CN115396436A - Service access method, device, electronic equipment and medium - Google Patents
Service access method, device, electronic equipment and medium Download PDFInfo
- Publication number
- CN115396436A CN115396436A CN202211008739.8A CN202211008739A CN115396436A CN 115396436 A CN115396436 A CN 115396436A CN 202211008739 A CN202211008739 A CN 202211008739A CN 115396436 A CN115396436 A CN 115396436A
- Authority
- CN
- China
- Prior art keywords
- access
- server
- service
- service access
- candidate
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 51
- 238000012423 maintenance Methods 0.000 claims abstract description 82
- 238000012508 change request Methods 0.000 claims description 13
- 238000004590 computer program Methods 0.000 claims description 11
- 238000013473 artificial intelligence Methods 0.000 abstract description 7
- 239000003795 chemical substances by application Substances 0.000 description 20
- 238000004891 communication Methods 0.000 description 15
- 238000005516 engineering process Methods 0.000 description 11
- 238000012545 processing Methods 0.000 description 9
- 238000010586 diagram Methods 0.000 description 7
- 230000006870 function Effects 0.000 description 4
- 230000004044 response Effects 0.000 description 4
- 230000004048 modification Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 3
- 230000003993 interaction Effects 0.000 description 2
- 238000010801 machine learning Methods 0.000 description 2
- 238000003491 array Methods 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000013135 deep learning Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 230000003924 mental process Effects 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 238000003058 natural language processing Methods 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 230000001953 sensory effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 238000012549 training Methods 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
The disclosure provides a service access method, a service access device, electronic equipment and a medium, which relate to the field of artificial intelligence, in particular to the field of cloud computing and are applicable to service access scenes. The specific implementation scheme is as follows: responding to a service access request received from an operation and maintenance server, and determining a target proxy server for the service access request from at least two candidate proxy servers in an ARM server based on access configuration information of the at least two candidate proxy servers; sending the service access request to the target proxy server so that the target proxy server determines a service access result of the service access request; and sending the service access result to the operation and maintenance server. The method and the device can improve the safety of service access and the convenience of equipment operation and maintenance.
Description
Technical Field
The present disclosure relates to the field of artificial intelligence, and in particular to the field of cloud computing, which can be used in service access scenarios.
Background
The ARM server is a basis for the ARM cloud to provide computing services, has the characteristics of multiple cores, high parallelism, low power consumption, low cost and the like, and is suitable for mobile communication application scenes such as mobile computing and real-time video streaming. The operation and maintenance server of the ARM cloud is used for operating and maintaining the ARM server in the ARM cloud, and is an important guarantee for the ARM cloud to provide high-reliability computing service for the outside.
The operation and maintenance server of the ARM cloud mostly accesses the ARM server in the ARM cloud based on an agent communication architecture such as a proxy-agent architecture, so that the operation and maintenance of the ARM server are realized. However, controlling the ARM server based on the proxy communication architecture requires exposing a service access interface of the proxy server in the ARM server, and data security in the ARM server is at risk.
Disclosure of Invention
The disclosure provides a service access method, a service access device, an electronic device and a medium.
According to an aspect of the present disclosure, there is provided a service access method, the method including:
responding to a service access request received from an operation and maintenance server, and determining a target proxy server for the service access request from at least two candidate proxy servers in an ARM server based on access configuration information of the at least two candidate proxy servers;
sending the service access request to the target proxy server so that the target proxy server determines a service access result of the service access request;
and sending the service access result to the operation and maintenance server.
According to another aspect of the present disclosure, there is provided a service access apparatus including:
the agent determining module is used for responding to a service access request received from the operation and maintenance server, and determining a target agent server for the service access request from at least two candidate agent servers in the ARM server based on the access configuration information of the at least two candidate agent servers;
a result determining module, configured to send the service access request to the target proxy server, so that the target proxy server determines a service access result of the service access request;
and the result sending module is used for sending the service access result to the operation and maintenance server.
According to another aspect of the present disclosure, there is provided an electronic device including:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to perform a service access method according to any one of the embodiments of the present disclosure.
According to another aspect of the present disclosure, there is provided a non-transitory computer readable storage medium storing computer instructions for causing a computer to perform a service access method according to any one of the embodiments of the present disclosure.
According to another aspect of the present disclosure, there is provided a computer program product comprising a computer program which, when executed by a processor, implements the service access method of any of the embodiments of the present disclosure.
According to the technology disclosed by the invention, the safety of service access and the convenience of equipment operation and maintenance can be improved.
It should be understood that the statements in this section are not intended to identify key or critical features of the embodiments of the present disclosure, nor are they intended to limit the scope of the present disclosure. Other features of the present disclosure will become apparent from the following description.
