | |
| CN117271482B (en) | Historical data migration method and device, electronic equipment and storage medium | |
| WO2023014282A1 (en) | Device and method for automated generation of parameter testing requests | |
| CN107797842B (en) | Method and device for calling virtual machine management tool | |
| CN117707441A (en) | Intelligent printing method, system, equipment and medium based on RPA | |
| CN114638207A (en) | Method, device, equipment and storage medium for automatically configuring and submitting machine function items | |
| CN113535835A (en) | Data acquisition method, device, medium and equipment of kernel data processing software | |
| CN117032680A (en) | Function library generation method, function library generation device, function interface calling and data reading and writing method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |