CN110099031A - A kind of service calling method, device and micro services platform - Google Patents
A kind of service calling method, device and micro services platform Download PDFInfo
- Publication number
- CN110099031A CN110099031A CN201810089362.0A CN201810089362A CN110099031A CN 110099031 A CN110099031 A CN 110099031A CN 201810089362 A CN201810089362 A CN 201810089362A CN 110099031 A CN110099031 A CN 110099031A
- Authority
- CN
- China
- Prior art keywords
- server
- service
- request
- call
- sent
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/60—Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The embodiment of the present invention provides a kind of service calling method, device and micro services platform.The described method includes: receiving the service invocation request that first server is sent;If judgement knows that the service invocation request carries the corresponding authentication mark of the first server, service call instruction is sent to the second server of the first server request call;The service response data that the second server returns are received, and the service response data are sent to the first server.Described device is for executing the above method.Method, apparatus and micro services platform provided by the invention improves the safety of service call.
Description
Technical field
The present embodiments relate to field of computer technology more particularly to a kind of service calling methods, device and micro services
Platform.
Background technique
Micro services framework is the new technology that application and service is disposed in cloud, generally around business scope component
It applies to create, is then integrated together each application by way of service registration, each application is by externally providing statement
The application programming interfaces of character state transmitting (Representational State Transfer, REST) style
(Application Program Interface, API) is called for user, to realize the corresponding server of different application
Between data transmission and reception, since the data sended and received are all JSON (the JavaScript Object of lightweight
Notation) formatted data, the bandwidth resources for transmitting needs are small, therefore have been widely used at present, and consequent is pair
In the further investigation of the safety of service call.
Under the conditions of the prior art, as shown in Figure 1, respectively only needing to develop using corresponding server in micro services platform
Once, each service interface is no longer present in local, but passes through hypertext transfer protocol (Hyper Text Transfer
Protocol, HTTP) it is remotely accessed, that is to say, that no matter its front end is web browser or application program
(Application, APP), each server all call directly the api interface of corresponding server by HTTP come request data simultaneously
Obtain response data, but due to use http protocol be it is stateless, any one server can pass through http protocol
The api interface for calling other servers to provide, so that the safety of service call receives great prestige between different server
The side of body.
It is therefore proposed that a kind of service calling method is come to improve service call safety be urgently to be resolved important of current industry
Project.
Summary of the invention
For the defects in the prior art, it is flat to provide a kind of service calling method, device and micro services for the embodiment of the present invention
Platform.
In a first aspect, the embodiment of the present invention provides a kind of service calling method, comprising:
Receive the service invocation request that first server is sent;
If judgement knows that the service invocation request carries the corresponding authentication of the first server and identifies, to described the
The second server of one server request call sends service call instruction;
It receives the service response data that the second server returns, and the service response data is sent to described the
One server.
Second aspect, the embodiment of the present invention provide a kind of service call device, comprising:
Receiving unit, for receiving the service invocation request of first server transmission;
Judging unit, if for judging to know that the service invocation request carries the corresponding authentication of the first server
Mark then sends service call instruction to the second server of the first server request call;
Transmission unit, the service response data returned for receiving the second server, and by the service response number
According to being sent to the first server.
The third aspect, the embodiment of the present invention provide a kind of electronic equipment, including processor, memory and bus, in which:
The processor, the memory complete mutual communication by bus;
The processor can call the computer program in memory, the step of to execute the above method.
Fourth aspect, the embodiment of the present invention provide a kind of computer readable storage medium, are stored thereon with computer program,
The step of above method is realized when the program is executed by processor.
5th aspect, the embodiment of the present invention provide a kind of micro services platform, including multiple servers and above-mentioned second party
Service call device described in face.
Service calling method, device and micro services platform provided in an embodiment of the present invention, are received by knowing in judgement
The service invocation request that sends of first server carry the corresponding authentication mark of the first server, then taken to described first
The second server of business device request call sends service call instruction, then receives the service response that the second server returns
Data, and the service response data are sent to the first server, improve the safety of service call.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is this hair
Bright some embodiments for those of ordinary skill in the art without creative efforts, can be with root
Other attached drawings are obtained according to these attached drawings.
Fig. 1 is micro services system structure diagram in the prior art;
Fig. 2 is the flow diagram of service calling method provided in an embodiment of the present invention;
Fig. 3 is the signaling interaction diagram of service calling method provided in an embodiment of the present invention;
Fig. 4 is the structural schematic diagram for the service call device that one embodiment of the invention provides;
Fig. 5 be another embodiment of the present invention provides service call device structural schematic diagram;
Fig. 6 is electronic equipment entity apparatus structural schematic diagram provided in an embodiment of the present invention.
Fig. 7 is the structural schematic diagram of service platform provided in an embodiment of the present invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, technical solution in the embodiment of the present invention is explicitly described, it is clear that described embodiment is the present invention
A part of the embodiment, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art are not having
Every other embodiment obtained under the premise of creative work is made, shall fall within the protection scope of the present invention.
Fig. 2 is the flow diagram of service calling method provided in an embodiment of the present invention, as shown in Figure 1, the present embodiment mentions
For a kind of service calling method, comprising:
S101, the service invocation request that first server is sent is received;
Specifically, user passes through the corresponding front-end operations interface of the first server (including client, web browser
With APP etc.) to service call device service invocation request is sent, described device receives the service invocation request.It is understood that
, the service invocation request carries the mark of the corresponding second server of service of request call, and the mark can be
The api interface information that the second server externally provides can also carry the identity information of itself, such as user name, password
With service number etc., other information can also be carried, specifically can be configured and adjust according to the actual situation, do not done herein specific
It limits.
If S102, judgement know that the service invocation request carries the corresponding authentication mark of the first server, to
The second server of the first server request call sends service call instruction;
Specifically, if described device judgement knows that the service invocation request carries the corresponding authentication of the first server
Mark, then according to the mark of the corresponding second server of service of the request call carried in the service invocation request, to institute
It states second server and sends service call instruction;Otherwise, Xiang Suoshu first server returns to malloc failure malloc prompt information.It can manage
Solution, the authentication are identified as described device after receiving the first server and sending certification request to described device
It is sent to the first server.
S103, the service response data that the second server returns are received, and the service response data is sent to
The first server.
Specifically, after the service call that the second server receives described device transmission instructs, according to the clothes
Call instruction of being engaged in described device returns to corresponding service response data, and described device receives the service response data and by institute
It states service response data and is sent to the first server.It should be noted that the first server and the second service
Device all can be server in micro services platform, the service call device can be the net that the micro services platform is arranged in
Server is closed, specifically can be configured and adjust according to the actual situation, be not specifically limited herein.
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, improves the safety of service call.
On the basis of the above embodiments, further, before receiving the service invocation request that first server is sent,
The method also includes:
The certification request that the first server is sent is received, the certification request carries the identity of the first server
Information;
The corresponding authentication mark of the first server is obtained according to the identity information, and the authentication is identified and is returned
To the first server.
Specifically, the first server is before sending the service invocation request to described device, first to the dress
Transmission certification request is set, the certification request carries the identity information of the first server, and described device receives the certification
Then the identity information database stored in advance is searched in request according to the identity information, it is corresponding to obtain the first server
Authentication mark, and by the authentication identify be back to the first server.It should be noted that the identity information can be with
It can also include other information including username and password;The authentication mark can be token (Token), be also possible to close
Key (Secret Key), can also be other identifier, specifically can be configured and adjust according to the actual situation, not do and have herein
Body limits.It is understood that described device can also be after receiving the certification request, according in the certification request
The identity information of carrying generates the corresponding authentication mark of the first server at random, and the identity of the first server is believed
Corresponding relationship between breath and authentication mark is stored, and the specific method for obtaining authentication mark can carry out according to the actual situation
Setting and adjustment, are not specifically limited herein.
On the basis of the above embodiments, further, the method also includes:
If judging to know the service invocation request as CIPHERING REQUEST, according to pre-set data deciphering strategy to institute
Service invocation request is stated to be decrypted.
Specifically, the first server is after receiving the authentication mark of described device transmission, and first choice is according to preparatory
The encryption policy of setting encrypts the data in the service invocation request, so that the first server and described device
Between information transmission setting be ciphertext transmission, encrypted service invocation request is then sent to described device, the dress
Judge to know the service invocation request that receives as CIPHERING REQUEST, according to pre-set data deciphering strategy to described if setting
Service invocation request is decrypted.It should be noted that the encryption policy and the decryption policy are first clothes
It is engaged in negotiating determination between device and described device in advance.
For example, the first server request call second server obtains the telephone number of user " Zhang San ", described the
Need to carry name " Zhang San " and the user of the user in the service invocation request that one server is sent to described device
ID card No. " 411262199012345678 ", according to plaintext transmission, then there may be due to data exposure and by malice
Intercepting and capturing leads to the risk of information leakage, and therefore, the first server is according to the encryption policy stored in advance by the surname of the user
Name and ID card No. are converted to a string of codes, and the code is embedded in the service invocation request and is sent to described device,
Described device receives negotiates determining decryption policy pair according to the first server after the service invocation request in advance
The service invocation request is decrypted, and obtains the name " Zhang San " of the user and the ID card No. of the user
“411262199012345678”。
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, and the service invocation request is encrypted, and improves service and adjusts
Safety.
On the basis of the above embodiments, further, the method also includes:
If judging to know the service response data as confidential data, according to pre-set data encryption strategy to institute
Service response data are stated to be encrypted.
Specifically, described device according to the data types of the service response data in the confidential data library that stores in advance
Including data type matched, if judging to know the service response data as confidential data, according to pre-set
The service response data are encrypted in data encryption strategy.It is understood that the data type includes secret
Data and non-confidential data, the non-confidential data include that the information importances such as daily record data and print data are lower, safety wind
The small data in danger, the data that other information importance is higher, security risk is big are confidential data, specifically can be according to the actual situation
It is configured, is not specifically limited herein.
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, and is judged whether at encryption according to the degree of secrecy of service response data
Reason, saves resource in the safety for improving service call as far as possible.
In the above embodiments, the method also includes:
If judgement is known not small from the time interval for sending authentication mark to the current time to the first server
In preset time period, then refuses the service invocation request of the first server and return to malloc failure malloc to the first server
Prompt information.
Specifically, if described device judgement, which is known to the first server, sends the authentication mark to current time
Time interval be not less than preset time period, then refuse the service invocation request of the first server and to the first service
Device returns to malloc failure malloc prompt information.It is understood that the preset time period can be set to 15 minutes, can also be arranged
For other times segment length, it can specifically be configured, be not specifically limited herein according to the actual situation.
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, improves the safety of service call.
Fig. 3 is the signaling interaction diagram of service calling method provided in an embodiment of the present invention, as shown in figure 3, the present invention is real
Apply example offer service calling method specifically includes the following steps:
S201, certification request is sent;First server sends certification request to service call device, and the certification request is taken
Identity information with the first server;Then step S202 is executed;
S202, authentication mark is returned;Described device receives the certification request, is then searched according to the identity information pre-
The identity information database first stored obtains the corresponding authentication mark of the first server, and the authentication is identified and is returned
To the first server;Then step S203 is executed;
S203, data encryption;The first server is according to pre-set encryption policy to the service invocation request
In data encrypted so that the information transmission setting between the first server and described device be ciphertext transmission;So
Step S204 is executed afterwards;
S204, service invocation request is sent;Encrypted service invocation request is sent to described by the first server
Device;Then step S205 is executed;
S205, judgement authentication identify whether expired;If described device judgement, which is known to the first server, sends institute
Authentication mark is stated to the time interval at current time not less than preset time period, it is determined that the authentication mark is expired, then holds
Row step S206;It is no to then follow the steps S207;
S206, malloc failure malloc prompt information is returned;Described device refuses the service invocation request of the first server simultaneously
Malloc failure malloc prompt information is returned to the first server;
S207, service invocation request is decrypted;If described device judgement knows that the service call received is asked
It asks as CIPHERING REQUEST, then the service invocation request is decrypted according to pre-set data deciphering strategy;Then
Execute step S208;
S208, service call instruction is sent;Described device is according to the request call carried in the service invocation request
The mark of corresponding second server is serviced, Xiang Suoshu second server sends service call instruction;Then step S209 is executed;
S209, service response data are returned to;The second server receives the service call instruction of described device transmission
Later, it is instructed according to the service call to described device and returns to corresponding service response data;Then step S2010 is executed;
S2010, service response data are encrypted;Described device according to the data types of the service response data with
The data type for including in the confidential data library stored in advance is matched, if judging to know the service response data as secret
Data are then encrypted the service response data according to pre-set data encryption strategy;Then step is executed
S2011;
S2011, encrypted service response data are sent;Encrypted service response data are sent to first clothes
Business device;Then step S2012 is executed;
S2012, service response data are decrypted;The first server is according to pre-set service response data
It is decrypted.
Fig. 4 is the structural schematic diagram for the service call device that one embodiment of the invention provides, as shown in figure 4, the present invention is real
It applies example and a kind of service call device, including receiving unit 301 and judging unit 302 and transmission unit 303 is provided, in which:
Receiving unit 301 is used to receive the service invocation request of first server transmission;If judging unit 302 is for judging
Know that the service invocation request carries the corresponding authentication mark of the first server, is then requested to the first server
The second server of calling sends service call instruction;Transmission unit 303 is used to receive the service that the second server returns
Response data, and the service response data are sent to the first server.
Specifically, user passes through the corresponding front-end operations interface of the first server (including client, web browser
With APP etc.) to receiving unit 301 service invocation request is sent, receiving unit 301 receives the service invocation request.It can manage
Solution, the service invocation request carry the mark of the corresponding second server of service of request call, and the mark can be with
For the api interface information that the second server externally provides, the identity information of itself can also be carried, such as user name, close
Code and service number etc., can also carry other information, specifically can be configured and adjust according to the actual situation, not do and have herein
Body limits.If the judgement of judging unit 302 knows that the service invocation request carries the corresponding authentication mark of the first server,
Then according to the mark of the corresponding second server of service of the request call carried in the service invocation request, Xiang Suoshu second
Server sends service call instruction;Otherwise, Xiang Suoshu first server returns to malloc failure malloc prompt information.The second service
After device receives the service call instruction of described device transmission, is instructed according to the service call to described device and returned accordingly
Service response data, transmission unit 303 receives the service response data and is sent to the service response data described
First server.It is understood that the authentication is identified as described device and is receiving the first server to the dress
Set send certification request it is rear to the first server send.It should be noted that the first server and described the
Two servers all can be server in micro services platform, the service call device can be flat in the micro services for setting
The gateway server of platform specifically can be configured and adjust according to the actual situation, be not specifically limited herein.
Service call device provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, improves the safety of service call.
Fig. 5 be another embodiment of the present invention provides service call device structural schematic diagram, as shown in figure 5, of the invention
The service call device that embodiment provides also wraps on the basis of receiving unit 401 and judging unit 402 and transmission unit 403
Include the receiving unit in authentication unit 404, receiving unit 401 and judging unit 402 and transmission unit 403 and above-described embodiment
301 is consistent with transmission unit 303 with judging unit 302, and wherein authentication unit 404 is used for:
The certification request that the first server is sent is received, the certification request carries the identity of the first server
Information;
The corresponding authentication mark of the first server is obtained according to the identity information, and the authentication is identified and is returned
To the first server.
Specifically, the first server is before sending the service invocation request to receiving unit 401, first Xiang Suoshu
Authentication unit 404 sends certification request, and the certification request carries the identity information of the first server, authentication unit 404
The certification request is received, the identity information database that stores in advance is then searched according to the identity information, obtains described the
The corresponding authentication mark of one server, and authentication mark is back to the first server.It should be noted that described
Identity information may include username and password, can also include other information;The authentication mark can be token
(Token), it is also possible to key (Secret Key), can also be other identifier, can specifically be set according to the actual situation
It sets and adjusts, be not specifically limited herein.It is understood that authentication unit 404 can also receive the certification request
Later, the corresponding authentication of the first server is generated at random according to the identity information carried in the certification request to identify, and
Corresponding relationship between the identity information of the first server and authentication mark is stored, specific obtain authenticates mark
Method can be configured and adjust according to the actual situation, be not specifically limited herein.
Service call device provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, improves the safety of service call.
Optionally, if judging unit 302 is also used to judge to know the service invocation request as CIPHERING REQUEST, according to pre-
The service invocation request is decrypted in the data deciphering strategy being first arranged.
Optionally, if transmission unit 303 is also used to judge to know the service response data as confidential data, according to pre-
The service response data are encrypted in the data encryption strategy being first arranged.
Optionally, if judging unit 302, which is also used to judge to know to the first server, sends the authentication mark
Time interval to current time is not less than preset time period, then refuses the service invocation request of the first server and to institute
It states first server and returns to malloc failure malloc prompt information.
It should be noted that the embodiment of device provided by the invention specifically can be used for executing above-mentioned each method embodiment
Process flow, details are not described herein for function, is referred to the detailed description of above method embodiment.
Service call device provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement
Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call
Server sends service call instruction, then receives the service response data that the second server returns, and by the service
Response data is sent to the first server, improves the safety of service call.
Fig. 6 is electronic equipment entity apparatus structural schematic diagram provided in an embodiment of the present invention, as shown in fig. 6, the electronics is set
Standby may include: processor (processor) 501, memory (memory) 502 and bus 503, wherein processor 501 is deposited
Reservoir 502 completes mutual communication by bus 503.Processor 501 can call the computer program in memory 502,
To execute method provided by above-mentioned each method embodiment, for example, receive the service invocation request that first server is sent;
If judgement knows that the service invocation request carries the corresponding authentication mark of the first server, to the first server
The second server of request call sends service call instruction;The service response data that the second server returns are received, and
The service response data are sent to the first server.
The embodiment of the present invention discloses a kind of computer program product, and the computer program product is non-transient including being stored in
Computer program on computer readable storage medium, the computer program include program instruction, when described program instructs quilt
When computer executes, computer is able to carry out method provided by above-mentioned each method embodiment, for example, receives first service
The service invocation request that device is sent;If judgement knows that the service invocation request carries the corresponding authentication mark of the first server
Know, then sends service call instruction to the second server of the first server request call;Receive the second server
The service response data of return, and the service response data are sent to the first server.
The embodiment of the present invention provides a kind of non-transient computer readable storage medium, the non-transient computer readable storage
Medium storing computer program, the computer program make the computer execute side provided by above-mentioned each method embodiment
Method, for example, receive the service invocation request that first server is sent;If judgement knows that the service invocation request carries institute
The corresponding authentication mark of first server is stated, then sends service call to the second server of the first server request call
Instruction;The service response data that the second server returns are received, and the service response data are sent to described first
Server.
Fig. 7 is the structural schematic diagram of micro services platform provided in an embodiment of the present invention, as shown in fig. 7, the embodiment of the present invention
A kind of micro services platform is also provided, including the service call device 602 in multiple servers 601 and the various embodiments described above.
In addition, the logical order in above-mentioned memory 502 can be realized by way of SFU software functional unit and conduct
Independent product when selling or using, can store in a computer readable storage medium.Based on this understanding, originally
Substantially the part of the part that contributes to existing technology or the technical solution can be in other words for the technical solution of invention
The form of software product embodies, which is stored in a storage medium, including some instructions to
So that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation of the present invention
The all or part of the steps of example the method.And storage medium above-mentioned include: USB flash disk, mobile hard disk, read-only memory (ROM,
Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic or disk etc. it is various
It can store the medium of program code.
The embodiment of device described above is only schematical, wherein the unit as illustrated by the separation member
It may or may not be physically separated, component shown as a unit may or may not be physics list
Member, it can it is in one place, or may be distributed over multiple network units.It can be selected according to the actual needs
In some or all of the modules achieve the purpose of the solution of this embodiment.Those of ordinary skill in the art are not paying creativeness
Labour in the case where, it can understand and implement.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can
It realizes by means of software and necessary general hardware platform, naturally it is also possible to pass through hardware.Based on this understanding, on
Stating technical solution, substantially the part that contributes to existing technology can be embodied in the form of software products in other words, should
Computer software product may be stored in a computer readable storage medium, such as ROM/RAM, magnetic disk, CD, including several fingers
It enables and using so that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation
Method described in certain parts of example or embodiment.
Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although
Present invention has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that: it still may be used
To modify the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features;
And these are modified or replaceed, technical solution of various embodiments of the present invention that it does not separate the essence of the corresponding technical solution spirit and
Range.
Claims (10)
1. a kind of service calling method characterized by comprising
Receive the service invocation request that first server is sent;
If judgement knows that the service invocation request carries the corresponding authentication mark of the first server, to first clothes
The second server of business device request call sends service call instruction;
The service response data that the second server returns are received, and the service response data are sent to first clothes
Business device.
2. the method according to claim 1, wherein receive first server send service invocation request it
Before, the method also includes:
The certification request that the first server is sent is received, the certification request carries the identity letter of the first server
Breath;
The corresponding authentication mark of the first server is obtained according to the identity information, and authentication mark is back to institute
State first server.
3. the method according to claim 1, wherein the method also includes:
If judging to know the service invocation request as CIPHERING REQUEST, according to pre-set data deciphering strategy to the clothes
Business call request is decrypted.
4. the method according to claim 1, wherein the method also includes:
If judging to know the service response data as confidential data, according to pre-set data encryption strategy to the clothes
Business response data is encrypted.
5. method according to any of claims 1-4, which is characterized in that the method also includes:
If judgement is known from the time interval of the authentication mark to current time is sent to the first server not less than pre-
If the period, then refuses the service invocation request of the first server and return to malloc failure malloc prompt to the first server
Information.
6. a kind of service call device characterized by comprising
Receiving unit, for receiving the service invocation request of first server transmission;
Judging unit, if for judging to know that the service invocation request carries the corresponding authentication mark of the first server
Know, then sends service call instruction to the second server of the first server request call;
Transmission unit, the service response data returned for receiving the second server, and the service response data are sent out
It send to the first server.
7. device according to claim 6, which is characterized in that described device further includes authentication unit, is used for:
The certification request that the first server is sent is received, the certification request carries the identity letter of the first server
Breath;
The corresponding authentication mark of the first server is obtained according to the identity information, and authentication mark is back to institute
State first server.
8. a kind of electronic equipment, which is characterized in that including processor, memory and bus, in which:
The processor, the memory complete mutual communication by bus;
The processor can call the computer program in memory, to execute as described in claim 1-5 any one
The step of method.
9. a kind of computer readable storage medium, is stored thereon with computer program, which is characterized in that the program is held by processor
It realizes when row such as the step of claim 1-5 any one the method.
10. a kind of micro services platform, which is characterized in that including multiple servers and as described in claim 6-7 any one
Service call device.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810089362.0A CN110099031A (en) | 2018-01-30 | 2018-01-30 | A kind of service calling method, device and micro services platform |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810089362.0A CN110099031A (en) | 2018-01-30 | 2018-01-30 | A kind of service calling method, device and micro services platform |
Publications (1)
Publication Number | Publication Date |
---|---|
CN110099031A true CN110099031A (en) | 2019-08-06 |
Family
ID=67441943
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810089362.0A Withdrawn CN110099031A (en) | 2018-01-30 | 2018-01-30 | A kind of service calling method, device and micro services platform |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN110099031A (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111163063A (en) * | 2019-12-12 | 2020-05-15 | 万翼科技有限公司 | Edge application management method and related product |
CN112235411A (en) * | 2020-06-30 | 2021-01-15 | 北京来也网络科技有限公司 | AI-based RPA process control end server communication method, device, equipment and medium |
CN112835733A (en) * | 2021-03-31 | 2021-05-25 | 中国工商银行股份有限公司 | Self-service equipment service processing method and device and self-service equipment |
CN113422686A (en) * | 2021-06-24 | 2021-09-21 | 平安国际智慧城市科技股份有限公司 | Gateway layer authentication method, system, electronic device and storage medium |
CN113691485A (en) * | 2020-05-19 | 2021-11-23 | 北京神州泰岳软件股份有限公司 | Micro-service platform access method and related device thereof |
CN114205170A (en) * | 2021-12-21 | 2022-03-18 | 厦门安胜网络科技有限公司 | Cross-interface platform networking communication and service encryption calling method |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104519018A (en) * | 2013-09-29 | 2015-04-15 | 阿里巴巴集团控股有限公司 | Method, device and system for preventing malicious requests for server |
CN105991514A (en) * | 2015-01-28 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Service request authentication method and device |
CN106714167A (en) * | 2016-12-30 | 2017-05-24 | 北京华为数字技术有限公司 | Authentication method and network access server |
US20170230349A1 (en) * | 2016-02-04 | 2017-08-10 | International Business Machines Corporation | Microservices inter-operational trust management |
CN107528853A (en) * | 2017-09-12 | 2017-12-29 | 上海艾融软件股份有限公司 | The implementation method of micro services control of authority |
-
2018
- 2018-01-30 CN CN201810089362.0A patent/CN110099031A/en not_active Withdrawn
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104519018A (en) * | 2013-09-29 | 2015-04-15 | 阿里巴巴集团控股有限公司 | Method, device and system for preventing malicious requests for server |
CN105991514A (en) * | 2015-01-28 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Service request authentication method and device |
US20170230349A1 (en) * | 2016-02-04 | 2017-08-10 | International Business Machines Corporation | Microservices inter-operational trust management |
CN106714167A (en) * | 2016-12-30 | 2017-05-24 | 北京华为数字技术有限公司 | Authentication method and network access server |
CN107528853A (en) * | 2017-09-12 | 2017-12-29 | 上海艾融软件股份有限公司 | The implementation method of micro services control of authority |
Cited By (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111163063A (en) * | 2019-12-12 | 2020-05-15 | 万翼科技有限公司 | Edge application management method and related product |
CN111163063B (en) * | 2019-12-12 | 2022-07-12 | 万翼科技有限公司 | Edge application management method and related product |
CN113691485A (en) * | 2020-05-19 | 2021-11-23 | 北京神州泰岳软件股份有限公司 | Micro-service platform access method and related device thereof |
CN113691485B (en) * | 2020-05-19 | 2023-08-25 | 北京神州泰岳软件股份有限公司 | Micro-service platform access method and related device thereof |
CN112235411A (en) * | 2020-06-30 | 2021-01-15 | 北京来也网络科技有限公司 | AI-based RPA process control end server communication method, device, equipment and medium |
CN112235411B (en) * | 2020-06-30 | 2023-10-10 | 北京来也网络科技有限公司 | Server communication method, device, equipment and medium of RPA flow control terminal based on AI |
CN112835733A (en) * | 2021-03-31 | 2021-05-25 | 中国工商银行股份有限公司 | Self-service equipment service processing method and device and self-service equipment |
CN113422686A (en) * | 2021-06-24 | 2021-09-21 | 平安国际智慧城市科技股份有限公司 | Gateway layer authentication method, system, electronic device and storage medium |
CN114205170A (en) * | 2021-12-21 | 2022-03-18 | 厦门安胜网络科技有限公司 | Cross-interface platform networking communication and service encryption calling method |
CN114205170B (en) * | 2021-12-21 | 2023-11-17 | 厦门安胜网络科技有限公司 | Bridging port platform networking communication and service encryption calling method |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN110099031A (en) | A kind of service calling method, device and micro services platform | |
CN104322001B (en) | The Transport Layer Security flow control identified using service name | |
CN105007280B (en) | A kind of application login method and device | |
JP6348661B2 (en) | Company authentication through third-party authentication support | |
CN105812341B (en) | A kind of method and device of identity user identity | |
CN106330816B (en) | A kind of method and system logging in cloud desktop | |
CN106685973B (en) | Remember method and device, log-in control method and the device of log-on message | |
US20060143686A1 (en) | Policies as workflows | |
CN105991614B (en) | It is a kind of it is open authorization, resource access method and device, server | |
CN105897668A (en) | Third party account authorization method, device, server and system | |
CN111552935B (en) | Block chain data authorized access method and device | |
US20180375648A1 (en) | Systems and methods for data encryption for cloud services | |
CN105721412A (en) | Method and device for authenticating identity between multiple systems | |
CN107924431B (en) | Anonymous application program packaging | |
CN110430065B (en) | Application service calling method, device and system | |
CN107426339A (en) | A kind of cut-in method, the apparatus and system of data interface channel | |
CN105429962B (en) | A kind of general go-between service construction method and system towards encryption data | |
CN108632325A (en) | A kind of call method and device of application | |
CN109272314A (en) | A kind of safety communicating method and system cooperateing with signature calculation based on two sides | |
CN108900324A (en) | Verify the method and device of virtual machine communication performance | |
CN109409109A (en) | Data processing method, device, processor and server in network service | |
CN114584386B (en) | Global multistage encryption network communication method | |
CN105577738B (en) | A kind of method, apparatus and system of processing terminal information | |
CN108701200B (en) | Improved memory system | |
CN103997730A (en) | Method for decrypting, copying and pasting encrypted data |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WW01 | Invention patent application withdrawn after publication | ||
WW01 | Invention patent application withdrawn after publication |
Application publication date: 20190806 |