Drawings
The drawings are included to provide a better understanding of the present solution and are not to be construed as limiting the present disclosure. Wherein:
fig. 1 is a flow chart of a service access method provided according to an embodiment of the present disclosure;
FIG. 2 is a flow chart of another method of service access provided in accordance with an embodiment of the present disclosure;
fig. 3 is a schematic structural diagram of a service access system provided according to an embodiment of the present disclosure;
fig. 4 is a schematic structural diagram of a service access device provided according to an embodiment of the present disclosure;
fig. 5 is a block diagram of an electronic device used to implement the service access method of an embodiment of the present disclosure.
Detailed Description
Exemplary embodiments of the present disclosure are described below with reference to the accompanying drawings, in which various details of the embodiments of the disclosure are included to assist understanding, and which are to be considered as merely exemplary. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the disclosure. Also, descriptions of well-known functions and constructions are omitted in the following description for clarity and conciseness.
Fig. 1 is a flowchart of a service access method provided according to an embodiment of the present disclosure, and the embodiment of the present disclosure is suitable for a case where an operation and maintenance server of an ARM cloud performs service access on an ARM server in the ARM cloud. The method may be performed by a service access apparatus, which may be implemented in software and/or hardware, and may be integrated in an electronic device carrying a service access function. As shown in fig. 1, the service access method of this embodiment may include:
s101, responding to a service access request received from an operation and maintenance server, and determining a target proxy server for the service access request from at least two candidate proxy servers based on access configuration information of the at least two candidate proxy servers in an ARM server;
s102, sending the service access request to the target proxy server so that the target proxy server determines a service access result of the service access request;
s103, sending the service access result to the operation and maintenance server.
The operation and maintenance server is used for operating and maintaining the ARM server. The ARM server is the basis for the ARM cloud to provide computing services. The service access request is generated by the operation and maintenance server and is sent to the ARM server, and the service access request is used for requesting the candidate proxy server in the ARM server to control the ARM server by using the service capability.
The candidate proxy servers are arranged in the ARM servers, and each ARM server comprises at least two candidate proxy servers. Different candidate proxy servers have different service capabilities, and the ARM server can be controlled differently through the different candidate proxy servers. Exemplary service capabilities of candidate proxy servers include: the command issuing capability, the service upgrading capability, the service inspection capability and the like.
The access configuration information is used for determining the service capability of the candidate proxy server. And each candidate proxy server has corresponding access configuration information, and the access configuration information of the candidate proxy server is configured in the ARM server where the candidate proxy server is located.
Optionally, the access configuration information of the candidate proxy server is configured in the security access module of the ARM server. The security access module in the ARM server executes the service access method provided by the embodiment of the disclosure.
The ARM server is provided with a security access module and a candidate proxy server, wherein the security access module and the candidate proxy server are mutually independent in the ARM server. The candidate proxy servers and the security access modules are in a many-to-one relationship, that is, access configuration information of at least two candidate proxy servers can be configured in one security access module at the same time. Optionally, the access configuration information includes a service access interface, and the security access module may perform service access on the candidate proxy server based on the service access interface in the access configuration information.
And the service access interface of the candidate proxy server in the ARM server is not opened to the outside and is only opened to the security access module. That is, the operation and maintenance server outside the ARM server cannot directly perform service access to the candidate proxy server through the service access interface of the candidate proxy server.
The safety access module has a corresponding service access interface, and the service access interface of the safety access module is opened to the outside as a unified service access interface of the candidate proxy server in the ARM server, so that the operation and maintenance server can access the candidate proxy server in the ARM server through the safety access module based on the service access interface of the safety access module. Specifically, the operation and maintenance server generates a service access request based on a service access interface of the security access module.
And the safety access module in the ARM server responds to the service access request received from the operation and maintenance server, and determines a target proxy server for the service access request from at least two candidate proxy servers based on the access configuration information of the at least two candidate proxy servers in the ARM server. Wherein the target proxy server is generated in the candidate proxy server, and the service capability of the target proxy server is consistent with the required service capability of the service access request.
And under the condition that the target proxy server determines, a safety access module in the ARM server sends the service access request to the target proxy server. And the target proxy server controls the ARM server by utilizing the self service capability according to the service access request, determines a service access result for the service access request and feeds the service access result back to the security access module.
And the safety access module in the ARM server sends the service access result fed back by the target proxy server to the operation and maintenance server.
In the embodiment of the disclosure, the operation and maintenance server of the ARM cloud performs service access on the candidate proxy server in the ARM cloud through the security access module in the ARM server, so that a service access interface of the candidate proxy service in the ARM server is prevented from being disclosed to the outside, and the security of the service access is effectively ensured. In the embodiment of the disclosure, the service access interface of the security access module is used as the service access interface of the ARM server and is used as the unified service access interface of each candidate proxy server in the ARM server, so that the operation and maintenance server can directly send the service access request to the corresponding candidate proxy server through the security access module without distinguishing the candidate proxy servers, and the candidate proxy server performs service access on the ARM server by using the service capability of the candidate proxy server, thereby effectively improving the convenience of the operation and maintenance of the equipment.
In an optional embodiment, the sending the service access result to the operation and maintenance server includes: encrypting the service access result by using a preset encryption key; and sending the encrypted service access result to the operation and maintenance server so that the operation and maintenance server can decrypt the encrypted service access result by using a preset decryption key.
And the preset encryption key is used for encrypting the service access result. In contrast, the preset decryption key is used for decrypting the service access result. The preset encryption key and the preset decryption key form an encryption and decryption key pair. The preset encryption key and the preset decryption key may be determined based on a symmetric encryption algorithm or may be determined based on an asymmetric encryption algorithm, specifically according to actual service requirements, which is not limited herein. For example, the predetermined encryption key may be an SSH (Secure Shell) public key, and correspondingly, the predetermined decryption key is an SSH private key.
And a safety access module in the ARM server encrypts a service access result by using a preset encryption key, and sends the encrypted service access result to the operation and maintenance server. And the operation and maintenance server decrypts the encrypted service access result by using a preset decryption key.
According to the technical scheme, the communication data between the ARM server and the operation and maintenance server are encrypted through the security access module, so that the security of the communication data and the security of service access are ensured. Even if the communication data between the ARM server and the operation and maintenance server is intercepted, the communication data can still be ensured not to be leaked.
In an optional embodiment, the service access request is sent to the ARM server by a voltage division proxy server of the operation and maintenance server; and the candidate proxy server in the ARM server is a user proxy server.
The partial pressure proxy server is a layered structure used for sharing the pressure of the operation and maintenance server, the partial pressure proxy server can perform service access on the candidate proxy server in the ARM server by the proxy operation and maintenance server, and the service access result determined by the candidate proxy server is reported to the operation and maintenance server, so that the load pressure of the operation and maintenance server can be reduced. Optionally, the partial pressure proxy server is a proxy server. After the operation and maintenance server generates the service access request, the service access request is sent to the ARM server through the partial pressure proxy service.
And the candidate proxy server in the ARM server is a user proxy server. The user agent server refers to a user-level oriented agent server. Optionally, the user agent server is an agent server.
The embodiment of the disclosure is applicable to the situation that the operation and maintenance server accesses the ARM server based on the proxy communication architecture. Specifically, the method can be applied to the operation and maintenance server to perform service access on a user agent server in an ARM server, such as an agent server, based on a partial pressure proxy server, and the user agent server controls the ARM server, so that the scene applicability of the service access method is ensured.
FIG. 2 is a flow chart of another method of service access provided in accordance with an embodiment of the present disclosure; the present embodiment is an alternative proposed on the basis of the above-described embodiments. The embodiment of the present disclosure provides another service access method, and this embodiment is an alternative proposed on the basis of the above embodiments. Specifically, the embodiment of the present disclosure refines the operation "determining a target proxy server for the service access request from at least two candidate proxy servers based on the access configuration information of the at least two candidate proxy servers in the ARM server".
Referring to fig. 2, the service access method provided in this embodiment includes:
s201, responding to a service access request received from an operation and maintenance server, matching an access service type in the service access request with at least two candidate access service types in the access configuration information, and determining the candidate access service type successfully matched as a target access service type.
And determining a target proxy server to be accessed by the operation and maintenance server based on the access service type. The access service type is determined by the operation and maintenance server based on actual business requirements. The access service type in the service access request is the service capability that the operation and maintenance server needs to request from the candidate proxy server. The candidate access service type in the access configuration information refers to the service capability that the candidate proxy server can provide to the operation and maintenance server. It is to be understood that the candidate proxy server may not necessarily provide the operation and maintenance server with the service capability required by the operation and maintenance server.
And the safety access module in the ARM server responds to the server access request received from the operation and maintenance server and matches the access service type in the service access request with at least two candidate access service types in the access configuration information. And if the matching is successful, indicating that the candidate proxy server has the service capability required by the operation and maintenance server. And the security access module determines the successfully matched candidate access service type as a target access service type. The target access service type is the access service type required by the operation and maintenance server.
S202, according to the access configuration information, determining a target service access interface associated with the target access service type from at least two candidate service access interfaces in the ARM server.
Wherein the access configuration information comprises an access service type and a service access interface associated therewith. The service access interface is used for performing service access on the candidate proxy server, and the service capability of the candidate proxy server can be called based on the service access interface. Each candidate proxy server has a service access interface corresponding to it.
And the safety access module determines a target service access interface associated with the target access service type from at least two candidate service interfaces in the ARM server according to the access configuration information.
S203, determining the candidate proxy server pointed by the target service access interface as the target proxy server.
The target service access interface is used for accessing the target proxy server and requesting the target access service type from the target proxy server.
And the security access module determines the candidate proxy server pointed by the target service access interface as the target proxy server.
S204, the service access request is sent to the target proxy server, so that the target proxy server determines a service access result of the service access request.
And the safety access module sends the service access request to the target proxy server, and the target proxy server controls the ARM server by utilizing the self service capability based on the service access request and determines a service access result for the service access request. And the target proxy server feeds back the service access result to the security access module.
S205, sending the service access result to the operation and maintenance server.
And the safety access module sends the service access result to the operation and maintenance server.
In the embodiment of the disclosure, the security access module, in response to a service access request received from the operation and maintenance server, determines a target access service type from candidate access service types in the access configuration information based on an access service type in the service access request, determines a target access interface based on the target access service type, and further determines a target proxy server. In the embodiment of the disclosure, the operation and maintenance server can no longer distinguish the candidate proxy servers, generate the service access request directly based on the access service type, and call the service capability of the target proxy server in the ARM server to control the ARM server based on the service access request through the security access module, thereby effectively improving the convenience of the operation and maintenance of the equipment.
The service access method provided by the embodiment of the disclosure is also suitable for a situation that a service scene of the ARM server changes.
Specifically, the service access method of this embodiment may further include: in response to receiving a service change request, determining a proxy server to be changed from at least two candidate proxy servers in an ARM server based on access configuration information of the at least two candidate proxy servers in the ARM server and an access service type in the service change request; and changing the access configuration information according to the access enabling state and/or the access interface data in the service change request.
The proxy server to be changed can be determined among the candidate proxy servers according to the type of the access service in the service change request. Specifically, the security access module matches the access service type in the service change request with the candidate access service type in the access configuration information, and determines a proxy server to be changed in the candidate proxy server according to the matching result of the access service type.
The service change request is used for changing the access configuration information of the proxy server to be changed in the ARM server. In particular, the access enabling state and/or the access interface data in the access configuration information may be modified based on the service change request. Wherein the access enabled state is used to determine whether the service capabilities of the candidate proxy server are in a disabled state. The access interface data refers to a service access interface of the candidate proxy server.
And the safety access module correspondingly changes the access configuration information according to the access enabling state and/or the access interface data in the service change request. The service change request may be generated in case of a change in a traffic scenario of the ARM server. The service change request is specifically used for changing the access enabling state in the access configuration information or accessing the interface data, and needs to be determined according to the actual service requirement, which is not limited herein.
In addition, the service access method provided by the embodiment of the disclosure also supports adding access configuration information in the ARM server.
Specifically, the service access method of this embodiment may further include: responding to the received service adding request, and acquiring access configuration information of an added proxy server; and updating the access configuration information of the candidate proxy server in the ARM server according to the access configuration information of the newly-added proxy server.
Wherein, the service newly-added request is used for additionally adding a new proxy server in the ARM server. The service addition request may be generated when a service scenario of the ARM server changes. The security access module responds to the received service newly-added request and acquires the access configuration information of the newly-added proxy server, wherein the access configuration information of the newly-added proxy server at least comprises the following steps: access service type and access service interface. And the safety access module updates the access configuration information of the candidate proxy server in the ARM server according to the access configuration information of the newly-added proxy server. Optionally, the security access module adds the access configuration information of the newly added proxy server to the existing access configuration information.
According to the technical scheme, the access configuration information is processed, so that the proxy server can be newly added and/or changed in the ARM server, and the expandability of the proxy server in the ARM server is greatly improved.
In a specific embodiment, the present disclosure provides a schematic structural diagram of a service access system, and referring to fig. 3, the service access system 300 includes: the system comprises an operation and maintenance server 310 and an ARM server 320, wherein the service access system comprises at least two ARM servers 320, each ARM server comprises a security access module 321 and at least two user agent servers 322. The operation and maintenance server 310 includes a voltage dividing proxy server 311. Not shown, while not all of ARM server 320, security access module 321, and user agent server 322 are labeled, in view of the tidiness and readability of figure 3.
The voltage dividing proxy server 311 in the operation and maintenance server 310 is communicatively connected with the user proxy server 322 in the ARM server 320 through the security access module 321 in the ARM server 320.
The security access module 321 in the ARM server is configured to execute the service access method provided in the embodiment of the present disclosure.
Optionally, the security access module is configured to, in response to a service access request received from the operation and maintenance server, determine a target proxy server for the service access request from at least two candidate proxy servers based on access configuration information of the at least two candidate proxy servers in the ARM server; sending the service access request to a target proxy server so that the target proxy server determines a service access result of the service access request; and sending the service access result to the operation and maintenance server.
In the embodiment of the disclosure, the operation and maintenance server of the ARM cloud performs service access on the candidate proxy server in the ARM cloud through the security access module in the ARM server, so that a service access interface of the candidate proxy server in the ARM server is prevented from being disclosed to the outside, and the security of the service access is effectively ensured. In the embodiment of the disclosure, the service access interface of the security access module is used as the service access interface of the ARM server and is used as the unified service access interface of each candidate proxy server in the ARM server, so that the operation and maintenance server can directly send the service access request to the corresponding candidate proxy server through the security access module without distinguishing the candidate proxy servers, and the candidate proxy server performs service access on the ARM server by using the service capability of the candidate proxy server, thereby effectively improving the convenience of the operation and maintenance of the equipment.
Fig. 4 is a schematic structural diagram of a service access device provided according to an embodiment of the present disclosure. The embodiment of the disclosure is suitable for the condition that the operation and maintenance server of the ARM cloud performs service access on the ARM server in the ARM cloud. The apparatus may be implemented by software and/or hardware, and may implement the service access method according to any embodiment of the present disclosure. As shown in fig. 4, the service access apparatus 400 includes:
the agent determining module 401 is configured to determine, in response to a service access request received from an operation and maintenance server, a target agent server for the service access request from at least two candidate agent servers in the ARM server based on access configuration information of the at least two candidate agent servers;
a result determining module 402, configured to send the service access request to the target proxy server, so that the target proxy server determines a service access result of the service access request;
a result sending module 403, configured to send the service access result to the operation and maintenance server.
In the embodiment of the disclosure, the operation and maintenance server of the ARM cloud performs service access on the candidate proxy server in the ARM cloud through the security access module in the ARM server, so that a service access interface of the candidate proxy server in the ARM server is prevented from being disclosed to the outside, and the security of the service access is effectively ensured. In the embodiment of the disclosure, the service access interface of the security access module is used as the service access interface of the ARM server and is used as the unified service access interface of each candidate proxy server in the ARM server, so that the operation and maintenance server can perform service access on the candidate proxy server in the ARM server directly through the security access module without distinguishing the candidate proxy servers, and the convenience of the operation and maintenance of the equipment is effectively improved.
Optionally, the agent determining module 401 includes: the type matching sub-module is used for matching the access service type in the service access request with at least two candidate access service types in the access configuration information, and determining the candidate access service type successfully matched as a target access service type; the interface determining submodule is used for determining a target service access interface associated with the target access service type from at least two candidate service access interfaces in an ARM server according to the access configuration information; and the proxy determination submodule is used for determining the candidate proxy server pointed by the target service access interface as the target proxy server.
Optionally, the result sending module 403 includes: the encryption sub-module is used for encrypting the service access result by using a preset encryption key; and the result sending submodule is used for sending the encrypted service access result to the operation and maintenance server so that the operation and maintenance server can decrypt the encrypted service access result by using a preset decryption key.
Optionally, the apparatus further comprises: the system comprises a to-be-changed proxy determining module, a to-be-changed proxy determining module and a service changing module, wherein the to-be-changed proxy determining module is used for responding to a received service changing request, and determining a to-be-changed proxy from at least two candidate proxy servers in an ARM server based on access configuration information of at least two candidate proxy servers in the ARM server and an access service type in the service changing request; and the configuration information changing module is used for changing the access configuration information according to the access enabling state and/or the access interface data in the service changing request.
Optionally, the apparatus further comprises: the configuration information acquisition module is used for responding to the received service addition request and acquiring the access configuration information of the addition proxy server; and the configuration information updating module is used for updating the access configuration information of the candidate proxy server in the ARM server according to the access configuration information of the newly-added proxy server.
Optionally, the service access request is sent to the ARM server by a partial pressure proxy server of the operation and maintenance server; and the candidate proxy server in the ARM server is a user proxy server.
The service access device provided by the embodiment of the disclosure can execute the service access method provided by any embodiment of the disclosure, and has corresponding functional modules and beneficial effects for executing the service access method.
In the technical scheme of the disclosure, the collection, storage, use, processing, transmission, provision, disclosure and the like of the related access configuration information and the service access result are in accordance with the regulations of related laws and regulations without violating the customs of public order.
The present disclosure also provides an electronic device, a readable storage medium, and a computer program product according to embodiments of the present disclosure.
FIG. 5 illustrates a schematic block diagram of an example electronic device 500 that can be used to implement embodiments of the present disclosure. Electronic devices are intended to represent various forms of digital computers, such as laptops, desktops, workstations, personal digital assistants, servers, blade servers, mainframes, and other appropriate computers. The electronic device may also represent various forms of mobile devices, such as personal digital processing, cellular phones, smart phones, wearable devices, and other similar computing devices. The components shown herein, their connections and relationships, and their functions, are meant to be examples only, and are not meant to limit implementations of the disclosure described and/or claimed herein.
As shown in fig. 5, the electronic device 500 comprises a computing unit 501 which may perform various suitable actions and processes according to a computer program stored in a Read Only Memory (ROM) 502 or a computer program loaded from a storage unit 508 into a Random Access Memory (RAM) 503. In the RAM 503, various programs and data required for the operation of the electronic apparatus 500 can also be stored. The computing unit 501, the ROM 502, and the RAM 503 are connected to each other via a bus 504. An input/output (I/O) interface 505 is also connected to bus 504.
A number of components in the electronic device 500 are connected to the I/O interface 505, including: an input unit 506 such as a keyboard, a mouse, or the like; an output unit 507 such as various types of displays, speakers, and the like; a storage unit 508, such as a magnetic disk, optical disk, or the like; and a communication unit 509 such as a network card, modem, wireless communication transceiver, etc. The communication unit 509 allows the electronic device 500 to exchange information/data with other devices through a computer network such as the internet and/or various telecommunication networks.
The computing unit 501 may be a variety of general-purpose and/or special-purpose processing components having processing and computing capabilities. Some examples of the computing unit 501 include, but are not limited to, a Central Processing Unit (CPU), a Graphics Processing Unit (GPU), various dedicated Artificial Intelligence (AI) computing chips, various computing units running machine learning model algorithms, a Digital Signal Processor (DSP), and any suitable processor, controller, microcontroller, and so forth. The computing unit 501 performs the various methods and processes described above, such as the service access method. For example, in some embodiments, the service access method may be implemented as a computer software program tangibly embodied in a machine-readable medium, such as storage unit 508. In some embodiments, part or all of the computer program may be loaded and/or installed onto the electronic device 500 via the ROM 502 and/or the communication unit 509. When the computer program is loaded into the RAM 503 and executed by the computing unit 501, one or more steps of the service access method described above may be performed. Alternatively, in other embodiments, the computing unit 501 may be configured to perform the service access method by any other suitable means (e.g., by means of firmware).
Various implementations of the systems and techniques described here above may be implemented in digital electronic circuitry, integrated circuitry, field Programmable Gate Arrays (FPGAs), application Specific Integrated Circuits (ASICs), application Specific Standard Products (ASSPs), system on a chip (SOCs), load programmable logic devices (CPLDs), computer hardware, firmware, software, and/or combinations thereof. These various embodiments may include: implemented in one or more computer programs that are executable and/or interpretable on a programmable system including at least one programmable processor, which may be special or general purpose, receiving data and instructions from, and transmitting data and instructions to, a storage system, at least one input device, and at least one output device.
Program code for implementing the methods of the present disclosure may be written in any combination of one or more programming languages. These program codes may be provided to a processor or controller of a general purpose computer, special purpose computer, or other programmable service access device, such that the program codes, when executed by the processor or controller, cause the functions/operations specified in the flowchart and/or block diagram to be performed. The program code may execute entirely on the machine, partly on the machine, as a stand-alone software package partly on the machine and partly on a remote machine or entirely on the remote machine or server.
In the context of this disclosure, a machine-readable medium may be a tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. The machine-readable medium may be a machine-readable signal medium or a machine-readable storage medium. A machine-readable medium may include, but is not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any suitable combination of the foregoing. More specific examples of a machine-readable storage medium would include an electrical connection based on one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
To provide for interaction with a user, the systems and techniques described here can be implemented on a computer having: a display device (e.g., a CRT (cathode ray tube) or LCD (liquid crystal display) monitor) for displaying information to a user; and a keyboard and a pointing device (e.g., a mouse or a trackball) by which a user can provide input to the computer. Other kinds of devices may also be used to provide for interaction with a user; for example, feedback provided to the user can be any form of sensory feedback (e.g., visual feedback, auditory feedback, or tactile feedback); and input from the user may be received in any form, including acoustic, speech, or tactile input.
The systems and techniques described here can be implemented in a computing system that includes a back-end component (e.g., as a data server), or that includes a middleware component (e.g., an application server), or that includes a front-end component (e.g., a user computer having a graphical user interface or a web browser through which a user can interact with an implementation of the systems and techniques described here), or any combination of such back-end, middleware, or front-end components. The components of the system can be interconnected by any form or medium of digital data communication (e.g., a communication network). Examples of communication networks include: local Area Networks (LANs), wide Area Networks (WANs), and the Internet.
The computer system may include clients and servers. A client and server are generally remote from each other and typically interact through a communication network. The relationship of client and server arises by virtue of computer programs running on the respective computers and having a client-server relationship to each other. The server may be a cloud server, a server of a distributed system, or a server combining a blockchain.
Artificial intelligence is the subject of research that makes computers simulate some human mental processes and intelligent behaviors (such as learning, reasoning, thinking, planning, etc.), both at the hardware level and at the software level. Artificial intelligence hardware technologies generally include technologies such as sensors, dedicated artificial intelligence chips, cloud computing, distributed storage, big data processing, and the like; the artificial intelligence software technology mainly comprises a computer vision technology, a voice recognition technology, a natural language processing technology, a machine learning/deep learning technology, a big data processing technology, a knowledge map technology and the like.
Cloud computing (cloud computing) refers to a technology system that accesses a flexibly extensible shared physical or virtual resource pool through a network, where resources may include servers, operating systems, networks, software, applications, storage devices, and the like, and may be deployed and managed in a self-service manner as needed. Through the cloud computing technology, high-efficiency and strong data processing capacity can be provided for technical application such as artificial intelligence and block chains and model training.
It should be understood that various forms of the flows shown above may be used, with steps reordered, added, or deleted. For example, the steps described in the present disclosure may be executed in parallel, sequentially, or in different orders, as long as the desired results of the technical solutions disclosed in the present disclosure can be achieved, and the present disclosure is not limited herein.
The above detailed description should not be construed as limiting the scope of the disclosure. It should be understood by those skilled in the art that various modifications, combinations, sub-combinations and substitutions may be made in accordance with design requirements and other factors. Any modification, equivalent replacement, and improvement made within the spirit and principle of the present disclosure should be included in the scope of protection of the present disclosure.
Claims (15)
1. A method of service access, the method comprising:
responding to a service access request received from an operation and maintenance server, and determining a target proxy server for the service access request from at least two candidate proxy servers in an ARM server based on access configuration information of the at least two candidate proxy servers;
sending the service access request to the target proxy server so that the target proxy server determines a service access result of the service access request;
and sending the service access result to the operation and maintenance server.
2. The method of claim 1, wherein the determining a target proxy server for the service access request from at least two candidate proxy servers based on access configuration information of the at least two candidate proxy servers in the ARM server comprises:
matching the access service type in the service access request with at least two candidate access service types in the access configuration information, and determining the candidate access service type successfully matched as a target access service type;
determining a target service access interface associated with the target access service type from at least two candidate service access interfaces in an ARM server according to the access configuration information;
determining the candidate proxy server pointed to by the target service access interface as the target proxy server.
3. The method of claim 1, wherein the sending the service access result to the operation and maintenance server comprises:
encrypting the service access result by using a preset encryption key;
and sending the encrypted service access result to the operation and maintenance server so that the operation and maintenance server can decrypt the encrypted service access result by using a preset decryption key.
4. The method of claim 1, further comprising:
responding to a received service change request, and determining a proxy server to be changed from at least two candidate proxy servers in an ARM server based on access configuration information of at least two candidate proxy servers in the ARM server and an access service type in the service change request;
and changing the access configuration information according to the access enabling state and/or the access interface data in the service change request.
5. The method of claim 1, further comprising:
responding to the received service adding request, and acquiring access configuration information of an added proxy server;
and updating the access configuration information of the candidate proxy server in the ARM server according to the access configuration information of the newly-added proxy server.
6. The method of any of claims 1-5, wherein the service access request is sent to the ARM server by a partial pressure proxy server of the operation and maintenance server; and the candidate proxy server in the ARM server is a user proxy server.
7. A service access apparatus, the apparatus comprising:
the agent determining module is used for responding to a service access request received from the operation and maintenance server, and determining a target agent server for the service access request from at least two candidate agent servers in the ARM server based on the access configuration information of the at least two candidate agent servers;
a result determining module, configured to send the service access request to the target proxy server, so that the target proxy server determines a service access result of the service access request;
and the result sending module is used for sending the service access result to the operation and maintenance server.
8. The apparatus of claim 7, wherein the agent determination module comprises:
the type matching submodule is used for matching the access service type in the service access request with at least two candidate access service types in the access configuration information and determining the candidate access service type which is successfully matched as a target access service type;
the interface determining submodule is used for determining a target service access interface associated with the target access service type from at least two candidate service access interfaces in an ARM server according to the access configuration information;
and the proxy determination submodule is used for determining the candidate proxy server pointed by the target service access interface as the target proxy server.
9. The apparatus of claim 7, wherein the result sending module comprises:
the encryption sub-module is used for encrypting the service access result by using a preset encryption key;
and the result sending submodule is used for sending the encrypted service access result to the operation and maintenance server so that the operation and maintenance server can decrypt the encrypted service access result by using a preset decryption key.
10. The apparatus of claim 7, further comprising:
the system comprises a to-be-changed proxy determining module, a to-be-changed proxy determining module and a service changing module, wherein the to-be-changed proxy determining module is used for responding to a received service changing request, and determining a to-be-changed proxy from at least two candidate proxy servers in an ARM server based on access configuration information of at least two candidate proxy servers in the ARM server and an access service type in the service changing request;
and the configuration information changing module is used for changing the access configuration information according to the access enabling state and/or the access interface data in the service changing request.
11. The apparatus of claim 7, the apparatus further comprising:
the configuration information acquisition module is used for responding to the received service addition request and acquiring the access configuration information of the addition proxy server;
and the configuration information updating module is used for updating the access configuration information of the candidate proxy server in the ARM server according to the access configuration information of the newly-added proxy server.
12. The apparatus of any of claims 7-11, wherein the service access request is sent to the ARM server by a partial pressure proxy server of the operation and maintenance server; and the candidate proxy server in the ARM server is a user proxy server.
13. An electronic device, comprising:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the service access method of any of claims 1-6.
14. A non-transitory computer readable storage medium storing computer instructions for causing a computer to perform the service access method according to any one of claims 1-6.
15. A computer program product comprising a computer program which, when executed by a processor, implements a service access method according to any one of claims 1-6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211008739.8A CN115396436A (en) | 2022-08-22 | 2022-08-22 | Service access method, device, electronic equipment and medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211008739.8A CN115396436A (en) | 2022-08-22 | 2022-08-22 | Service access method, device, electronic equipment and medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115396436A true CN115396436A (en) | 2022-11-25 |
Family
ID=84119741
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211008739.8A Pending CN115396436A (en) | 2022-08-22 | 2022-08-22 | Service access method, device, electronic equipment and medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115396436A (en) |
-
2022
- 2022-08-22 CN CN202211008739.8A patent/CN115396436A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10061938B2 (en) | Moving a portion of a streaming application to a public cloud based on sensitive data | |
| US10148718B2 (en) | Moving a portion of a streaming application to a public cloud based on sensitive data | |
| US20170063776A1 (en) | FAQs UPDATER AND GENERATOR FOR MULTI-COMMUNICATION CHANNELS | |
| CN114157701A (en) | Task testing method, device, equipment and storage medium | |
| CN112799824A (en) | Current limiting method, device, equipment and storage medium | |
| CN115150063A (en) | Model encryption method and device and electronic equipment | |
| US11716650B2 (en) | Caching and providing data to a device based on available resources | |
| CN113961289A (en) | Data processing method, device, equipment and storage medium | |
| CN113220367A (en) | Applet running method and device, electronic equipment and storage medium | |
| CN110536283B (en) | Terminal identifier acquisition method, device, electronic equipment and medium | |
| US20230206756A1 (en) | Method and system of controlling traffic lighting apparatus, electronic device and storage medium | |
| CN108595973B (en) | Instruction determination method, equipment control method, device and system | |
| CN115333851A (en) | Automatic driving data transmission method and device and electronic equipment | |
| CN115396436A (en) | Service access method, device, electronic equipment and medium | |
| CN113609156B (en) | Data query and write method and device, electronic equipment and readable storage medium | |
| US11662927B2 (en) | Redirecting access requests between access engines of respective disk management devices | |
| CN113076175B (en) | Memory sharing method and device for virtual machine | |
| CN111767489B (en) | Webpage running acceleration method, device, equipment and storage medium | |
| CN113741949A (en) | Method, device and equipment for generating application program installation package and storage medium | |
| CN114996169B (en) | Device diagnosis method, device, electronic device, and storage medium | |
| CN110262756B (en) | Method and device for caching data | |
| CN112615712B (en) | Data processing method, related device and computer program product | |
| US11005948B1 (en) | Web content transfer utilizing messages of messaging protocol of cellular voice network | |
| CN115484149B (en) | Network switching method, network switching device, electronic equipment and storage medium | |
| CN114035885B (en) | Applet page rendering method and device and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |