CN110166577A - Distributed Application cluster conversation processing system and method - Google Patents

Distributed Application cluster conversation processing system and method Download PDF

Info

Publication number
CN110166577A
CN110166577A CN201910584039.5A CN201910584039A CN110166577A CN 110166577 A CN110166577 A CN 110166577A CN 201910584039 A CN201910584039 A CN 201910584039A CN 110166577 A CN110166577 A CN 110166577A
Authority
CN
China
Prior art keywords
application
group
client
utility cession
application group
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910584039.5A
Other languages
Chinese (zh)
Other versions
CN110166577B (en
Inventor
曹黎明
葛佳伟
刘利勇
奚翔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Industrial and Commercial Bank of China Ltd ICBC
Original Assignee
Industrial and Commercial Bank of China Ltd ICBC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Industrial and Commercial Bank of China Ltd ICBC filed Critical Industrial and Commercial Bank of China Ltd ICBC
Priority to CN201910584039.5A priority Critical patent/CN110166577B/en
Publication of CN110166577A publication Critical patent/CN110166577A/en
Application granted granted Critical
Publication of CN110166577B publication Critical patent/CN110166577B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/104Peer-to-peer [P2P] networks
    • H04L67/1044Group management mechanisms 
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/146Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Mathematical Physics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer And Data Communications (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

A kind of Distributed Application cluster conversation processing system and method specifically include: client component stores active user in the login sessions in platform group, the key message of the utility cession in multiple application groups;Platform group, the incidence relation of repertoire inventory, whole application group information and function and application group that storage this application system includes;It is responsible for logging in user and authenticates, handle login sessions information and exports to the visible menu function table data of client active user, current all application group information;Multiple application groups, the application logic that each application group is responsible for a kind of product is realized, creates the utility cession of simultaneously processing server;The same user can use multiple functions in primary log in, and then client can access multiple application groups;One application group can handle the application request from multiple users simultaneously, handle multiple utility cessions.

Description

Distributed Application cluster conversation processing system and method
Technical field
The present invention relates to a kind of Distributed Application cluster conversation processing method and system, especially a kind of Large-Scale Interconnected net is answered With Distributed Application cluster conversation processing method of the system after being split as platform group and multiple application group subsystems, and Integrate the Distributed Application cluster conversation processing system that each group forms unification user view.
Background technique
Large-Scale Interconnected net application system is generally provided to the numerous product function of user, with the organizational form of menu or icon Be presented on a User, these menu functions often correspond to numerous stand-alone developments, O&M, operation Batch Processing line System, each business function are accessed frequency difference, the requirement difference of system load ability.In the unified front end of large-scale application system In the design of the general frame of interface view and the background system of dispersion, usual client will connect a platform group subsystem, It is responsible for user log-in authentication and login sessions information, the processing of session life cycle, the visible function menu view output exhibition of user It is existing;In addition, client needs to connect multiple mutually independent application group subsystems, it is responsible for processing different user to different business The access request of application function, and each application group subsystem is also needed when receiving user's request and executing business processing Utility cession information, utility cession life cycle are authenticated and created and handle to user.It is mutually independent multiple to answer With on group's subsystem utility cession life cycle and platform group on login sessions life cycle then need the coordinating and unifying, It is effectively treated, to provide consistent user experience.
Aspect is uniformly processed in the more session life cycles for solving above-mentioned each subsystem in the existing large-scale application system of industry, deposits In a variety of ways based on server-side processing.
A kind of way is uniformly to register all utility cessions letter established after user logs in server end by platform group Breath, the application group for assuming that user once accessed can also continue to access in this login, therefore work as some application group Request access to and do itself Session Time stamp update after, need timely notification platform group updating login sessions timestamp, then The notice for updating Session Time and stabbing is issued from platform group to other application group.Some is being clicked in fact, having many consumers After service application function, this login does not just continue to have accessed the function, therefore this scheme can waste application group Server resource.
It is each group by the shared session information of distributed cache system concentration there are also a kind of way, application group is direct A platform of duplication group shares to the login sessions of distributed cache system to local server, using login sessions in local The copy of server is as itself utility cession, which needs to keep server local session information copy in real time and caching is The consistency of session information in system every time updates in addition to updating local session information the Session Time stamp of application group appeal Copy will also update the session information in caching system, and then other cluster servers update local session pair near real-time again This, therefore it is related to the caching system except each application server read-write local server, performance consumption is larger, and caches system The availability of system can restrict the availability of each group, and each application group is no longer independent, and problem isolation ability is poor.
Summary of the invention
It is focused on solving for the demand and problem present invention aims at a kind of client-based scheme is proposed Login sessions and multiple the safe, consistent of utility cession life cycle Coordination Treatment, efficiency between distributed group, and simultaneously It is mutually indepedent between holding group.
In order to achieve the above object, Distributed Application cluster conversation processing system provided by the present invention, specifically comprising client, Platform group and multiple application groups;The client includes client component and client end interface;The client end interface is used Interface is shown in offer user's input channel and client-side information;The client component is asked for receiving Client-initiated login It asks, the logging request is exported to the platform group;And save the function menu received and application group registration information With login sessions information to local;And the application input instruction of user is received, it is looked into according to application input instruction in locally It askes and obtains corresponding application group mark;It is local with the presence or absence of corresponding utility cession that inquiry is identified according to the application group; When there are the utility cession, the application function access service for obtaining corresponding application group is identified according to the application group URL, and service URL is accessed to application group transmission user input capability mark according to the application function and is locally stored Utility cession mark;And the application execution result received is shown to the utility cession for exporting and updating client to user Timestamp and to the platform group issue login sessions update of time stamp confirmation;The platform group is used for what basis received The login authentication carries out user identity authentication, and login sessions are created after certification passes through, and inquires the corresponding user identity of acquisition Function menu and application group registration information, function menu and application group registration information and login sessions information are fed back to The client;And the login sessions timestamp for updating server end is confirmed according to the login sessions update of time stamp;Institute It states application group and is used to identify the utility cession timestamp for updating server end according to the utility cession, it is defeated according to the user Enter Function Identification to execute corresponding application logic and return to application execution result.
In above-mentioned Distributed Application cluster conversation processing system, it is preferred that the client component includes front end services Module, Dialog processing module, application group and function register information storage module;The front end services module is used to be the visitor Family end interface provides login, sign-out, application function access interface channel;The application group and function register information store mould Block is for store function menu and the incidence relation of application group registration information and each function and application group;The session Processing module is used to store the login sessions information and the utility cession information, and is created, sold to utility cession It ruins or update of time stamp.
In above-mentioned Distributed Application cluster conversation processing system, it is preferred that the platform group includes at login sessions Manage unit, application group and function register information process unit, utility cession creates token generation unit;At the login sessions Reason unit is for executing user log-in authentication, the creation of server end login sessions information, destruction or update of time stamp processing;Institute All function menu resources, the application group that application group and function register information process unit are stated for storage application system are infused Volume information;And function menu and application group registration information are fed back into the client;The wherein function menu resource In each function include corresponding application group mark;The application group registration information includes utility cession creation mark, pin Ruin URL and the corresponding application function access URL of the application group;The utility cession creation token generation unit is used for basis User's debarkation authentication result generates token data, described to feeding back to after token data progress symmetric cryptography and token signature Client.
In above-mentioned Distributed Application cluster conversation processing system, it is preferred that the system also includes: when there is no described When utility cession, the client component identifies the application function access clothes for obtaining corresponding application group according to the application group Be engaged in URL, and accesses service URL according to the application function and send encrypted token data and token label to the application group Name;The application group parses encrypted token data and obtains token data, according to the token data and the token label Name carries out authentication to the client, when certification by after generate utility cession and identify and feed back to the client;Institute The client component reception utility cession is stated to identify and save.
In above-mentioned Distributed Application cluster conversation processing system, it is preferred that the application group includes at utility cession It manages unit and application function realizes unit;The utility cession processing unit is for executing the verification of utility cession mark and to clothes Business device end utility cession is created, is destroyed or update of time stamp;The application function realizes that unit is used for according to the user Input function mark executes corresponding using logic.
In above-mentioned Distributed Application cluster conversation processing system, it is preferred that the system also includes load-balancing device; The load-balancing device is used to client output data being forwarded to platform group or corresponding application group.
The present invention also provides a kind of Distributed Application cluster conversation processing methods, and the method includes: client, which receives, to be used The logging request that family is initiated, the logging request is exported to platform group;The platform group described steps on according to what is received Record certification carries out user identity authentication, when certification by after create login sessions information, and inquire and obtain corresponding user identity Function menu and application group registration information and login sessions information are fed back to institute by function menu and application group registration information State client;The client saves the function menu received and application group registration information and login sessions information to originally Ground;The client receives instructing using input for user, corresponding in local search acquisition according to application input instruction Application group mark;It is local with the presence or absence of corresponding utility cession that inquiry is identified according to the application group;It answers described in the presence When with session, the application function access service URL for obtaining corresponding application group is identified according to the application group, is answered according to described The utility cession mark that service URL sends user input capability mark to the application group and is locally stored is accessed with function; The application group identifies the utility cession timestamp for updating server end according to the utility cession, is inputted according to the user Function Identification executes corresponding application logic and returns to application execution result;The client by the application execution result to Family shows the timestamp for exporting and updating the utility cession of client and issues login sessions timestamp more to the platform group New confirmation;The platform group confirms the login sessions time for updating server end according to the login sessions update of time stamp Stamp.
In above-mentioned Distributed Application cluster conversation processing method, it is preferred that the method further includes: the platform group Token data is generated according to user's debarkation authentication result, is fed back to after carrying out symmetric cryptography and token signature to the token data The client.
In above-mentioned Distributed Application cluster conversation processing method, it is preferred that the method further includes: when there is no described When utility cession, the client component identifies the application function access clothes for obtaining corresponding application group according to the application group Be engaged in URL, and accesses service URL according to the application function and send encrypted token data and token label to the application group Name;The application group parses encrypted token data and obtains token data, according to the token data and the token label Name carries out authentication to the client, when certification by after generate utility cession and identify and feed back to the client;Institute The client component reception utility cession is stated to identify and save.
In above-mentioned Distributed Application cluster conversation processing method, it is preferred that the method further includes: when user is sign-out Afterwards, the client logs in session identification, utility cession mark and application group identification list in locally acquisition;It is answered according to described Service is destroyed in the session for obtaining corresponding application group in the application group registration information being locally stored with group identification list URL destroys service URL according to the session and applies utility cession mark and utility cession cleaning notice asynchronous transmission to corresponding Group;It logs in session identification according to described asynchronous transmission is logged in into session cleaning notice to the platform group;The platform group Group logs in session cleaning according to and clearing server end is notified to log in session data;The application group is according to the application The session data at session cleaning notice clearing server end.
In above-mentioned Distributed Application cluster conversation processing method, it is preferred that the method further includes: the client is pressed The timestamp for each utility cession that predetermined period detection is locally stored;When the timestamp of the utility cession is more than that current time is pre- When determining timeout threshold, the corresponding application group sending application session cleaning notice of Xiang Suoshu utility cession;The application group root The session data at notice clearing server end is cleared up according to the utility cession.
The present invention also provides a kind of computer equipment, including memory, processor and storage on a memory and can located The computer program run on reason device, the processor realize the above method when executing the computer program.
The present invention also provides a kind of computer readable storage medium, the computer-readable recording medium storage has in execution State the computer program of method.
The beneficial technical effect of the present invention lies in: platform group and multiple applications can be effectively treated in the system modules Cluster conversation life cycle carries out message encryption and signature by the communication for the first time to platform and application group, ensure that platform The safety communicated with application group.By to platform group registration application group and respective three kinds of services URL (session wound Build, session is destroyed, function access) information, so that platform group is communicated using unified processing mode and each application group, Without specially treated, new application group can be added at any time.Pass through effective meeting of centrally stored application group in the client Talk about information, in https application can ensuring communication safety property and in continuous application group function access process, no An application group local session must all be created to every subfunction access request, so that the response speed of application service is improved, Reduce conversation establishing/destruction expense.
Detailed description of the invention
The drawings described herein are used to provide a further understanding of the present invention, constitutes part of this application, not Constitute limitation of the invention.In the accompanying drawings:
Fig. 1 is the schematic illustration of Distributed Application cluster conversation processing system provided by one embodiment of the invention;
Fig. 2 is the structural schematic diagram figure of Distributed Application cluster conversation processing system provided by one embodiment of the invention;
Fig. 3 is the structural schematic diagram of client component provided by one embodiment of the invention;
Fig. 4 is the structural schematic diagram of platform group provided by one embodiment of the invention;
Fig. 5 is that platform group data library provided by one embodiment of the invention stores information ER figure;
Fig. 6 is the structural schematic diagram of application group provided by one embodiment of the invention;
Fig. 7 is the structural schematic diagram of client session processing module provided by one embodiment of the invention;
Fig. 8 is that utility cession provided by one embodiment of the invention creates interaction flow schematic diagram;
Fig. 9 is that user provided by one embodiment of the invention accesses application access entirety interaction flow schematic diagram;
Figure 10 is that the sign-out system session of user provided by one embodiment of the invention clears up interaction flow schematic diagram;
Figure 11 is the flow diagram of Distributed Application cluster conversation processing method provided by one embodiment of the invention.
Specific embodiment
Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings and examples, how to apply to the present invention whereby Technological means solves technical problem, and the realization process for reaching technical effect can fully understand and implement.It needs to illustrate As long as not constituting conflict, each feature in each embodiment and each embodiment in the present invention can be combined with each other, institute The technical solution of formation is within the scope of the present invention.
In addition, step shown in the flowchart of the accompanying drawings can be in the department of computer science of such as a group of computer-executable instructions It is executed in system, although also, logical order is shown in flow charts, and it in some cases, can be to be different from herein Sequence execute shown or described step.
The present invention is subsequent to be referred to as platform group for platform group subsystem;Application group subsystem is referred to as applied into group Group;The session of platform group creating is known as login sessions;The session of application group creation is become into utility cession.
It please refers to shown in Fig. 1, Distributed Application cluster conversation processing system provided by the present invention, specifically includes client End, platform group and multiple application groups;The client includes client component and client end interface;The client end interface Interface is shown for providing user's input channel and client-side information;The client component is for receiving Client-initiated login Request, the logging request is exported to the platform group;And save the function menu received and application group registration letter It ceases and login sessions information to local;And the application input instruction of user is received, according to application input instruction in local Inquiry obtains corresponding application group mark;It is local with the presence or absence of corresponding application meeting that inquiry is identified according to the application group Words;When there are the utility cession, the application function access clothes for obtaining corresponding application group are identified according to the application group Be engaged in URL, and sends user input capability mark to the application group according to application function access service URL and locally deposit The utility cession of storage identifies;And the application execution result received is shown to the utility cession for exporting and updating client to user Timestamp and to the platform group issue login sessions update of time stamp confirmation;The platform group is used for basis and receives The login authentication carry out user identity authentication, login sessions are created after certification passes through, and inquire the corresponding user's body of acquisition The function menu and application group registration information of part, function menu and application group registration information and login sessions information are fed back To the client;And the login sessions timestamp for updating server end is confirmed according to the login sessions update of time stamp; The application group is used to identify the utility cession timestamp for updating server end according to the utility cession, according to the user Input function mark executes corresponding application logic and returns to application execution result.In real work, the Distributed Application group Group session processing system mainly includes: 1) client component, login sessions of the overall situation storage active user in platform group, more The key message of utility cession in a application group, including when session identification, the affiliated application group mark of session, final updating Between etc.;And registration, update, clearing function of the offer to these session key messages, these functions need and corresponding group service Device end is communicated;The client component is responsible for the visible feature list number of active user that load is exported from platform group simultaneously According to and be supplied to client end interface and show, each function is associated with the application group information for responding its application request.2) one A platform group, the application group information and function and application of repertoire inventory, whole that storage this application system includes The incidence relation of group;It is responsible for logging in user and authenticates, handles login sessions information and export and give client active user Visible menu function table data, current all application group information.3) multiple mutually independent application groups, Mei Geying It is realized with the application logic that group is responsible for a kind of product, creates the utility cession of simultaneously processing server.The same user can be with Multiple functions are used in primary log in, and then client can access multiple application groups;One application group can be handled simultaneously Application request from multiple users handles multiple utility cessions;The operation requests of user each time, client component all bases The associated application group information of root functionality, notice application group create new utility cession or using the meetings for having created utility cession Words mark, is communicated with corresponding application group.
Specifically, please referring to shown in Fig. 2, the Distributed Application cluster conversation processing system is in practical application, entire System can be by using browser or APP as the client component 1 of carrier;Request routing function and session is supported to keep the load of function Equalizing equipment 2, HAProxy the or Nginx open source software generally used such as industry is used as soft loaded server or other are commercial Request access gateway product;One platform group 3;Multiple mutually independent application groups 4 form.Client and server Communication protocol is https agreement.
Please referred to shown in Fig. 3 again, in an embodiment of the present invention, the client component 1 include front end services module 11, Dialog processing module 12, application group and function register information storage module 13;The front end services module 11 is for being described Client end interface provides login, sign-out, application function access interface channel;The application group and the storage of function register information Module 13 is for store function menu and the incidence relation of application group registration information and each function and application group;It is described Dialog processing module 12 is used to store the login sessions information and the utility cession information, and creates to utility cession It builds, destroy or update of time stamp.Specifically, as shown in figure 3, client component 1 includes front end services module in real work 11, Dialog processing module 12, application group and function register information storage module 13;Wherein, front end services module 11 is to client Interface is held to provide login, sign-out, application function access interface and specific implementation;Application group and function register information store mould Block 13 stores user log-in authentication success rear platform group and returns to all feature lists of client, each function and apply group The register information of the incidence relation, all application groups organized;Dialog processing module 12 stores all users and stepping on for session has been established Remember information, including a platform login sessions, multiple utility cessions, is responsible for realizing to platform login sessions, multiple utility cessions Creation, destruction, update of time stamp Life cycle processing.
It is please referred to shown in Fig. 4 again, in an embodiment of the present invention, the platform group 3 includes login sessions processing unit 31, application group and function register information process unit 32, utility cession create token generation unit 33;At the login sessions Reason unit 31 is for executing user log-in authentication, the creation of server end login sessions information, destruction or update of time stamp processing; The application group and function register information process unit 32 are used for all function menu resources of storage application system, using group Group registration information;Wherein each function includes corresponding application group mark in the function menu resource;The application group Registration information includes utility cession creation mark, destroys the URL and corresponding application function access URL of the application group;Institute It states application group and function register information process unit is used to function menu and application group registration information feeding back to the visitor Family end;The utility cession creation token generation unit 33 is used to generate token data according to user's debarkation authentication result, to institute It states after token data carries out symmetric cryptography and token signature and feeds back to the client.With this, when there is no the utility cessions When, the client component identifies the application function access service URL for obtaining corresponding application group according to the application group, and Service URL, which is accessed, according to the application function sends encrypted token data and token signature to the application group;It is described Application group parses encrypted token data and obtains token data, is signed according to the token data and the token to described Client carries out authentication, when certification by after generate utility cession and identify and feed back to the client;The client Component receives the utility cession and identifies and save.In real work, platform group 3 includes login sessions processing unit 31, answers Token generation unit 33 is created with group and function register information process unit 32, utility cession.Wherein, login sessions processing is single Member 31 realizes user log-in authentication, server end login sessions information and life cycle processing.Application group and function register letter Breath processing unit 32 stores the function menu resource of application system whole, whole application group registration letters in the database Breath, item of information content as shown in figure 5, each function contains an application group identity property, for indicate the function by Which application group provides, the URL and respective application that each application group has registered utility cession creation, destroys service The URL of function access request.Application group and function register information process unit 32 are responsible for returning to the visible dish of active user Single function list and above-mentioned application group registration information.Utility cession creation token generation unit 33 is responsible for generation token message and is returned Back to client, token message includes two data item, first is that exceeding the time limit time, user authentication to comprising login username, token The structuring character string of the information such as mode, user's operation permission makees symmetrical encrypted ciphertext d, second is that above-mentioned character string original text Character string s after signing;Application group is also required to authenticate user, but the login that has that can use platform group is recognized It demonstrate,proves result to authenticate without repeating, application group only needs the credibility to the authentication result from platform group to make technological layer Safety inspection, the realization of application function itself can be focused more in this way;Therefore, client accesses some using group for the first time When group, as long as being sent to one credible token of application group, for the legitimacy of application group Authentication Client request, using group Group, which checks, creates utility cession after token passes through;The token includes one to the ciphertext after user authentication resultant content symmetric cryptography Data and one are by the signed data after platform group private key signature.
It please refers to shown in Fig. 6, in an embodiment of the present invention, the application group 4 includes utility cession processing unit 41 Unit 42 is realized with application function;The utility cession processing unit is for executing the verification of utility cession mark and to server Utility cession is held to be created, destroyed or update of time stamp;The application function realizes that unit is used to input according to the user Function Identification executes corresponding using logic;A system includes multiple mutually independent application groups in real work, each Application group 4 realizes the service application function of fixed type.The request that client issues application group can be according to whether there is or not applications Session is divided into two classes, and one kind is to create token comprising utility cession in request, illustrates that the user is to access this for the first time using group Group, it is desirable that application group verifying token effectively creates utility cession afterwards and returns to client registers;Second class is wrapped in request It is identified containing utility cession, explanation is to access the application group again, after application group verifies the session identification, executes applied business Logic function.As shown in fig. 6, application group 4 includes that utility cession processing unit 41 and application function realize unit 42, wherein answering It is responsible for realizing above-mentioned utility cession creation, the verification of utility cession mark with Dialog processing unit 41 and utility cession is being taken The life cycle processing at business device end;Application function realizes that unit 42 is responsible for realizing concrete application logic of business functions.
In an embodiment of the present invention, the system also may include load-balancing device;The load-balancing device is used for Client output data is forwarded to platform group or corresponding application group.It specifically refers to shown in Fig. 2, load-balancing device 2 be mainly used for the request routing forwarding from client to specific group, while being responsible for requesting client https SSL certificate unloading, session are kept.Route forwarding function support is requested to identify the URL context root of different requests, such as The Outside Access domain name of certain application system of https: // * * * .***********.***/be, containing a, tri- application groups of b, c, Tri- first thus three application group distribution/a ,/b ,/c context roots are platform group allocation/platform context root, So load-balancing device then accomplishes that matching the request that URL is https: // * * * .***********.***/platform/ turns It is dealt into platform group;Application group a is forwarded to the matching URL request for being https: // * * * .***********.***/a/, Application group b, etc. is forwarded to the matching URL request for being https: // * * * .***********.***/b/.
It is please referred to shown in Fig. 7 again, Fig. 7 is 12 internal structure of Dialog processing module in client component 1, and session information is deposited Storage unit 121 stores the active session information for all groups that the current user accessed, and item of information includes: application group mark Knowledge, session identification, final updating timestamp.Session creating unit 122 is initiated to create new utility cession and be stepped on for client Remember new opplication session information to session information memory cell 121;Session information updating unit 123 updates some for client and answers With the timestamp of session;Session information cleaning unit 124 is responsible for not updating meeting for a long time in timing cleaning session information storage unit Words record, notice application group server end destroy specified utility cession.
It please refers to shown in Figure 11, the present invention also provides a kind of Distributed Application cluster conversation processing method, the method packets Contain: S101 client receives Client-initiated logging request, and the logging request is exported to platform group;Platform described in S102 Group carries out user identity authentication according to the login authentication that receives, when certification by after create login sessions information, and Inquiry obtains the function menu and application group registration information of corresponding user identity, by function menu and application group registration information The client is fed back to login sessions information;Client described in S103 saves the function menu received and application group note Volume information and login sessions information are to local;Client described in S104 receives the application input instruction of user, according to the application Input instruction obtains corresponding application group mark in local search;Identifying inquiry locally according to the application group whether there is Corresponding utility cession;When there are the utility cession, is identified according to the application group and obtain answering for corresponding application group Service URL is accessed with function, service URL is accessed according to the application function and sends user input capability mark to the application group The utility cession mark known and be locally stored;Application group described in S105 is identified according to the utility cession updates server end Utility cession timestamp executes corresponding application logic according to user input capability mark and returns to application execution result; The application execution result is shown the timestamp for exporting and updating the utility cession of client by client described in S106 to user The confirmation of login sessions update of time stamp is issued with to the platform group;When platform group is according to the login sessions described in S107 Between stamp update confirmation update server end login sessions timestamp.
It is worth noting that client access for the first time using in application group in application, the platform group also root Token data is generated according to user's debarkation authentication result, feeds back to institute after carrying out symmetric cryptography and token signature to the token data State client;Thereafter, when the utility cession is not present, the client component is according to application group mark acquisition pair It answers the application function of application group to access service URL, and service URL is accessed according to the application function and is sent out to the application group Encrypted token data and token is sent to sign;The application group parses encrypted token data and obtains token data, root It signs according to the token data and the token and authentication is carried out to the client, generate utility cession after certification passes through It identifies and feeds back to the client;The client component receives the utility cession and identifies and save.
In an embodiment of the present invention, the method further includes: after user is sign-out, the client in locally acquisition step on Land session identification, utility cession mark and application group identification list;According to the application group identification list in being locally stored Application group registration information in obtain the session of corresponding application group and destroy service URL, service URL is destroyed according to the session Notify asynchronous transmission to corresponding application group utility cession mark and utility cession cleaning;It will according to the session identification that logs in Asynchronous transmission logs in session cleaning notice to the platform group;It is clear that the platform group logs in session cleaning notice according to Reason server end logs in session data;The application group clears up the meeting at notice clearing server end according to the utility cession Talk about data.Specifically, please referring to shown in Figure 10, after user is sign-out, 124 notification platform group of unit is cleared up in the session in client Multiple application groups cleaning that group clearing server end login sessions and notice are registered in session information storage unit 121 is each From the interaction flow of server end utility cession:
Step 124.1: client obtains login sessions mark from session information storage unit 121, and asynchronous transmission logs in meeting Words cleaning notice.Following step 124.2 and 124.3 is without sequencing.
Step 124.2: platform group verifies login sessions and identifies validity, then the login sessions number at clearing server end According to.
Step 124.3: client obtains utility cession mark and application group identity column from session information storage unit 121 Table.For each utility cession information in list, step 124.4 is successively executed.
Step 124.4: application group obtained in the previous step is obtained from application group and function register information storage module 13 Service URL is destroyed in the session of group, increases utility cession mark in request, and the cleaning of asynchronous transmission utility cession notifies respective application Group.
Step 124.5: application group verifies utility cession and identifies validity, then the session data at clearing server end.
This is arrived, the session information in platform group and each application group has all obtained timely cleaning.
For convenient for clearing up extra utility cession in time, in an embodiment of the present invention, the method further includes: the visitor The timestamp for each utility cession that family end is locally stored by predetermined period detection;When the timestamp of the utility cession is more than current When time predetermined timeout threshold, the corresponding application group sending application session cleaning notice of Xiang Suoshu utility cession;The application Group clears up the session data at notice clearing server end according to the utility cession.Specifically, the session in client component The utility cession information record in 124 automatic regular polling session information storage unit 121 of unit is cleared up, the session of each record is detected Whether timestamp alreadys exceed the session timeout threshold values of default apart from current time, is more than setting threshold values for detecting Record clears up unit 124 from session and initiates session cleaning notice to affiliated application group.In this way, clicking some for user After service application function, this login does not just continue to the case where accessing the service application function, and system can accomplish clear in time Except the utility cession having built up before this.
To understand Distributed Application cluster conversation processing system and method provided by the present invention convenient for clearer, below Overall description, this field correlation skill will be done to the Distributed Application cluster conversation processing system and method in conjunction with above-described embodiment Art personnel when it is found that following embodiment only for ease of understanding Distributed Application cluster conversation processing system provided by the present invention and Method does not do any restrictions to it.
It please refers to shown in Fig. 8, when Fig. 8 is that user accesses some application function for the first time, its corresponding application of client notification The system flow of group creating utility cession inputs as the associated application group mark of the application function.
Step 12.1: token solicitation message is requested in the assembling of client session creating unit 12, includes platform group in message Login sessions mark, Xiang Pingtai group initiate application obtain utility cession create token;
Step 12.2: platform cluster conversation processing unit 31 checks the validity of login sessions mark in client request;
Step 12.3: platform group application conversation establishing token generation unit 33 will assemble the conduct of user authentication results messages Token data;
Step 12.4: platform group application conversation establishing token generation unit 33 carries out symmetric cryptography and order to token data Board data signature, this needs to dispose a symmetric cryptographic key file and a private key file in platform group;Platform group returns Back to client encrypted cipher text d and signed data s.
Step 12.5: after client receives token ciphertext d and signed data s, being identified according to application group from client The conversation establishing service URL that target application group is extracted in application group and function register information storage module 13, to the URL Utility cession request to create is issued, has token ciphertext data d and signed data s in request message;
Step 12.6: 41 decrypted token ciphertext d of utility cession processing unit and verifying token signature in application group S, this needs to access the symmetric cryptographic key and platform group public key file being deployed on application group server.
Step 12.7: the utility cession processing unit 41 in application group creates utility cession and returns to session identification to visitor Family end.
Step 12.8: the Dialog processing module 12 in client component saves utility cession and is identified to the storage of its session information Unit 121.
It is please referred to shown in Fig. 9 again, Fig. 9 is user from logining successfully the multiple whole interactive stream for accessing concrete application function Journey:
Step 1.1: the front end services module 11 in client component receives the logging request that user initiates at interface, triggering Client session processing module 12 initiates login authentication request to platform group;
Step 1.2: after the login sessions processing unit 31 of platform group carries out user identity authentication, creation login sessions letter Breath;
Step 1.3: the inquiry of platform group obtains the visible all function menus of the user and relevant all application groups Group registration information returns to client together with login sessions mark;
Step 1.4: 1 application group and function register information storage module 13 load and save function in client component Menu list and application group registration information;Session information storage unit 121 saves login sessions information;
Step 1.5: user clicks some application function, and front end services module 11 inquires application group and function register first Information storage module 13 finds the correspondence application group mark of the application function;
Step 1.6: the session management module 12 in client component 1 inquires session information storage unit 121, judges that this is answered With the whether existing utility cession of group: notify application group to create utility cession if it does not exist, then executing step 1.7, it is no Then follow the steps 1.8;
Step 1.7: according to the process of above-mentioned Fig. 8, client session processing module 12 applies for utility cession to platform group 3 Token is created, and application group 4 is notified to create utility cession, then saves utility cession information to session information memory cell 121。
Step 1.8: client front end services module 11 is obtained from application group and function register information storage module 13 should The application function access service URL of application group, initiates to request, identifies and be clicked comprising utility cession in request to the URL Function Identification.
Step 1.9: application group verification Application session identification updates the utility cession timestamp of server end.
Step 1.10: application group executes the application logic of concrete function, and return to application according to incoming Function Identification Implementing result.
Step 1.11: client load application execution result simultaneously shows user, while the session updates of client component Unit 123 updates the timestamp of the utility cession in session information storage unit 121.
Step 1.12: the 123 notification platform group updating login sessions timestamp of session updates unit of client component.
Step 1.13: platform group updating server end login sessions timestamp.
This is arrived, after this application request executes, client and the corresponding application group of server end and the meeting of platform group Words timestamp is all updated.
The present invention also provides a kind of computer equipment, including memory, processor and storage on a memory and can located The computer program run on reason device, the processor realize the above method when executing the computer program.
The present invention also provides a kind of computer readable storage medium, the computer-readable recording medium storage has in execution State the computer program of method.
The beneficial technical effect of the present invention lies in: platform group and multiple applications can be effectively treated in the system modules Cluster conversation life cycle carries out message encryption and signature by the communication for the first time to platform and application group, ensure that platform The safety communicated with application group.By to platform group registration application group and respective three kinds of services URL (session wound Build, session is destroyed, function access) information, so that platform group is communicated using unified processing mode and each application group, Without specially treated, new application group can be added at any time.Pass through effective meeting of centrally stored application group in the client Talk about information, in https application can ensuring communication safety property and in continuous application group function access process, no An application group local session must all be created to every subfunction access request, so that the response speed of application service is improved, Reduce conversation establishing/destruction expense.
It should be understood by those skilled in the art that, the embodiment of the present invention can provide as method, system or computer program Product.Therefore, complete hardware embodiment, complete software embodiment or reality combining software and hardware aspects can be used in the present invention Apply the form of example.Moreover, it wherein includes the computer of computer usable program code that the present invention, which can be used in one or more, The computer program implemented in usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.) produces The form of product.
The present invention be referring to according to the method for the embodiment of the present invention, the process of equipment (system) and computer program product Figure and/or block diagram describe.It should be understood that every one stream in flowchart and/or the block diagram can be realized by computer program instructions The combination of process and/or box in journey and/or box and flowchart and/or the block diagram.It can provide these computer programs Instruct the processor of general purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices to produce A raw machine, so that being generated by the instruction that computer or the processor of other programmable data processing devices execute for real The device for the function of being specified in present one or more flows of the flowchart and/or one or more blocks of the block diagram.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing devices with spy Determine in the computer-readable memory that mode works, so that it includes referring to that instruction stored in the computer readable memory, which generates, Enable the manufacture of device, the command device realize in one box of one or more flows of the flowchart and/or block diagram or The function of being specified in multiple boxes.
These computer program instructions also can be loaded onto a computer or other programmable data processing device, so that counting Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, thus in computer or The instruction executed on other programmable devices is provided for realizing in one or more flows of the flowchart and/or block diagram one The step of function of being specified in a box or multiple boxes.
Particular embodiments described above has carried out further in detail the purpose of the present invention, technical scheme and beneficial effects Describe in detail it is bright, it should be understood that the above is only a specific embodiment of the present invention, the guarantor being not intended to limit the present invention Range is protected, all within the spirits and principles of the present invention, any modification, equivalent substitution, improvement and etc. done should be included in this Within the protection scope of invention.

Claims (13)

1. a kind of Distributed Application cluster conversation processing system, which is characterized in that the system include client, platform group and Multiple application groups;
The client includes client component and client end interface;
The client end interface shows interface for providing user's input channel and client-side information;
The client component exports the logging request to the platform group for receiving Client-initiated logging request Group;And the function menu received and application group registration information and login sessions information are saved to local;
And the application input instruction of user is received, corresponding application is obtained in local search according to application input instruction Group identification;It is local with the presence or absence of corresponding utility cession that inquiry is identified according to the application group;
When there are the utility cession, the application function access clothes for obtaining corresponding application group are identified according to the application group Be engaged in URL, and sends user input capability mark to the application group according to application function access service URL and locally deposit The utility cession of storage identifies;And the application execution result received is shown to the utility cession for exporting and updating client to user Timestamp and to the platform group issue login sessions update of time stamp confirmation;
The platform group is used to carry out user identity authentication according to the login authentication received, creates after certification passes through Login sessions, and the function menu and application group registration information for obtaining corresponding user identity are inquired, by function menu and application Group registration information and login sessions information feed back to the client;And confirmed according to the login sessions update of time stamp Update the login sessions timestamp of server end;
The application group is used to identify the utility cession timestamp for updating server end according to the utility cession, according to described User input capability mark executes corresponding application logic and returns to application execution result.
2. Distributed Application cluster conversation processing system according to claim 1, which is characterized in that the client component Include front end services module, Dialog processing module, application group and function register information storage module;
The front end services module is used to provide login, sign-out, application function access interface channel for the client end interface;
The application group and function register information storage module are used for store function menu and application group registration information, and every The incidence relation of a function and application group;
The Dialog processing module is used to store the login sessions information and the utility cession information, and to utility cession It created, destroyed or update of time stamp.
3. Distributed Application cluster conversation processing system according to claim 1, which is characterized in that the platform group packet Processing unit containing login sessions, application group and function register information process unit, utility cession create token generation unit;
The login sessions processing unit is used to execute user log-in authentication, the creation of server end login sessions information, destruction Or update of time stamp processing;
The application group and function register information process unit are used for all function menu resources of storage application system, application Group registration information;And function menu and application group registration information are fed back into the client;The wherein function dish Each function includes corresponding application group mark in single resource;The application group registration information includes utility cession creation mark Know, destroy URL and the corresponding application function access URL of the application group;
The utility cession creation token generation unit is used to generate token data according to user's debarkation authentication result, to the order Board data feed back to the client after carrying out symmetric cryptography and token signature.
4. Distributed Application cluster conversation processing system according to claim 3, which is characterized in that the system is also wrapped Contain:
When the utility cession is not present, the client component is identified according to the application group obtains corresponding application group Application function access service URL, and according to the application function access service URL to the application group send it is encrypted Token data and token signature;
The application group parses encrypted token data and obtains token data, according to the token data and the token label Name carries out authentication to the client, when certification by after generate utility cession and identify and feed back to the client;
The client component receives the utility cession and identifies and save.
5. Distributed Application cluster conversation processing system according to claim 1, which is characterized in that the application group packet Processing unit containing utility cession and application function realize unit;
The utility cession processing unit is for executing the verification of utility cession mark and creating to server end utility cession It builds, destroy or update of time stamp;
It is corresponding using logic that the application function realizes that unit is used to execute according to user input capability mark.
6. Distributed Application cluster conversation processing system according to claim 1, which is characterized in that the system also includes Load-balancing device;The load-balancing device is used to client output data being forwarded to platform group or corresponding application group Group.
7. a kind of Distributed Application cluster conversation processing method, which is characterized in that the method includes:
Client receives Client-initiated logging request, and the logging request is exported to platform group;
The platform group carries out user identity authentication according to the login authentication that receives, when certification by after creation log in Session information, and the function menu and application group registration information for obtaining corresponding user identity are inquired, by function menu and application Group registration information and login sessions information feed back to the client;
The client saves the function menu received and application group registration information and login sessions information to local;
The client receives instructing using input for user, corresponding in local search acquisition according to application input instruction Application group mark;It is local with the presence or absence of corresponding utility cession that inquiry is identified according to the application group;It answers described in the presence When with session, the application function access service URL for obtaining corresponding application group is identified according to the application group, is answered according to described The utility cession mark that service URL sends user input capability mark to the application group and is locally stored is accessed with function;
The application group identifies the utility cession timestamp for updating server end according to the utility cession, according to the user Input function mark executes corresponding application logic and returns to application execution result;
The application execution result is shown the timestamp for exporting and updating the utility cession of client by the client to user The confirmation of login sessions update of time stamp is issued with to the platform group;
The platform group confirms the login sessions timestamp for updating server end according to the login sessions update of time stamp.
8. Distributed Application cluster conversation processing method according to claim 7, which is characterized in that the method is also wrapped Contain: the platform group according to user's debarkation authentication result generate token data, to the token data carry out symmetric cryptography and The client is fed back to after token signature.
9. Distributed Application cluster conversation processing method according to claim 8, which is characterized in that the method is also wrapped Contain: when there is no when the utility cession, the client component identifies the corresponding application group of acquisition according to the application group Application function access service URL, and according to the application function access service URL to the application group send it is encrypted Token data and token signature;
The application group parses encrypted token data and obtains token data, according to the token data and the token label Name carries out authentication to the client, when certification by after generate utility cession and identify and feed back to the client;
The client component receives the utility cession and identifies and save.
10. Distributed Application cluster conversation processing method according to claim 7, which is characterized in that the method is also wrapped Contain:
After user is sign-out, the client logs in session identification, utility cession mark and application group mark in locally acquisition List;
Corresponding application group is obtained in the application group registration information being locally stored according to the application group identification list Service URL is destroyed in session, destroys service URL according to the session and utility cession mark and utility cession cleaning are notified asynchronous hair It send to corresponding application group;
It logs in session identification according to described asynchronous transmission is logged in into session cleaning notice to the platform group;
The platform group logs in session cleaning notice clearing server end according to and logs in session data;
The application group clears up the session data at notice clearing server end according to the utility cession.
11. Distributed Application cluster conversation processing method according to claim 7, which is characterized in that the method is also wrapped Contain: the timestamp for each utility cession that the client is locally stored by predetermined period detection;When the time of the utility cession When stabbing timeout threshold predetermined more than current time, the corresponding application group sending application session cleaning of Xiang Suoshu utility cession is logical Know;The application group clears up the session data at notice clearing server end according to the utility cession.
12. a kind of computer equipment including memory, processor and stores the meter that can be run on a memory and on a processor Calculation machine program, which is characterized in that the processor realizes any side of claim 7 to 11 when executing the computer program Method.
13. a kind of computer readable storage medium, which is characterized in that the computer-readable recording medium storage has perform claim It is required that the computer program of 7 to 11 any the methods.
CN201910584039.5A 2019-07-01 2019-07-01 Distributed application group session processing system and method Active CN110166577B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910584039.5A CN110166577B (en) 2019-07-01 2019-07-01 Distributed application group session processing system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910584039.5A CN110166577B (en) 2019-07-01 2019-07-01 Distributed application group session processing system and method

Publications (2)

Publication Number Publication Date
CN110166577A true CN110166577A (en) 2019-08-23
CN110166577B CN110166577B (en) 2022-02-08

Family

ID=67637128

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910584039.5A Active CN110166577B (en) 2019-07-01 2019-07-01 Distributed application group session processing system and method

Country Status (1)

Country Link
CN (1) CN110166577B (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111314475A (en) * 2020-02-21 2020-06-19 北京紫光展锐通信技术有限公司 Session creation method and related equipment
CN112787829A (en) * 2019-11-05 2021-05-11 阿里巴巴集团控股有限公司 Task processing method and device and electronic equipment
CN114866247A (en) * 2022-04-18 2022-08-05 杭州海康威视数字技术股份有限公司 Communication method, device, system, terminal and server
US11481231B2 (en) 2019-10-02 2022-10-25 Citrix Systems, Inc. Systems and methods for intelligent application instantiation
WO2022246799A1 (en) * 2021-05-28 2022-12-01 Citrix Systems, Inc. Systems and methods for configuring application software
US11750527B2 (en) 2019-05-06 2023-09-05 Citrix Systems, Inc. Method and system for sharing user configuration data between different computing sessions

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002103465A2 (en) * 2001-05-15 2002-12-27 Automated Power Exchange, Inc. Method and apparatus for bundling transmission rights and energy for trading
US6772229B1 (en) * 2000-11-13 2004-08-03 Groupserve, Inc. Centrifugal communication and collaboration method
CN1832414A (en) * 2005-03-04 2006-09-13 英飞凌科技股份公司 Method of providing a plurality of group communication service communication system, group communication service system and group
WO2007013614A1 (en) * 2005-07-28 2007-02-01 Kyocera Corporation Communication method, communication system, and communication terminal
CN101272358A (en) * 2008-05-05 2008-09-24 ***通信集团公司 Method, device and system for showing user group communication ability in instant communication
CN102136919A (en) * 2010-09-01 2011-07-27 华为技术有限公司 Group session realization method and device
US20110185008A1 (en) * 2010-01-28 2011-07-28 Phac Le Tuan Methods and Apparatus for Supporting and Implementing Multi-User Interactions Including Shared Display Devices
CN102833692A (en) * 2011-06-15 2012-12-19 中兴通讯股份有限公司 Method and server for managing cluster in digital cluster system by user
CN103973541A (en) * 2013-01-29 2014-08-06 中兴通讯股份有限公司 Method and device for sending multimedia messages to group members
CN104573921A (en) * 2014-12-18 2015-04-29 四川联友电讯技术有限公司 Group-based task allocation method through enterprise mobile office system
CN109587044A (en) * 2019-01-22 2019-04-05 腾讯科技(深圳)有限公司 Group creating, method for message interaction and device

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6772229B1 (en) * 2000-11-13 2004-08-03 Groupserve, Inc. Centrifugal communication and collaboration method
WO2002103465A2 (en) * 2001-05-15 2002-12-27 Automated Power Exchange, Inc. Method and apparatus for bundling transmission rights and energy for trading
CN1832414A (en) * 2005-03-04 2006-09-13 英飞凌科技股份公司 Method of providing a plurality of group communication service communication system, group communication service system and group
WO2007013614A1 (en) * 2005-07-28 2007-02-01 Kyocera Corporation Communication method, communication system, and communication terminal
CN101272358A (en) * 2008-05-05 2008-09-24 ***通信集团公司 Method, device and system for showing user group communication ability in instant communication
US20110185008A1 (en) * 2010-01-28 2011-07-28 Phac Le Tuan Methods and Apparatus for Supporting and Implementing Multi-User Interactions Including Shared Display Devices
CN102136919A (en) * 2010-09-01 2011-07-27 华为技术有限公司 Group session realization method and device
CN102833692A (en) * 2011-06-15 2012-12-19 中兴通讯股份有限公司 Method and server for managing cluster in digital cluster system by user
CN103973541A (en) * 2013-01-29 2014-08-06 中兴通讯股份有限公司 Method and device for sending multimedia messages to group members
CN104573921A (en) * 2014-12-18 2015-04-29 四川联友电讯技术有限公司 Group-based task allocation method through enterprise mobile office system
CN109587044A (en) * 2019-01-22 2019-04-05 腾讯科技(深圳)有限公司 Group creating, method for message interaction and device

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11750527B2 (en) 2019-05-06 2023-09-05 Citrix Systems, Inc. Method and system for sharing user configuration data between different computing sessions
US11481231B2 (en) 2019-10-02 2022-10-25 Citrix Systems, Inc. Systems and methods for intelligent application instantiation
CN112787829A (en) * 2019-11-05 2021-05-11 阿里巴巴集团控股有限公司 Task processing method and device and electronic equipment
CN112787829B (en) * 2019-11-05 2023-10-10 盒马(中国)有限公司 Task processing method and device and electronic equipment
CN111314475A (en) * 2020-02-21 2020-06-19 北京紫光展锐通信技术有限公司 Session creation method and related equipment
CN111314475B (en) * 2020-02-21 2021-05-04 北京紫光展锐通信技术有限公司 Session creation method and related equipment
WO2022246799A1 (en) * 2021-05-28 2022-12-01 Citrix Systems, Inc. Systems and methods for configuring application software
US11637878B2 (en) 2021-05-28 2023-04-25 Citrix Systems, Inc. Systems and methods for configuring application software
CN114866247A (en) * 2022-04-18 2022-08-05 杭州海康威视数字技术股份有限公司 Communication method, device, system, terminal and server

Also Published As

Publication number Publication date
CN110166577B (en) 2022-02-08

Similar Documents

Publication Publication Date Title
US11695744B2 (en) Using credentials stored in different directories to access a common endpoint
CN110166577A (en) Distributed Application cluster conversation processing system and method
US9992176B2 (en) Systems and methods for encrypted communication in a secure network
US8555339B2 (en) Identifying guests in web meetings
CN110048848B (en) Method, system and storage medium for sending session token through passive client
US6202159B1 (en) Vault controller dispatcher and methods of operation for handling interaction between browser sessions and vault processes in electronic business systems
US9503447B2 (en) Secure communication between processes in cloud
US9021552B2 (en) User authentication for intermediate representational state transfer (REST) client via certificate authority
US9584615B2 (en) Redirecting access requests to an authorized server system for a cloud service
CN105049427B (en) The management method and device of application system login account
US8443416B2 (en) Techniques for secure channel messaging
CN110891060A (en) Unified authentication system based on multi-service system integration
Huang et al. A token-based user authentication mechanism for data exchange in RESTful API
CN106209835B (en) Peer-to-peer network communication system and method
CN106603388B (en) Mail sending, viewing and viewing control method and equipment thereof
Liao Design of the secure smart home system based on the blockchain and cloud service
Rizos et al. Distributed UCON in CoAP and MQTT protocols
US20200053059A1 (en) Secure Method to Replicate On-Premise Secrets in a Cloud Environment
JP2011145754A (en) Single sign-on system and method, authentication server, user terminal, service server, and program
US8312154B1 (en) Providing enhanced access to remote services
CN114500031B (en) System, method, electronic equipment and medium for acquiring BI report based on single sign-on
Al-Aqrabi et al. A scalable model for secure multiparty authentication
JP2023505830A (en) System and method for federated privacy management
Cui et al. Approaching secure communications in a message-oriented mobile computing environment
Yeşiltepe et al. Security type comparison in service oriented architecture security

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant