CN114363397B - Session processing method, device, electronic equipment and storage medium - Google Patents
Session processing method, device, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN114363397B CN114363397B CN202111526643.6A CN202111526643A CN114363397B CN 114363397 B CN114363397 B CN 114363397B CN 202111526643 A CN202111526643 A CN 202111526643A CN 114363397 B CN114363397 B CN 114363397B
- Authority
- CN
- China
- Prior art keywords
- session
- client
- data
- service end
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Computer And Data Communications (AREA)
Abstract
The embodiment of the application provides a session processing method, a session processing device, electronic equipment and a storage medium, wherein the method comprises the following steps: determining a session identifier, establishing connection with a first client and a first server respectively, so as to establish a session between the first client and the first server, and transferring session data; the session data is session data between a first client and a first service end; receiving a session sharing request sent by a second client; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier; and establishing connection with the second client and sending session data corresponding to the session identifier to the second client. The embodiment of the application can improve the safety of session sharing.
Description
Technical Field
Embodiments of the present application relate to the field of communications technologies, and in particular, to a session processing method, a session processing apparatus, an electronic device, and a storage medium.
Background
In the cloud-up operation and maintenance scenario, multiple users are required to operate and maintain the same server at the same time. For example, in a cloud after-sales scenario, customer service personnel need to share a user's session to assist in screening.
Session sharing is currently typically implemented using remote assistance techniques. Specifically, the controlled terminal provides an account number and a password, and the control terminal remotely logs in the controlled terminal according to the account number and the password of the controlled terminal so as to remotely assist the controlled terminal.
In the current session sharing method, an account number and a password of a controlled terminal are provided for a control terminal, so that information of the controlled terminal may be leaked, and the security of session sharing is low.
Disclosure of Invention
The embodiment of the application provides a session processing method for improving the security of session sharing.
Correspondingly, the embodiment of the application also provides a session processing device, electronic equipment and a storage medium, which are used for realizing the realization and application of the method.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing method, where the session corresponds to a session between a first client and a first server, and the method is applied to a second server, and the method includes:
Determining a session identifier, establishing connection with a first client and a first server respectively, so as to establish a session between the first client and the first server, and transferring session data; the session data is session data between a first client and a first service end;
receiving a session sharing request sent by a second client; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier;
and establishing connection with the second client and sending session data corresponding to the session identifier to the second client.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing method, where the session corresponds to a session between a first client and a first service, the method is applied to a second client, and the method includes:
Sending a session sharing request to a second server by calling an application programming interface; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier;
Establishing connection with a second server and receiving session data which is sent by the second server and corresponds to the session identifier; the second service end is respectively connected with the first client and the first service end so as to establish a session between the first client and the first service end and transfer session data; the session data is session data between the first client and the first server.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing method, where the session corresponds to a session between a first client and a first service, the method is applied to the first client, and the method includes:
Receiving a session identifier and establishing connection with a second server; the second service end is also connected with the first service end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between a first client and a first service end; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client; the session sharing request is obtained based on an application programming interface; the session sharing request includes a session identifier.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing method, where the session corresponds to a session between a first client and a first service, the method is applied to the first service, and the method includes:
establishing connection with a second server; the second service end is also connected with the first client end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between a first client and a first service end; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client; the session sharing request is obtained based on an application programming interface; the session sharing request includes a session identifier.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing method, where the session corresponds to a session between a first client and a first service, the method includes:
The first client sends a connection request to the second server based on the application programming interface;
the second server side sends a first connection address and a session identifier to the first client side according to the connection request;
The first client establishes connection with the second server according to the first connection address;
After the second service end establishes connection with the first client end, the second service end establishes connection with the first service end so as to establish a session between the first client end and the first service end, transfer session data and send the session data to the second client end; the session data is session data between the first client and the first server.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing method, which is characterized in that the session corresponds to a session between a first client and a first service, and the method includes:
The second client sends a session sharing request to the second server based on the application programming interface;
the second server side sends a second connection address to a second client side according to the session sharing request;
the second client establishes connection with a second server according to the second connection address;
the second server side sends session data to the second client side; the second service end is connected with the first client end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between the first client and the first server.
In order to solve the above-mentioned problems, an embodiment of the present application discloses a session processing device, where the session corresponds to a session between a first client and a first server, the device is applied to a second server, and the device includes:
The determining module is used for determining the session identification;
the first connection module is used for respectively establishing connection with the first client and the first server so as to establish a session between the first client and the first server and transfer session data; the session data is session data between a first client and a first service end;
the receiving module is used for receiving a session sharing request sent by the second client; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier;
the second connection module is used for establishing connection with a second client;
and the sending module is used for sending the session data corresponding to the session identifier to the second client.
In order to solve the above problems, an embodiment of the present application discloses an electronic device, including: a processor; and a memory having executable code stored thereon that, when executed, causes the processor to perform the method as in any of the above embodiments.
To address the above problems, embodiments of the present application disclose one or more machine-readable media having stored thereon executable code which, when executed, causes a processor to perform a method as in any of the above embodiments.
Compared with the prior art, the embodiment of the application has the following advantages:
in the technical scheme of the embodiment of the application, a session sharing request sent by a second client based on an application programming interface is received, and session data corresponding to the session identifier is shared to the second client according to the session identifier in the session sharing request. The embodiment of the application can realize the session sharing without using the account number and the password of the first client, so that the security of the session sharing can be improved.
Drawings
FIG. 1 is a schematic diagram of a session processing system according to one embodiment of the present application;
FIG. 2 is a flowchart illustrating a method for establishing a connection between a first client and a second server according to an embodiment of the present application;
FIG. 3 is a flow chart of the steps of a method of session establishment of one embodiment of the present application;
FIG. 4 is a flow chart of the steps of a session handling method according to an embodiment of the present application;
FIG. 5 is a flow chart of the steps of a session handling method according to an embodiment of the present application;
FIG. 6 is a schematic illustration of a method of sharing session data according to one embodiment of the application;
FIG. 7 is a flow chart of the steps of a session handling method according to an embodiment of the present application;
FIG. 8 is a flow chart of the steps of a session handling method according to an embodiment of the present application;
FIG. 9 is a flow chart of the steps of a session handling method according to an embodiment of the present application;
Fig. 10 is a schematic structural view of a session processing apparatus according to an embodiment of the present application;
fig. 11 is a schematic structural view of a session processing apparatus according to an embodiment of the present application;
fig. 12 is a schematic structural view of a session processing apparatus according to an embodiment of the present application;
Fig. 13 is a schematic diagram of an exemplary apparatus provided in an embodiment of the present application.
Detailed Description
In order that the above-recited objects, features and advantages of the present application will become more readily apparent, a more particular description of the application will be rendered by reference to the appended drawings and appended detailed description.
In the embodiment of the application, the session may refer to data that may be interacted between a client of a user and a service running on a server. Session data may refer to a collection of data related to a user's session.
In some embodiments, the session may correspond to a session between the first client and the first service. The number of the first clients may be one or more, and the number of the first service ends may be one or more. The embodiment of the application mainly takes a session between a first client and a first service end as an example to describe a session processing procedure, wherein the session processing procedure corresponding to the session between a plurality of first clients and the first service end and the session processing procedure corresponding to the session between the first client and the plurality of first service ends are mutually referred. The session sharing in the embodiment of the application may refer to that session data of a first client is shared by a second client.
Referring to fig. 1, a schematic structural diagram of a session processing system according to an embodiment of the present application is shown, where the system specifically includes: the system comprises a first client 101, a second client 102, a first service 103 and a second service 104, wherein the second service 104 is respectively connected with the first client 101, the second client 102 and the first service 103.
The first service terminal 103 may provide a service to the first client terminal 101. The service may include: mail services, instant messaging services, e-commerce services, news services, or multimedia services, etc. The service may include: cloud services.
The cloud service obtains the required service through the network in an on-demand and easily-extensible manner, and the service can be IT (internet technology ), related to software and the internet, and can also be other services (such as a computing service) and the like. Examples of cloud services may include: the resource service, the resources corresponding to the resource service may include: servers, networking technology, storage and data center space, etc. For example, server resources of a cloud service may include: ECS (resilient computing service, elastic Compute Service), etc.
In one implementation, the first server 103 may have an agent running thereon that may communicate with the first client 101 to communicate session related data.
The second server 104 may provide a session management service, establish a session between the first client 101 and the first server 103, relay session data, and share session data between the first client 101 and the first server 103 to the second client 102.
In a particular implementation, the second server 104 may provide an application programming interface (API, application Programming Interface) that may be invoked by the second client 102 to send a session sharing request. The session sharing request may include a session identifier, so that session data corresponding to the session identifier may be shared with the second client according to the session sharing request. The embodiment of the application can realize the session sharing without using the account number and the password of the first client, so that the security of the session sharing can be improved.
Method embodiment one
The present embodiment describes a session processing procedure on the first client side.
The first client can receive the session identifier and establish connection with the second server in the session processing process. The second service end is also connected with the first service end so as to establish a session between the first client end and the first service end and transfer session data; the session data may be session data between the first client and the first service; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client; the session sharing request may be obtained based on an application programming interface; the session identification may be included in the session sharing request.
Referring to fig. 2, a flowchart illustrating steps of a method for establishing a connection between a first client and a second server according to an embodiment of the present application may specifically include the following steps:
Step 201, the first client sends a connection request to the second server based on the application programming interface;
step 202, the second server checks the connection request, and returns a first connection address and a session identifier to the first client after the connection request passes the check;
Step 203, the first client establishes a connection with the second server according to the first connection address.
In step 201, the first client may send a connection request to the second server by calling an application programming interface, where the connection request may be used to connect to the first server.
In practical applications, the connection request may include: and the service information corresponding to the first service end is used for determining the first service end requesting connection. The service information corresponding to the first service end may be: a service address corresponding to the first service end, or a service identifier corresponding to the first service end, etc. For example, in the case where the first service side corresponds to a cloud service, the service information may be an identification of an ECS instance. It will be appreciated that embodiments of the present application are not limited to the service information carried in the connection.
In step 202, the connection request is checked to determine whether the connection request meets the requirement.
In a specific implementation, the connection request may include: the first authentication information may be checked.
The embodiment of the application does not limit the type of the first authentication information. For example, the types of the first authentication information may include: and (5) account authentication. As another example, the type of the first authentication information may include: token authentication. For another example, the types of the first authentication information may include: AK/SK authentication.
Wherein AK (access key ID ) is used to represent a user and SK (private access key SECRET ACCESS KEY) is used to encrypt the authentication string. AK/SK authentication uses symmetric encryption and decryption.
In practical application, the client may apply for AK, the server may generate SK, store the mapping relationship between AK and SK, and return AK and SK to the client.
The first client may generate a first authentication string using the first SK and the authentication mechanism, and carry the first AK and the first authentication string in the connection request. After receiving the connection request, the second server queries the mapping relation according to the first AK to obtain a first SK; and generating a second authentication character string by using the first SK and the authentication mechanism, comparing the second authentication character string with the first authentication character string contained in the connection request, and if the comparison is successful, considering that the connection request passes the verification.
Session identification may be used to uniquely identify a session. In practical application, the session identifier may be generated according to a preset algorithm. The preset algorithm may include: a random number generation algorithm. Or the preset algorithm may include: a combination of a preset character string and a random number, etc. It will be appreciated that embodiments of the present application are not limited to a specific session identifier and method of generating the same.
The first connection address may correspond to a session identifier for establishing a connection corresponding to the session identifier. The embodiment of the application does not limit the connection type corresponding to the first connection address. For example, the connection types may include: HTTP (hypertext transfer protocol), hyper Text Transfer Protocol) connections, webSocket connections, or the like.
Taking WebSocket connection as an example, after the connection request passes the verification, the second server may return WebSocket Url (Uniform Resource Locator) to the first client.
In step 203, the first client may establish a connection with the second server according to the first connection address according to the specification of the connection protocol. For example, in the case of using WebSocket connection, a connection may be established with the second server according to the specification of the WebSocket protocol. It will be appreciated that embodiments of the present application are not limited to a particular connection procedure.
The session identification received by the first client may be known to the user of the first client and may be communicated to the user of the second client to cause the second client to initiate a corresponding session sharing request for the session identification.
After the connection is established with the second service end and the connection is established between the second service end and the first service end, the corresponding session is established, and the first client end and the first service end can communicate. Specific communication procedures may include: the first client sends input data to the first server, and/or the first server sends output data to the first client.
In one implementation, after the second service end establishes a connection with the first service end, a first notification may be sent to the first client, where the first notification is used to notify the first client that the session is established, and in this case, the first client may communicate with the first service end.
In practical applications, the first client may present a session interface. The session interface may include: the session data specifically includes: input data, and/or output data. The session interface may be a graphical interface or the session interface may be a command line interface. Wherein the graphical interface (GUI, GRAPHICAL USER INTERFACE) refers to a computer-operated user interface that is displayed graphically. The command line interface (CLI, command-LINE INTERFACE) typically does not support a mouse, and a user inputs instructions via a keyboard, and the computer executes the instructions after receiving the instructions.
In the case where the session interface is a command line interface, the format of the session data may be a command line format. In particular, the input data or the output data may be a binary stream in command line format. According to the characteristics of simplicity and light weight of the command line, the embodiment of the application can reduce the data transmission amount in the communication process and can also improve the conversation efficiency.
For example, in the fault processing scenario of the cloud service, fault detection can be performed quickly according to the command line. For example, in the case of determining whether the network is unobstructed, a ping command may be used to perform diagnosis, specifically, ping an IP (internet protocol ) address of a corresponding machine of the cloud service on the local side of the first client, and determining whether the network is unobstructed according to the returned packet.
In summary, in the session processing method of the embodiment of the present application, the communication between the first client and the second server may obtain the session identifier, and may also suggest the session between the first client and the first server, so as to provide conditions for subsequent session sharing.
Method embodiment II
The present embodiment describes a session processing procedure on the first server side.
The first service end, which is the end of the conversation opposite the first client, is available to provide services to the first client. For example, the first service may provide ECS services to the first client.
In the embodiment of the application, the first service end can be connected with the second service end; the second service end is also connected with the first client end so as to establish a session between the first client end and the first service end and transfer session data; the session data may be session data between the first client and the first service; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client; the session sharing request may be obtained based on an application programming interface; the session identification may be included in the session sharing request.
In one implementation manner, the process of establishing connection between the first service end and the second service end may specifically include: after the second service end establishes connection with the first client end, sending a second notification to the first service end, wherein the notification is used for notifying the first service end to establish connection with the second service end; the second notification may include information such as the first connection address; after receiving the second notification, the first server may establish a connection with the second server according to the first connection address.
In practical applications, the first service end and the second service end may be located in a lan environment. For example, in a cloud service scenario, the first service may correspond to an application within a cloud service operator. The second server may send the second notification to the first server using a channel within the lan. The access port of the first server may be in a closed state, so as to prevent illegal devices from accessing via the access port of the first server, so as to further improve the security of session sharing.
Of course, the above-mentioned channel in the lan is used to send the second notification to the first service end, and the access port of the first service end is in a closed state, which is just an alternative embodiment, in fact, the access port of the first service end may also be in an open state, where the notification may be sent to the first service end through the access port of the first service end.
Referring to fig. 3, a flowchart illustrating steps of a method for session establishment according to an embodiment of the present application may specifically include the steps of:
step 301, the first client sends a connection request to the second server based on the application programming interface;
step 302, the second server checks the connection request, and returns a first connection address and a session identifier to the first client after the connection request passes the check;
Step 303, the first client establishes connection with the second server according to the first connection address;
Step 304, after the second server establishes connection with the first client, sending a second notification to the first server;
Step 305, the first service end establishes connection with the second service end according to the second notification.
In a specific implementation, the second server may establish a WebSocket connection with the first client, and the second server may establish a WebSocket connection with the first server, which, of course, is not limited by the specific connection type in the embodiment of the present application,
Through the steps, the first client can remotely log in to the first service end by means of the second service end without a password, and send a command to the first service end in a command line mode.
Method example III
The present embodiment describes a session processing procedure on the second client side.
Referring to fig. 4, a flowchart illustrating steps of a session processing method according to an embodiment of the present application may specifically include the following steps:
Step 401, sending a session sharing request to a second server by calling an application programming interface; the session sharing request may be obtained based on an application programming interface; the session sharing request may include a session identifier;
Step 402, establishing connection with a second server and receiving session data corresponding to the session identifier, which is sent by the second server; the second service end is respectively connected with the first client and the first service end so as to establish a session between the first client and the first service end and transfer session data; the session data may be session data between the first client and the first service.
