Flexible micro-service security access control method and system

A security access control and service access token technology, applied in the field of flexible microservice security access control methods and systems, can solve problems such as lack of flexible adaptation security access control policies, and achieve enhanced microservice security access control capabilities and improved Flexibility, the effect of enhancing ease of operation and performance

Pending Publication Date: 2020-02-11
NARI INFORMATION & COMM TECH
View PDF1 Cites 41 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The purpose of the present invention is to provide a flexible micro-service security access control method and system to solve the defect of lack of flexible adaptive security access control strategy in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Flexible micro-service security access control method and system
  • Flexible micro-service security access control method and system
  • Flexible micro-service security access control method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] In order to make the technical means, creative features, goals and effects achieved by the present invention easy to understand, the present invention will be further described below in conjunction with specific embodiments.

[0044] Such as Figure 1 to Figure 6 as shown, figure 1 It is a schematic diagram of the architecture of the flexible microservice security access control model of the present invention. The entire system architecture includes: a security policy service module, a security policy template module, a microservice configuration center module, a microservice API gateway module, a microservice unified authority module, and a lightweight Security service access token, Redis cluster module, containerized security access control policy module.

[0045] Security policy service module: used to regularly subscribe to security policy configuration from the message bus; the security policy configuration describes the security policy mapping of request URL rule...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a flexible micro-service security access control method and system. The system is composed of a micro-service API gateway, a lightweight micro-service access token, a securitypolicy service and policy template, a unified permission service, a Redis cluster, a micro-service configuration center and a Docker container security policy. A security policy template supporting aconventional security policy and a self-defined security policy is flexibly defined, flexible security access control is better realized, and instant release and application of the security policies are realized through unified configuration service and message bus service. A layered interception filtering mode is adopted in the micro-service API gateway, and safety access control and fault tolerance are better achieved through combination of links such as pre-filtering, routing, post-filtering and exception handling and a safety strategy. In the aspect of the service access token, the lightweight service access token is dynamically generated in combination with a security access control strategy, so that the operability and performance of security access control are enhanced, and meanwhile, the flexibility of micro-service security access control is improved.

Description

technical field [0001] The invention relates to the technical field of computer software, in particular to a flexible microservice security access control method and system. Background technique: [0002] The microservice architecture and its open source technology are becoming more and more mature, and have gradually become the mainstream technical architecture in the Internet and enterprise-level projects. With the refinement of domain service design based on the microservice architecture, more independent microservice processes have emerged. The frequency of microservice calls is more frequent, and stateless microservice call requests require authentication every time. When a large number of users access concurrently, it will cause performance bottlenecks in authentication services. How to ensure service performance while ensuring stateless services Inter-security access control is a key issue faced by the microservice security architecture. [0003] Currently, four main...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/33
CPCG06F21/33G06F21/1014
Inventor 刘一田刘士进孟庆强郭伟李郑程旭何翔康智辉郭新波赵洁王婷曾会峰葛欣吴海超魏珍珍
Owner NARI INFORMATION & COMM TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap