安全可扩展的SaaS服务开放平台框架设计

基于SaaS服务对开放平台的需求,结合SaaS服务的特点,提出了一种适用于SaaS服务的安全可扩展的开放平台解决方案,解决了SaaS服务在开放过程中的安全性、稳定性及性能等方面的问题;首先,通过对Oauth2.0协议两种授权模式的改进,提高了授权的安全性,保障了合法用户对资源的访问权限;其次,设计了基于令牌桶算法的限流策略和服务熔断机制,提高开放平台的稳定性,同时,制定可组合的负载策略为开放平台自身提供了负载均衡的能力,通过二级软负载的方式提升了开放平台的性能;最后,采用松耦合,多模块自由聚合的基础功能模块设计和动态可扩展的注册表机制,极大地提高的平台的扩展性。

Design of an open platform framework for secure and scalable SaaS services

Based on the requirements of SaaS services for open platforms, combined with the characteristics of SaaS services, a secure and scalable open platform solution for SaaS services is proposed, which solves the security, stability and performance of SaaS services in the open process. Aspects of the problem. First of all, through the improvement of the two authorization modes of Oauth2.0 protocol, this paper improves the security of authorization and guarantees the access rights of legitimate users to resources. Secondly, the traffic limiting mechanism based on the token bucket algorithm and the service fuse mechanism are designed to improve the stability of the open platform. At the same time, the development of a loadable strategy can provide load balancing capability for the open platform itself. The way to improve the performance of the open platform. Finally, the loosely coupled, multi-module freely aggregated basic functional module design and dynamically scalable registry mechanism greatly enhance the scalability of the platform.