The second client may be a terminal for which there is a session sharing requirement. For example, in a cloud after-sales scenario, customer service personnel need to share a user's session to assist in the screening; the second client may be a terminal corresponding to the customer service person. Of course, the embodiment of the present application is not limited to a specific second client.
In practical applications, the second client may obtain the application programming interface and the session identifier in advance. The user of the second client may obtain the session identifier from the user of the first client via instant messaging or the like. For example, after determining that the session is established, the user of the first client may communicate the session identification to the user of the second client. It will be appreciated that embodiments of the present application are not limited to a particular manner of acquisition of the session identifier and the application programming interface.
The second client may send a session sharing request to the second server by calling the application programming interface, where the session sharing request may include a session identifier, so that the second server returns session data corresponding to the session identifier.
In summary, according to the session processing method of the embodiment of the application, the second client sends a session sharing request by calling the application programming interface; because the session sharing can be realized without using the account number and the password of the first client, the security of the session sharing can be improved.
Method example IV
The present embodiment describes a session processing procedure on the second server side.
Referring to fig. 5, a flowchart illustrating steps of a session processing method according to an embodiment of the present application may specifically include the following steps:
Step 501, determining a session identifier, and respectively establishing connection with a first client and a first server to establish a session between the first client and the first server, and transferring session data; the session data may be session data between the first client and the first service;
Step 502, receiving a session sharing request sent by a second client; the session sharing request may be obtained based on an application programming interface; the session sharing request may include a session identifier;
step 503, a connection is established with the second client, and session data corresponding to the session identifier is sent to the second client.
Referring to the method embodiments shown in fig. 2 and fig. 3, the second server may determine a session identifier according to a connection request sent by the first client, and return the session identifier and the first connection address to the first client, so that the first client establishes a connection with the second server according to the first connection address. Further, after the second service end establishes a connection with the first client end, a second notification may also be sent to the first service end, so that the first service end establishes a connection with the second service end according to the second notification.
Referring to the method embodiment shown in fig. 4, the second client may send a session sharing request to the second server by calling an application programming interface.
In step 503, the second server may send a second connection address to the second client, so that the second client establishes a connection with the second server according to the second connection address.
The connection type corresponding to the second connection address may include: HTTP connection, webSocket connection, or the like. Taking WebSocket connection as an example, the second server may return WebSocket Url to the second client.
In one implementation of the present application, a session sharing request may be verified, and in case the session sharing request passes the verification, a connection is established with the second client.
In a specific implementation, the session sharing request may include: the second authentication information may be checked.
The embodiment of the application does not limit the type of the second authentication information. For example, the types of the second authentication information may include: and (5) account authentication. As another example, the types of the second authentication information may include: token authentication. For another example, the types of the second authentication information may include: AK/SK authentication.
Taking account authentication as an example, whether the first account of the first client and the second account of the second client belong to the same account system or not can be judged, and if yes, the session sharing request passes verification. Otherwise, whether the session sharing request passes the verification can be judged according to the setting of the first client or the server.
The account system may include: a user system or a customer service system, etc. The user of the first client can set a verification rule corresponding to the cross-account situation according to the actual application requirement. For example, the verification rule may include: checking passing under the condition of crossing accounts, or checking failing under the condition of crossing accounts, and the like.
Taking AK/SK authentication as an example, in practical application, the second client may generate a third authentication string by using the second SK and the authentication mechanism, and carry the second AK and the third authentication string in the session sharing request. After receiving the session sharing request, the second server queries the mapping relation according to the second AK to obtain a second SK; and generating a fourth authentication character string by using the second SK and the authentication mechanism, comparing the fourth authentication character string with a third authentication character string contained in the connection request, and if the comparison is successful, considering that the session sharing request passes the verification.
After establishing connection with the second client, the second server may send session data corresponding to the session identifier to the second client.
According to one implementation, the format of the session data includes: command line format. In particular, the input data or the output data may be a binary stream in command line format. According to the characteristics of simplicity and light weight of the command line, the embodiment of the application can reduce the data transmission amount in the communication process and can also improve the conversation efficiency.
According to another implementation manner, the sending, to the second client, session data corresponding to the session identifier may specifically include: determining the target type of the session data according to the authority information of the second client for the session corresponding to the session identifier; and sending the session data of the target type to the second client.
The rights information may be provided by the first client. The user of the first client may specify rights information for the session for the second client. For example, a target API related to the rights information may be provided, and the user of the first client may specify the rights information of the second client for the session according to the target API.
The second server or other servers (such as the third server) can store the corresponding relation among the second client, the session and the authority information according to the information appointed by the user, and then can determine the authority information of the second client for the session corresponding to the specific session identifier according to the corresponding relation.
The authority information may specifically include: read rights, or read and write rights. Accordingly, the target types of session data may include: a read type, or a read-write type, etc.
The session data of the read type and the read-write type are the same in that the session data is visible, and a user can have the read authority of the session data.
According to one implementation, for the read-type session data, the corresponding session interface may not include an input interface, i.e., the user cannot generate input data for the read-type session data. For the session data of the read-write type, the corresponding session interface may include an input interface, that is, the user can generate the input data for the session data of the read-write type.
According to another implementation, the session interface corresponding to the read type of session data may include an input interface, but the input data of the user may be discarded by the second server.
The processing flow corresponding to the authority information can flexibly control the operation authority of the second client to the session, and the second client can read only the session data or read and write the session data.
Referring to fig. 6, a schematic diagram of a method for sharing session data according to an embodiment of the present application is shown, where a first client has a read-write right for a session, so that a corresponding session is a read-write session, which may display output data on a session interface, and may generate input data on the session interface, where the corresponding input data may be transferred to a first server through a second server, and the first server responds to the input data to obtain corresponding output data.
The second client has read-only permission to the session, so that the corresponding session is a read-only session, and the second client can display output data on a session interface. The second client can generate input data on the session interface, and the corresponding input data is discarded by the second server; or the second client may not generate the input data on the session interface.
In one implementation, after detecting the update of the input data and/or the output data, the second server may forward the updated input data and/or the output data. For example, after receiving updated input data sent by the first client, the updated input data may be synchronized to the second client. For another example, after receiving the updated output data sent by the first service end, the updated output data may be synchronized to the second client.
In another implementation, where the second client establishes a connection with the second server, the first client has performed some operations and may already have some session data on the session interface, which the first client wishes to expose to the second client. In this case, after the second client establishes a connection with the second server, for example, session data displayed on the session interface of the first client may be sent to the second client in an initialization process of the second client.
Referring to fig. 7, a step flow diagram of a session processing method according to an embodiment of the present application, where the session corresponds to a session between a first client and a first service, may specifically include the following steps:
step 701, the first client sends a connection request to the second server based on the application programming interface;
Step 702, the second server sends a first connection address and a session identifier to the first client according to the connection request;
step 703, the first client establishes a connection with the second server according to the first connection address;
Step 704, after the second service end establishes a connection with the first client end, establishing a connection with the first service end so as to establish a session between the first client end and the first service end, transferring session data, and sending the session data to the second client end; the session data is session data between the first client and the first server.
Referring to fig. 8, a step flow diagram of a session processing method according to an embodiment of the present application, where the session corresponds to a session between a first client and a first service, may specifically include the following steps:
Step 801, the second client sends a session sharing request to the second server based on the application programming interface;
Step 802, the second server sends a second connection address to the second client according to the session sharing request;
803, the second client establishes connection with the second server according to the second connection address;
step 804, the second server sends session data to the second client; the second service end is connected with the first client end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between the first client and the first server.
Referring to fig. 9, a flowchart illustrating steps of a session processing method according to an embodiment of the present application may specifically include the following steps:
step 901, a second client sends a session sharing request to a second server;
Step 902, the second server checks the session sharing request;
step 903, the second server sends a second connection address to the second client if the session sharing request passes the verification;
step 904, the second client establishes connection with the second server according to the second connection address;
Step 905, the second server sends a third notification to the first client; the third notification may be used to notify that the connection with the second client is established;
Step 906, the first client sends the existing session data to the second server; existing session data may be presented in a session interface of the first client;
in step 907, the second server sends the existing session data to the second client.
In summary, in the session processing method of the embodiment of the application, the second server is used as the medium of session processing, and the second server copies the mirror image of the session data to realize the sharing of the session; the method has the following advantages:
Firstly, a second server provides an application programming interface so that a second client sends a session sharing request by calling the application programming interface; because the session sharing can be realized without using the account number and the password of the first client, the security of the session sharing can be improved.
Secondly, session sharing is carried out in a command line mode, and the input and output are binary streams in a command line format, so that the data transmission amount in the communication process can be reduced, and the session efficiency can be improved.
Furthermore, the read-write permission of the sharing session can be flexibly controlled, and the sharing session can be given the read-write permission or the read-only permission.
And the second server can perform centralized management on the session, so that richer processing functions such as operation audit, high-risk command identification and interception and the like can be conveniently realized.
Further, in the session processing process, the access port of the first server may be in a closed state, so as to prevent the access of illegal devices via the access port of the first server, so as to further improve the security of session sharing.
It should be noted that, for simplicity of description, the method embodiments are shown as a series of acts, but it should be understood by those skilled in the art that the embodiments are not limited by the order of acts, as some steps may occur in other orders or concurrently in accordance with the embodiments. Further, those skilled in the art will appreciate that the embodiments described in the specification are presently preferred embodiments, and that the acts are not necessarily required by the embodiments of the application.
On the basis of the foregoing embodiment, the embodiment of the present application further provides a session processing device, where the session corresponds to a session between a first client and a first service, and the device is applied to a second service, and referring to fig. 10, the device may include the following modules:
A determining module 1001, configured to determine a session identifier;
A first connection module 1002, configured to establish a connection with a first client and a first server, respectively, so as to establish a session between the first client and the first server, and transfer session data; the session data may be session data between the first client and the first service;
A receiving module 1003, configured to receive a session sharing request sent by the second client; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier;
a second connection module 1004, configured to establish a connection with a second client;
A sending module 1005 is configured to send session data corresponding to the session identifier to the second client.
Optionally, the format of the session data includes: command line format.
Optionally, the inlet of the first service end is in a closed state.
Optionally, the sending module 1005 may specifically include:
the type determining module is used for determining the target type of the session data according to the authority information of the second client side for the session corresponding to the session identifier;
and the session data sending module is used for sending the session data of the target type to the second client.
Optionally, the second connection module 1004 is specifically configured to establish a connection with the second client if the session sharing request passes the verification, and send session data corresponding to the session identifier to the second client.
In summary, in the session processing device of the embodiment of the present application, the second server provides an application programming interface, so that the second client sends a session sharing request by calling the application programming interface; because the session sharing can be realized without using the account number and the password of the first client, the security of the session sharing can be improved.
The embodiment of the application also provides a session processing device, the session corresponds to the session between the first client and the first service, the device is applied to the second client, referring to fig. 11, the device may specifically include the following modules:
the sending module 1101 sends a session sharing request to the second server by calling an application programming interface; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier;
A connection module 1102, configured to establish a connection with a second server;
The receiving module is used for receiving session data which is sent by the second server and corresponds to the session identifier; the second service end is respectively connected with the first client and the first service end so as to establish a session between the first client and the first service end and transfer session data; the session data may be session data between the first client and the first service.
The embodiment of the application also provides a session processing device, the session corresponds to the session between the first client and the first service, the device is applied to the first client, referring to fig. 12, the device specifically comprises the following modules:
A receiving module 1201, configured to receive a session identifier;
A connection module 1202, configured to establish a connection with a second server; the second service end is also connected with the first service end so as to establish a session between the first client end and the first service end and transfer session data; the session data may be session data between the first client and the first service; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client; the session sharing request is obtained based on an application programming interface; the session sharing request includes a session identifier.
The embodiment of the application also provides a session processing device, the session corresponds to the session between the first client and the first service, the device is applied to the first service, and the device specifically comprises:
The connection module is used for establishing connection with the second service end; the second service end is also connected with the first client and the first service end; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client; the session sharing request is obtained based on an application programming interface; the session sharing request includes a session identifier.
The embodiment of the application also provides a non-volatile readable storage medium, where one or more modules (programs) are stored, where the one or more modules are applied to a device, and the instructions (instructions) of each method step in the embodiment of the application may cause the device to execute.
Embodiments of the application provide one or more machine-readable media having instructions stored thereon that, when executed by one or more processors, cause an electronic device to perform a method as described in one or more of the above embodiments. In the embodiment of the application, the electronic equipment comprises a server, terminal equipment and other equipment.
Embodiments of the present disclosure may be implemented as an apparatus for performing a desired configuration using any suitable hardware, firmware, software, or any combination thereof, which may include a server (cluster), terminal, or the like. Fig. 13 schematically illustrates an exemplary apparatus 1300 that may be used to implement various embodiments described in the present disclosure.
For one embodiment, fig. 13 illustrates an example apparatus 1300 having one or more processors 1302, a control module (chipset) 1304 coupled to at least one of the processor(s) 1302, a memory 1306 coupled to the control module 1304, a non-volatile memory (NVM)/storage 1308 coupled to the control module 1304, one or more input/output devices 1310 coupled to the control module 1304, and a network interface 1312 coupled to the control module 1304.
The processor 1302 may include one or more single-core or multi-core processors, and the processor 1302 may include any combination of general-purpose or special-purpose processors (e.g., graphics processors, application processors, baseband processors, etc.). In some embodiments, the apparatus 1300 may be used as a server, a terminal, or the like in the embodiments of the present application.
In some embodiments, the apparatus 1300 may include one or more computer-readable media (e.g., memory 1306 or NVM/storage 1308) having instructions 1314 and one or more processors 1302 combined with the one or more computer-readable media configured to execute the instructions 1314 to implement the modules to perform actions described in this disclosure.
For one embodiment, the control module 1304 may include any suitable interface controller to provide any suitable interface to at least one of the processor(s) 1302 and/or any suitable device or component in communication with the control module 1304.
The control module 1304 may include a memory controller module to provide an interface to the memory 1306. The memory controller modules may be hardware modules, software modules, and/or firmware modules.
Memory 1306 may be used to load and store data and/or instructions 1314 for device 1300, for example. For one embodiment, memory 1306 may include any suitable volatile memory, such as suitable DRAM. In some embodiments, memory 1306 may include double data rate type four synchronous dynamic random access memory (DDR 4 SDRAM).
For one embodiment, the control module 1304 may include one or more input/output controllers to provide interfaces to the NVM/storage 1308 and the input/output device(s) 1310.
For example, NVM/storage 1308 may be used to store data and/or instructions 1314. NVM/storage 1308 may include any suitable nonvolatile memory (e.g., flash memory) and/or may include any suitable nonvolatile storage device(s) (e.g., hard disk drive(s) (HDD), compact disk drive(s) (CD) and/or digital versatile disk drive (s)).
NVM/storage 1308 may include storage resources that are part of the device on which apparatus 1300 is installed, or may be accessible by the device without necessarily being part of the device. For example, NVM/storage 1308 may be accessed over a network via input/output device(s) 1310.
Input/output device(s) 1310 may provide an interface for apparatus 1300 to communicate with any other suitable device, input/output device 1310 may include communication components, audio components, sensor components, and the like. The network interface 1312 may provide an interface for the device 1300 to communicate over one or more networks, and the device 1300 may communicate wirelessly with one or more components of a wireless network according to any of one or more wireless network standards and/or protocols, such as accessing a wireless network based on a communication standard, such as WiFi, 2G, 3G, 4G, 5G, etc., or a combination thereof.
For one embodiment, at least one of the processor(s) 1302 may be packaged together with logic of one or more controllers (e.g., memory controller modules) of the control module 1304. For one embodiment, at least one of the processor(s) 1302 may be packaged together with logic of one or more controllers of the control module 1304 to form a System In Package (SiP). For one embodiment, at least one of the processor(s) 1302 may be integrated on the same mold as logic of one or more controllers of the control module 1304. For one embodiment, at least one of the processor(s) 1302 may be integrated on the same die with logic of one or more controllers of the control module 1304 to form a system on chip (SoC).
In various embodiments, apparatus 1300 may be, but is not limited to being: a server, a desktop computing device, or a mobile computing device (e.g., a laptop computing device, a handheld computing device, a tablet, a netbook, etc.), among other terminal devices. In various embodiments, the apparatus 1300 may have more or fewer components and/or different architectures. For example, in some embodiments, apparatus 1300 includes one or more cameras, a keyboard, a Liquid Crystal Display (LCD) screen (including a touch screen display), a non-volatile memory port, multiple antennas, a graphics chip, an Application Specific Integrated Circuit (ASIC), and a speaker.
The apparatus 1300 may use a main control chip as a processor or a control module, the sensor data, the position information, and the like are stored in a memory or NVM/storage device, the sensor group may be used as an input/output device, and the communication interface may include a network interface.
The embodiment of the application also provides electronic equipment, which comprises: a processor; and a memory having executable code stored thereon that, when executed, causes the processor to perform a method as described in one or more of the embodiments of the application.
Embodiments of the application also provide one or more machine-readable media having stored thereon executable code that, when executed, causes a processor to perform a method as described in one or more of the embodiments of the application.
For the device embodiments, since they are substantially similar to the method embodiments, the description is relatively simple, and reference is made to the description of the method embodiments for relevant points.
In this specification, each embodiment is described in a progressive manner, and each embodiment is mainly described by differences from other embodiments, and identical and similar parts between the embodiments are all enough to be referred to each other.
Embodiments of the present application are described with reference to flowchart illustrations and/or block diagrams of methods, terminal devices (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing terminal device to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing terminal device, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While preferred embodiments of the present application have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. It is therefore intended that the following claims be interpreted as including the preferred embodiment and all such alterations and modifications as fall within the scope of the embodiments of the application.
Finally, it is further noted that relational terms such as first and second, and the like are used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Moreover, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or terminal that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or terminal. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article, or terminal device that comprises the element.
The above description of a session processing method, a session processing device, an electronic device and a storage medium provided by the present application applies specific examples to illustrate the principles and embodiments of the present application, and the above description of the examples is only used to help understand the method and core idea of the present application; meanwhile, as those skilled in the art will have variations in the specific embodiments and application scope in accordance with the ideas of the present application, the present description should not be construed as limiting the present application in view of the above.
Claims (12)
1. A method for processing a session, wherein the session corresponds to a session between a first client and a first service, the method being applied to a second service, the method comprising:
determining a session identifier, establishing connection with a first client and a first server respectively, so as to establish a session between the first client and the first server, and transferring session data; the session data is session data between a first client and a first service end; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and responds to the input data by the first service end to obtain output data corresponding to the input data;
receiving a session sharing request sent by a second client; the session sharing request is obtained based on an application programming interface of the second server; the session sharing request comprises a session identifier;
and establishing connection with the second client, and sending session data corresponding to the session identifier to the second client in real time.
2. The method of claim 1, wherein the format of the session data comprises: command line format.
3. The method of claim 1, wherein the ingress port of the first server is in a closed state.
4. The method of claim 1, wherein the sending the session data corresponding to the session identifier to the second client includes:
Determining the target type of the session data according to the authority information of the second client for the session corresponding to the session identifier;
And sending the session data of the target type to the second client.
5. A method for processing a session, wherein the session corresponds to a session between a first client and a first service, the method being applied to a second client, the method comprising:
Sending a session sharing request to a second server by calling an application programming interface; the session sharing request is obtained based on an application programming interface; the session sharing request comprises a session identifier;
Establishing connection with a second server and receiving session data which are sent by the second server in real time and correspond to the session identifier; the second service end is respectively connected with the first client and the first service end so as to establish a session between the first client and the first service end and transfer session data; the session data is session data between a first client and a first service end; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and the first service end responds to the input data to obtain output data corresponding to the input data.
6. A method for processing a session, wherein the session corresponds to a session between a first client and a first service, the method being applied to the first client, the method comprising:
Receiving a session identifier and establishing connection with a second server; the second service end is also connected with the first service end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between a first client and a first service end; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client in real time; the session sharing request is obtained based on an application programming interface of the second server; the session sharing request comprises a session identifier; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and the first service end responds to the input data to obtain output data corresponding to the input data.
7. A method for processing a session, wherein the session corresponds to a session between a first client and a first service, the method being applied to the first service, the method comprising:
Establishing connection with a second server; the second service end is also connected with the first client end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between a first client and a first service end; the second server establishes connection with the second client according to the session sharing request sent by the second client, and sends session data corresponding to the session identifier to the second client in real time; the session sharing request is obtained based on an application programming interface of the second server; the session sharing request comprises a session identifier; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and the first service end responds to the input data to obtain output data corresponding to the input data.
8. A method for processing a session, wherein the session corresponds to a session between a first client and a first service, the method comprising:
The first client sends a connection request to the second server based on an application programming interface of the second server;
the second server side sends a first connection address and a session identifier to the first client side according to the connection request;
The first client establishes connection with the second server according to the first connection address;
After the second service end establishes connection with the first client end, the second service end establishes connection with the first service end so as to establish a session between the first client end and the first service end, transfer session data and send the session data to the second client end in real time; the session data is session data between a first client and a first service end; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and the first service end responds to the input data to obtain output data corresponding to the input data.
9. A method for processing a session, wherein the session corresponds to a session between a first client and a first service, the method comprising:
the second client sends a session sharing request to the second server based on an application programming interface of the second server;
the second server side sends a second connection address to a second client side according to the session sharing request;
the second client establishes connection with a second server according to the second connection address;
The second server side sends session data to the second client side in real time; the second service end is connected with the first client end so as to establish a session between the first client end and the first service end and transfer session data; the session data is session data between a first client and a first service end; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and the first service end responds to the input data to obtain output data corresponding to the input data.
10. A session handling apparatus, wherein the session corresponds to a session between a first client and a first server, the apparatus being applied to a second server, the apparatus comprising:
The determining module is used for determining the session identification;
the first connection module is used for respectively establishing connection with the first client and the first server so as to establish a session between the first client and the first server and transfer session data; the session data is session data between a first client and a first service end;
the receiving module is used for receiving a session sharing request sent by the second client; the session sharing request is obtained based on an application programming interface of the second server; the session sharing request comprises a session identifier;
the second connection module is used for establishing connection with a second client;
The sending module is used for sending the session data corresponding to the session identifier to the second client in real time; the first service end provides service to the first client end based on the session; the first client displays output data on a session interface, generates input data on the session interface, transmits the corresponding input data to a first service end through the second service end, and the first service end responds to the input data to obtain output data corresponding to the input data.
11. An electronic device, comprising: a processor; and
A memory having executable code stored thereon that, when executed, causes the processor to perform the method of any of claims 1-9.
12. One or more machine readable media having executable code stored thereon that, when executed, causes a processor to perform the method of any of claims 1-9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111526643.6A CN114363397B (en) | 2021-12-14 | 2021-12-14 | Session processing method, device, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111526643.6A CN114363397B (en) | 2021-12-14 | 2021-12-14 | Session processing method, device, electronic equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114363397A CN114363397A (en) | 2022-04-15 |
| CN114363397B true CN114363397B (en) | 2024-08-06 |
Family
ID=81100042
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111526643.6A Active CN114363397B (en) | 2021-12-14 | 2021-12-14 | Session processing method, device, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114363397B (en) |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106105090A (en) * | 2014-04-14 | 2016-11-09 | 迈克菲股份有限公司 | Session is utilized to share automated log on and publish session |
Family Cites Families (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6779035B1 (en) * | 2000-03-06 | 2004-08-17 | Microsoft Corporation | Application programming interface and generalized network address translator for translation of transport-layer sessions |
| US7526560B1 (en) * | 2000-03-30 | 2009-04-28 | Oracle International Corporation | Method and apparatus for sharing a secure connection between a client and multiple server nodes |
| US7080404B2 (en) * | 2002-04-01 | 2006-07-18 | Microsoft Corporation | Automatic re-authentication |
| US8081958B2 (en) * | 2006-12-01 | 2011-12-20 | Yahoo! Inc. | User initiated invite for automatic conference participation by invitee |
| US8640202B2 (en) * | 2007-10-04 | 2014-01-28 | International Business Machines Corporation | Synchronizing user sessions in a session environment having multiple web services |
| CN104660616A (en) * | 2015-03-18 | 2015-05-27 | 上海斐讯数据通信技术有限公司 | Conversation remaining server side and conversation processing method thereof |
| CN105812351B (en) * | 2016-02-23 | 2019-04-09 | 平安科技(深圳)有限公司 | Realize the shared method and system of session |
| CN109324910A (en) * | 2018-09-03 | 2019-02-12 | 视联动力信息技术股份有限公司 | A kind of method and apparatus that session is shared |
| US11025560B2 (en) * | 2019-05-06 | 2021-06-01 | Citrix Systems, Inc. | Method and system for sharing user configuration data between different computing sessions |
| CN110233902B (en) * | 2019-06-28 | 2022-03-01 | 杭州迪普科技股份有限公司 | Session processing method and device, electronic equipment and machine-readable storage medium |
| CN113329069B (en) * | 2021-05-24 | 2023-06-09 | 统信软件技术有限公司 | Instant messaging method, system and computing device |
-
2021
- 2021-12-14 CN CN202111526643.6A patent/CN114363397B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106105090A (en) * | 2014-04-14 | 2016-11-09 | 迈克菲股份有限公司 | Session is utilized to share automated log on and publish session |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114363397A (en) | 2022-04-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2019109809A1 (en) | Media data processing method, computer device and storage medium | |
| US9516107B2 (en) | Secure local server for synchronized online content management system | |
| US10375064B2 (en) | Method, apparatus, and system for remotely accessing cloud applications | |
| US9232012B1 (en) | Method and system for data usage accounting in a computing device | |
| US10645172B1 (en) | Socket tunneling connections in a service provider environment | |
| US11489831B2 (en) | Communication system and computer readable storage medium | |
| US9584508B2 (en) | Peer to peer enterprise file sharing | |
| CN111935276A (en) | Remote host access method, device and equipment | |
| US20210158301A1 (en) | Systems and methods for message transmission and retrieval using blockchain | |
| CN114363397B (en) | Session processing method, device, electronic equipment and storage medium | |
| CN117749424A (en) | Transmission method, system, electronic device and medium | |
| CN120226364A (en) | System and method for communication between a mobile device and a smart television | |
| US10231004B2 (en) | Network recording service | |
| US20130024543A1 (en) | Methods for generating multiple responses to a single request message and devices thereof | |
| CN111240868B (en) | Instance processing and calling method, device, system and storage medium | |
| CN111490997B (en) | Task processing method, proxy system, service system and electronic equipment | |
| US20230388296A1 (en) | System and method for providing rdp client based rdp services through a zero trust cloud environment | |
| CN114615140B (en) | Communication method, device, equipment and storage medium | |
| US9363274B2 (en) | Methods and systems for broadcasting pictures | |
| CN114765595B (en) | Chat message display method, chat message sending device, electronic equipment and media | |
| US20240031358A1 (en) | System and method for providing a web based rdp service through a zero trust cloud environment | |
| US12316603B2 (en) | Remote command access in a hybrid cloud to on-premises devices | |
| US20230370447A1 (en) | System and method for providing application access through an rdp pool service over a zero trust cloud environment | |
| US11201856B2 (en) | Message security | |
| US20210344557A1 (en) | Systems, methods, and apparatuses for network management |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |