Unlock instant, AI-driven research and patent intelligence for your innovation.

Authority management method and device for distributed file system, server and medium

A distributed file and rights management technology, applied in the computer field, can solve the problems of not being able to add firewalls, illegal users imitating legal users, and whether the users of the entrance machine are legal to detect, etc., to achieve the effect of improving security.

Active Publication Date: 2018-07-17
BAIDU ONLINE NETWORK TECH (BEIJIBG) CO LTD
View PDF5 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] 1) For the RPC protocol interface, even if a firewall is added, the firewall can only detect whether the entrance machine is legal, but cannot detect whether the user of the entrance machine is legal. operational problems
[0006] 2) Since the HFTP and WebHDFS protocol interfaces cannot be added with a firewall, this will cause illegal users to still access through the HFTP and WebHDFS protocol interfaces

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Authority management method and device for distributed file system, server and medium
  • Authority management method and device for distributed file system, server and medium
  • Authority management method and device for distributed file system, server and medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0027] figure 1 It is a flow chart of the authority management method of the distributed file system provided by Embodiment 1 of the present invention. This embodiment is applicable to the situation of managing the authority of the distributed file system, and the method can be implemented by the authority management device of the distributed file system To execute, the device may be implemented in software and / or hardware, and may be integrated into a server. Such as figure 1 As shown, the method specifically includes:

[0028] S110. In response to an access request to the distributed file system, acquire a user name and an IP address corresponding to the access request.

[0029] As the master node, NameNode is responsible for managing metadata, which mainly includes directory structure, permission information, and file block storage information, while DataNode, as a slave node, is responsible for the storage of specific data blocks. Exemplarily, the directory structure in...

Embodiment 2

[0043] figure 2 It is a flow chart of the authority management method of the distributed file system provided by Embodiment 2 of the present invention, and this embodiment is further optimized on the basis of the foregoing embodiments. like figure 2 As shown, the method specifically includes:

[0044] S210. In response to an access request to the distributed file system, acquire a user name and an IP address corresponding to the access request.

[0045] S220. If the access request comes from the portal machine server, match the obtained user name and IP address with the pre-acquired allowed user set.

[0046] S230. If the user name and IP address match the allowed user set, check the read and write permission according to the user name corresponding to the access request, wherein the allowed user set includes at least one IP address and corresponding At least one allowed username.

[0047] In the distributed file system, the business leader can only add users of his own ...

Embodiment 3

[0057] image 3 It is a flow chart of the permission management method of the distributed file system provided by Embodiment 3 of the present invention, and this embodiment is further optimized on the basis of the foregoing embodiments. like image 3 As shown, the method specifically includes:

[0058] S310. In response to an access request to the distributed file system, acquire a user name and an IP address corresponding to the access request.

[0059] S320. If the access request comes from the portal server, match the obtained user name and IP address with the pre-acquired allowed user set, and determine whether to allow the access request according to the matching result, wherein the allowed user set is distributed by the user in advance. The set of allowed users configured by the web service for the file system.

[0060] Optionally, the operation of obtaining the allowed user set includes:

[0061] Obtain and update the allowed user set according to the preset cycle, ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention discloses an authority management method and device for a distributed file system, a server and a medium, wherein the method comprises: obtaining a user name and an IPaddress corresponding to an access request for the distributed file system in response to the access request; if the access request comes from a portal server, matching the obtained user name and theobtained IP address with the pre-acquired allowed user set, and determining whether to permit the access request according to a matching result, wherein the allowed user set is configured by the userthrough the Web service of the distributed file systemin advance. The embodiment of the invention does not need to set a firewall, solves a problem of a distributed file system in the prior art has asecurity flaw in the access authority management, and is prone to invalid operation by invalid users, and improves the security of accessing and storing data in the distributed file system.

Description

technical field [0001] The embodiments of the present invention relate to the field of computer technology, and in particular, to a rights management method and device, a server, and a medium of a distributed file system. Background technique [0002] Hadoop Distributed File System (Hadoop Distributed File System, HDFS) is a distributed file system provided by Hadoop. Because HDFS has many advantages such as high fault tolerance, streaming access, suitable for batch processing / big data processing, and can be built on cheap machines, it has a wide range of applications in many fields such as image processing, infrastructure management, and e-commerce. [0003] HDFS mainly includes two components: NameNode (name node) and DataNode (data node). Among them, the NameNode is responsible for managing metadata as the master node, including directory structure, permission information, and file block storage information, etc., and the DataNode is responsible for the storage of specif...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/0876H04L63/10H04L67/02H04L67/1097
Inventor 侯志贞季石磊
Owner BAIDU ONLINE NETWORK TECH (BEIJIBG) CO LTD