CN114003862A - Group type authorization unified management and distribution method and system based on floating permission - Google Patents
Group type authorization unified management and distribution method and system based on floating permission Download PDFInfo
- Publication number
- CN114003862A CN114003862A CN202111273167.1A CN202111273167A CN114003862A CN 114003862 A CN114003862 A CN 114003862A CN 202111273167 A CN202111273167 A CN 202111273167A CN 114003862 A CN114003862 A CN 114003862A
- Authority
- CN
- China
- Prior art keywords
- authorization
- server
- application request
- group
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000013475 authorization Methods 0.000 title claims abstract description 195
- 238000000034 method Methods 0.000 title claims abstract description 49
- 238000007667 floating Methods 0.000 title claims description 32
- 238000012545 processing Methods 0.000 claims abstract description 22
- 238000012163 sequencing technique Methods 0.000 claims description 8
- 238000004891 communication Methods 0.000 claims description 3
- 238000012544 monitoring process Methods 0.000 claims description 3
- 230000006870 function Effects 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 239000000463 material Substances 0.000 description 2
- 230000002159 abnormal effect Effects 0.000 description 1
- 230000004075 alteration Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 239000006185 dispersion Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/105—Arrangements for software license management or administration, e.g. for managing licenses at corporate level
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The method comprises the steps of carrying out unified management on all branch company authorization servers in a group, obtaining the authorization software type, authorization quantity and authorization mode of each branch company authorization server in the group, and carrying out registration, thereby carrying out unified management and distribution on the authorization of each branch company authorization server in the group. When receiving an authorization application request sent by front-end user software, a target authorization server corresponding to the authorization application request can be determined in all branch authorization servers in a group, and the authorization application request is sent to the target authorization server for processing, that is, when the user needs to obtain software authorization and the authorization of the current branch is insufficient, the user can be handed to other branch companies with authorization to process the authorization application request. According to the method and the system, the authorization utilization rate in the group is improved by uniformly managing and distributing the authorization of all the branch companies in the group.
Description
Technical Field
The application relates to the technical field of floating authorization management, in particular to a group type authorization unified management and distribution method and system based on floating permission.
Background
The floating authorization is a transferable authorization, which means that the authorization of the software can move among different computers, but the total number of the authorization which can be used at the same time does not exceed the allowable upper limit. The application and verification of the authorization transfer needs to be done by the authorization server. For a large group type company, each branch company may purchase software authorization separately for different reasons, which results in the dispersion of authorization, and the authorization of some branch companies is in an idle state, and the authorization of some branch companies is short of supply, i.e. the authorization is not fully utilized.
Disclosure of Invention
In order to overcome the problem that large group type companies in the related technology are not sufficiently authorized and utilized at least to a certain extent, the application provides a group type authorization unified management and distribution method and system based on floating permission.
The scheme of the application is as follows:
according to a first aspect of the embodiments of the present application, a group-type authorization unified management and distribution method based on floating permission is provided, including:
all branch authorization servers in the group are managed in a unified mode;
obtaining the authorized software type, authorized quantity and authorized mode of each branch company authorized server in the group, and registering;
receiving an authorization application request sent by front-end user software;
determining a target authorization server corresponding to the authorization application request from all branch authorization servers in the group;
and sending the authorization application request to the target authorization server for processing.
Preferably, in an implementation manner of the present application, the method further includes: when receiving a plurality of authorization application requests sent by the same front-end user software, sending each authorization application request to a corresponding target authorization server for processing based on a preset weight algorithm.
Preferably, in an implementable manner of the present application, the preset weighting algorithm includes:
and authorizing the affiliated branch company and the information of the currently logged-in user according to the residual authorization quantity of each current authorization software, and dynamically allocating the weight to the currently logged-in user.
Preferably, in an implementation manner of the present application, the method further includes:
receiving an authorization distribution weight recorded by an administrator;
and adjusting the preset weight algorithm according to the authorized distribution weight recorded by the administrator.
Preferably, in an implementation manner of the present application, the sending, based on a preset weight algorithm, each authorization application request to a corresponding target authorization server for processing includes:
judging the weight of each user sending the authorization application request based on a preset weight algorithm;
and according to the weight of each user, carrying out priority sequencing on the authorization application requests corresponding to each user, and sending each authorization application request to a corresponding target authorization server for processing according to a priority sequencing result.
Preferably, in an implementation manner of the present application, the determining the target authorization server from all the branch authorization servers in the group includes:
determining a branch company authorization server to which the authorization corresponding to the authorization application request belongs in the current remaining authorization as a server to be selected;
and if the number of the servers to be selected is multiple, determining the most preferable authorization server in the multiple servers to be selected as the target server.
Preferably, in an implementation manner of the present application, after the sending the authorization application request to the target authorization server for processing, the method further includes:
an authorized distribution log is recorded, as well as authorized usage monitoring.
Preferably, in an implementation manner of the present application, the method further includes:
and based on the dynamic service of the floating port, for the information returned by the authorization, the floating authorization server is enabled to service the application by creating a new server port.
Preferably, in an implementation manner of the present application, the method further includes:
and when the authorization application request of the user is processed by the target authorization server, the authorization link of the user is ensured.
According to a second aspect of the embodiments of the present application, there is provided a group-type authorization unified management distribution system based on floating permission, including:
a processor and a memory;
the processor and the memory are connected through a communication bus:
the processor is used for calling and executing the program stored in the memory;
the memory is used for storing a program, and the program is at least used for executing the floating license-based group type authorization unified management distribution method.
The technical scheme provided by the application can comprise the following beneficial effects: in the floating license-based group-type authorization unified management and distribution method, all branch authorization servers in a group are managed in a unified mode, the authorization software types, authorization quantity and authorization modes of all branch authorization servers in the group are obtained, registration is carried out, and therefore authorization of all branch authorization servers in the group can be managed and distributed in a unified mode. When receiving an authorization application request sent by front-end user software, a target authorization server corresponding to the authorization application request can be determined in all branch authorization servers in a group, and the authorization application request is sent to the target authorization server for processing, that is, when the user needs to obtain software authorization and the authorization of the current branch is insufficient, the user can be handed to other branch companies with authorization to process the authorization application request. According to the method and the system, the authorization utilization rate in the group is improved by uniformly managing and distributing the authorization of all the branch companies in the group.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the application.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present application and together with the description, serve to explain the principles of the application.
Fig. 1 is a schematic flowchart of a group-based authorization unified management distribution method based on floating permission according to an embodiment of the present application;
fig. 2 is a schematic structural diagram of a group-type authorization unified management distribution system based on floating license according to an embodiment of the present application.
Reference numerals: a processor-21; a memory-22.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present application. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the present application, as detailed in the appended claims.
A group-type authorization unified management distribution method based on floating permission, referring to fig. 1, includes:
s11: all branch authorization servers in the group are managed in a unified mode;
s12: obtaining the authorized software type, authorized quantity and authorized mode of each branch company authorized server in the group, and registering;
s13: receiving an authorization application request sent by front-end user software;
s14: determining a target authorization server corresponding to an authorization application request from all branch authorization servers in a group;
the method specifically comprises the following steps:
determining a branch company authorization server to which the authorization corresponding to the authorization application request belongs in the current remaining authorization as a server to be selected;
and if the number of the servers to be selected is multiple, determining the most preferred authorization server in the multiple servers to be selected as the target server.
Most preferably, the authorization server may be the authorization server with the most authorization currently remaining.
S15: and sending the authorization application request to a target authorization server for processing.
In the floating license-based group type authorization unified management and distribution method, all branch company authorization servers in a group are managed in a unified mode, the authorization software type, the authorization quantity and the authorization mode of each branch company authorization server in the group are obtained, registration is carried out, and therefore authorization of each branch company authorization server in the group can be managed and distributed in a unified mode. When receiving an authorization application request sent by front-end user software, a target authorization server corresponding to the authorization application request can be determined in all branch authorization servers in a group, and the authorization application request is sent to the target authorization server for processing, that is, when the user needs to obtain software authorization and the authorization of the current branch is insufficient, the user can be handed to other branch companies with authorization to process the authorization application request. According to the method and the system, the authorization utilization rate in the group is improved by uniformly managing and distributing the authorization of all the branch companies in the group.
The group-type authorization unified management distribution method based on floating permission in some embodiments further includes: when receiving a plurality of authorization application requests sent by the same front-end user software, sending each authorization application request to a corresponding target authorization server for processing based on a preset weight algorithm.
The preset weighting algorithm comprises the following steps:
and authorizing the affiliated branch company and the information of the currently logged-in user according to the residual authorization quantity of each current authorization software, and dynamically allocating the weight to the currently logged-in user.
Further, the method further comprises:
receiving an authorization distribution weight recorded by an administrator;
and adjusting the preset weight algorithm according to the authorized distribution weight recorded by the administrator.
In this embodiment, when no administrator intervenes, the platform may automatically authorize the affiliated branch company and the currently logged-in user information according to the remaining authorization quantity of each current authorization software, and dynamically allocate a weight to the currently logged-in user.
Since the authority of each software is provided by each branch company, some branch companies may provide more authority, and some branch companies may provide less authority, more weight may be assigned as appropriate to the branch company providing more authority, and more weight may be assigned to the user under the branch company. For users who contribute more to the company, more weight may be assigned as appropriate. Therefore, in this embodiment, an administrator is also supported to manually assign the weights.
In some embodiments, the method for group-based unified authorization management and distribution based on floating permission sends each authorization application request to a corresponding target authorization server for processing based on a preset weight algorithm, and includes:
judging the weight of each user sending the authorization application request based on a preset weight algorithm;
and according to the weight of each user, carrying out priority sequencing on the authorization application request corresponding to each user, and sending each authorization application request to a corresponding target authorization server for processing according to a priority sequencing result.
In the embodiment, when a plurality of authorization application requests sent by the same front-end user software are received, the weight of each user sending the authorization application request is judged based on a preset weight algorithm; and according to the weight of each user, carrying out priority sequencing on the authorization application requests corresponding to each user, and sending each authorization application request to a corresponding target authorization server for processing according to a priority sequencing result, namely when the platform receives a plurality of authorization application requests sent by the same front-end user software, preferentially processing the authorization application requests of the users with high weight.
In some embodiments, the floating license-based group-type authorization unified management and distribution method further includes, after sending the authorization application request to the target authorization server for processing:
an authorized distribution log is recorded, as well as authorized usage monitoring.
In the embodiment, after the authorization application request is sent to the target authorization server for processing, the authorized distribution log is recorded, so that subsequent management personnel can conveniently inquire the authorized distribution condition. The authorized use is monitored to avoid various abnormal situations.
The group-type authorization unified management distribution method based on floating permission in some embodiments further includes:
and based on the dynamic service of the floating port, for the information returned by the authorization, the floating authorization server is enabled to service the application by creating a new server port.
In the embodiment, a floating port dynamic service technology is adopted, and for the information returned by authorization, the floating authorization serves the application by creating a new server port, so that a plurality of software applications can be simultaneously supported, and the port is determined according to the information returned by the real authorization server. And the platform analyzes the information returned by authorization and sends the information to the service application.
The group-type authorization unified management distribution method based on floating permission in some embodiments further includes:
and when the authorization application request of the user is processed by the target authorization server, the authorization link of the user is ensured.
For an authorized user, the system guarantees the authorized link of the user to prevent the user from quitting abnormally in the use of the software.
A group-type authorization unified management distribution system based on floating permission, referring to fig. 2, comprising:
a processor 21 and a memory 22;
the processor 21 is connected to the memory 22 by a communication bus:
the processor 21 is configured to call and execute a program stored in the memory 22;
the memory 22 is used for storing a program, and the program is at least used for the group type authorization unified management distribution method based on floating permission in any one of the above embodiments.
It is understood that the same or similar parts in the above embodiments may be mutually referred to, and the same or similar parts in other embodiments may be referred to for the content which is not described in detail in some embodiments.
It should be noted that, in the description of the present application, the terms "first", "second", etc. are used for descriptive purposes only and are not to be construed as indicating or implying relative importance. Further, in the description of the present application, the meaning of "a plurality" means at least two unless otherwise specified.
Any process or method descriptions in flow charts or otherwise described herein may be understood as representing modules, segments, or portions of code which include one or more executable instructions for implementing specific logical functions or steps of the process, and the scope of the preferred embodiments of the present application includes other implementations in which functions may be executed out of order from that shown or discussed, including substantially concurrently or in reverse order, depending on the functionality involved, as would be understood by those reasonably skilled in the art of the present application.
It should be understood that portions of the present application may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
It will be understood by those skilled in the art that all or part of the steps carried by the method for implementing the above embodiments may be implemented by hardware related to instructions of a program, which may be stored in a computer readable storage medium, and when the program is executed, the program includes one or a combination of the steps of the method embodiments.
In addition, functional units in the embodiments of the present application may be integrated into one processing module, or each unit may exist alone physically, or two or more units are integrated into one module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. The integrated module, if implemented in the form of a software functional module and sold or used as a stand-alone product, may also be stored in a computer readable storage medium.
The storage medium mentioned above may be a read-only memory, a magnetic or optical disk, etc.
In the description herein, reference to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the application. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
Although embodiments of the present application have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present application, and that variations, modifications, substitutions and alterations may be made to the above embodiments by those of ordinary skill in the art within the scope of the present application.
Claims (10)
1. A group type authorization unified management distribution method based on floating permission is characterized by comprising the following steps:
all branch authorization servers in the group are managed in a unified mode;
obtaining the authorized software type, authorized quantity and authorized mode of each branch company authorized server in the group, and registering;
receiving an authorization application request sent by front-end user software;
determining a target authorization server corresponding to the authorization application request from all branch authorization servers in the group;
and sending the authorization application request to the target authorization server for processing.
2. The method of claim 1, further comprising: when receiving a plurality of authorization application requests sent by the same front-end user software, sending each authorization application request to a corresponding target authorization server for processing based on a preset weight algorithm.
3. The method of claim 2, wherein the predetermined weighting algorithm comprises:
and authorizing the affiliated branch company and the information of the currently logged-in user according to the residual authorization quantity of each current authorization software, and dynamically allocating the weight to the currently logged-in user.
4. The method of claim 3, further comprising:
receiving an authorization distribution weight recorded by an administrator;
and adjusting the preset weight algorithm according to the authorized distribution weight recorded by the administrator.
5. The method according to claim 4, wherein the sending each authorization application request to a corresponding target authorization server for processing based on a preset weight algorithm includes:
judging the weight of each user sending the authorization application request based on a preset weight algorithm;
and according to the weight of each user, carrying out priority sequencing on the authorization application requests corresponding to each user, and sending each authorization application request to a corresponding target authorization server for processing according to a priority sequencing result.
6. The method of claim 1, wherein determining the target authorization server among all the affiliate authorization servers within a corporate group comprises:
determining a branch company authorization server to which the authorization corresponding to the authorization application request belongs in the current remaining authorization as a server to be selected;
and if the number of the servers to be selected is multiple, determining the most preferable authorization server in the multiple servers to be selected as the target server.
7. The method of claim 1, wherein after sending the authorization application request to the target authorization server for processing, the method further comprises:
an authorized distribution log is recorded, as well as authorized usage monitoring.
8. The method of claim 1, further comprising:
and based on the dynamic service of the floating port, for the information returned by the authorization, the floating authorization server is enabled to service the application by creating a new server port.
9. The method of claim 1, further comprising:
and when the authorization application request of the user is processed by the target authorization server, the authorization link of the user is ensured.
10. A group type authorization unified management distribution system based on floating permission is characterized by comprising:
a processor and a memory;
the processor and the memory are connected through a communication bus:
the processor is used for calling and executing the program stored in the memory;
the memory is used for storing a program, and the program is at least used for executing the group type authorization unified management distribution method based on floating permission in any one of claims 1-9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111273167.1A CN114003862A (en) | 2021-10-29 | 2021-10-29 | Group type authorization unified management and distribution method and system based on floating permission |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111273167.1A CN114003862A (en) | 2021-10-29 | 2021-10-29 | Group type authorization unified management and distribution method and system based on floating permission |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114003862A true CN114003862A (en) | 2022-02-01 |
Family
ID=79925244
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111273167.1A Pending CN114003862A (en) | 2021-10-29 | 2021-10-29 | Group type authorization unified management and distribution method and system based on floating permission |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114003862A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040010471A1 (en) * | 2002-07-09 | 2004-01-15 | Rohan Lenard | Multi-site software license balancing |
| CN102291239A (en) * | 2011-08-10 | 2011-12-21 | 北京星网锐捷网络技术有限公司 | Remote authentication method, system, agent component and authentication servers |
| CN103345598A (en) * | 2013-07-03 | 2013-10-09 | 山东省计算中心 | Multiple-business-software License management method based on super-calculation Cloud service |
| CN108718327A (en) * | 2018-04-03 | 2018-10-30 | 北京景行锐创软件有限公司 | A kind of license resources dispatching method and system |
-
2021
- 2021-10-29 CN CN202111273167.1A patent/CN114003862A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040010471A1 (en) * | 2002-07-09 | 2004-01-15 | Rohan Lenard | Multi-site software license balancing |
| CN102291239A (en) * | 2011-08-10 | 2011-12-21 | 北京星网锐捷网络技术有限公司 | Remote authentication method, system, agent component and authentication servers |
| CN103345598A (en) * | 2013-07-03 | 2013-10-09 | 山东省计算中心 | Multiple-business-software License management method based on super-calculation Cloud service |
| CN108718327A (en) * | 2018-04-03 | 2018-10-30 | 北京景行锐创软件有限公司 | A kind of license resources dispatching method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP2515504B1 (en) | Content delivery method, system and schedule server | |
| US7320010B2 (en) | Controlling updates of electronic files | |
| CN104168333B (en) | The working method of PROXZONE service platforms | |
| US7565325B2 (en) | Multi-site software license balancing | |
| US7908605B1 (en) | Hierarchal control system for controlling the allocation of computer resources | |
| US7103733B2 (en) | Computer system obtaining information on capacity and usage of an area used by a computer and notifying the computer the status thereof | |
| US7644161B1 (en) | Topology for a hierarchy of control plug-ins used in a control system | |
| MXPA05000847A (en) | Architecture for controlling access to a service by concurrent clients. | |
| EP2109820A1 (en) | Time based permissioning | |
| CN1836214A (en) | On demand node and server instance allocation and de-allocation | |
| WO2009007251A4 (en) | File system mounting in a clustered file system | |
| CN107105013B (en) | File processing method, server, terminal and system | |
| US20090222505A1 (en) | Peer to peer software license management system for temporarily relocating available software licenses | |
| US20080181415A1 (en) | Systems and Arrangements to Adjust Resource Accessibility Based Upon Usage Modes | |
| CN101562558A (en) | Method, system and device for terminal grade classification | |
| US20110035499A1 (en) | Discontinuous access management method using waiting ticket for resource allocation control, waiting ticket management method, and resource allocation control method | |
| JP4669601B2 (en) | Network terminal device, network, and task distribution method | |
| CN102291239A (en) | Remote authentication method, system, agent component and authentication servers | |
| US7003569B2 (en) | Follow-up notification of availability of requested application service and bandwidth between client(s) and server(s) over any network | |
| CN113177179A (en) | Data request connection management method, device, equipment and storage medium | |
| KR20080077966A (en) | Method and system for registering a distributed service site | |
| CN114003862A (en) | Group type authorization unified management and distribution method and system based on floating permission | |
| CN110191158A (en) | A kind of cloud desktop services method and system | |
| CN116633880A (en) | Kubenetes multi-tenant resource isolation allocation method of multi-cloud platform | |
| US10013273B1 (en) | Virtual machine termination management |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |