CN110099031A - A kind of service calling method, device and micro services platform - Google Patents

A kind of service calling method, device and micro services platform Download PDF

Info

Publication number
CN110099031A
CN110099031A CN201810089362.0A CN201810089362A CN110099031A CN 110099031 A CN110099031 A CN 110099031A CN 201810089362 A CN201810089362 A CN 201810089362A CN 110099031 A CN110099031 A CN 110099031A
Authority
CN
China
Prior art keywords
server
service
request
call
sent
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201810089362.0A
Other languages
Chinese (zh)
Inventor
叶树军
彭诚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Potevio Information Technology Co Ltd
Putian Information Technology Co Ltd
Original Assignee
Putian Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Putian Information Technology Co Ltd filed Critical Putian Information Technology Co Ltd
Priority to CN201810089362.0A priority Critical patent/CN110099031A/en
Publication of CN110099031A publication Critical patent/CN110099031A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/60Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The embodiment of the present invention provides a kind of service calling method, device and micro services platform.The described method includes: receiving the service invocation request that first server is sent;If judgement knows that the service invocation request carries the corresponding authentication mark of the first server, service call instruction is sent to the second server of the first server request call;The service response data that the second server returns are received, and the service response data are sent to the first server.Described device is for executing the above method.Method, apparatus and micro services platform provided by the invention improves the safety of service call.

Description

A kind of service calling method, device and micro services platform
Technical field
The present embodiments relate to field of computer technology more particularly to a kind of service calling methods, device and micro services Platform.
Background technique
Micro services framework is the new technology that application and service is disposed in cloud, generally around business scope component It applies to create, is then integrated together each application by way of service registration, each application is by externally providing statement The application programming interfaces of character state transmitting (Representational State Transfer, REST) style (Application Program Interface, API) is called for user, to realize the corresponding server of different application Between data transmission and reception, since the data sended and received are all JSON (the JavaScript Object of lightweight Notation) formatted data, the bandwidth resources for transmitting needs are small, therefore have been widely used at present, and consequent is pair In the further investigation of the safety of service call.
Under the conditions of the prior art, as shown in Figure 1, respectively only needing to develop using corresponding server in micro services platform Once, each service interface is no longer present in local, but passes through hypertext transfer protocol (Hyper Text Transfer Protocol, HTTP) it is remotely accessed, that is to say, that no matter its front end is web browser or application program (Application, APP), each server all call directly the api interface of corresponding server by HTTP come request data simultaneously Obtain response data, but due to use http protocol be it is stateless, any one server can pass through http protocol The api interface for calling other servers to provide, so that the safety of service call receives great prestige between different server The side of body.
It is therefore proposed that a kind of service calling method is come to improve service call safety be urgently to be resolved important of current industry Project.
Summary of the invention
For the defects in the prior art, it is flat to provide a kind of service calling method, device and micro services for the embodiment of the present invention Platform.
In a first aspect, the embodiment of the present invention provides a kind of service calling method, comprising:
Receive the service invocation request that first server is sent;
If judgement knows that the service invocation request carries the corresponding authentication of the first server and identifies, to described the The second server of one server request call sends service call instruction;
It receives the service response data that the second server returns, and the service response data is sent to described the One server.
Second aspect, the embodiment of the present invention provide a kind of service call device, comprising:
Receiving unit, for receiving the service invocation request of first server transmission;
Judging unit, if for judging to know that the service invocation request carries the corresponding authentication of the first server Mark then sends service call instruction to the second server of the first server request call;
Transmission unit, the service response data returned for receiving the second server, and by the service response number According to being sent to the first server.
The third aspect, the embodiment of the present invention provide a kind of electronic equipment, including processor, memory and bus, in which:
The processor, the memory complete mutual communication by bus;
The processor can call the computer program in memory, the step of to execute the above method.
Fourth aspect, the embodiment of the present invention provide a kind of computer readable storage medium, are stored thereon with computer program, The step of above method is realized when the program is executed by processor.
5th aspect, the embodiment of the present invention provide a kind of micro services platform, including multiple servers and above-mentioned second party Service call device described in face.
Service calling method, device and micro services platform provided in an embodiment of the present invention, are received by knowing in judgement The service invocation request that sends of first server carry the corresponding authentication mark of the first server, then taken to described first The second server of business device request call sends service call instruction, then receives the service response that the second server returns Data, and the service response data are sent to the first server, improve the safety of service call.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is this hair Bright some embodiments for those of ordinary skill in the art without creative efforts, can be with root Other attached drawings are obtained according to these attached drawings.
Fig. 1 is micro services system structure diagram in the prior art;
Fig. 2 is the flow diagram of service calling method provided in an embodiment of the present invention;
Fig. 3 is the signaling interaction diagram of service calling method provided in an embodiment of the present invention;
Fig. 4 is the structural schematic diagram for the service call device that one embodiment of the invention provides;
Fig. 5 be another embodiment of the present invention provides service call device structural schematic diagram;
Fig. 6 is electronic equipment entity apparatus structural schematic diagram provided in an embodiment of the present invention.
Fig. 7 is the structural schematic diagram of service platform provided in an embodiment of the present invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention In attached drawing, technical solution in the embodiment of the present invention is explicitly described, it is clear that described embodiment is the present invention A part of the embodiment, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art are not having Every other embodiment obtained under the premise of creative work is made, shall fall within the protection scope of the present invention.
Fig. 2 is the flow diagram of service calling method provided in an embodiment of the present invention, as shown in Figure 1, the present embodiment mentions For a kind of service calling method, comprising:
S101, the service invocation request that first server is sent is received;
Specifically, user passes through the corresponding front-end operations interface of the first server (including client, web browser With APP etc.) to service call device service invocation request is sent, described device receives the service invocation request.It is understood that , the service invocation request carries the mark of the corresponding second server of service of request call, and the mark can be The api interface information that the second server externally provides can also carry the identity information of itself, such as user name, password With service number etc., other information can also be carried, specifically can be configured and adjust according to the actual situation, do not done herein specific It limits.
If S102, judgement know that the service invocation request carries the corresponding authentication mark of the first server, to The second server of the first server request call sends service call instruction;
Specifically, if described device judgement knows that the service invocation request carries the corresponding authentication of the first server Mark, then according to the mark of the corresponding second server of service of the request call carried in the service invocation request, to institute It states second server and sends service call instruction;Otherwise, Xiang Suoshu first server returns to malloc failure malloc prompt information.It can manage Solution, the authentication are identified as described device after receiving the first server and sending certification request to described device It is sent to the first server.
S103, the service response data that the second server returns are received, and the service response data is sent to The first server.
Specifically, after the service call that the second server receives described device transmission instructs, according to the clothes Call instruction of being engaged in described device returns to corresponding service response data, and described device receives the service response data and by institute It states service response data and is sent to the first server.It should be noted that the first server and the second service Device all can be server in micro services platform, the service call device can be the net that the micro services platform is arranged in Server is closed, specifically can be configured and adjust according to the actual situation, be not specifically limited herein.
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, improves the safety of service call.
On the basis of the above embodiments, further, before receiving the service invocation request that first server is sent, The method also includes:
The certification request that the first server is sent is received, the certification request carries the identity of the first server Information;
The corresponding authentication mark of the first server is obtained according to the identity information, and the authentication is identified and is returned To the first server.
Specifically, the first server is before sending the service invocation request to described device, first to the dress Transmission certification request is set, the certification request carries the identity information of the first server, and described device receives the certification Then the identity information database stored in advance is searched in request according to the identity information, it is corresponding to obtain the first server Authentication mark, and by the authentication identify be back to the first server.It should be noted that the identity information can be with It can also include other information including username and password;The authentication mark can be token (Token), be also possible to close Key (Secret Key), can also be other identifier, specifically can be configured and adjust according to the actual situation, not do and have herein Body limits.It is understood that described device can also be after receiving the certification request, according in the certification request The identity information of carrying generates the corresponding authentication mark of the first server at random, and the identity of the first server is believed Corresponding relationship between breath and authentication mark is stored, and the specific method for obtaining authentication mark can carry out according to the actual situation Setting and adjustment, are not specifically limited herein.
On the basis of the above embodiments, further, the method also includes:
If judging to know the service invocation request as CIPHERING REQUEST, according to pre-set data deciphering strategy to institute Service invocation request is stated to be decrypted.
Specifically, the first server is after receiving the authentication mark of described device transmission, and first choice is according to preparatory The encryption policy of setting encrypts the data in the service invocation request, so that the first server and described device Between information transmission setting be ciphertext transmission, encrypted service invocation request is then sent to described device, the dress Judge to know the service invocation request that receives as CIPHERING REQUEST, according to pre-set data deciphering strategy to described if setting Service invocation request is decrypted.It should be noted that the encryption policy and the decryption policy are first clothes It is engaged in negotiating determination between device and described device in advance.
For example, the first server request call second server obtains the telephone number of user " Zhang San ", described the Need to carry name " Zhang San " and the user of the user in the service invocation request that one server is sent to described device ID card No. " 411262199012345678 ", according to plaintext transmission, then there may be due to data exposure and by malice Intercepting and capturing leads to the risk of information leakage, and therefore, the first server is according to the encryption policy stored in advance by the surname of the user Name and ID card No. are converted to a string of codes, and the code is embedded in the service invocation request and is sent to described device, Described device receives negotiates determining decryption policy pair according to the first server after the service invocation request in advance The service invocation request is decrypted, and obtains the name " Zhang San " of the user and the ID card No. of the user “411262199012345678”。
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, and the service invocation request is encrypted, and improves service and adjusts Safety.
On the basis of the above embodiments, further, the method also includes:
If judging to know the service response data as confidential data, according to pre-set data encryption strategy to institute Service response data are stated to be encrypted.
Specifically, described device according to the data types of the service response data in the confidential data library that stores in advance Including data type matched, if judging to know the service response data as confidential data, according to pre-set The service response data are encrypted in data encryption strategy.It is understood that the data type includes secret Data and non-confidential data, the non-confidential data include that the information importances such as daily record data and print data are lower, safety wind The small data in danger, the data that other information importance is higher, security risk is big are confidential data, specifically can be according to the actual situation It is configured, is not specifically limited herein.
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, and is judged whether at encryption according to the degree of secrecy of service response data Reason, saves resource in the safety for improving service call as far as possible.
In the above embodiments, the method also includes:
If judgement is known not small from the time interval for sending authentication mark to the current time to the first server In preset time period, then refuses the service invocation request of the first server and return to malloc failure malloc to the first server Prompt information.
Specifically, if described device judgement, which is known to the first server, sends the authentication mark to current time Time interval be not less than preset time period, then refuse the service invocation request of the first server and to the first service Device returns to malloc failure malloc prompt information.It is understood that the preset time period can be set to 15 minutes, can also be arranged For other times segment length, it can specifically be configured, be not specifically limited herein according to the actual situation.
Service calling method provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, improves the safety of service call.
Fig. 3 is the signaling interaction diagram of service calling method provided in an embodiment of the present invention, as shown in figure 3, the present invention is real Apply example offer service calling method specifically includes the following steps:
S201, certification request is sent;First server sends certification request to service call device, and the certification request is taken Identity information with the first server;Then step S202 is executed;
S202, authentication mark is returned;Described device receives the certification request, is then searched according to the identity information pre- The identity information database first stored obtains the corresponding authentication mark of the first server, and the authentication is identified and is returned To the first server;Then step S203 is executed;
S203, data encryption;The first server is according to pre-set encryption policy to the service invocation request In data encrypted so that the information transmission setting between the first server and described device be ciphertext transmission;So Step S204 is executed afterwards;
S204, service invocation request is sent;Encrypted service invocation request is sent to described by the first server Device;Then step S205 is executed;
S205, judgement authentication identify whether expired;If described device judgement, which is known to the first server, sends institute Authentication mark is stated to the time interval at current time not less than preset time period, it is determined that the authentication mark is expired, then holds Row step S206;It is no to then follow the steps S207;
S206, malloc failure malloc prompt information is returned;Described device refuses the service invocation request of the first server simultaneously Malloc failure malloc prompt information is returned to the first server;
S207, service invocation request is decrypted;If described device judgement knows that the service call received is asked It asks as CIPHERING REQUEST, then the service invocation request is decrypted according to pre-set data deciphering strategy;Then Execute step S208;
S208, service call instruction is sent;Described device is according to the request call carried in the service invocation request The mark of corresponding second server is serviced, Xiang Suoshu second server sends service call instruction;Then step S209 is executed;
S209, service response data are returned to;The second server receives the service call instruction of described device transmission Later, it is instructed according to the service call to described device and returns to corresponding service response data;Then step S2010 is executed;
S2010, service response data are encrypted;Described device according to the data types of the service response data with The data type for including in the confidential data library stored in advance is matched, if judging to know the service response data as secret Data are then encrypted the service response data according to pre-set data encryption strategy;Then step is executed S2011;
S2011, encrypted service response data are sent;Encrypted service response data are sent to first clothes Business device;Then step S2012 is executed;
S2012, service response data are decrypted;The first server is according to pre-set service response data It is decrypted.
Fig. 4 is the structural schematic diagram for the service call device that one embodiment of the invention provides, as shown in figure 4, the present invention is real It applies example and a kind of service call device, including receiving unit 301 and judging unit 302 and transmission unit 303 is provided, in which:
Receiving unit 301 is used to receive the service invocation request of first server transmission;If judging unit 302 is for judging Know that the service invocation request carries the corresponding authentication mark of the first server, is then requested to the first server The second server of calling sends service call instruction;Transmission unit 303 is used to receive the service that the second server returns Response data, and the service response data are sent to the first server.
Specifically, user passes through the corresponding front-end operations interface of the first server (including client, web browser With APP etc.) to receiving unit 301 service invocation request is sent, receiving unit 301 receives the service invocation request.It can manage Solution, the service invocation request carry the mark of the corresponding second server of service of request call, and the mark can be with For the api interface information that the second server externally provides, the identity information of itself can also be carried, such as user name, close Code and service number etc., can also carry other information, specifically can be configured and adjust according to the actual situation, not do and have herein Body limits.If the judgement of judging unit 302 knows that the service invocation request carries the corresponding authentication mark of the first server, Then according to the mark of the corresponding second server of service of the request call carried in the service invocation request, Xiang Suoshu second Server sends service call instruction;Otherwise, Xiang Suoshu first server returns to malloc failure malloc prompt information.The second service After device receives the service call instruction of described device transmission, is instructed according to the service call to described device and returned accordingly Service response data, transmission unit 303 receives the service response data and is sent to the service response data described First server.It is understood that the authentication is identified as described device and is receiving the first server to the dress Set send certification request it is rear to the first server send.It should be noted that the first server and described the Two servers all can be server in micro services platform, the service call device can be flat in the micro services for setting The gateway server of platform specifically can be configured and adjust according to the actual situation, be not specifically limited herein.
Service call device provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, improves the safety of service call.
Fig. 5 be another embodiment of the present invention provides service call device structural schematic diagram, as shown in figure 5, of the invention The service call device that embodiment provides also wraps on the basis of receiving unit 401 and judging unit 402 and transmission unit 403 Include the receiving unit in authentication unit 404, receiving unit 401 and judging unit 402 and transmission unit 403 and above-described embodiment 301 is consistent with transmission unit 303 with judging unit 302, and wherein authentication unit 404 is used for:
The certification request that the first server is sent is received, the certification request carries the identity of the first server Information;
The corresponding authentication mark of the first server is obtained according to the identity information, and the authentication is identified and is returned To the first server.
Specifically, the first server is before sending the service invocation request to receiving unit 401, first Xiang Suoshu Authentication unit 404 sends certification request, and the certification request carries the identity information of the first server, authentication unit 404 The certification request is received, the identity information database that stores in advance is then searched according to the identity information, obtains described the The corresponding authentication mark of one server, and authentication mark is back to the first server.It should be noted that described Identity information may include username and password, can also include other information;The authentication mark can be token (Token), it is also possible to key (Secret Key), can also be other identifier, can specifically be set according to the actual situation It sets and adjusts, be not specifically limited herein.It is understood that authentication unit 404 can also receive the certification request Later, the corresponding authentication of the first server is generated at random according to the identity information carried in the certification request to identify, and Corresponding relationship between the identity information of the first server and authentication mark is stored, specific obtain authenticates mark Method can be configured and adjust according to the actual situation, be not specifically limited herein.
Service call device provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, improves the safety of service call.
Optionally, if judging unit 302 is also used to judge to know the service invocation request as CIPHERING REQUEST, according to pre- The service invocation request is decrypted in the data deciphering strategy being first arranged.
Optionally, if transmission unit 303 is also used to judge to know the service response data as confidential data, according to pre- The service response data are encrypted in the data encryption strategy being first arranged.
Optionally, if judging unit 302, which is also used to judge to know to the first server, sends the authentication mark Time interval to current time is not less than preset time period, then refuses the service invocation request of the first server and to institute It states first server and returns to malloc failure malloc prompt information.
It should be noted that the embodiment of device provided by the invention specifically can be used for executing above-mentioned each method embodiment Process flow, details are not described herein for function, is referred to the detailed description of above method embodiment.
Service call device provided in an embodiment of the present invention, by knowing what the first server received was sent in judgement Service invocation request carries the corresponding authentication mark of the first server, then to the second of the first server request call Server sends service call instruction, then receives the service response data that the second server returns, and by the service Response data is sent to the first server, improves the safety of service call.
Fig. 6 is electronic equipment entity apparatus structural schematic diagram provided in an embodiment of the present invention, as shown in fig. 6, the electronics is set Standby may include: processor (processor) 501, memory (memory) 502 and bus 503, wherein processor 501 is deposited Reservoir 502 completes mutual communication by bus 503.Processor 501 can call the computer program in memory 502, To execute method provided by above-mentioned each method embodiment, for example, receive the service invocation request that first server is sent; If judgement knows that the service invocation request carries the corresponding authentication mark of the first server, to the first server The second server of request call sends service call instruction;The service response data that the second server returns are received, and The service response data are sent to the first server.
The embodiment of the present invention discloses a kind of computer program product, and the computer program product is non-transient including being stored in Computer program on computer readable storage medium, the computer program include program instruction, when described program instructs quilt When computer executes, computer is able to carry out method provided by above-mentioned each method embodiment, for example, receives first service The service invocation request that device is sent;If judgement knows that the service invocation request carries the corresponding authentication mark of the first server Know, then sends service call instruction to the second server of the first server request call;Receive the second server The service response data of return, and the service response data are sent to the first server.
The embodiment of the present invention provides a kind of non-transient computer readable storage medium, the non-transient computer readable storage Medium storing computer program, the computer program make the computer execute side provided by above-mentioned each method embodiment Method, for example, receive the service invocation request that first server is sent;If judgement knows that the service invocation request carries institute The corresponding authentication mark of first server is stated, then sends service call to the second server of the first server request call Instruction;The service response data that the second server returns are received, and the service response data are sent to described first Server.
Fig. 7 is the structural schematic diagram of micro services platform provided in an embodiment of the present invention, as shown in fig. 7, the embodiment of the present invention A kind of micro services platform is also provided, including the service call device 602 in multiple servers 601 and the various embodiments described above.
In addition, the logical order in above-mentioned memory 502 can be realized by way of SFU software functional unit and conduct Independent product when selling or using, can store in a computer readable storage medium.Based on this understanding, originally Substantially the part of the part that contributes to existing technology or the technical solution can be in other words for the technical solution of invention The form of software product embodies, which is stored in a storage medium, including some instructions to So that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation of the present invention The all or part of the steps of example the method.And storage medium above-mentioned include: USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic or disk etc. it is various It can store the medium of program code.
The embodiment of device described above is only schematical, wherein the unit as illustrated by the separation member It may or may not be physically separated, component shown as a unit may or may not be physics list Member, it can it is in one place, or may be distributed over multiple network units.It can be selected according to the actual needs In some or all of the modules achieve the purpose of the solution of this embodiment.Those of ordinary skill in the art are not paying creativeness Labour in the case where, it can understand and implement.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can It realizes by means of software and necessary general hardware platform, naturally it is also possible to pass through hardware.Based on this understanding, on Stating technical solution, substantially the part that contributes to existing technology can be embodied in the form of software products in other words, should Computer software product may be stored in a computer readable storage medium, such as ROM/RAM, magnetic disk, CD, including several fingers It enables and using so that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation Method described in certain parts of example or embodiment.
Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although Present invention has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that: it still may be used To modify the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features; And these are modified or replaceed, technical solution of various embodiments of the present invention that it does not separate the essence of the corresponding technical solution spirit and Range.

Claims (10)

1. a kind of service calling method characterized by comprising
Receive the service invocation request that first server is sent;
If judgement knows that the service invocation request carries the corresponding authentication mark of the first server, to first clothes The second server of business device request call sends service call instruction;
The service response data that the second server returns are received, and the service response data are sent to first clothes Business device.
2. the method according to claim 1, wherein receive first server send service invocation request it Before, the method also includes:
The certification request that the first server is sent is received, the certification request carries the identity letter of the first server Breath;
The corresponding authentication mark of the first server is obtained according to the identity information, and authentication mark is back to institute State first server.
3. the method according to claim 1, wherein the method also includes:
If judging to know the service invocation request as CIPHERING REQUEST, according to pre-set data deciphering strategy to the clothes Business call request is decrypted.
4. the method according to claim 1, wherein the method also includes:
If judging to know the service response data as confidential data, according to pre-set data encryption strategy to the clothes Business response data is encrypted.
5. method according to any of claims 1-4, which is characterized in that the method also includes:
If judgement is known from the time interval of the authentication mark to current time is sent to the first server not less than pre- If the period, then refuses the service invocation request of the first server and return to malloc failure malloc prompt to the first server Information.
6. a kind of service call device characterized by comprising
Receiving unit, for receiving the service invocation request of first server transmission;
Judging unit, if for judging to know that the service invocation request carries the corresponding authentication mark of the first server Know, then sends service call instruction to the second server of the first server request call;
Transmission unit, the service response data returned for receiving the second server, and the service response data are sent out It send to the first server.
7. device according to claim 6, which is characterized in that described device further includes authentication unit, is used for:
The certification request that the first server is sent is received, the certification request carries the identity letter of the first server Breath;
The corresponding authentication mark of the first server is obtained according to the identity information, and authentication mark is back to institute State first server.
8. a kind of electronic equipment, which is characterized in that including processor, memory and bus, in which:
The processor, the memory complete mutual communication by bus;
The processor can call the computer program in memory, to execute as described in claim 1-5 any one The step of method.
9. a kind of computer readable storage medium, is stored thereon with computer program, which is characterized in that the program is held by processor It realizes when row such as the step of claim 1-5 any one the method.
10. a kind of micro services platform, which is characterized in that including multiple servers and as described in claim 6-7 any one Service call device.
CN201810089362.0A 2018-01-30 2018-01-30 A kind of service calling method, device and micro services platform Withdrawn CN110099031A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810089362.0A CN110099031A (en) 2018-01-30 2018-01-30 A kind of service calling method, device and micro services platform

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810089362.0A CN110099031A (en) 2018-01-30 2018-01-30 A kind of service calling method, device and micro services platform

Publications (1)

Publication Number Publication Date
CN110099031A true CN110099031A (en) 2019-08-06

Family

ID=67441943

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810089362.0A Withdrawn CN110099031A (en) 2018-01-30 2018-01-30 A kind of service calling method, device and micro services platform

Country Status (1)

Country Link
CN (1) CN110099031A (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111163063A (en) * 2019-12-12 2020-05-15 万翼科技有限公司 Edge application management method and related product
CN112235411A (en) * 2020-06-30 2021-01-15 北京来也网络科技有限公司 AI-based RPA process control end server communication method, device, equipment and medium
CN112835733A (en) * 2021-03-31 2021-05-25 中国工商银行股份有限公司 Self-service equipment service processing method and device and self-service equipment
CN113422686A (en) * 2021-06-24 2021-09-21 平安国际智慧城市科技股份有限公司 Gateway layer authentication method, system, electronic device and storage medium
CN113691485A (en) * 2020-05-19 2021-11-23 北京神州泰岳软件股份有限公司 Micro-service platform access method and related device thereof
CN114205170A (en) * 2021-12-21 2022-03-18 厦门安胜网络科技有限公司 Cross-interface platform networking communication and service encryption calling method

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104519018A (en) * 2013-09-29 2015-04-15 阿里巴巴集团控股有限公司 Method, device and system for preventing malicious requests for server
CN105991514A (en) * 2015-01-28 2016-10-05 阿里巴巴集团控股有限公司 Service request authentication method and device
CN106714167A (en) * 2016-12-30 2017-05-24 北京华为数字技术有限公司 Authentication method and network access server
US20170230349A1 (en) * 2016-02-04 2017-08-10 International Business Machines Corporation Microservices inter-operational trust management
CN107528853A (en) * 2017-09-12 2017-12-29 上海艾融软件股份有限公司 The implementation method of micro services control of authority

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104519018A (en) * 2013-09-29 2015-04-15 阿里巴巴集团控股有限公司 Method, device and system for preventing malicious requests for server
CN105991514A (en) * 2015-01-28 2016-10-05 阿里巴巴集团控股有限公司 Service request authentication method and device
US20170230349A1 (en) * 2016-02-04 2017-08-10 International Business Machines Corporation Microservices inter-operational trust management
CN106714167A (en) * 2016-12-30 2017-05-24 北京华为数字技术有限公司 Authentication method and network access server
CN107528853A (en) * 2017-09-12 2017-12-29 上海艾融软件股份有限公司 The implementation method of micro services control of authority

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111163063A (en) * 2019-12-12 2020-05-15 万翼科技有限公司 Edge application management method and related product
CN111163063B (en) * 2019-12-12 2022-07-12 万翼科技有限公司 Edge application management method and related product
CN113691485A (en) * 2020-05-19 2021-11-23 北京神州泰岳软件股份有限公司 Micro-service platform access method and related device thereof
CN113691485B (en) * 2020-05-19 2023-08-25 北京神州泰岳软件股份有限公司 Micro-service platform access method and related device thereof
CN112235411A (en) * 2020-06-30 2021-01-15 北京来也网络科技有限公司 AI-based RPA process control end server communication method, device, equipment and medium
CN112235411B (en) * 2020-06-30 2023-10-10 北京来也网络科技有限公司 Server communication method, device, equipment and medium of RPA flow control terminal based on AI
CN112835733A (en) * 2021-03-31 2021-05-25 中国工商银行股份有限公司 Self-service equipment service processing method and device and self-service equipment
CN113422686A (en) * 2021-06-24 2021-09-21 平安国际智慧城市科技股份有限公司 Gateway layer authentication method, system, electronic device and storage medium
CN114205170A (en) * 2021-12-21 2022-03-18 厦门安胜网络科技有限公司 Cross-interface platform networking communication and service encryption calling method
CN114205170B (en) * 2021-12-21 2023-11-17 厦门安胜网络科技有限公司 Bridging port platform networking communication and service encryption calling method

Similar Documents

Publication Publication Date Title
CN110099031A (en) A kind of service calling method, device and micro services platform
CN104322001B (en) The Transport Layer Security flow control identified using service name
CN105007280B (en) A kind of application login method and device
JP6348661B2 (en) Company authentication through third-party authentication support
CN105812341B (en) A kind of method and device of identity user identity
CN106330816B (en) A kind of method and system logging in cloud desktop
CN106685973B (en) Remember method and device, log-in control method and the device of log-on message
US20060143686A1 (en) Policies as workflows
CN105991614B (en) It is a kind of it is open authorization, resource access method and device, server
CN105897668A (en) Third party account authorization method, device, server and system
CN111552935B (en) Block chain data authorized access method and device
US20180375648A1 (en) Systems and methods for data encryption for cloud services
CN105721412A (en) Method and device for authenticating identity between multiple systems
CN107924431B (en) Anonymous application program packaging
CN110430065B (en) Application service calling method, device and system
CN107426339A (en) A kind of cut-in method, the apparatus and system of data interface channel
CN105429962B (en) A kind of general go-between service construction method and system towards encryption data
CN108632325A (en) A kind of call method and device of application
CN109272314A (en) A kind of safety communicating method and system cooperateing with signature calculation based on two sides
CN108900324A (en) Verify the method and device of virtual machine communication performance
CN109409109A (en) Data processing method, device, processor and server in network service
CN114584386B (en) Global multistage encryption network communication method
CN105577738B (en) A kind of method, apparatus and system of processing terminal information
CN108701200B (en) Improved memory system
CN103997730A (en) Method for decrypting, copying and pasting encrypted data

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication
WW01 Invention patent application withdrawn after publication

Application publication date: 20190806