[go: up one dir, main page]

WO2025113066A1 - Internet application management method and personal cloud system - Google Patents

Internet application management method and personal cloud system Download PDF

Info

Publication number
WO2025113066A1
WO2025113066A1 PCT/CN2024/128528 CN2024128528W WO2025113066A1 WO 2025113066 A1 WO2025113066 A1 WO 2025113066A1 CN 2024128528 W CN2024128528 W CN 2024128528W WO 2025113066 A1 WO2025113066 A1 WO 2025113066A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
personal
internet application
data
digital space
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
PCT/CN2024/128528
Other languages
French (fr)
Chinese (zh)
Inventor
赵世玉
王冬梅
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zow Digital Technologies Shenzhen Co Ltd
Original Assignee
Zow Digital Technologies Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zow Digital Technologies Shenzhen Co Ltd filed Critical Zow Digital Technologies Shenzhen Co Ltd
Publication of WO2025113066A1 publication Critical patent/WO2025113066A1/en
Pending legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • H04L67/125Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks involving control of end-device applications over a network

Definitions

  • each Internet application system has its own server cluster, and users only need to download the APP of each Internet application or obtain the corresponding Internet application service through a browser or other client. Since each Internet developer usually develops and centrally deploys its own application system without user participation, each Internet application system is almost completely independent, which facilitates the development and deployment of Internet applications while also leading to security and privacy protection issues. With the popularization of Internet applications, more and more user personal data are scattered in various application systems. Once the Internet application is shut down, the version is updated, or the service is interrupted, the user's application security and user personal data security will face serious threats, and even the application can no longer be opened and the user's personal data cannot be retrieved.
  • a user publishes many original articles on an application website. Under the existing Internet application logic, these articles are submitted to the application website. These articles may be distributed to many people by the application website, but the user cannot effectively control and manage this process; if the application website is shut down for some reason, these articles may not be retrieved, and other users will not be able to view the articles published by the user.
  • the present disclosure provides an Internet application management method and a personal cloud system, in which users deploy and manage Internet applications on the Internet, but only serve the users themselves. This enables users to manage Internet applications and user personal data more effectively while enjoying the convenience brought by Internet applications. Even if the remote server of the Internet application is disconnected or shut down, data loss will not occur, thereby reducing the risk of data leakage.
  • a method for managing an Internet application is provided, which is applied to an Internet application management system, and the method includes: creating a personal digital space for a user on a cloud infrastructure, and creating an Internet application running environment and a personal database in the personal digital space; and in response to a request for installing an Internet application initiated by the user through a client of the Internet application management system, installing a server side of the Internet application in the personal digital space corresponding to the user, so that during the process of the user accessing the Internet application, the business logic and data processing logic of the server side of the Internet application are run in the personal digital space, and the generated user personal data is stored in the personal database in the personal digital space.
  • a method for managing an Internet application which is applied to an Internet application management system, and the method includes: creating a personal digital space for a user on a cloud infrastructure, and creating an Internet application operating environment and a personal database in the personal digital space; in response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, completing the installation of the server side of the Internet application in the personal digital space, starting a running instance on the Internet application running environment, and providing an access portal corresponding to the running instance; and in the process of the user accessing the application through the access portal, providing the user's personal data to the server side of the application so that the server side of the Internet application performs data processing, and storing the generated user personal data in the personal database on the personal digital space.
  • a data management method is provided, the method being applied to an Internet application management system, the method comprising: creating a personal digital space for a user on a cloud infrastructure, and creating a personal database in the personal digital space; in response to a user request, the Internet application management system generates a personal database for the personal digital space;
  • the database external access interface is used for the Internet application to write the user's personal data after obtaining the user's authorization; in the process of the user registering or using the Internet application, the personal database external access interface is obtained and the user's authorization is obtained, so that the Internet application initiates a data write request to the user's personal digital space through the personal database external access interface; in response to the data write request initiated by the target Internet application by calling the personal database external access interface, the user's personal data generated in the target Internet application carried in the data write request is stored in the personal database on the personal digital space.
  • the personal database is a non-relational database system, so that when multiple different target Internet applications store the user's personal data in the personal digital space, they create files and/or create data table formats according to their respective needs, and define the meaning of the fields in the data table; and in response to the user's request to access the user's personal data related to the target Internet application stored in the personal digital space, the files and data tables associated with the target Internet application in the personal database are parsed, and the parsing results are displayed.
  • an Internet application management system including a personal digital space management module, an application running environment management module, and a database management module.
  • the personal digital space management module is used to create and manage a personal digital space for a user on a cloud infrastructure, and to support the user in managing his own personal digital space.
  • the application running environment management module is used to create and manage an Internet application running environment in the user's personal digital space, and to install the server side of the Internet application specified by the user in the personal digital space corresponding to the user, so that the running instance of the server side of the Internet application runs in the Internet application running environment of the personal digital space and only responds to the user's application access request.
  • the database management module is used to create and manage a personal database in the user's personal digital space, and when an Internet application is installed or first run in the personal digital space, a corresponding application data storage space is created in the personal database for the corresponding Internet application, so that the data generated during the operation of the Internet application, including application data and user personal data, is stored in the corresponding application data storage space.
  • an electronic device comprising a processor and a memory, wherein the memory stores computer program instructions that can be executed by the processor, and when the processor executes the computer program instructions, the steps of the method described in any one of the first to third aspects above are implemented.
  • a personal cloud system comprising the electronic device, the personal digital space and the smart device corresponding to the Internet application as described in the fifth aspect above.
  • a computer-readable storage medium in which computer program instructions are stored.
  • the processor is prompted to implement the steps of the method described in any one of the first to third aspects above.
  • a computer program product including a computer program.
  • the computer program product When executed by a processor, it prompts the processor to implement the steps of the method described in any one of the first to third aspects above.
  • FIG1 is a schematic diagram of a first system architecture of an Internet application management system according to some embodiments of the present disclosure
  • FIG2 is a schematic diagram of an Internet application architecture according to some embodiments of the present disclosure.
  • FIG. 3 is a schematic diagram of a second system architecture of an Internet application management system according to some embodiments of the present disclosure
  • FIG. 4 is a schematic diagram of a third system architecture of an Internet application management system according to some embodiments of the present disclosure.
  • FIG5 is a flow chart of an Internet application management method according to some embodiments of the present disclosure.
  • FIG. 6 is a schematic diagram of a client interface of an Internet application management system according to some embodiments of the present disclosure.
  • FIG7 is a schematic diagram of a flow chart of the interaction between multiple terminals of the cloud APP in FIG6 ;
  • FIG. 9 is a flow chart of an Internet application management method according to yet other embodiments of the present disclosure.
  • FIG. 11 is a schematic diagram of a system architecture of a personal cloud system according to some embodiments of the present disclosure.
  • FIG. 12 is a schematic diagram of a system architecture of a personal cloud system supporting a personal virtual private network according to some embodiments of the present disclosure.
  • Internet applications refer to applications that run through the Internet, including mobile Internet applications, web applications, cloud applications, etc.
  • an Internet application includes two parts: a client and a server.
  • the client is mainly used to install and run on terminal devices such as users' mobile phones, while the server runs on a server deployed or rented by the developer of the application.
  • the client is mainly used to interact with the user, including the display of the front-end page, receiving the user's input operation, and displaying the response results of the user's operation.
  • the background data processing logic involved during this period is executed by the server.
  • desktop applications are usually installed and used by users on their own personal computers, while Internet applications are deployed and centrally managed by the application developer on the Internet.
  • the mobile APP or client that the user downloads and installs the application can be used.
  • the user's personal data generated by the user in the process of using this application for example, including the information posted by the user in the application, the downloaded data, etc., are all stored in the server deployed or rented by the application developer. This means that if the server deployed or rented by the application developer is interrupted or its operation is terminated, the user's personal data will be at risk of being lost.
  • an Internet application management system is provided.
  • a personal digital space exclusive to the user can be created for the user on the cloud infrastructure.
  • the personal digital space can be understood as a micro virtual server dedicated to each user, which can also be called a personal cloud server, which can serve as the basic platform of the personal cloud system and independently handle the user's data storage, data processing and remote connection functions.
  • the user has full control over the data in the personal cloud server, and no one else can access or interfere with the data.
  • Internet applications are installed in the personal digital space, and the user's personal data generated by the user in the process of using these Internet applications can be uniformly stored in the personal digital space. In this way, even if the Internet application is suspended or the server is interrupted, the user's personal data will not be lost, and it can better protect the privacy of the user's personal data.
  • Mode 1 Independent working mode.
  • the personal data generated by users in the process of using Internet applications are uniformly stored in the user's personal digital space.
  • the business logic and data processing logic of Internet applications can also run in this personal digital space.
  • this personal digital space can be deployed on the edge computing nodes of the cloud infrastructure to quickly respond to user access requests through edge computing.
  • user personal data only needs to be stored in the personal digital space, and the application developer does not need to store and manage user personal data at all. It only needs to provide business logic and data processing logic and manage the public business data within the Internet application.
  • For Internet applications there is no need to maintain user personal data, so it can also save database management costs, and only need to focus on the development and maintenance of business capabilities.
  • the Internet application management system in the embodiment of the present disclosure can exist in the form of a "super application (App)", and other Internet applications (relative to the Internet applications corresponding to the Internet application management system in the embodiment of the present disclosure, they can be called third-party applications) can exist in the form of "cloud apps" installed based on the "super app”.
  • the developer of the third-party application can develop a cloud app based on the architecture of the Internet application management system according to some embodiments of the present disclosure and the provided interface.
  • This cloud app can also include its own client and server to obtain the services provided by the "super app” according to some embodiments of the present disclosure.
  • the server side of the cloud APP installed by each user only serves the user himself.
  • the above-mentioned “super app” may include a client and a server.
  • the client is an application or user interface running on a user device, which may include a browser, an APP on a mobile terminal, Special programs, etc., are responsible for connecting to the server to perform operations such as user login and management of the user's personal digital space, including installation, startup, version upgrade, stop, status monitoring, query of installed cloud apps, etc. of cloud apps.
  • the client of the above-mentioned "super app” can also include a browser engine module as the front-end operating environment of the cloud app.
  • the browser engine module can encapsulate the capabilities and resources of the client, including user information, secure connection with the server, terminal hardware operation capabilities, etc., for the call of the cloud app front end.
  • sensitive resources and functions such as cameras, location information, address books, microphones, network connections, sensors, etc., usually require applications to obtain user authorization before access. Since the client and server of the cloud app are completely controlled by the super app and only serve individual users, the user's authorization for the sensitive resources and functions of the terminal used by the super app can be covered by the cloud app, so that when the cloud app accesses the sensitive resources and functions of the terminal device, it does not need to request user authorization again.
  • the server side of the above-mentioned "super app” can provide a personal digital space management module, an application operating environment management module, a database management module, and a registration authentication module.
  • the application operating environment management module provides an application operating environment for the cloud app.
  • the server side can install the server side of the cloud app on the user's personal digital space through the personal digital space management module, and start the running instance of the server side of the cloud app in the application operating environment through the application operating environment management module.
  • the application operating environment can encapsulate the resources and capabilities of the server for the cloud app to call, including the cloud app front end and/or back end, for example, including a secure connection with the client, the server's local storage capacity, computing capacity and network capacity, etc.
  • the running instance of the cloud app can perform database operations, and the access data includes application data and user personal data generated by the cloud app.
  • the user After registering and installing the "super app” in the embodiment of the present disclosure, the user can log in to the system, access the "app store” function in the client interface of the "super app", view the list of cloud apps that can be installed provided by the system, and then select the cloud app they need to install.
  • the server-side program of the cloud app will be installed in the user's personal digital space. That is, from the user's perspective, the user can install the server-side program of the cloud app in his or her personal digital space.
  • the server-side program will run in the application operating environment provided by the personal digital space, and execute data processing logic in the personal digital space, and only serve the user himself or herself.
  • the generated user personal data will be directly stored in the database created on the user's personal digital space.
  • the personal database in the personal digital space is suitable for implementation in the form of a non-relational (NoSQL) database.
  • NoSQL non-relational
  • This method also enables the database in the disclosed embodiment to parse the user personal data stored in the personal digital space by multiple different Internet applications, including various files and data tables.
  • Users can log in to the personal digital space to achieve management operations such as viewing the user personal data in multiple different Internet applications.
  • user personal data can also be shared between different applications.
  • data related to user attributes only one copy can be saved, and multiple third-party applications share this copy of data.
  • user personal data generated in a certain Internet application it can also be provided to other Internet applications as public data, for example, data similar to invoices, etc.
  • a personal digital space including a personal database and a server-side running instance of an Internet application can be created for the user on the cloud infrastructure.
  • the personal digital space can respond to user requests and install one or more Internet applications on the personal digital space. These Internet applications only serve the user himself.
  • the personal digital space can respond to user requests and start the server-side running instance of the installed Internet application, that is, start the Internet application service.
  • the user can use the client to access the server-side running instance of the Internet application on the personal digital space through the network (that is, access the Internet application service).
  • the server-side running instance of the Internet application responds to the user's access request to provide the corresponding Internet application service.
  • the information generated by the user accessing the server-side running instance of the Internet application (cloud APP)
  • the user's personal data is stored in the personal database of the personal digital space.
  • the user's personal data used by the running instance of the server side of the Internet application (cloud APP) may also be derived in whole or in part from the personal database of the personal digital space.
  • a personal digital space refers to a set of cloud storage, cloud computing and other resources on the cloud infrastructure that serve a specific user, and is used to support the operation of the user's personal database, the running instance of the server-side program of the cloud APP, etc.
  • Each personal digital space can be composed of one or more virtual servers or physical servers. The resources between each user's personal digital space are isolated from each other.
  • the client refers to: an application or user interface running on the user's device, such as a browser, an APP on a mobile terminal, a dedicated program, etc., which is responsible for user data input, receiving information from the application, and local data storage.
  • an application or user interface running on the user's device, such as a browser, an APP on a mobile terminal, a dedicated program, etc., which is responsible for user data input, receiving information from the application, and local data storage.
  • Internet applications are software programs installed in a personal digital space that support web applications and/or mobile applications.
  • the server-side programs of Internet applications include but are not limited to front-end programs, back-end programs, and databases.
  • Method 2 In this method 2, the Internet application management system according to some embodiments of the present disclosure can still provide APIs for development to the developers of third-party applications, and the developers of third-party applications can use these APIs to develop cloud apps. However, it is not necessary to put the data processing logic of the server side of the third-party application on the personal digital space for operation. Instead, after the user's personal data is saved on the personal digital space, the Internet application management system in the embodiments of the present disclosure provides these personal data to the server side of the third-party application, so that the server side of the third-party application can still obtain the user's personal data and execute business logic and data processing logic in its own deployed server.
  • the developer of a third-party application develops a cloud APP using the API provided by the Internet application management system to work in collaboration with the server side of other third-party applications.
  • the server side of the cloud APP While accepting the user's service access request and processing the user's personal data, the server side of the cloud APP also provides the server side of other third-party applications with an API for accessing personal data.
  • the server side of other third-party applications can obtain the user's personal data related to the cloud APP from the personal digital space through this API, for example, collect statistical data on the user's use of the cloud APP.
  • the developer of the third-party application can also use the API provided by the Internet application management system to develop the server side of the cloud App.
  • This server side can also be installed on the personal digital space, mainly used to obtain and send the user's personal data, but no data processing is required. Therefore, at this time, the server side of the application can be divided into two parts, one part is the cloud App server side running on the user's personal digital space, which can be called the data acquisition server side, and the other part is running on the server deployed by the application developer (which can be an independent server or a rented cloud server, etc.), which can be called the data processing server side.
  • the access entrance of the cloud App can be provided through the client of the Internet application management system, including icons, etc.
  • the server side of the cloud App that is, the data acquisition server side
  • the server side of the cloud App can be installed on the user's personal digital space.
  • the user initiates access to the cloud App through the client of the Internet application management system and generates relevant user personal data (for example, including information published by the user, etc.), it can be first saved in the user's personal digital space.
  • the data acquisition server corresponding to the cloud App running in the personal digital space can send the user's personal data to the corresponding data processing server, so that the user's personal data can be processed on the server deployed by the third-party application.
  • Method 3 (enhanced mode, enhancing the functions of the current application):
  • the above methods 1 and 2 may involve relatively large-scale transformation of the existing application architecture.
  • the third-party application sends the generated user personal data to the personal digital space for storage. That is to say, after the user applies for the personal digital space, the Internet application management system can generate a personal database external access API for the personal digital space, which is used for the third-party application to write the user's personal data through the API after obtaining the user's authorization.
  • the third-party application collects the user's personal database external access API and obtains the user's authorization. In this way, as shown in Figure 4, if the third-party application generates user personal data during operation, it can call the data write interface according to the personal digital space access API to write the user's personal data into the personal digital space.
  • third-party applications can continue to provide services to users according to the traditional architecture.
  • the user configures the personal digital space address attribute
  • the user's personal data generated by the third-party application is transferred to the personal digital space.
  • the third-party application can also continue to collect and store the user's personal data.
  • a user can view the user's personal data generated in multiple different third-party applications through his personal digital space, and even if the third-party application is shut down, it will not affect the user's personal data.
  • the personal database in the personal digital space can still be implemented in the form of a non-relational database.
  • different third-party applications can create files and/or data tables according to their own needs and define the meaning of the fields by themselves.
  • a third-party application can also access the user's personal data in multiple different third-party applications through the personal database external access API.
  • this "cloud backup” or “cloud storage” solution is usually used in scenarios such as replacing hardware devices.
  • the personal data in the third-party application in the original mobile phone can be backed up in the cloud.
  • the cloud backup data can be pulled over, so that the functions on the original mobile phone can be restored on the new mobile phone.
  • multiple different third-party applications can store the user personal data generated therein into the user's personal digital space, and the personal database in the personal digital space can be a non-relational database, so that each third-party application can define the data type, field meaning, etc. of the data table according to the characteristics of the non-relational database, and the personal digital space can parse the data stored in the personal digital space by different third-party applications. Therefore, the user can directly view the user personal data in multiple different third-party applications through the personal digital space.
  • This first embodiment corresponds to the aforementioned first embodiment and provides an Internet application management method, which is applied to an Internet application management system according to some embodiments of the present disclosure.
  • the method includes steps S501 and S502.
  • step S501 a personal digital space is created for the user on the cloud infrastructure, and an Internet application operating environment and a personal database are created in the personal digital space.
  • the user can register and open an account in the Internet application management system. After that, the Internet application management system can create a user account and its personal digital space for the user, including an external access API for the personal database of the personal digital space, etc. The user can access his or her personal digital space by logging into the account.
  • the Internet application management system can also create an Internet application operating environment and a personal database in the personal digital space.
  • the personal database is used to store the user's personal data generated in the process of using the third-party application. That is to say, the personal database in the personal digital space only stores the user's personal data generated in the process of using the third-party application, and does not involve other users' data.
  • the server-side business logic and data processing logic of the third-party application can be run in the personal digital space.
  • step S502 in response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, the server side of the Internet application is installed in the personal digital space corresponding to the user, so that during the user's access to the Internet application, the business logic and data processing logic of the server side of the Internet application are run in the personal digital space, and the generated user personal data is stored in a personal database on the personal digital space.
  • the developer of a third-party application can develop a cloud app according to the API provided by the Internet application management system in the embodiment of the present disclosure, and accordingly, the user can view the list of cloud apps that can be installed through the client of the Internet application management system, and select the cloud app to be installed from them for installation.
  • the "Internet application” described in the above step S502 may refer to the cloud app described in this article, also known as a third-party application.
  • the developer of the third-party application can develop the cloud app based on the above-mentioned Internet application management system.
  • the cloud app can include a client and a server, and the server can include business logic and data processing logic.
  • the data processing logic in the server of the cloud app can include: which keywords of which groups correspond to which access rights, reading rights, comment rights and other rules, etc.
  • the server of the Internet application management system can install the server of the cloud app in the user's personal digital space.
  • Other cloud apps can also be processed similarly.
  • the user can interact with the cloud app and use the functions or services provided by the cloud app.
  • an access entry for the cloud app can also be generated in the client interface of the Internet application management system.
  • the user can view the icon of the installed cloud app in the client interface of the application management system. This icon contains a link to the server side of the cloud app, which can be used as the access entry of the cloud app.
  • the client interface of the Internet application management system may include a login area and an installed cloud app list display area.
  • an operation area may also be included.
  • icons of each installed cloud app can be displayed, and users can click on these icons to initiate access to one of the cloud apps.
  • the above-mentioned method of providing icons through the client interface of the Internet application management system is only one example, and it should not be regarded as a limitation on the scope of protection of the present disclosure.
  • the server side of the Internet application management system can also record information such as the installation address of the running instance of the server side of the cloud App in the personal digital space.
  • the cloud APP access request from the client can be routed to the running instance of the cloud App server side according to the access address of the cloud App server side in the personal digital space, so that the cloud App server side can process the access request.
  • the server side of the Internet application management system may also provide an operation interface for operating the user's personal data stored in the personal database, so that the Internet application can operate the user's personal data through the operation interface.
  • the user's personal data stored in the personal database of the personal digital space includes data generated in the Internet application and unique to the Internet application.
  • the operation interface may include a first operation interface for writing the data generated by the Internet application and unique to the Internet application into the personal database, so that the Internet application writes the data generated by the Internet application and unique to the Internet application into the personal database of the personal digital space for storage through the first operation interface.
  • the user's personal data stored in the personal database of the personal digital space may also include public data related to the user generated in other Internet applications and shareable among multiple applications; in this case, the operation interface may include a second operation interface for reading public data, so that the Internet application can obtain the public data related to the user generated in other Internet applications through the second operation interface.
  • the user's personal data stored in the personal database of the personal digital space may also include: data related to the user's personal attributes, for example, including the user's gender, age, occupation, etc.
  • data related to the user's personal attributes may be data that is shared and used by multiple Internet applications installed in the personal digital space without the need for user authorization.
  • the operation interface may include a third operation interface for reading data related to the user's personal attributes, so that the Internet application reads the data related to the user's personal attributes through the third operation interface. That is to say, since in the disclosed embodiment, the cloud app is run based on the Internet application management system, and when the user has authorized the Internet application management system, the cloud app does not need to perform additional authorization when using these data related to the user's personal attributes.
  • the personal database on the personal digital space may be a non-relational database system so that multiple different applications installed on the client of the Internet application management system can store files and user personal information in the personal digital space.
  • files and data table formats are created according to their respective needs, and the meanings of the fields in the data table are defined. In this way, users can also directly access files and personal data through the personal digital space.
  • the files and data tables associated with the target application in the personal database can be parsed, and the parsing results can be displayed.
  • the server side of the Internet application management system can parse the user's personal data generated in a variety of different Internet applications, so that the user can directly access the user's personal data through the personal digital space, rather than having to access it through a third-party application.
  • the user purchases and downloads a song while using a certain music application.
  • the user can only use the music application to open and play the song.
  • the user can save the song purchased and downloaded through the music application to the personal digital space, and can directly play the song through the music player software in the client of the Internet application management system. Even if the aforementioned music application is subsequently closed, the song that the user has purchased and downloaded can continue to be saved in his personal digital space and can still be played through the music player software provided by the Internet application management system.
  • the developer of the third-party application mentioned above can develop a photo cloud App, which includes two modules: the front-end (for example, it can include files such as HTML (Hyper Text Markup Language) and JS (JavaScript)) and the back-end (for example, Python code).
  • the front-end code is deployed in the web server of the application running environment, and the back-end code is run in the python running environment.
  • an icon about the photo cloud App will appear in the client interface of the Internet application management system, and the icon of the photo cloud App contains a link to the front-end (web server) of the cloud App.
  • the client of the Internet application management system may include a browser engine.
  • the browser engine When the user clicks on the cloud App icon, the browser engine is triggered to automatically load the cloud App front-end from the web server according to the link, and start the user interaction process of the cloud App, so that the user can obtain the photo cloud App service.
  • the user interface example may be as shown in FIG6 , in which the newly installed Photo Cloud App may be displayed, and the user selects an icon to open the Photo Cloud App link;
  • the browser engine of the client of the Internet application management system initiates an HTTP (Hypertext Transfer Protocol) request to the photo cloud App link, obtains the front end of the photo cloud App from the Web server of the server of the Internet application management system (such as Nginx server) and opens it, becoming a cloud App client;
  • HTTP Hypertext Transfer Protocol
  • the Photo Cloud App client When the user starts the photo function on the Photo Cloud App client, the Photo Cloud App client immediately calls the "camera shooting" function on the terminal device to take a photo of the user; note: mobile phones and other terminal devices usually require the app to obtain user authorization before starting the "camera shooting” function.
  • the Photo Cloud App client does not need user authorization, because the Internet application management system, as a super APP for the user's personal data manager, usually has the user's authorization and covers the Photo Cloud App.
  • the user selects and confirms the "Blessing Photo Production" template on the Photo Cloud App client and submits it to the Photo Cloud App server for photo synthesis;
  • the Photo Cloud App server completes the photo synthesis process in the user's personal digital space, displays the synthesized photos on the Photo Cloud App client, and connects to the personal database in the personal digital space to store the synthesized photos;
  • the user can open the client of the Internet application management system again at any time and enter the Photo Cloud App client to start the photo browsing function.
  • the Photo Cloud App client initiates a photo retrieval request to the Photo Cloud App server, and the Photo Cloud App server retrieves the composite photo from the personal database in the user's personal digital space and returns it to the Photo Cloud App client;
  • an Internet application management system can be provided, through which the Internet application management system can be installed in the cloud infrastructure.
  • the system creates a personal digital space for the user, and creates an Internet application operating environment and a personal database in the personal digital space; third-party applications can be "settled” in the Internet application management system in the form of cloud apps, and the server side of the third-party application can be installed in the user's personal digital space in the form of cloud APP servers.
  • the cloud APP server side of the third-party application can be run in the personal digital space to execute business logic and data processing logic, and the generated user personal data can be stored in the personal database on the personal digital space.
  • the personal data generated by the user in the process of using multiple different third-party applications can be saved in his own personal digital space, rather than scattered in the servers deployed by each third-party application, so that it is more convenient for the user to manage data. Even if the server of the third-party application is disconnected or shut down, personal data can continue to be stored through the personal digital space without causing data loss. In this way, since the server-side data processing logic of the third-party application also runs in the form of a cloud APP server in the user's personal digital space, and the third-party application no longer needs to manage the user's personal data, the computing cost and data storage cost are saved for the developer and maintainer of the third-party application, and for the user, the risk of data leakage is also reduced.
  • the database in the personal digital space can exist in the form of a non-relational database, so that the Internet application management system can parse the user's personal data generated in a variety of different third-party applications, including files and data tables, so that users can directly view their personal data through the personal digital space without relying on third-party applications.
  • This implementation method is also more convenient for sharing user personal data between different third-party applications.
  • This second embodiment corresponds to the above-mentioned second embodiment, and provides an Internet application management method, which is applied to an Internet application management system.
  • the method includes:
  • Step S801 creating a personal digital space for the user on the cloud infrastructure, and creating an Internet application operating environment and a personal database in the personal digital space;
  • Step S802 In response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, the server of the Internet application is installed in the personal digital space, a running instance is started in the Internet application running environment, and an access entry corresponding to the running instance is provided; and
  • Step S803 When the user accesses the Internet application through the access portal, the user's personal data is provided to the server of the Internet application so that the server of the Internet application processes the data and stores the generated user personal data in a personal database on the personal digital space.
  • the “Internet application” described in the above steps S802 and S803 refers to the cloud App in this article, also known as a third-party application.
  • the cloud APP server while accepting user business access requests and processing user personal data, also provides an API for accessing user personal data to the server of other third-party applications, so that the server of other third-party applications can query and obtain the user personal data stored in the personal digital space through the API.
  • the server side of the Internet application includes a data acquisition server side and a data processing server side, wherein the data acquisition server side is developed based on the application programming interface API provided by the Internet application management system, and the data processing server side runs on a remote server corresponding to the Internet application; when installing the cloud APP of the application, the data acquisition server side associated with the Internet application can be installed on the personal digital space corresponding to the user, so that the data acquisition server side of the Internet application can send the user's personal data stored in the personal digital space to the data processing server side of the Internet application for processing.
  • the personal data generated by the user when using the third-party application can still be saved in the personal digital space.
  • the third-party application's own server can also obtain this user's personal data, so that the third-party application can use this user's personal data to provide more personalized services to the user.
  • Example 3 Enhanced mode, enhancing the functions of existing applications
  • the third embodiment corresponds to the third embodiment, and provides an Internet application management method.
  • the method can be applied to an Internet application management system. Referring to FIG. 9 , the method may include:
  • Step S901 creating a personal digital space for the user on the cloud infrastructure, and creating a personal database in the personal digital space;
  • Step S902 In response to the user's request, the Internet application management system generates a personal database external access interface of the personal digital space, and the personal database external access interface is used for the Internet application to write the user's personal data after obtaining the user's authorization;
  • Step S903 during the process of user registration or use of Internet application, obtaining the user's personal database external access interface and obtaining user authorization, so that the Internet application initiates a data write request to the user's personal digital space through the personal database external access interface;
  • Step S904 in response to a data write request initiated by the target Internet application by calling the personal database external access interface, the user personal data generated in the target Internet application carried in the data write request is stored in the personal database on the personal digital space; wherein the personal database is a non-relational database system, so that when multiple different target Internet applications store the user personal data in the personal digital space, they can create files and/or create data table formats according to their respective needs, and define the meanings of the fields in the data table; and
  • Step S905 In response to a user's request to access the user's personal data related to the target Internet application stored in the personal digital space, parse the files and data tables associated with the target Internet application in the personal database and display the parsing results.
  • the “Internet application” described in the above steps S902 to S905 may refer to the cloud App in this article, also known as a third-party application.
  • This fourth embodiment also provides an Internet application management system from the perspective of the system.
  • the system may include a personal digital space management module, an application operating environment management module, and a database management module; wherein:
  • Personal digital space management module used to create and manage personal digital space for users on cloud infrastructure, and support users to manage their own personal digital space; application operating environment management module: used to create an Internet application operating environment in the user's personal digital space, and install the server side of the Internet application specified by the user in the user's corresponding personal digital space, so that the running instance of the server side of the Internet application can run in the Internet application operating environment of the personal digital space and only respond to the user's application access request; database management module: used to create and manage a personal database in the user's personal digital space, and when installing or running an Internet application for the first time in the personal digital space, create a corresponding application data storage space in the personal database for the corresponding Internet application, so that the data generated during the operation of the Internet application, including application data and user personal data, can be stored in the corresponding application data storage space.
  • application operating environment management module used to create an Internet application operating environment in the user's personal digital space, and install the server side of the Internet application specified by the user in the user's corresponding personal digital
  • the personal digital space management module can also be used to: respond to user requests, manage the server-side running instances of Internet applications in the user's personal digital space through the application running environment management module, including installing, starting, upgrading, and stopping the server-side running instances of Internet applications; and respond to user requests, manage the personal database in the user's personal digital space through the database management module, and the management includes: importing, exporting, and backing up the user's personal database, as well as adding, deleting, modifying, and querying personal data.
  • the application running environment management module may include: a hosting submodule, which is used to allocate corresponding server resources according to the application startup command of the personal digital space management module, and start the server-side running instance of the Internet application on the server resources; a routing submodule: used to route the application access request from the client to the corresponding server-side running instance of the Internet application as a unified external access interface, so that the corresponding server-side running instance of the Internet application responds to the user's business request and completes the corresponding business logic processing; a personal database operation interface submodule: used to enable the server-side of the Internet application to access the personal database on the personal digital space through the Internet application running environment, so as to operate the data in the personal database, and store the newly generated user personal data in the personal database.
  • a hosting submodule which is used to allocate corresponding server resources according to the application startup command of the personal digital space management module, and start the server-side running instance of the Internet application on the server resources
  • a routing submodule used to route the application access request from the
  • the application running environment management module may further include: a monitoring submodule: used to monitor the running status of the running instance of the server side of the Internet application to trigger a fault alarm or a response measure during fault recovery.
  • a monitoring submodule used to monitor the running status of the running instance of the server side of the Internet application to trigger a fault alarm or a response measure during fault recovery.
  • the database management module can be used to: route data access requests from users for adding, deleting, modifying and querying user personal data to the corresponding personal database and its corresponding application data storage space to complete the corresponding database operations; and accept instructions from the personal digital space management module (such as preset instructions) to perform data management operations such as data import, export, backup, addition, deletion, modification and query on the user's personal database.
  • the Internet application management system requests the user to obtain authorization to access sensitive resources and functions on the terminal device, covering all Internet applications installed on the Internet application management system.
  • the client accesses sensitive resources and functions on the terminal device, there is no need to request user authorization again.
  • the present disclosure also provides an electronic device, including a processor and a memory, wherein the memory stores computer program instructions that can be executed by the processor, and when the processor executes the computer program instructions, the steps of the method described above are implemented.
  • Fig. 11 is a schematic diagram of the system architecture of a personal cloud system according to some embodiments of the present disclosure. As shown in Fig. 11, the present disclosure further provides a personal cloud system, including the electronic device 1101, the personal digital space 1102 and the smart device 1103 corresponding to the Internet application as described above.
  • electronic devices can be mobile phones, tablets and other terminal devices that can install Internet applications.
  • Personal digital space is a personal cloud server.
  • the smart devices corresponding to Internet applications can be any independent smart devices managed and controlled by individuals, such as smart watches, smart door locks, smart cameras, etc., excluding traditional smart hardware devices such as mobile phones and tablets.
  • Electronic devices, personal digital spaces and smart devices corresponding to Internet applications can communicate based on personal virtual private networks.
  • the personal cloud system adopts a distributed architecture, and each user can have an independent personal digital space and connect smart devices and electronic devices through encrypted communication lines. This architecture ensures that all data processing and device management are carried out in a highly secure and private environment, and users have full control over their data.
  • This secure environment constitutes a user-exclusive "personal virtual private network" to ensure that each user has an independent virtual private network.
  • the Internet application corresponding to the smart device is a cloud APP, also known as “device controller software", which runs in the personal digital space and provides users with cloud services for smart devices, such as storage, remote control, data forwarding, remote management, etc. of data collected by smart devices.
  • the terminal device remotely controls or manages the smart device through the personal device controller software.
  • FIG 12 is a schematic diagram of the system architecture of a personal cloud system supporting a personal virtual private network according to some embodiments of the present disclosure.
  • the personal digital space i.e., the personal cloud server
  • the personal database includes not only a personal database, an application operating environment (including device controller software) and a personal digital space management module, but also a routing distribution module.
  • the main responsibility of the routing distribution module is to use its routing distribution function to build a personal virtual private network, ensure the secure data interaction between personal devices (i.e. the above-mentioned electronic devices), smart devices and personal digital space, and ensure the stable connection and accessibility between devices and between devices and personal digital space.
  • the functions of this module are as follows: 1. Connection management: responsible for the secure connection line between the personal digital space and the individual's various electronic devices and smart devices to ensure the security of data transmission; 2. Routing distribution: responsible for forwarding and distributing data between various electronic devices, smart devices and internal modules of the personal digital space to ensure that data can be smoothly transmitted from one device to another or more devices; 3.
  • Storage and log recording receiving data and operation information from smart devices and personal devices, and storing them in the personal database for archiving and subsequent retrieval; 4. Operation execution: receiving operation instructions from the device controller software, and executing corresponding connection establishment, data routing forwarding, storage and log recording and other functions.
  • Each user builds his or her own personal virtual private network (PVPN) through his or her own personal digital space, which is isolated from the personal virtual private networks of other users.
  • PVPN personal virtual private network
  • Smart device manufacturers provide supporting device controller software for their products (i.e. smart devices).
  • Electronic devices establish their own personal virtual private network for each user through personal digital space, connecting various electronic devices and smart devices to ensure the security of user personal data and communications.
  • the Internet application of the smart door lock does not rely on centralized cloud services, but is hosted in the user's personal digital space.
  • the user installs the server side of the Internet application of the smart door lock in their personal digital space, and achieves secure communication and operation through the user's personal virtual private network. This ensures that no data is stored or processed on a third-party cloud, eliminating the risk of backdoor access.
  • the video surveillance content captured by the smart camera is synchronously transmitted to the user's mobile phone and tablet computer through the routing distribution function of the routing distribution module, so that the monitoring screen can be displayed in real time on both devices.
  • the content will be stored in a personal database for later playback and retrieval.
  • the embodiment of the present application ensures the communication security during the operation and use of the user's personal data through the design of the above-mentioned personal cloud system, and solves the security issues of smart devices such as smart watches, smart cameras, and smart door locks.
  • the present disclosure also provides a computer-readable storage medium, in which computer program instructions are stored.
  • the processor is prompted to implement the steps of the method as described above.
  • an embodiment of the present application provides a computer program product, including a computer program.
  • the computer program product When the computer program product is executed by a processor, it prompts the processor to implement the steps of the method as described above.
  • an Internet application management system can be provided, through which a personal digital space can be created for a user on a cloud infrastructure, and an Internet application operating environment and a personal database can be created in the personal digital space; a third-party application can be "settled” in the Internet application management system in the form of a "cloud app” or the like, and the server side of the third-party application can be installed in the user's personal digital space, so that the server side of the third-party application becomes an application instance that can be run in the Internet application operating environment of the personal digital space and only serves the user.
  • the server side of the third-party application can be run in the personal digital space to execute business logic and data processing logic, and the generated user personal data can be stored in the personal database on the personal digital space.
  • the personal data generated by the user in the process of using multiple different third-party applications can be saved in his own personal digital space, rather than scattered in the servers deployed by each different third-party application, so that it is more convenient for the user to manage data, and even if the server of the third-party application is disconnected or shut down, the personal data can continue to be stored through the personal digital space without causing data loss.
  • the database in the personal digital space can exist in the form of a non-relational database, so that the Internet application management system can parse the user's personal data generated in a variety of different third-party applications, and then the user can directly view and manage his or her personal data through the personal digital space without relying on third-party applications.
  • This implementation method is also more convenient for sharing user personal data between different applications.
  • user-specific personal data can be used in the scheme described herein within the scope permitted by applicable laws and regulations, subject to the requirements of applicable laws and regulations of the country where the user is located (explicit consent from the user, effective notification to the user, etc.).

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

An Internet application management method and a personal cloud system. The method comprises: creating on a cloud infrastructure a personal digital space for a user, and creating in the personal digital space an Internet application running environment and a personal database; and in response to a request for installing an Internet application that is initiated by the user by means of a client of the Internet application management system, installing a server side of the Internet application in the personal digital space corresponding to the user, so as to run server-side service logic and data processing logic of the Internet application in the personal digital space during a process in which the user accesses the Internet application, and to store generated user personal data in the personal database in the personal digital space.

Description

互联网应用管理方法及个人云系统Internet application management method and personal cloud system

相关申请的交叉引用CROSS-REFERENCE TO RELATED APPLICATIONS

本申请要求于2023年11月28日提交的申请号为202311623444.6的中国专利申请的优先权,其全部内容通过引用并入本文。This application claims priority to Chinese patent application No. 202311623444.6 filed on November 28, 2023, the entire contents of which are incorporated herein by reference.

技术领域Technical Field

本公开涉及互联网应用技术领域,特别涉及互联网应用管理方法及个人云系统。The present disclosure relates to the field of Internet application technology, and in particular to an Internet application management method and a personal cloud system.

背景技术Background Art

互联网应用的管理和使用在当今社会中变得日益重要。相关技术中,每个互联网应用系统都有自己的服务器集群,用户只需要下载各个互联网应用的APP或通过浏览器等客户端即可以获得相应的互联网应用服务。由于通常都是由各个互联网开发商自己来开发和集中部署自己的应用系统,不需要用户参与,每个互联网应用系统之间几乎是完全独立,这在便利了互联网应用的开发和部署的同时,也导致了安全性和隐私保护等问题。随着互联网应用的普及,越来越多的用户个人数据散落在各个应用系统中,一旦互联网应用关闭运营、版本更新或服务中断时,用户的应用安全和用户个人数据安全将会面临严重威胁,甚至出现应用不再能打开、用户个人数据无法找回等情况。例如,用户在某应用网站中发布了很多篇原创文章,在现有的互联网应用逻辑下,这些文章提交给了该应用网站,这些文章可能会由该应用网站分发给很多人,但此过程用户个人无法进行有效控制和管理;如果该应用网站由于一些原因而关闭运营,这些文章可能会无法找回,其他用户也将无法查看该用户发布的这些文章。The management and use of Internet applications are becoming increasingly important in today's society. In related technologies, each Internet application system has its own server cluster, and users only need to download the APP of each Internet application or obtain the corresponding Internet application service through a browser or other client. Since each Internet developer usually develops and centrally deploys its own application system without user participation, each Internet application system is almost completely independent, which facilitates the development and deployment of Internet applications while also leading to security and privacy protection issues. With the popularization of Internet applications, more and more user personal data are scattered in various application systems. Once the Internet application is shut down, the version is updated, or the service is interrupted, the user's application security and user personal data security will face serious threats, and even the application can no longer be opened and the user's personal data cannot be retrieved. For example, a user publishes many original articles on an application website. Under the existing Internet application logic, these articles are submitted to the application website. These articles may be distributed to many people by the application website, but the user cannot effectively control and manage this process; if the application website is shut down for some reason, these articles may not be retrieved, and other users will not be able to view the articles published by the user.

因此,如何在享受互联网应用所带来的便利的同时,更有效地管理互联网应用和用户个人数据成为需要本领域技术人员解决的技术问题。Therefore, how to more effectively manage Internet applications and user personal data while enjoying the convenience brought by Internet applications has become a technical problem that needs to be solved by those skilled in the art.

发明内容Summary of the invention

本公开提供了一种互联网应用管理方法及个人云系统,由用户自己在互联网上部署和管理互联网应用,但仅服务于用户自己,这能够使得用户在享受互联网应用所带来的便利的同时,更有效地管理互联网应用及用户个人数据,即使互联网应用出现远端服务器断开或者关闭运营等情况,也不会造成数据丢失,降低数据泄漏风险。The present disclosure provides an Internet application management method and a personal cloud system, in which users deploy and manage Internet applications on the Internet, but only serve the users themselves. This enables users to manage Internet applications and user personal data more effectively while enjoying the convenience brought by Internet applications. Even if the remote server of the Internet application is disconnected or shut down, data loss will not occur, thereby reducing the risk of data leakage.

依据本公开第一方面,提供了一种互联网应用管理方法,所述方法应用于互联网应用管理系统,所述方法包括:在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建互联网应用运行环境以及个人数据库;以及响应于所述用户通过所述互联网应用管理系统的客户端发起的安装互联网应用的请求,将所述互联网应用的服务器端安装于所述用户对应的个人数字空间中,以便在所述用户访问所述互联网应用的过程中,在所述个人数字空间中运行所述互联网应用的服务器端的业务逻辑和数据处理逻辑,并将产生的用户个人数据存储到所述个人数字空间中的个人数据库中。According to a first aspect of the present disclosure, a method for managing an Internet application is provided, which is applied to an Internet application management system, and the method includes: creating a personal digital space for a user on a cloud infrastructure, and creating an Internet application running environment and a personal database in the personal digital space; and in response to a request for installing an Internet application initiated by the user through a client of the Internet application management system, installing a server side of the Internet application in the personal digital space corresponding to the user, so that during the process of the user accessing the Internet application, the business logic and data processing logic of the server side of the Internet application are run in the personal digital space, and the generated user personal data is stored in the personal database in the personal digital space.

依据本公开第二方面,提供了一种互联网应用管理方法,所述方法应用于互联网应用管理系统,所述方法包括:在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建互联网应用运行环境以及个人数据库;响应于用户通过所述互联网应用管理系统的客户端发起的安装互联网应用的请求,完成所述互联网应用的服务器端在所述个人数字空间中的安装、在互联网应用运行环境上启动运行实例,并提供所述运行实例对应的访问入口;以及在用户通过所述访问入口访问所述应用的过程中,将所述用户的个人数据提供给所述应用程序的服务端,以便由所述互联网应用的服务器端进行数据处理,并将产生的用户个人数据存储到所述个人数字空间上的个人数据库中。According to a second aspect of the present disclosure, a method for managing an Internet application is provided, which is applied to an Internet application management system, and the method includes: creating a personal digital space for a user on a cloud infrastructure, and creating an Internet application operating environment and a personal database in the personal digital space; in response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, completing the installation of the server side of the Internet application in the personal digital space, starting a running instance on the Internet application running environment, and providing an access portal corresponding to the running instance; and in the process of the user accessing the application through the access portal, providing the user's personal data to the server side of the application so that the server side of the Internet application performs data processing, and storing the generated user personal data in the personal database on the personal digital space.

依据本公开的第三方面,提供了一种数据管理方法,所述方法应用于互联网应用管理系统,所述方法包括:在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建个人数据库;响应于用户请求,所述互联网应用管理系统生成所述个人数字空间的个人 数据库外部访问接口,所述个人数据库外部访问接口用于互联网应用在获得用户授权后写入用户的个人数据;在所述用户注册或者使用所述互联网应用的过程中,获取所述个人数据库外部访问接口并获得用户授权,以使得所述互联网应用通过所述个人数据库外部访问接口向所述用户的个人数字空间发起数据写入请求;响应于目标互联网应用通过调用所述个人数据库外部访问接口发起的数据写入请求,将所述数据写入请求中携带的所述目标互联网应用中产生的所述用户个人数据存储到所述个人数字空间上的个人数据库中。所述个人数据库为非关系型数据库系统,以便多个不同的目标互联网应用在向所述个人数字空间存储所述用户个人数据时,按照各自的需求创建文件和/或创建数据表格式,并对数据表中的字段的含义进行定义;以及响应于用户发起的对所述个人数字空间中保存的与目标互联网应用相关的用户个人数据进行访问的请求,对所述个人数据库中与目标互联网应用关联的文件和数据表进行解析,并展示解析结果。According to a third aspect of the present disclosure, a data management method is provided, the method being applied to an Internet application management system, the method comprising: creating a personal digital space for a user on a cloud infrastructure, and creating a personal database in the personal digital space; in response to a user request, the Internet application management system generates a personal database for the personal digital space; The database external access interface is used for the Internet application to write the user's personal data after obtaining the user's authorization; in the process of the user registering or using the Internet application, the personal database external access interface is obtained and the user's authorization is obtained, so that the Internet application initiates a data write request to the user's personal digital space through the personal database external access interface; in response to the data write request initiated by the target Internet application by calling the personal database external access interface, the user's personal data generated in the target Internet application carried in the data write request is stored in the personal database on the personal digital space. The personal database is a non-relational database system, so that when multiple different target Internet applications store the user's personal data in the personal digital space, they create files and/or create data table formats according to their respective needs, and define the meaning of the fields in the data table; and in response to the user's request to access the user's personal data related to the target Internet application stored in the personal digital space, the files and data tables associated with the target Internet application in the personal database are parsed, and the parsing results are displayed.

依据本公开的四方面,提供了一种互联网应用管理系统,包括个人数字空间管理模块、应用运行环境管理模块、数据库管理模块。所述个人数字空间管理模块:用于在云基础设施上为用户创建并管理个人数字空间,并支持所述用户管理自己的个人数字空间。所述应用运行环境管理模块:用于在所述用户的个人数字空间中创建并管理互联网应用运行环境,将所述用户指定的互联网应用的服务器端安装于所述用户对应的个人数字空间中,以使得所述互联网应用的服务器端的运行实例在所述个人数字空间的互联网应用运行环境中运行、并仅响应所述用户的应用访问请求。所述数据库管理模块:用于在所述用户的个人数字空间中创建并管理个人数据库,在所述个人数字空间中安装或首次运行互联网应用时,在所述个人数据库中为对应的互联网应用创建相应的应用数据存储空间,以便将互联网应用运行过程中产生的数据包括应用数据和用户个人数据存储到对应的应用数据存储空间。According to the fourth aspect of the present disclosure, an Internet application management system is provided, including a personal digital space management module, an application running environment management module, and a database management module. The personal digital space management module is used to create and manage a personal digital space for a user on a cloud infrastructure, and to support the user in managing his own personal digital space. The application running environment management module is used to create and manage an Internet application running environment in the user's personal digital space, and to install the server side of the Internet application specified by the user in the personal digital space corresponding to the user, so that the running instance of the server side of the Internet application runs in the Internet application running environment of the personal digital space and only responds to the user's application access request. The database management module is used to create and manage a personal database in the user's personal digital space, and when an Internet application is installed or first run in the personal digital space, a corresponding application data storage space is created in the personal database for the corresponding Internet application, so that the data generated during the operation of the Internet application, including application data and user personal data, is stored in the corresponding application data storage space.

根据本公开的第五方面,提供了一种电子设备,包括处理器和存储器,所述存储器存储有能够被所述处理器执行的计算机程序指令,所述处理器执行所述计算机程序指令时,实现如上述第一方面至第三方面任一项所述的方法的步骤。According to a fifth aspect of the present disclosure, an electronic device is provided, comprising a processor and a memory, wherein the memory stores computer program instructions that can be executed by the processor, and when the processor executes the computer program instructions, the steps of the method described in any one of the first to third aspects above are implemented.

根据本公开的第六方面,提供了一种个人云系统,包括如上述第五方面所述的电子设备、个人数字空间和互联网应用对应的智能设备。According to a sixth aspect of the present disclosure, a personal cloud system is provided, comprising the electronic device, the personal digital space and the smart device corresponding to the Internet application as described in the fifth aspect above.

根据本公开的第七方面,提供了一种计算机可读存储介质,所述计算机可读存储介质中存储有计算机程序指令,所述计算机程序指令被处理器执行时,促使所述处理器实现如上述第一方面至第三方面任一项所述的方法的步骤。According to the seventh aspect of the present disclosure, a computer-readable storage medium is provided, in which computer program instructions are stored. When the computer program instructions are executed by a processor, the processor is prompted to implement the steps of the method described in any one of the first to third aspects above.

根据本公开的第八方面,提供了计算机程序产品,包括计算机程序,所述计算机程序产品被处理器执行时,促使所述处理器实现如上述第一方面至第三方面任一项所述的方法的步骤。According to an eighth aspect of the present disclosure, a computer program product is provided, including a computer program. When the computer program product is executed by a processor, it prompts the processor to implement the steps of the method described in any one of the first to third aspects above.

附图说明BRIEF DESCRIPTION OF THE DRAWINGS

为了更清楚地说明本公开实施例或相关技术中的技术方案,下面将对实施例中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本公开的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present disclosure or related technologies, the drawings required for use in the embodiments will be briefly introduced below. Obviously, the drawings described below are only some embodiments of the present disclosure. For ordinary technicians in this field, other drawings can be obtained based on these drawings without paying creative work.

图1是依据本公开一些实施例的互联网应用管理系统的第一系统架构的示意图;FIG1 is a schematic diagram of a first system architecture of an Internet application management system according to some embodiments of the present disclosure;

图2是依据本公开一些实施例的互联网应用架构的示意图;FIG2 is a schematic diagram of an Internet application architecture according to some embodiments of the present disclosure;

图3是依据本公开一些实施例的互联网应用管理系统的第二系统架构的示意图;3 is a schematic diagram of a second system architecture of an Internet application management system according to some embodiments of the present disclosure;

图4是依据本公开一些实施例的互联网应用管理系统的第三系统架构的示意图;4 is a schematic diagram of a third system architecture of an Internet application management system according to some embodiments of the present disclosure;

图5是依据本公开一些实施例的互联网应用管理方法的流程图;FIG5 is a flow chart of an Internet application management method according to some embodiments of the present disclosure;

图6是依据本公开一些实施例的互联网应用管理系统的客户端界面的示意图;6 is a schematic diagram of a client interface of an Internet application management system according to some embodiments of the present disclosure;

图7是图6中云APP的多端之间交互的一种流程示意图;FIG7 is a schematic diagram of a flow chart of the interaction between multiple terminals of the cloud APP in FIG6 ;

图8是依据本公开另一些实施例的互联网应用管理方法的流程图;FIG8 is a flow chart of an Internet application management method according to other embodiments of the present disclosure;

图9是依据本公开又一些实施例的互联网应用管理方法的流程图; 9 is a flow chart of an Internet application management method according to yet other embodiments of the present disclosure;

图10是图2中个人数字空间管理模块与应用运行环境管理模块的一种细节示意图。FIG. 10 is a detailed schematic diagram of the personal digital space management module and the application running environment management module in FIG. 2 .

图11是依据本公开一些实施例的个人云系统的系统架构的示意图。FIG. 11 is a schematic diagram of a system architecture of a personal cloud system according to some embodiments of the present disclosure.

图12是依据本公开一些实施例的支持个人虚拟专网的个人云系统的系统架构的示意图。FIG. 12 is a schematic diagram of a system architecture of a personal cloud system supporting a personal virtual private network according to some embodiments of the present disclosure.

具体实施方式DETAILED DESCRIPTION

下面将结合本公开实施例中的附图,对本公开实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本公开一部分实施例,而不是全部的实施例。基于本公开中的实施例,本领域普通技术人员所获得的所有其他实施例,都属于本公开保护的范围。The following will be combined with the drawings in the embodiments of the present disclosure to clearly and completely describe the technical solutions in the embodiments of the present disclosure. Obviously, the described embodiments are only part of the embodiments of the present disclosure, rather than all the embodiments. Based on the embodiments in the present disclosure, all other embodiments obtained by ordinary technicians in this field belong to the scope of protection of the present disclosure.

为了更好的理解依据本公开一些实施例的实施方案,下面首先对相关技术中互联网应用的架构体系进行简单介绍。这里,互联网应用是指通过互联网运行的应用,包括移动互联网应用、web应用、云应用等等。通常而言,一个互联网应用包括客户端以及服务器端两部分。客户端主要用于安装并运行于用户的手机等终端设备上,服务器端则运行于应用的开发方自行部署或者租用的服务器上。客户端主要用于与用户进行交互,包括前端页面的展示,接收用户的输入操作,以及对用户操作响应结果的展示等。在此期间涉及到的后台数据处理逻辑则由服务器端执行。在相关技术中,通常桌面应用由用户在自己的个人电脑上安装和使用,而互联网应用由应用开发方在互联网上部署和集中管理服务器,由用户下载安装该应用的移动APP或客户端才可以使用。在这种架构下,用户在使用这种应用的过程中产生的用户个人数据,例如,包括用户在应用中发布的信息,下载的数据等,都是保存在应用开发方部署或租用的服务器中。这就使得在应用开发方自行部署或租用的服务器发生中断,或者运营中止等情况下,用户个人数据将会面临丢失等风险。In order to better understand the implementation schemes according to some embodiments of the present disclosure, the following first briefly introduces the architecture system of Internet applications in the relevant technology. Here, Internet applications refer to applications that run through the Internet, including mobile Internet applications, web applications, cloud applications, etc. Generally speaking, an Internet application includes two parts: a client and a server. The client is mainly used to install and run on terminal devices such as users' mobile phones, while the server runs on a server deployed or rented by the developer of the application. The client is mainly used to interact with the user, including the display of the front-end page, receiving the user's input operation, and displaying the response results of the user's operation. The background data processing logic involved during this period is executed by the server. In the relevant technology, desktop applications are usually installed and used by users on their own personal computers, while Internet applications are deployed and centrally managed by the application developer on the Internet. The mobile APP or client that the user downloads and installs the application can be used. Under this architecture, the user's personal data generated by the user in the process of using this application, for example, including the information posted by the user in the application, the downloaded data, etc., are all stored in the server deployed or rented by the application developer. This means that if the server deployed or rented by the application developer is interrupted or its operation is terminated, the user's personal data will be at risk of being lost.

在一些实施例中,为了更好的管理各种互联网应用,进而使得用户个人数据得到更好的管理,提供了一种互联网应用管理系统。通过该互联网应用管理系统,可以在云基础设施上为用户创建用户个人专属的个人数字空间。在一些实施例中,个人数字空间可以理解为专属于每个用户的微型虚拟服务器,也可以称为个人云服务器,其可以充当个人云系统的基础平台,独立处理用户的数据存储、数据处理和远程连接功能。用户完全掌控个人云服务器中的数据,任何其他人都无法访问或干预该数据。在该个人数字空间中安装互联网应用,并且用户在使用这些互联网应用过程中产生的用户个人数据,都可以统一存储到该个人数字空间中。这样,即使在互联网应用出现中止运营、服务器中断等情况时,也不会造成用户个人数据丢失等情况,并且可以更好的起到保护用户个人数据隐私等作用。In some embodiments, in order to better manage various Internet applications and thus better manage user personal data, an Internet application management system is provided. Through the Internet application management system, a personal digital space exclusive to the user can be created for the user on the cloud infrastructure. In some embodiments, the personal digital space can be understood as a micro virtual server dedicated to each user, which can also be called a personal cloud server, which can serve as the basic platform of the personal cloud system and independently handle the user's data storage, data processing and remote connection functions. The user has full control over the data in the personal cloud server, and no one else can access or interfere with the data. Internet applications are installed in the personal digital space, and the user's personal data generated by the user in the process of using these Internet applications can be uniformly stored in the personal digital space. In this way, even if the Internet application is suspended or the server is interrupted, the user's personal data will not be lost, and it can better protect the privacy of the user's personal data.

为了达到上述目的,本公开实施例可以提供多种不同的实现方式,下面分别进行概述。In order to achieve the above objectives, the embodiments of the present disclosure may provide a variety of different implementation methods, which are summarized below.

方式一:独立工作模式。用户在使用互联网应用过程中产生的用户个人数据,统一存储在用户的个人数字空间中。互联网应用的业务逻辑和数据处理逻辑也可以运行在这个个人数字空间中。此时,这种个人数字空间可以部署在云基础设施的边缘计算节点上,通过边缘计算的方式快速响应用户的访问请求。这样,使得用户个人数据只需要存储在个人数字空间中,应用开发方可以完全不必存储和管理用户个人数据,只需要提供业务逻辑和数据处理逻辑并管理互联网应用内部的公共业务数据即可。对于互联网应用而言,不再需要维护用户个人数据,因此,也可以节省数据库管理成本,只需要专注于业务能力的开发及维护即可。Mode 1: Independent working mode. The personal data generated by users in the process of using Internet applications are uniformly stored in the user's personal digital space. The business logic and data processing logic of Internet applications can also run in this personal digital space. At this time, this personal digital space can be deployed on the edge computing nodes of the cloud infrastructure to quickly respond to user access requests through edge computing. In this way, user personal data only needs to be stored in the personal digital space, and the application developer does not need to store and manage user personal data at all. It only needs to provide business logic and data processing logic and manage the public business data within the Internet application. For Internet applications, there is no need to maintain user personal data, so it can also save database management costs, and only need to focus on the development and maintenance of business capabilities.

为了达到上述方式一的目的,如图1所示,本公开实施例中的互联网应用管理系统可以以“超级应用(App)”的形式存在,其他的互联网应用(相对于本公开实施例中的互联网应用管理系统对应的互联网应用而言,可以称为第三方应用)则可以以基于该“超级App”进行安装的“云App”等形式存在。也就是说,第三方应用的开发方可以基于依据本公开一些实施例的互联网应用管理系统的架构以及提供的接口等开发出云App,这种云App同样可以包括自己的客户端以及服务器端,以获取到依据本公开一些实施例的“超级App”提供的服务。每个用户安装的云APP的服务器端,仅服务于该用户自己。In order to achieve the purpose of the above-mentioned method 1, as shown in Figure 1, the Internet application management system in the embodiment of the present disclosure can exist in the form of a "super application (App)", and other Internet applications (relative to the Internet applications corresponding to the Internet application management system in the embodiment of the present disclosure, they can be called third-party applications) can exist in the form of "cloud apps" installed based on the "super app". In other words, the developer of the third-party application can develop a cloud app based on the architecture of the Internet application management system according to some embodiments of the present disclosure and the provided interface. This cloud app can also include its own client and server to obtain the services provided by the "super app" according to some embodiments of the present disclosure. The server side of the cloud APP installed by each user only serves the user himself.

在一些实施例中,如图2所示,上述“超级App”可以包括客户端以及服务器端。客户端作为运行在用户设备上的应用程序或用户界面,可以包括浏览器、移动终端上的APP、 专用程序等,负责连接服务器执行用户登录和用户的个人数字空间的管理等操作,包括云App的安装、启动、版本升级、停止、状态监控、已安装云App的查询等等。上述“超级App”的客户端还可以包括浏览器引擎模块,作为云App的前端运行环境。浏览器引擎模块可以封装客户端的能力和资源,包括用户信息、和服务器端的安全连接、终端硬件操作能力等,供云App前端的调用。基于用户隐私和数据安全的需要,相机、位置信息、通讯录、麦克风、网络连接、传感器等敏感资源和功能,通常要求应用程序获得用户授权后才能访问。由于云APP的客户端和服务器端完全受控于超级APP并且仅服务于用户个人,因此用户对超级APP的使用终端的敏感资源和功能的授权可以覆盖到云APP,从而当云APP访问终端设备的敏感资源和功能时,可以无需再次请求用户授权。In some embodiments, as shown in FIG2 , the above-mentioned “super app” may include a client and a server. The client is an application or user interface running on a user device, which may include a browser, an APP on a mobile terminal, Special programs, etc., are responsible for connecting to the server to perform operations such as user login and management of the user's personal digital space, including installation, startup, version upgrade, stop, status monitoring, query of installed cloud apps, etc. of cloud apps. The client of the above-mentioned "super app" can also include a browser engine module as the front-end operating environment of the cloud app. The browser engine module can encapsulate the capabilities and resources of the client, including user information, secure connection with the server, terminal hardware operation capabilities, etc., for the call of the cloud app front end. Based on the needs of user privacy and data security, sensitive resources and functions such as cameras, location information, address books, microphones, network connections, sensors, etc., usually require applications to obtain user authorization before access. Since the client and server of the cloud app are completely controlled by the super app and only serve individual users, the user's authorization for the sensitive resources and functions of the terminal used by the super app can be covered by the cloud app, so that when the cloud app accesses the sensitive resources and functions of the terminal device, it does not need to request user authorization again.

上述“超级App”的服务器端可以提供个人数字空间管理模块、应用运行环境管理模块、数据库管理模块、以及注册鉴权模块等。应用运行环境管理模块为云App提供应用运行环境,对于云App运行环境中正在运行的云App,可以响应云App的客户端的访问请求,执行相应的业务功能。在一些实施例中,在用户需要安装某个云App时,服务器端可以通过个人数字空间管理模块将云App的服务器端安装于用户的个人数字空间上,并通过应用运行环境管理模块在应用运行环境中启动该云APP的服务器端的运行实例。在一些实施例中,应用运行环境可以封装服务器的资源和能力,供云App包括云App前端和/或后端调用,例如,包括与客户端的安全连接、服务器的本地存储能力、计算能力和网络能力等等。在一些实施例中,通过应用运行环境提供的数据库访问接口,云APP的运行实例可以进行数据库操作,存取数据包括应用数据和云App产生的用户个人数据。The server side of the above-mentioned "super app" can provide a personal digital space management module, an application operating environment management module, a database management module, and a registration authentication module. The application operating environment management module provides an application operating environment for the cloud app. For the cloud app running in the cloud app operating environment, it can respond to the access request of the cloud app client and perform the corresponding business functions. In some embodiments, when a user needs to install a cloud app, the server side can install the server side of the cloud app on the user's personal digital space through the personal digital space management module, and start the running instance of the server side of the cloud app in the application operating environment through the application operating environment management module. In some embodiments, the application operating environment can encapsulate the resources and capabilities of the server for the cloud app to call, including the cloud app front end and/or back end, for example, including a secure connection with the client, the server's local storage capacity, computing capacity and network capacity, etc. In some embodiments, through the database access interface provided by the application operating environment, the running instance of the cloud app can perform database operations, and the access data includes application data and user personal data generated by the cloud app.

用户在注册并安装了本公开实施例中的“超级App”之后,可以登录系统,在“超级App”的客户端界面中访问“应用商店”功能,查看到系统提供的可安装的云App列表,然后从中选择自己需要的云App进行安装。与相关技术中的“小程序”不同的,如图1所示,在本公开实施例中,用户通过上述超级“App”发起对某个云App的安装请求后,会将该云App的服务器端程序安装到用户的个人数字空间中。也即,从用户角度而言,用户可以将云App的服务器端程序安装到自己的个人数字空间中。这样,云App运行过程中,其服务器端程序会在个人数字空间提供的应用运行环境中运行,并在个人数字空间中执行数据处理逻辑,也仅服务于该用户自己。相应的,产生的用户个人数据会直接存储在用户的个人数字空间上创建的数据库中。After registering and installing the "super app" in the embodiment of the present disclosure, the user can log in to the system, access the "app store" function in the client interface of the "super app", view the list of cloud apps that can be installed provided by the system, and then select the cloud app they need to install. Different from the "mini program" in the related art, as shown in Figure 1, in the embodiment of the present disclosure, after the user initiates an installation request for a cloud app through the above-mentioned super "app", the server-side program of the cloud app will be installed in the user's personal digital space. That is, from the user's perspective, the user can install the server-side program of the cloud app in his or her personal digital space. In this way, during the operation of the cloud app, its server-side program will run in the application operating environment provided by the personal digital space, and execute data processing logic in the personal digital space, and only serve the user himself or herself. Correspondingly, the generated user personal data will be directly stored in the database created on the user's personal digital space.

需要说明的是,在本公开实施例中,由于个人数字空间需要适应很多不同互联网应用的用户个人数据存储需求,包括各种各样的文件类型和数据表。因此,个人数字空间中的个人数据库适合采用非关系型(NoSQL)数据库的形式来实现。这样,不同的互联网应用在向个人数字空间中的个人数据库中存储用户个人数据时,可以按照各自的需求进行文件的创建和数据表的创建,并自行对数据表的字段的含义进行定义,而不需要严格按照某种数据表的类型、字段含义等进行定义。这种方式也使得本公开实施例中的数据库能够解析多个不同互联网应用存储到个人数字空间中的用户个人数据,包括各种文件和数据表。用户可以通过登录个人数字空间实现对多个不同互联网应用中的用户个人数据的查看等管理操作。通过采用这种非关系型数据库进行用户个人数据保存的方式,也使得用户个人数据能够在不同应用之间实现共享。在一些实施例中,对于用户属性相关的数据,可以仅保存一份,多个第三方应用共享这一份数据。对于某个互联网应用中产生的用户个人数据,也可以作为公共数据提供给其他互联网应用使用,例如,类似于发票类的数据等等。It should be noted that in the disclosed embodiment, since the personal digital space needs to adapt to the user personal data storage requirements of many different Internet applications, including various file types and data tables. Therefore, the personal database in the personal digital space is suitable for implementation in the form of a non-relational (NoSQL) database. In this way, when different Internet applications store user personal data in the personal database in the personal digital space, they can create files and data tables according to their own needs, and define the meaning of the fields of the data table by themselves, without strictly defining them according to the type of a certain data table, the meaning of the field, etc. This method also enables the database in the disclosed embodiment to parse the user personal data stored in the personal digital space by multiple different Internet applications, including various files and data tables. Users can log in to the personal digital space to achieve management operations such as viewing the user personal data in multiple different Internet applications. By adopting this non-relational database to save user personal data, user personal data can also be shared between different applications. In some embodiments, for data related to user attributes, only one copy can be saved, and multiple third-party applications share this copy of data. For user personal data generated in a certain Internet application, it can also be provided to other Internet applications as public data, for example, data similar to invoices, etc.

换言之,在上述方式下,可以为用户在云基础设施上创建包含了个人数据库和互联网应用的服务器端的运行实例的个人数字空间。该个人数字空间可以响应用户请求,在该个人数字空间上安装1个或多个互联网应用。这些互联网应用仅服务于用户自己。该个人数字空间可以响应用户请求,启动已安装的互联网应用的服务器端的运行实例,即启动互联网应用服务。用户可以使用客户端通过网络访问个人数字空间上互联网应用的服务器端的运行实例(即访问互联网应用服务)。互联网应用的服务器端的运行实例响应用户的访问请求,以提供相应的互联网应用服务。用户访问互联网应用(云APP)的服务器端的运行实例所产生的 用户个人数据存储在该个人数字空间的个人数据库中,互联网应用(云APP)的服务器端的运行实例所使用的用户个人数据,也可以全部或部分来源于该个人数字空间的个人数据库。In other words, in the above manner, a personal digital space including a personal database and a server-side running instance of an Internet application can be created for the user on the cloud infrastructure. The personal digital space can respond to user requests and install one or more Internet applications on the personal digital space. These Internet applications only serve the user himself. The personal digital space can respond to user requests and start the server-side running instance of the installed Internet application, that is, start the Internet application service. The user can use the client to access the server-side running instance of the Internet application on the personal digital space through the network (that is, access the Internet application service). The server-side running instance of the Internet application responds to the user's access request to provide the corresponding Internet application service. The information generated by the user accessing the server-side running instance of the Internet application (cloud APP) The user's personal data is stored in the personal database of the personal digital space. The user's personal data used by the running instance of the server side of the Internet application (cloud APP) may also be derived in whole or in part from the personal database of the personal digital space.

个人数字空间,是指云基础设施上的服务于特定用户的一组云存储、云计算等资源,用来支持该用户的个人数据库的运行、云APP的服务器端程序的运行实例等等。每个个人数字空间可以由1台或多台虚拟服务器或物理服务器组成。每个用户的个人数字空间之间的资源相互隔离。A personal digital space refers to a set of cloud storage, cloud computing and other resources on the cloud infrastructure that serve a specific user, and is used to support the operation of the user's personal database, the running instance of the server-side program of the cloud APP, etc. Each personal digital space can be composed of one or more virtual servers or physical servers. The resources between each user's personal digital space are isolated from each other.

客户端是指:运行在用户设备上的应用程序或用户界面,例如浏览器、移动终端上的APP、专用程序等,负责用户的数据输入、从应用程序接收信息、以及本地数据存储等功能。The client refers to: an application or user interface running on the user's device, such as a browser, an APP on a mobile terminal, a dedicated program, etc., which is responsible for user data input, receiving information from the application, and local data storage.

互联网应用是指:安装在个人数字空间、支持web应用和/或移动应用的软件程序。Internet applications are software programs installed in a personal digital space that support web applications and/or mobile applications.

互联网应用的服务器端程序包括但不限于前端程序、后端程序、以及数据库等。The server-side programs of Internet applications include but are not limited to front-end programs, back-end programs, and databases.

方式二:该方式二中,依据本公开一些实施例的互联网应用管理系统仍然可以为第三方应用的开发方提供用于开发的API等,第三方应用的开发方可以利用这些API开发云App。但是,不需要将第三方应用的服务器端的数据处理逻辑放到个人数字空间上运行,而是在将用户个人数据保存到个人数字空间上之后,由本公开实施例中的互联网应用管理系统向第三方应用的服务器端提供这些个人数据,使得第三方应用的服务器端仍然可以获得用户个人数据,并在其自己部署的服务器中执行业务逻辑和数据处理逻辑。Method 2: In this method 2, the Internet application management system according to some embodiments of the present disclosure can still provide APIs for development to the developers of third-party applications, and the developers of third-party applications can use these APIs to develop cloud apps. However, it is not necessary to put the data processing logic of the server side of the third-party application on the personal digital space for operation. Instead, after the user's personal data is saved on the personal digital space, the Internet application management system in the embodiments of the present disclosure provides these personal data to the server side of the third-party application, so that the server side of the third-party application can still obtain the user's personal data and execute business logic and data processing logic in its own deployed server.

在方式二的其中一种方式下(协作模式),第三方应用的开发方利用互联网应用管理系统提供的API开发云APP,以和其他第三方应用的服务器端协同工作。云APP的服务器端在接受用户的业务访问请求、处理用户个人数据的同时,也给其他第三方应用的服务器端提供个人数据访问的API。这样,其他第三方应用的服务器端可以通过这种API,从个人数字空间获取与云APP相关的用户个人数据,例如,收集该用户使用云APP的使用情况的统计数据。In one of the two modes (collaborative mode), the developer of a third-party application develops a cloud APP using the API provided by the Internet application management system to work in collaboration with the server side of other third-party applications. While accepting the user's service access request and processing the user's personal data, the server side of the cloud APP also provides the server side of other third-party applications with an API for accessing personal data. In this way, the server side of other third-party applications can obtain the user's personal data related to the cloud APP from the personal digital space through this API, for example, collect statistical data on the user's use of the cloud APP.

在方式二的另一种方式下(代理模式),如图3所示,第三方应用的开发方还可以利用互联网应用管理系统提供的API开发云App的服务器端,这种服务器端也可以安装于个人数字空间上,主要用于获取并发送用户个人数据,但不需要进行数据处理。因此,此时应用的服务器端可以分为两部分,一部分是运行于用户个人数字空间上的云App服务器端,可以称为数据获取服务器端,另一部分则是运行于应用开发方自行部署的服务器(可以是独立服务器或者也可以是租用的云服务器等)上,可以称为数据处理服务器端。用户在通过本公开实施例中提供的互联网应用管理系统安装某个云App时,就可以通过该互联网应用管理系统的客户端提供该云App的访问入口,包括图标等。在一些实施例中,可以将云App的服务器端也即数据获取服务器端安装于用户的个人数字空间上。当用户通过互联网应用管理系统的客户端发起对该云App的访问,并产生相关的用户个人数据(例如,包括用户发布的信息等)时,就可以首先保存在该用户的个人数字空间上。该云App对应的运行在个人数字空间上的数据获取服务器端就可以将这种用户个人数据,发送到对应的数据处理服务器端,从而可以在第三方应用自行部署的服务器上实现对用户个人数据的处理。In another mode of the second mode (agent mode), as shown in FIG3 , the developer of the third-party application can also use the API provided by the Internet application management system to develop the server side of the cloud App. This server side can also be installed on the personal digital space, mainly used to obtain and send the user's personal data, but no data processing is required. Therefore, at this time, the server side of the application can be divided into two parts, one part is the cloud App server side running on the user's personal digital space, which can be called the data acquisition server side, and the other part is running on the server deployed by the application developer (which can be an independent server or a rented cloud server, etc.), which can be called the data processing server side. When a user installs a cloud App through the Internet application management system provided in the embodiment of the present disclosure, the access entrance of the cloud App can be provided through the client of the Internet application management system, including icons, etc. In some embodiments, the server side of the cloud App, that is, the data acquisition server side, can be installed on the user's personal digital space. When the user initiates access to the cloud App through the client of the Internet application management system and generates relevant user personal data (for example, including information published by the user, etc.), it can be first saved in the user's personal digital space. The data acquisition server corresponding to the cloud App running in the personal digital space can send the user's personal data to the corresponding data processing server, so that the user's personal data can be processed on the server deployed by the third-party application.

方式三(增强模式,增强当前应用的功能):上述方式一、二中,可能会涉及到对现有的应用架构进行比较大规模的改造,为了更便于实现与现有的应用架构体系的兼容,同时达到对用户个人数据进行统一管理的目的,还可以采用由第三方应用将产生的用户个人数据发送到个人数字空间进行存储的方案。也就是说,在用户申请了个人数字空间之后,互联网应用管理系统可以生成个人数字空间的个人数据库外部访问API,用于第三方应用在获得用户授权后通过该API写入用户的个人数据。第三方应用在用户注册或使用该应用的过程中,收集用户的个人数据库外部访问API并获得用户授权。这样,如图4所示,第三方应用在运行过程中如果产生用户个人数据,则可以根据该个人数字空间访问API,调用数据写入接口,将用户个人数据写入到个人数字空间中。Method 3 (enhanced mode, enhancing the functions of the current application): The above methods 1 and 2 may involve relatively large-scale transformation of the existing application architecture. In order to facilitate compatibility with the existing application architecture system and achieve the purpose of unified management of user personal data, a solution can also be adopted in which the third-party application sends the generated user personal data to the personal digital space for storage. That is to say, after the user applies for the personal digital space, the Internet application management system can generate a personal database external access API for the personal digital space, which is used for the third-party application to write the user's personal data through the API after obtaining the user's authorization. During the process of user registration or use of the application, the third-party application collects the user's personal database external access API and obtains the user's authorization. In this way, as shown in Figure 4, if the third-party application generates user personal data during operation, it can call the data write interface according to the personal digital space access API to write the user's personal data into the personal digital space.

可见,在该方式三中,第三方应用可以继续按照传统的架构为用户提供服务,不同的是,在用户配置了个人数字空间地址属性的情况下,将第三方应用中产生的用户个人数据转存到个人数字空间。在这种方式下,第三方应用还可以继续实现对用户个人数据的汇集及存 储。在一些实施例中,用户可以通过其个人数字空间查看多个不同第三方应用中产生的用户个人数据,即使第三方应用出现关闭运营等情况,也不会影响到这些用户个人数据。It can be seen that in this method three, third-party applications can continue to provide services to users according to the traditional architecture. The difference is that when the user configures the personal digital space address attribute, the user's personal data generated by the third-party application is transferred to the personal digital space. In this way, the third-party application can also continue to collect and store the user's personal data. In some embodiments, a user can view the user's personal data generated in multiple different third-party applications through his personal digital space, and even if the third-party application is shut down, it will not affect the user's personal data.

在该方式三下,个人数字空间中的个人数据库仍然可以采用非关系型数据库的形式实现,各个不同的第三方应用在向个人数字空间中的个人数据库中存储用户个人数据时,可以按照各自的需求进行文件的创建和/或数据表的创建,并自行对字段的含义进行定义。在一些实施例中,在获得用户授权的情况下,某个第三方应用也可以通过个人数据库外部访问API访问多个不同第三方应用中的用户个人数据。In this third mode, the personal database in the personal digital space can still be implemented in the form of a non-relational database. When storing the user's personal data in the personal database in the personal digital space, different third-party applications can create files and/or data tables according to their own needs and define the meaning of the fields by themselves. In some embodiments, with the user's authorization, a third-party application can also access the user's personal data in multiple different third-party applications through the personal database external access API.

这里需要说明的是,相关技术中会存在类似于“云备份”或者“云存储”的概念或者相关技术,这些技术与本公开实施例所提供方案的区别在于,在“云备份”或者“云存储”的方案中,主要是由第三方应用将用户个人数据以文件的形式备份到某个云存储空间中,并且会按照第三方应用内部定义的数据格式标准进行数据存储,这种数据只有第三方应用本身才能够解析,用户只有使用第三方应用才能够查看这些用户个人数据,无法直接在云存储空间中查看这些用户个人数据(因为云存储空间产品无法解析这些数据,用户看到的只能是一些二进制的数据文件)。因此,这种“云备份”或者“云存储”的方案通常会用于更换硬件设备等场景中。在一些实施例中,用户需要换一部新的手机,则可以对原来手机中第三方应用中的个人数据进行云备份,在新的手机上安装第三方应用后,再将云备份的数据拉取过来,从而可以在新手机上恢复原手机上的功能。It should be noted here that there are concepts or related technologies similar to "cloud backup" or "cloud storage" in the related technologies. The difference between these technologies and the solutions provided by the embodiments of the present disclosure is that in the solutions of "cloud backup" or "cloud storage", the user's personal data is mainly backed up in a cloud storage space in the form of files by a third-party application, and the data is stored in accordance with the data format standard defined internally by the third-party application. This data can only be parsed by the third-party application itself, and the user can only view these user personal data by using the third-party application, and cannot directly view these user personal data in the cloud storage space (because the cloud storage space product cannot parse these data, and the user can only see some binary data files). Therefore, this "cloud backup" or "cloud storage" solution is usually used in scenarios such as replacing hardware devices. In some embodiments, if the user needs to change to a new mobile phone, the personal data in the third-party application in the original mobile phone can be backed up in the cloud. After installing the third-party application on the new mobile phone, the cloud backup data can be pulled over, so that the functions on the original mobile phone can be restored on the new mobile phone.

而在本公开实施例的上述方式三中,多个不同的第三方应用可以将其中产生的用户个人数据存储到用户的个人数字空间中,并且,个人数字空间中的个人数据库可以是非关系型数据库,使得各个第三方应用可以按照非关系型数据库的特点,自行定义数据表的数据类型、字段含义等,并且,个人数字空间可以解析各个不同第三方应用存储到个人数字空间中的数据,因此,用户可以直接通过个人数字空间查看多个不同第三方应用中的用户个人数据。In the above-mentioned method three of the embodiment of the present disclosure, multiple different third-party applications can store the user personal data generated therein into the user's personal digital space, and the personal database in the personal digital space can be a non-relational database, so that each third-party application can define the data type, field meaning, etc. of the data table according to the characteristics of the non-relational database, and the personal digital space can parse the data stored in the personal digital space by different third-party applications. Therefore, the user can directly view the user personal data in multiple different third-party applications through the personal digital space.

下面对本公开实施例要求保护的技术方案进行介绍。The following is an introduction to the technical solutions claimed in the embodiments of the present disclosure.

实施例一Embodiment 1

该实施例一是与前述方式一相对应的,提供了一种互联网应用管理方法,该方法应用于依据本公开一些实施例的互联网应用管理系统,参见图5,所述方法包括步骤S501-步骤S502。This first embodiment corresponds to the aforementioned first embodiment and provides an Internet application management method, which is applied to an Internet application management system according to some embodiments of the present disclosure. Referring to FIG. 5 , the method includes steps S501 and S502.

在步骤S501:在云基础设施上为用户创建个人数字空间,并在个人数字空间中创建互联网应用运行环境以及个人数据库。In step S501: a personal digital space is created for the user on the cloud infrastructure, and an Internet application operating environment and a personal database are created in the personal digital space.

用户在使用依据本公开一些实施例的互联网应用管理系统的过程中,可以在互联网应用管理系统中注册开户,之后,该互联网应用管理系统就可以为用户创建用户账号及其个人数字空间,包括该个人数字空间的个人数据库外部访问API等,用户登录账号即可以访问自己的个人数字空间。When using the Internet application management system according to some embodiments of the present disclosure, the user can register and open an account in the Internet application management system. After that, the Internet application management system can create a user account and its personal digital space for the user, including an external access API for the personal database of the personal digital space, etc. The user can access his or her personal digital space by logging into the account.

在一些实施例中,互联网应用管理系统还可以在个人数字空间中创建互联网应用运行环境以及个人数据库。其中个人数据库用于存储用户在使用第三方应用过程中产生的用户个人数据,也就是说,个人数字空间的个人数据库中仅保存用户个人在使用第三方应用过程中产生的用户个人数据,不会涉及到其他用户的数据。在一些实施例中,通过在该个人数字空间中创建互联网应用运行环境,可以使得第三方应用的服务器端业务逻辑和数据处理逻辑能够在个人数字空间上运行。In some embodiments, the Internet application management system can also create an Internet application operating environment and a personal database in the personal digital space. The personal database is used to store the user's personal data generated in the process of using the third-party application. That is to say, the personal database in the personal digital space only stores the user's personal data generated in the process of using the third-party application, and does not involve other users' data. In some embodiments, by creating an Internet application operating environment in the personal digital space, the server-side business logic and data processing logic of the third-party application can be run in the personal digital space.

在步骤S502:响应于用户通过互联网应用管理系统的客户端发起的安装互联网应用的请求,将互联网应用的服务器端安装于用户对应的个人数字空间中,以便在用户访问互联网应用的过程中,在个人数字空间中运行互联网应用的服务器端的业务逻辑和数据处理逻辑,并将产生的用户个人数据存储到个人数字空间上的个人数据库中。In step S502: in response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, the server side of the Internet application is installed in the personal digital space corresponding to the user, so that during the user's access to the Internet application, the business logic and data processing logic of the server side of the Internet application are run in the personal digital space, and the generated user personal data is stored in a personal database on the personal digital space.

如前文所述,在方式一中,第三方应用的开发方可以按照本公开实施例中互联网应用管理系统提供的API等,开发云App,相应的,用户就可以通过互联网应用管理系统的客户端查看到可以安装的云App列表,并从中选择需要安装的云App进行安装。上述步骤S502中所述的“互联网应用”就可以是指本文中所述的云App,也称第三方应用。 As described above, in method 1, the developer of a third-party application can develop a cloud app according to the API provided by the Internet application management system in the embodiment of the present disclosure, and accordingly, the user can view the list of cloud apps that can be installed through the client of the Internet application management system, and select the cloud app to be installed from them for installation. The "Internet application" described in the above step S502 may refer to the cloud app described in this article, also known as a third-party application.

也就是说,在本公开实施例中,第三方应用的开发方可以另行基于上述互联网应用管理系统进行云App开发。云App可以包括客户端以及服务器端,服务器端中可以包括业务逻辑和数据处理逻辑,在一些实施例中,对于即时通信类的应用,其云App的服务器端中的数据处理逻辑可以包括:哪些群组的哪些关键词对应于哪些访问权限、阅读权限、评论权限等规则,等等。That is to say, in the embodiments of the present disclosure, the developer of the third-party application can develop the cloud app based on the above-mentioned Internet application management system. The cloud app can include a client and a server, and the server can include business logic and data processing logic. In some embodiments, for instant messaging applications, the data processing logic in the server of the cloud app can include: which keywords of which groups correspond to which access rights, reading rights, comment rights and other rules, etc.

在用户通过互联网应用管理系统的客户端选择安装某个云App时,互联网应用管理系统的服务器端可以将该云App的服务器端安装在用户的个人数字空间中。其他云App也都可以进行类似处理。When a user chooses to install a cloud app through the client of the Internet application management system, the server of the Internet application management system can install the server of the cloud app in the user's personal digital space. Other cloud apps can also be processed similarly.

在完成对云App的安装后,用户可以与这种云App进行交互,使用云App提供的功能或者服务。在一些实施例中,对于通过本公开实施例中的互联网应用管理系统安装的云App,还可以在互联网应用管理系统的客户端界面中生成关于该云App的访问入口,在一些实施例中,用户可以在应用管理系统的客户端界面中查看到已安装云App的图标,这种图标包含指向该云APP的服务器端的链接,即可作为云App的访问入口。在一些实施例中,如图6所示,互联网应用管理系统的客户端界面中可以包括登录区,已安装云App列表展示区。在一些实施例中,还可以包括操作区。在已安装云App展示区,可以展示出已安装的各个云App的图标,用户可以点击这些图标发起对其中某个云App的访问。在一些实施例中,关于云App的访问入口,还可以有其他的实现方式,上述通过互联网应用管理系统的客户端界面提供图标的方式只是其中一种示例,这里不应视为对本公开保护范围的限制。After completing the installation of the cloud app, the user can interact with the cloud app and use the functions or services provided by the cloud app. In some embodiments, for the cloud app installed through the Internet application management system in the embodiment of the present disclosure, an access entry for the cloud app can also be generated in the client interface of the Internet application management system. In some embodiments, the user can view the icon of the installed cloud app in the client interface of the application management system. This icon contains a link to the server side of the cloud app, which can be used as the access entry of the cloud app. In some embodiments, as shown in Figure 6, the client interface of the Internet application management system may include a login area and an installed cloud app list display area. In some embodiments, an operation area may also be included. In the installed cloud app display area, icons of each installed cloud app can be displayed, and users can click on these icons to initiate access to one of the cloud apps. In some embodiments, there may be other implementation methods for the access entry of the cloud app. The above-mentioned method of providing icons through the client interface of the Internet application management system is only one example, and it should not be regarded as a limitation on the scope of protection of the present disclosure.

在将云App的服务器端安装到用户的个人数字空间时,互联网应用管理系统的服务器端还可以记录下云App的服务器端的运行实例在个人数字空间上的安装地址等信息,这样,在用户访问云App的过程中,可以根据云App的服务器端在所述个人数字空间中的访问地址,将来自客户端的云APP访问请求路由到该云App服务器端的运行实例,以便由云App服务器端对所述访问请求进行处理。When the server side of the cloud App is installed in the user's personal digital space, the server side of the Internet application management system can also record information such as the installation address of the running instance of the server side of the cloud App in the personal digital space. In this way, when the user accesses the cloud App, the cloud APP access request from the client can be routed to the running instance of the cloud App server side according to the access address of the cloud App server side in the personal digital space, so that the cloud App server side can process the access request.

在一些实施例中,互联网应用管理系统的服务器端还可以提供用于验证用户身份的用户鉴权服务,以便在用户登录后执行对互联网应用的管理和/或访问操作。此外,还可以提供用于对已安装互联网应用进行管理的服务,所述管理包括版本升级、停用、状态监控、查询以及卸载等等。In some embodiments, the server side of the Internet application management system may also provide a user authentication service for verifying the identity of the user, so as to perform management and/or access operations on Internet applications after the user logs in. In addition, services for managing installed Internet applications may also be provided, including version upgrades, deactivation, status monitoring, query, and uninstallation, etc.

在一些实施例中,互联网应用管理系统的服务器端还可以提供用于对个人数据库中存储的用户个人数据进行操作的操作接口,以便互联网应用通过操作接口对用户个人数据进行操作。个人数字空间的个人数据库存储的用户个人数据包括互联网应用中产生的且为互联网应用所独有的数据。此时,操作接口可以包括用于将互联网应用产生的且为互联网应用所独有的数据写入个人数据库的第一操作接口,以便互联网应用通过该第一操作接口将互联网应用产生的且为互联网应用所独有的数据写入到个人数字空间的个人数据库中进行存储。In some embodiments, the server side of the Internet application management system may also provide an operation interface for operating the user's personal data stored in the personal database, so that the Internet application can operate the user's personal data through the operation interface. The user's personal data stored in the personal database of the personal digital space includes data generated in the Internet application and unique to the Internet application. At this time, the operation interface may include a first operation interface for writing the data generated by the Internet application and unique to the Internet application into the personal database, so that the Internet application writes the data generated by the Internet application and unique to the Internet application into the personal database of the personal digital space for storage through the first operation interface.

在一些实施例中,个人数字空间的个人数据库中存储的用户个人数据还可以包括其他互联网应用中产生的与用户相关的、且可在多个应用之间共用的公共数据;此时,操作接口可以包括用于读取公共数据的第二操作接口,以便互联网应用通过该第二操作接口获取到其他互联网应用中产生的与用户相关的公共数据。In some embodiments, the user's personal data stored in the personal database of the personal digital space may also include public data related to the user generated in other Internet applications and shareable among multiple applications; in this case, the operation interface may include a second operation interface for reading public data, so that the Internet application can obtain the public data related to the user generated in other Internet applications through the second operation interface.

在一些实施例中,个人数字空间的个人数据库中存储的用户个人数据还可以包括:与用户个人属性相关的数据,例如,包括用户的性别、年龄、职业等等,在本公开实施例中,这种与用户个人属性相关的数据可以为已安装到个人数字空间中的多个互联网应用在无需用户授权状态下共享使用的数据。此时,操作接口可以包括用于对与用户个人属性相关的数据进行读取的第三操作接口,以便互联网应用通过该第三操作接口读取与用户个人属性相关的数据。也就是说,由于本公开实施例中,云App是基于互联网应用管理系统运行的,而在用户已经对互联网应用管理系统进行了授权的情况下,云App在使用这些与用户个人属性相关的数据时就可以不必再进行额外的授权。In some embodiments, the user's personal data stored in the personal database of the personal digital space may also include: data related to the user's personal attributes, for example, including the user's gender, age, occupation, etc. In the disclosed embodiment, such data related to the user's personal attributes may be data that is shared and used by multiple Internet applications installed in the personal digital space without the need for user authorization. At this time, the operation interface may include a third operation interface for reading data related to the user's personal attributes, so that the Internet application reads the data related to the user's personal attributes through the third operation interface. That is to say, since in the disclosed embodiment, the cloud app is run based on the Internet application management system, and when the user has authorized the Internet application management system, the cloud app does not need to perform additional authorization when using these data related to the user's personal attributes.

在一些实施例中,个人数字空间上的个人数据库可以为非关系型数据库系统,以便通过互联网应用管理系统的客户端安装的多个不同的应用在向个人数字空间存储文件和用户个 人数据时,按照各自的需求创建文件和创建数据表格式,并对数据表中的字段的含义进行定义。这样,用户还可以直接通过个人数字空间对文件和个人数据进行访问。在一些实施例中,响应于用户发起的对个人数字空间中保存的与目标应用相关的用户个人数据进行访问的请求,可以对个人数据库中与目标应用关联的文件和数据表进行解析,并展示解析结果。In some embodiments, the personal database on the personal digital space may be a non-relational database system so that multiple different applications installed on the client of the Internet application management system can store files and user personal information in the personal digital space. When creating personal data, files and data table formats are created according to their respective needs, and the meanings of the fields in the data table are defined. In this way, users can also directly access files and personal data through the personal digital space. In some embodiments, in response to a user's request to access the user's personal data related to the target application stored in the personal digital space, the files and data tables associated with the target application in the personal database can be parsed, and the parsing results can be displayed.

也就是说,在本公开实施例中,互联网应用管理系统的服务器端可以对多种不同互联网应用中产生的用户个人数据进行解析,使得用户可以直接通过个人数字空间访问用户个人数据,而不是必须通过第三方应用进行访问。在一些实施例中,用户在使用某音乐类应用时购买并下载了某歌曲,在传统方式下,用户只能使用该音乐类应用才能够打开并播放该歌曲,但是,在本公开实施例中,用户可以将这种通过音乐类应用购买并下载的歌曲保存到个人数字空间中,并且可以直接通过互联网应用管理系统的客户端中的音乐播放软件等播放该歌曲,即使前述音乐类应用后续出现了关闭运营等情况,用户已经购买并下载的歌曲也能够继续保存在其个人数字空间中,并仍然能够通过互联网应用管理系统提供的音乐播放软件进行播放。That is to say, in the disclosed embodiments, the server side of the Internet application management system can parse the user's personal data generated in a variety of different Internet applications, so that the user can directly access the user's personal data through the personal digital space, rather than having to access it through a third-party application. In some embodiments, the user purchases and downloads a song while using a certain music application. In the traditional way, the user can only use the music application to open and play the song. However, in the disclosed embodiments, the user can save the song purchased and downloaded through the music application to the personal digital space, and can directly play the song through the music player software in the client of the Internet application management system. Even if the aforementioned music application is subsequently closed, the song that the user has purchased and downloaded can continue to be saved in his personal digital space and can still be played through the music player software provided by the Internet application management system.

为了更好的理解本公开实施例一提供的技术方案,下面以主要提供拍照功能的第三方应用为例,对依据本公开一些实施例的方案进行介绍。In order to better understand the technical solution provided by the first embodiment of the present disclosure, the solutions according to some embodiments of the present disclosure are introduced below by taking a third-party application that mainly provides a photo-taking function as an example.

首先,上述第三方应用的开发方可以开发一个拍照云App,这个拍照云App包括前端(例如,可以包括HTML(Hyper Text Markup Language,超文本标记语言)和JS(JavaScript)等文件)和后端(例如,Python代码)两个模块。用户通过本公开实施例中的互联网应用管理系统的客户端发起安装该云App后,前端代码就部署在应用运行环境的web server中,后端代码就运行在python运行环境中,同时,该互联网应用管理系统的客户端界面中会出现关于该拍照云App的图标,该拍照云APP的图标包含了指向该云APP前端(web server)的链接。该互联网应用管理系统的客户端中可以包括浏览器引擎,当用户点击该云APP图标时,触发该浏览器引擎根据该链接自动从web server加载该云APP前端,开始该云APP的用户交互过程,以使该用户获得拍照云APP服务。First, the developer of the third-party application mentioned above can develop a photo cloud App, which includes two modules: the front-end (for example, it can include files such as HTML (Hyper Text Markup Language) and JS (JavaScript)) and the back-end (for example, Python code). After the user initiates the installation of the cloud App through the client of the Internet application management system in the embodiment of the present disclosure, the front-end code is deployed in the web server of the application running environment, and the back-end code is run in the python running environment. At the same time, an icon about the photo cloud App will appear in the client interface of the Internet application management system, and the icon of the photo cloud App contains a link to the front-end (web server) of the cloud App. The client of the Internet application management system may include a browser engine. When the user clicks on the cloud App icon, the browser engine is triggered to automatically load the cloud App front-end from the web server according to the link, and start the user interaction process of the cloud App, so that the user can obtain the photo cloud App service.

之后,见如图7所示的流程图,用户使用拍照云App的业务流程描述如下:After that, see the flowchart shown in FIG. 7 , the business process of the user using the Photo Cloud App is described as follows:

用户打开互联网应用管理系统的客户端登录后,用户界面示例可以如图6所示,其中可以显示新安装的拍照云App,用户选择打开拍照云App链接的图标;After the user opens the client of the Internet application management system and logs in, the user interface example may be as shown in FIG6 , in which the newly installed Photo Cloud App may be displayed, and the user selects an icon to open the Photo Cloud App link;

互联网应用管理系统的客户端的浏览器引擎向拍照云App链接发起HTTP(Hypertext Transfer Protocol,超文本传输协议)请求,从互联网应用管理系统的服务器的Web Server(例如Nginx server)获得拍照云App的前端并打开,成为云App客户端;The browser engine of the client of the Internet application management system initiates an HTTP (Hypertext Transfer Protocol) request to the photo cloud App link, obtains the front end of the photo cloud App from the Web server of the server of the Internet application management system (such as Nginx server) and opens it, becoming a cloud App client;

用户在拍照云App客户端上启动拍照功能,拍照云App客户端随即调用终端设备上的“相机拍摄”功能给用户拍照;注意:手机等终端设备通常都需要app在启动“相机拍摄”功能前获得用户的授权。这里,拍照云App客户端可以无需用户授权,因为互联网应用管理系统作为用户个人数据管家的超级APP通常已经用户的授权,并覆盖拍照云APP。When the user starts the photo function on the Photo Cloud App client, the Photo Cloud App client immediately calls the "camera shooting" function on the terminal device to take a photo of the user; note: mobile phones and other terminal devices usually require the app to obtain user authorization before starting the "camera shooting" function. Here, the Photo Cloud App client does not need user authorization, because the Internet application management system, as a super APP for the user's personal data manager, usually has the user's authorization and covers the Photo Cloud App.

用户在拍照云App客户端启动“祝福照片制作”功能,拍照云App客户端向云App后端发起请求,请求获得相片制作模板。拍照云App服务器端随即连接拍照服务商的数据库获取多组相片制作模板,返回给拍照云App客户端供用户选择;The user starts the "blessing photo making" function in the Photo Cloud App client, and the Photo Cloud App client initiates a request to the Cloud App backend to obtain a photo making template. The Photo Cloud App server then connects to the database of the photo service provider to obtain multiple sets of photo making templates, and returns them to the Photo Cloud App client for the user to choose;

用户在拍照云App客户端上选择并确定“祝福照片制作”模板,提交给拍照云App服务器端进行照片合成;The user selects and confirms the "Blessing Photo Production" template on the Photo Cloud App client and submits it to the Photo Cloud App server for photo synthesis;

拍照云App服务器端在用户的个人数字空间上完成照片合成处理,在拍照云App客户端显示合成的照片,并连接个人数字空间上的个人数据库存储合成的照片;The Photo Cloud App server completes the photo synthesis process in the user's personal digital space, displays the synthesized photos on the Photo Cloud App client, and connects to the personal database in the personal digital space to store the synthesized photos;

用户随时可以再次打开互联网应用管理系统的客户端并进入拍照云App客户端,启动照片浏览功能。拍照云App客户端向拍照云App服务器端发起照片检索请求,拍照云App服务器端从用户个人数字空间上的个人数据库中检索出合成照片,并返回给拍照云App客户端;The user can open the client of the Internet application management system again at any time and enter the Photo Cloud App client to start the photo browsing function. The Photo Cloud App client initiates a photo retrieval request to the Photo Cloud App server, and the Photo Cloud App server retrieves the composite photo from the personal database in the user's personal digital space and returns it to the Photo Cloud App client;

用户利用拍照云App客户端浏览合成照片,即使拍照服务商的远端服务器中断,也能够完成该浏览。Users use the Photo Cloud App client to browse composite photos, and they can complete the browsing even if the remote server of the photo service provider is interrupted.

总之,通过该实施例一,可以提供互联网应用管理系统,通过该系统可以在云基础设 施上为用户创建个人数字空间,并在所述个人数字空间中创建互联网应用运行环境以及个人数据库;第三方应用可以以云App等形式“入驻”到该互联网应用管理系统中,第三方应用的服务器端可以以云APP服务器端的形式安装到用户的个人数字空间中。这样,在用户访问这种第三方应用的过程中,就可以在所述个人数字空间中运行第三方应用的云APP服务器端以执行业务逻辑和数据处理逻辑,并将产生的用户个人数据存储到所述个人数字空间上的个人数据库中。通过这种方式,可以使得用户在使用多个不同第三方应用过程中产生的个人数据都能够保存在自己的个人数字空间中,而不是散落在各个第三方应用各自部署的服务器中,从而更方便用户进行数据管理,即使第三方应用出现服务器断开或者关闭运营等情况,也可以通过个人数字空间继续存储个人数据,不会造成数据丢失。在这种方式下,由于第三方应用的服务器端数据处理逻辑也是以云APP服务器端的形式运行在用户的个人数字空间上,且第三方应用可以不再管理用户个人数据,对于第三方应用的开发维护方而言,省去了计算成本和数据存储成本,对于用户而言,也降低了数据泄漏等风险。In summary, through this embodiment 1, an Internet application management system can be provided, through which the Internet application management system can be installed in the cloud infrastructure. The system creates a personal digital space for the user, and creates an Internet application operating environment and a personal database in the personal digital space; third-party applications can be "settled" in the Internet application management system in the form of cloud apps, and the server side of the third-party application can be installed in the user's personal digital space in the form of cloud APP servers. In this way, when the user accesses such a third-party application, the cloud APP server side of the third-party application can be run in the personal digital space to execute business logic and data processing logic, and the generated user personal data can be stored in the personal database on the personal digital space. In this way, the personal data generated by the user in the process of using multiple different third-party applications can be saved in his own personal digital space, rather than scattered in the servers deployed by each third-party application, so that it is more convenient for the user to manage data. Even if the server of the third-party application is disconnected or shut down, personal data can continue to be stored through the personal digital space without causing data loss. In this way, since the server-side data processing logic of the third-party application also runs in the form of a cloud APP server in the user's personal digital space, and the third-party application no longer needs to manage the user's personal data, the computing cost and data storage cost are saved for the developer and maintainer of the third-party application, and for the user, the risk of data leakage is also reduced.

在该实施例一中,个人数字空间中的数据库可以采用非关系型数据库的形式存在,使得互联网应用管理系统能够实现对多种不同第三方应用中产生的用户个人数据的解析,包括文件和数据表,进而用户能够直接通过个人数字空间查看自己的个人数据,而不必依赖第三方应用。这种实现方式也更方便在不同第三方应用之间实现用户个人数据的共享。In this first embodiment, the database in the personal digital space can exist in the form of a non-relational database, so that the Internet application management system can parse the user's personal data generated in a variety of different third-party applications, including files and data tables, so that users can directly view their personal data through the personal digital space without relying on third-party applications. This implementation method is also more convenient for sharing user personal data between different third-party applications.

实施例二:代理和协同工作模式Example 2: Agent and collaborative working mode

该实施例二是与前述方式二相对应的,提供了一种互联网应用管理方法,所述方法应用于互联网应用管理系统,参见图8,所述方法包括:This second embodiment corresponds to the above-mentioned second embodiment, and provides an Internet application management method, which is applied to an Internet application management system. Referring to FIG. 8 , the method includes:

步骤S801:在云基础设施上为用户创建个人数字空间,并在个人数字空间中创建互联网应用运行环境以及个人数据库;Step S801: creating a personal digital space for the user on the cloud infrastructure, and creating an Internet application operating environment and a personal database in the personal digital space;

步骤S802:响应于用户通过互联网应用管理系统的客户端发起的安装互联网应用的请求,完成互联网应用的服务器端在个人数字空间中的安装、在互联网应用运行环境上启动运行实例,并提供运行实例对应的访问入口;以及Step S802: In response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, the server of the Internet application is installed in the personal digital space, a running instance is started in the Internet application running environment, and an access entry corresponding to the running instance is provided; and

步骤S803:在用户通过所述访问入口访问互联网应用的过程中,将用户的个人数据提供给互联网应用的服务器端,以便由互联网应用的服务器端进行数据处理,并将产生的用户个人数据存储到个人数字空间上的个人数据库中。Step S803: When the user accesses the Internet application through the access portal, the user's personal data is provided to the server of the Internet application so that the server of the Internet application processes the data and stores the generated user personal data in a personal database on the personal digital space.

上述步骤S802和S803中所述的“互联网应用”指本文中的云App,也称第三方应用。The “Internet application” described in the above steps S802 and S803 refers to the cloud App in this article, also known as a third-party application.

在一些实施例中,在云APP服务器端在接受用户的业务访问请求、处理用户个人数据的同时,也给其他第三方应用的服务器端提供用户个人数据访问的API,以便其他第三方应用的服务器端通过该API查询并获取所述个人数字空间中保存的用户个人数据。In some embodiments, while accepting user business access requests and processing user personal data, the cloud APP server also provides an API for accessing user personal data to the server of other third-party applications, so that the server of other third-party applications can query and obtain the user personal data stored in the personal digital space through the API.

在一些实施例中,互联网应用的服务器端包括数据获取服务器端,以及数据处理服务器端,其中,数据获取服务器端是根据互联网应用管理系统提供的应用编程接口API而开发的,数据处理服务器端运行在互联网应用对应的远程服务器上;在安装应用的云APP时,可以将互联网应用关联的数据获取服务器端安装于用户对应的个人数字空间上,以便互联网应用的数据获取服务器端将个人数字空间中保存的用户个人数据发送给互联网应用的数据处理服务器端进行处理。In some embodiments, the server side of the Internet application includes a data acquisition server side and a data processing server side, wherein the data acquisition server side is developed based on the application programming interface API provided by the Internet application management system, and the data processing server side runs on a remote server corresponding to the Internet application; when installing the cloud APP of the application, the data acquisition server side associated with the Internet application can be installed on the personal digital space corresponding to the user, so that the data acquisition server side of the Internet application can send the user's personal data stored in the personal digital space to the data processing server side of the Internet application for processing.

通过该实施例二,仍然可以将用户使用第三方应用过程中产生的个人数据保存到个人数字空间上。第三方应用自己的服务器也可以获得这种用户个人数据,使得第三方应用能够利用这种用户个人数据为用户提供更多的个性化服务。Through this second embodiment, the personal data generated by the user when using the third-party application can still be saved in the personal digital space. The third-party application's own server can also obtain this user's personal data, so that the third-party application can use this user's personal data to provide more personalized services to the user.

实施例三:增强模式,增强现有应用的功能Example 3: Enhanced mode, enhancing the functions of existing applications

该实施例三是与前述方式三相对应的,提供了一种互联网应用管理方法,上述方法可以应用于互联网应用管理系统,参见图9,该方法可以包括:The third embodiment corresponds to the third embodiment, and provides an Internet application management method. The method can be applied to an Internet application management system. Referring to FIG. 9 , the method may include:

步骤S901:在云基础设施上为用户创建个人数字空间,并在个人数字空间中创建个人数据库;Step S901: creating a personal digital space for the user on the cloud infrastructure, and creating a personal database in the personal digital space;

步骤S902:响应于用户请求,互联网应用管理系统生成个人数字空间的个人数据库外部访问接口,个人数据库外部访问接口用于互联网应用在获得用户授权后写入用户个人数据; Step S902: In response to the user's request, the Internet application management system generates a personal database external access interface of the personal digital space, and the personal database external access interface is used for the Internet application to write the user's personal data after obtaining the user's authorization;

步骤S903:在用户注册或者使用互联网应用的过程中,获取用户的个人数据库外部访问接口并获得用户授权,以使互联网应用通过个人数据库外部访问接口向用户的个人数字空间发起数据写入请求;Step S903: during the process of user registration or use of Internet application, obtaining the user's personal database external access interface and obtaining user authorization, so that the Internet application initiates a data write request to the user's personal digital space through the personal database external access interface;

步骤S904:响应于目标互联网应用通过调用个人数据库外部访问接口发起的数据写入请求,将数据写入请求中携带的目标互联网应用中产生的用户个人数据存储到个人数字空间上的个人数据库中;其中,个人数据库为非关系型数据库系统,以便多个不同的目标互联网应用在向个人数字空间存储用户个人数据时,按照各自的需求创建文件和/或创建数据表格式,并对数据表中的字段的含义进行定义;以及Step S904: in response to a data write request initiated by the target Internet application by calling the personal database external access interface, the user personal data generated in the target Internet application carried in the data write request is stored in the personal database on the personal digital space; wherein the personal database is a non-relational database system, so that when multiple different target Internet applications store the user personal data in the personal digital space, they can create files and/or create data table formats according to their respective needs, and define the meanings of the fields in the data table; and

步骤S905:响应于用户发起的对个人数字空间中保存的与目标互联网应用相关的用户个人数据进行访问的请求,对个人数据库中与目标互联网应用关联的文件和数据表进行解析,并展示解析结果。Step S905: In response to a user's request to access the user's personal data related to the target Internet application stored in the personal digital space, parse the files and data tables associated with the target Internet application in the personal database and display the parsing results.

上述步骤S902至S905中所述的“互联网应用”就可以是指本文中的云App,也称第三方应用。The “Internet application” described in the above steps S902 to S905 may refer to the cloud App in this article, also known as a third-party application.

通过该实施例三,在实现通过个人数字空间对用户个人数据进行统一管理的同时,不再需要第三方应用的开发方开发云App,而只需要在产生用户个人数据时,由第三方应用向个人数字空间发送一份进行存储即可,因此,可以更方便的与现有的应用架构体系相兼容。Through this third embodiment, while realizing unified management of user personal data through the personal digital space, it is no longer necessary for the developer of the third-party application to develop a cloud app. Instead, when the user personal data is generated, the third-party application only needs to send a copy to the personal digital space for storage. Therefore, it can be more conveniently compatible with the existing application architecture system.

实施例四Embodiment 4

该实施例四还从系统的角度,提供了一种互联网应用管理系统,参见图10,该系统可以包括个人数字空间管理模块、应用运行环境管理模块、数据库管理模块;其中,This fourth embodiment also provides an Internet application management system from the perspective of the system. Referring to FIG. 10 , the system may include a personal digital space management module, an application operating environment management module, and a database management module; wherein:

个人数字空间管理模块:用于在云基础设施上为用户创建并管理个人数字空间,并支持用户管理自己的个人数字空间;应用运行环境管理模块:用于在用户的个人数字空间中创建互联网应用运行环境,将用户指定的互联网应用的服务器端安装于用户对应的个人数字空间中,以使得互联网应用的服务器端的运行实例可在个人数字空间的互联网应用运行环境中运行、并仅响应用户的应用访问请求;数据库管理模块:用于在用户的个人数字空间中创建并管理个人数据库,在个人数字空间中安装或首次运行互联网应用时,在个人数据库中为对应的互联网应用创建相应的应用数据存储空间,以便将互联网应用运行过程中产生的数据包括应用数据和用户个人数据存储到对应的应用数据存储空间。Personal digital space management module: used to create and manage personal digital space for users on cloud infrastructure, and support users to manage their own personal digital space; application operating environment management module: used to create an Internet application operating environment in the user's personal digital space, and install the server side of the Internet application specified by the user in the user's corresponding personal digital space, so that the running instance of the server side of the Internet application can run in the Internet application operating environment of the personal digital space and only respond to the user's application access request; database management module: used to create and manage a personal database in the user's personal digital space, and when installing or running an Internet application for the first time in the personal digital space, create a corresponding application data storage space in the personal database for the corresponding Internet application, so that the data generated during the operation of the Internet application, including application data and user personal data, can be stored in the corresponding application data storage space.

在一些实施例中,个人数字空间管理模块还可以用于:响应用户请求,通过应用运行环境管理模块管理用户的个人数字空间里的互联网应用的服务器端的运行实例,包括安装、启动、升级、停止互联网应用的服务器端的运行实例;以及,响应用户请求,通过数据库管理模块管理用户的个人数字空间中的个人数据库,该管理包括:用户的个人数据库的导入、导出、备份,以及个人数据的增删改查操作。In some embodiments, the personal digital space management module can also be used to: respond to user requests, manage the server-side running instances of Internet applications in the user's personal digital space through the application running environment management module, including installing, starting, upgrading, and stopping the server-side running instances of Internet applications; and respond to user requests, manage the personal database in the user's personal digital space through the database management module, and the management includes: importing, exporting, and backing up the user's personal database, as well as adding, deleting, modifying, and querying personal data.

在一些实施例中,所述应用运行环境管理模块可以包括:托管子模块,用于根据个人数字空间管理模块的应用启动命令,分配相应的服务器资源,并在该服务器资源上启动互联网应用的服务器端的运行实例;路由子模块:用于作为统一的对外访问接口将来自客户端的应用访问请求路由到对应的互联网应用的服务器端的运行实例,以由对应的互联网应用的服务器端的运行实例响应用户的业务请求,完成相应的业务逻辑处理;个人数据库操作接口子模块:用于使能互联网应用的服务器端通过互联网应用运行环境访问所述个人数字空间上的个人数据库,以操作个人数据库中的数据,并将新产生的用户个人数据存储到个人数据库中。In some embodiments, the application running environment management module may include: a hosting submodule, which is used to allocate corresponding server resources according to the application startup command of the personal digital space management module, and start the server-side running instance of the Internet application on the server resources; a routing submodule: used to route the application access request from the client to the corresponding server-side running instance of the Internet application as a unified external access interface, so that the corresponding server-side running instance of the Internet application responds to the user's business request and completes the corresponding business logic processing; a personal database operation interface submodule: used to enable the server-side of the Internet application to access the personal database on the personal digital space through the Internet application running environment, so as to operate the data in the personal database, and store the newly generated user personal data in the personal database.

在一些实施例中,所述应用运行环境管理模块还可以包括:监控子模块:用于监控互联网应用的服务器端的运行实例的运行状态,以触发故障告警或故障恢复时的响应措施。In some embodiments, the application running environment management module may further include: a monitoring submodule: used to monitor the running status of the running instance of the server side of the Internet application to trigger a fault alarm or a response measure during fault recovery.

在一些实施例中,所述数据库管理模块可以用于:将来自用户的对用户个人数据进行增删改查的数据访问请求路由到对应的个人数据库及其对应的应用数据存储空间,以完成相应的数据库操作;以及接受个人数字空间管理模块的指示(例如预设指令),对用户的个人数据库进行数据导入、导出、备份、增删改查方面的数据管理操作。In some embodiments, the database management module can be used to: route data access requests from users for adding, deleting, modifying and querying user personal data to the corresponding personal database and its corresponding application data storage space to complete the corresponding database operations; and accept instructions from the personal digital space management module (such as preset instructions) to perform data management operations such as data import, export, backup, addition, deletion, modification and query on the user's personal database.

在一些实施例中,互联网应用管理系统向用户请求获得的访问终端设备上的敏感资源和功能的授权,覆盖了互联网应用管理系统上安装的所有互联网应用。也就是说,互联网应 用的客户端在访问终端设备上的敏感资源和功能时,无需再次请求用户授权。In some embodiments, the Internet application management system requests the user to obtain authorization to access sensitive resources and functions on the terminal device, covering all Internet applications installed on the Internet application management system. When the client accesses sensitive resources and functions on the terminal device, there is no need to request user authorization again.

关于前述实施例一至四中的未详述内容,可以参见本公开说明书其他部分的记载,这里不再赘述。For the undetailed contents in the aforementioned embodiments 1 to 4, please refer to the records in other parts of this disclosure, which will not be repeated here.

基于同一发明构思,本公开还提供了一种电子设备,包括处理器和存储器,所述存储器存储有能够被所述处理器执行的计算机程序指令,所述处理器执行所述计算机程序指令时,实现如前所述的方法的步骤。Based on the same inventive concept, the present disclosure also provides an electronic device, including a processor and a memory, wherein the memory stores computer program instructions that can be executed by the processor, and when the processor executes the computer program instructions, the steps of the method described above are implemented.

图11是依据本公开一些实施例的个人云系统的系统架构的示意图。如图11所示,本公开还提供了个人云系统,包括如上所述的电子设备1101、个人数字空间1102和互联网应用对应的智能设备1103。Fig. 11 is a schematic diagram of the system architecture of a personal cloud system according to some embodiments of the present disclosure. As shown in Fig. 11, the present disclosure further provides a personal cloud system, including the electronic device 1101, the personal digital space 1102 and the smart device 1103 corresponding to the Internet application as described above.

可以理解的是,电子设备可以是手机、平板等可以安装互联网应用的终端设备,个人数字空间即个人云服务器,互联网应用对应的智能设备可以为智能手表、智能门锁、智能摄像头等任何由个人管理和控制的独立智能设备,不包括手机、平板电脑等传统智能硬件设备。电子设备、个人数字空间和互联网应用对应的智能设备之间可以基于个人虚拟专用网络进行通信。个人云系统采用分布式架构,每个用户都可以拥有独立的个人数字空间,并通过加密的通信线路连接智能设备与电子设备。该架构确保所有数据处理和设备管理在一个高度安全、私密的环境中进行,用户对其数据拥有完全的控制权。这个安全环境构成了用户专属的“个人虚拟专用网络”,确保每位用户都拥有独立的虚拟专网。It is understandable that electronic devices can be mobile phones, tablets and other terminal devices that can install Internet applications. Personal digital space is a personal cloud server. The smart devices corresponding to Internet applications can be any independent smart devices managed and controlled by individuals, such as smart watches, smart door locks, smart cameras, etc., excluding traditional smart hardware devices such as mobile phones and tablets. Electronic devices, personal digital spaces and smart devices corresponding to Internet applications can communicate based on personal virtual private networks. The personal cloud system adopts a distributed architecture, and each user can have an independent personal digital space and connect smart devices and electronic devices through encrypted communication lines. This architecture ensures that all data processing and device management are carried out in a highly secure and private environment, and users have full control over their data. This secure environment constitutes a user-exclusive "personal virtual private network" to ensure that each user has an independent virtual private network.

对应于智能设备的互联网应用作为一种云APP,也称为“设备控制器软件”,在个人数字空间中运行,为用户提供智能设备的云服务,如智能设备采集的数据的存储、远程控制、数据转发、远程管理等。终端设备通过该个人设备控制器软件远程控制或管理智能设备。The Internet application corresponding to the smart device is a cloud APP, also known as "device controller software", which runs in the personal digital space and provides users with cloud services for smart devices, such as storage, remote control, data forwarding, remote management, etc. of data collected by smart devices. The terminal device remotely controls or manages the smart device through the personal device controller software.

图12是依据本公开一些实施例的支持个人虚拟专网的个人云系统的系统架构的示意图。如图12所示,个人数字空间(即个人云服务器)不仅包含了个人数据库、应用运行环境(内含设备控制器软件)和个人数字空间管理模块,还包括了路由分发模块。Figure 12 is a schematic diagram of the system architecture of a personal cloud system supporting a personal virtual private network according to some embodiments of the present disclosure. As shown in Figure 12, the personal digital space (i.e., the personal cloud server) includes not only a personal database, an application operating environment (including device controller software) and a personal digital space management module, but also a routing distribution module.

路由分发模块的主要职责是利用其路由分发功能构建个人虚拟专网,确保个人设备(即上述电子设备)、智能设备与个人数字空间之间的安全数据交互,并保障设备之间以及设备与个人数字空间之间的稳定连接与可达性。该模块的功能如下:1、连接管理:负责在个人数字空间与个人的各个电子设备和智能设备之间的安全连接线路,确保数据传输的安全性;2、路由分发:负责在各电子设备、各智能设备和个人数字空间内部模块间进行数据的转发和分发,确保数据可以从一个设备顺利传送到另一个或多个设备;3、存储与日志记录:接收来自智能设备和个人设备的数据及操作信息,并将其存储在个人数据库中,便于归档和后续检索;4、操作执行:接收来自设备控制器软件的操作指令,执行相应的连接建立、数据路由转发、存储与日志记录等功能。The main responsibility of the routing distribution module is to use its routing distribution function to build a personal virtual private network, ensure the secure data interaction between personal devices (i.e. the above-mentioned electronic devices), smart devices and personal digital space, and ensure the stable connection and accessibility between devices and between devices and personal digital space. The functions of this module are as follows: 1. Connection management: responsible for the secure connection line between the personal digital space and the individual's various electronic devices and smart devices to ensure the security of data transmission; 2. Routing distribution: responsible for forwarding and distributing data between various electronic devices, smart devices and internal modules of the personal digital space to ensure that data can be smoothly transmitted from one device to another or more devices; 3. Storage and log recording: receiving data and operation information from smart devices and personal devices, and storing them in the personal database for archiving and subsequent retrieval; 4. Operation execution: receiving operation instructions from the device controller software, and executing corresponding connection establishment, data routing forwarding, storage and log recording and other functions.

每个用户通过自己的个人数字空间,构建自己的个人虚拟专网(PVPN),与其他用户的个人虚拟专网隔离。Each user builds his or her own personal virtual private network (PVPN) through his or her own personal digital space, which is isolated from the personal virtual private networks of other users.

该个人云系统的实现方式如下:The implementation of the personal cloud system is as follows:

1)电子设备为用户在云基础设施上创建个人数字空间(即个人云服务器)。1) Electronic devices create a personal digital space for users on the cloud infrastructure (i.e., personal cloud server).

2)智能设备制造商为其产品(即智能设备)提供配套的设备控制器软件。2) Smart device manufacturers provide supporting device controller software for their products (i.e. smart devices).

3)用户在其个人数字空间运行设备控制器软件,以管理所购买的智能设备。3) Users run the device controller software in their personal digital space to manage the purchased smart devices.

4)电子设备通过个人数字空间,为每个用户建立自己的个人虚拟专网,将各个电子设备和智能设备连接起来,确保用户个人数据和通信安全。4) Electronic devices establish their own personal virtual private network for each user through personal digital space, connecting various electronic devices and smart devices to ensure the security of user personal data and communications.

以互联网应用对应的智能设备是智能门锁为例,智能门锁的互联网应用不依赖于集中式云服务,而是托管在用户的个人数字空间中。用户将智能门锁的互联网应用的服务器端安装在他们的个人数字空间中,通过用户的个人虚拟专用网络实现安全通信和操作。这确保没有数据在第三方云上存储或处理,从而消除了后门访问的风险。Taking the example of a smart door lock as the smart device corresponding to the Internet application, the Internet application of the smart door lock does not rely on centralized cloud services, but is hosted in the user's personal digital space. The user installs the server side of the Internet application of the smart door lock in their personal digital space, and achieves secure communication and operation through the user's personal virtual private network. This ensures that no data is stored or processed on a third-party cloud, eliminating the risk of backdoor access.

再以智能摄像头为例,用户同时使用智能手机和平板电脑,当连接到个人数字空间中的智能摄像头控制器时,智能摄像头捕捉到的视频监控内容通过路由分发模块的路由分发功能,同步传输到用户的手机和平板电脑上,使这两个设备上都能实时显示监控画面。与此同 时,监控内容还会被存储在个人数据库中,以便日后回放和检索。Taking smart cameras as an example, when a user uses a smartphone and a tablet computer at the same time and connects to the smart camera controller in the personal digital space, the video surveillance content captured by the smart camera is synchronously transmitted to the user's mobile phone and tablet computer through the routing distribution function of the routing distribution module, so that the monitoring screen can be displayed in real time on both devices. When monitoring, the content will be stored in a personal database for later playback and retrieval.

本申请实施例通过上述个人云系统的设计,保证了用户个人数据的操作使用过程中的通信安全,解决了智能手表、智能摄像头、智能门锁等智能设备的安全性问题。The embodiment of the present application ensures the communication security during the operation and use of the user's personal data through the design of the above-mentioned personal cloud system, and solves the security issues of smart devices such as smart watches, smart cameras, and smart door locks.

基于同一发明构思,本公开还提供了一种计算机可读存储介质,所述计算机可读存储介质中存储有计算机程序指令,所述计算机程序指令被处理器执行时,促使所述处理器实现如前所述的方法的步骤。Based on the same inventive concept, the present disclosure also provides a computer-readable storage medium, in which computer program instructions are stored. When the computer program instructions are executed by a processor, the processor is prompted to implement the steps of the method as described above.

基于同一发明构思,本申请实施例提供了一种计算机程序产品,包括计算机程序,所述计算机程序产品被处理器执行时,促使所述处理器实现如上所述的方法的步骤。Based on the same inventive concept, an embodiment of the present application provides a computer program product, including a computer program. When the computer program product is executed by a processor, it prompts the processor to implement the steps of the method as described above.

通过本公开提供的其中一实施例,可以提供互联网应用管理系统,通过该系统可以在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建互联网应用运行环境以及个人数据库;第三方应用可以以“云App”等形式“入驻”到该互联网应用管理系统中,第三方应用的服务器端可以安装到用户的个人数字空间中,使得第三方应用的服务器端成为可在所述个人数字空间的互联网应用运行环境中运行、仅服务于所述用户的应用实例。这样,在用户访问这种第三方应用的过程中,就可以在所述个人数字空间中运行第三方应用的服务器端以执行业务逻辑和数据处理逻辑,并将产生的用户个人数据存储到所述个人数字空间上的个人数据库中。通过这种方式,可以使得用户在使用多个不同第三方应用过程中产生的个人数据都能够保存在自己的个人数字空间中,而不是散落在各个不同的第三方应用各自部署的服务器中,从而更方便用户进行数据管理,即使第三方应用出现服务器断开或者关闭运营等情况,也可以通过个人数字空间继续存储个人数据,不会造成数据丢失。在这种方式下,由于第三方应用的服务器端的数据处理逻辑也是运行在用户的个人数字空间上,且第三方应用可以不再管理用户个人数据,对于第三方应用的开发维护方而言,省去了计算和数据存储成本,对于用户而言,也降低了数据泄漏等风险。Through one of the embodiments provided by the present disclosure, an Internet application management system can be provided, through which a personal digital space can be created for a user on a cloud infrastructure, and an Internet application operating environment and a personal database can be created in the personal digital space; a third-party application can be "settled" in the Internet application management system in the form of a "cloud app" or the like, and the server side of the third-party application can be installed in the user's personal digital space, so that the server side of the third-party application becomes an application instance that can be run in the Internet application operating environment of the personal digital space and only serves the user. In this way, when a user accesses such a third-party application, the server side of the third-party application can be run in the personal digital space to execute business logic and data processing logic, and the generated user personal data can be stored in the personal database on the personal digital space. In this way, the personal data generated by the user in the process of using multiple different third-party applications can be saved in his own personal digital space, rather than scattered in the servers deployed by each different third-party application, so that it is more convenient for the user to manage data, and even if the server of the third-party application is disconnected or shut down, the personal data can continue to be stored through the personal digital space without causing data loss. In this way, since the data processing logic of the server side of the third-party application also runs in the user's personal digital space, and the third-party application no longer needs to manage the user's personal data, the computing and data storage costs are saved for the developers and maintainers of the third-party application, and for the user, the risk of data leakage is also reduced.

在该实施例一中,个人数字空间中的数据库可以采用非关系型数据库的形式存在,使得互联网应用管理系统能够实现对多种不同第三方应用中产生的用户个人数据的解析,进而用户能够直接通过个人数字空间查看和管理自己的个人数据,而不必依赖第三方应用。这种实现方式也更方便在不同应用之间实现用户个人数据的共享。In this first embodiment, the database in the personal digital space can exist in the form of a non-relational database, so that the Internet application management system can parse the user's personal data generated in a variety of different third-party applications, and then the user can directly view and manage his or her personal data through the personal digital space without relying on third-party applications. This implementation method is also more convenient for sharing user personal data between different applications.

实施本公开的任一产品并不一定需要同时达到以上所述的所有优点。It is not necessary for any product implementing the present disclosure to achieve all the advantages described above at the same time.

需要说明的是,本公开实施例中可能会涉及到对用户数据的使用,在实际应用中,可以在符合所在国的适用法律法规要求的情况下(用户明确同意,对用户切实通知,等),在适用法律法规允许的范围内在本文描述的方案中使用用户特定的个人数据。It should be noted that the embodiments of the present disclosure may involve the use of user data. In actual applications, user-specific personal data can be used in the scheme described herein within the scope permitted by applicable laws and regulations, subject to the requirements of applicable laws and regulations of the country where the user is located (explicit consent from the user, effective notification to the user, etc.).

以上对本公开所提供的互联网应用管理方法及个人云系统,进行了详细介绍,本文中应用了一些示例对本公开的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本公开的方法及其核心思想;同时,对于本领域的一般技术人员,依据本公开的思想,在具体实施方式及应用范围上均会有改变之处。综上所述,本说明书内容不应理解为对本公开的限制。 The Internet application management method and personal cloud system provided by the present disclosure are introduced in detail above. Some examples are used in this article to illustrate the principles and implementation methods of the present disclosure. The description of the above embodiments is only used to help understand the method and its core idea of the present disclosure. At the same time, for those skilled in the art, according to the idea of the present disclosure, there will be changes in the specific implementation methods and application scope. In summary, the content of this specification should not be understood as limiting the present disclosure.

Claims (28)

一种互联网应用管理方法,所述方法应用于互联网应用管理系统,所述方法包括:An Internet application management method, the method is applied to an Internet application management system, the method comprising: 在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建互联网应用运行环境以及个人数据库;以及Creating a personal digital space for the user on the cloud infrastructure, and creating an Internet application operating environment and a personal database in the personal digital space; and 响应于所述用户通过所述互联网应用管理系统的客户端发起的安装互联网应用的请求,将所述互联网应用的服务器端安装于所述用户对应的个人数字空间中,以便在所述用户访问所述互联网应用的过程中,在所述个人数字空间中运行所述互联网应用的服务器端的业务逻辑和数据处理逻辑,并将产生的用户个人数据存储到所述个人数字空间中的个人数据库中。In response to a request for installing an Internet application initiated by the user through the client of the Internet application management system, the server side of the Internet application is installed in the personal digital space corresponding to the user, so that when the user accesses the Internet application, the business logic and data processing logic of the server side of the Internet application are run in the personal digital space, and the generated user personal data is stored in the personal database in the personal digital space. 根据权利要求1所述的方法,还包括:The method according to claim 1, further comprising: 在所述用户访问所述互联网应用的过程中,根据所述互联网应用的服务器端在所述个人数字空间中的访问地址,将访问请求路由到所述互联网应用的服务器端,以便由所述互联网应用的服务器端对所述访问请求进行处理。During the process of the user accessing the Internet application, the access request is routed to the server of the Internet application according to the access address of the server of the Internet application in the personal digital space, so that the server of the Internet application can process the access request. 根据权利要求1所述的方法,还包括:The method according to claim 1, further comprising: 提供用于验证用户身份的用户鉴权服务,以便在所述用户登录后执行对所述互联网应用的管理和/或访问操作。A user authentication service is provided for verifying the identity of a user so as to perform management and/or access operations on the Internet application after the user logs in. 根据权利要求1所述的方法,还包括:The method according to claim 1, further comprising: 提供用于对已安装互联网应用进行管理的服务,所述管理包括版本升级、停用、状态监控、查询以及卸载。Provides services for managing installed Internet applications, including version upgrades, deactivation, status monitoring, querying, and uninstalling. 根据权利要求1所述的方法,还包括:The method according to claim 1, further comprising: 提供用于对所述个人数据库中存储的用户个人数据进行操作的操作接口,以便所述互联网应用通过所述操作接口对所述用户个人数据进行操作。An operation interface for operating the user's personal data stored in the personal database is provided so that the Internet application can operate the user's personal data through the operation interface. 根据权利要求5所述的方法,其中,The method according to claim 5, wherein 所述个人数据库中存储的用户个人数据包括所述互联网应用产生的且为所述互联网应用所独有的数据;以及The user personal data stored in the personal database includes data generated by the Internet application and unique to the Internet application; and 所述操作接口包括用于将所述互联网应用产生的且为所述互联网应用所独有的数据写入所述个人数据库的第一操作接口,以便所述互联网应用通过所述第一操作接口将所述互联网应用产生的且为所述互联网应用所独有的数据写入到所述个人数字空间的个人数据库中进行存储。The operation interface includes a first operation interface for writing data generated by the Internet application and unique to the Internet application into the personal database, so that the Internet application writes the data generated by the Internet application and unique to the Internet application into the personal database of the personal digital space for storage through the first operation interface. 根据权利要求5所述的方法,其中,The method according to claim 5, wherein 所述个人数据库中存储的用户个人数据包括其他互联网应用中产生的与所述用户相关的、且可在多个互联网应用之间共用的公共数据;以及The user personal data stored in the personal database includes public data related to the user generated in other Internet applications and can be shared among multiple Internet applications; and 所述操作接口包括用于读取所述公共数据的第二操作接口,以便所述互联网应用通过所述第二操作接口获取到其他互联网应用中产生的与所述用户相关的所述公共数据。The operation interface includes a second operation interface for reading the public data, so that the Internet application can obtain the public data related to the user generated in other Internet applications through the second operation interface. 根据权利要求5所述的方法,其中,The method according to claim 5, wherein 所述个人数据库中存储的用户个人数据还包括与用户个人属性相关的数据,所述与用户个人属性相关的数据为已安装到所述个人数字空间中的多个互联网应用在无需用户授权状态下共享使用的数据;以及The user personal data stored in the personal database also includes data related to the user's personal attributes, and the data related to the user's personal attributes are data that are shared and used by multiple Internet applications installed in the personal digital space without user authorization; and 所述操作接口包括用于对所述与用户个人属性相关的数据进行读取的第三操作接口,以便所述互联网应用通过所述第三操作接口读取所述与用户个人属性相关的数据。 The operation interface includes a third operation interface for reading the data related to the user's personal attributes, so that the Internet application reads the data related to the user's personal attributes through the third operation interface. 根据权利要求1至8中任一项所述的方法,其中,The method according to any one of claims 1 to 8, wherein 所述个人数字空间上的个人数据库为非关系型数据库系统,以便通过所述互联网应用管理系统的客户端安装的多个不同的互联网应用在向所述个人数字空间存储所述用户个人数据时,按照各自的需求创建文件以及数据表格式,并对数据表中的字段的含义进行定义;The personal database on the personal digital space is a non-relational database system, so that when multiple different Internet applications installed through the client of the Internet application management system store the user's personal data in the personal digital space, they create files and data table formats according to their respective needs and define the meanings of the fields in the data table; 所述方法还包括:The method further comprises: 响应于用户发起的对所述个人数字空间中保存的与目标应用程序相关的用户个人数据进行访问的请求,对所述个人数据库中与目标应用程序关联的文件及数据表进行解析,并展示解析结果。In response to a user's request to access the user's personal data related to the target application stored in the personal digital space, the files and data tables associated with the target application in the personal database are parsed, and the parsing results are displayed. 根据权利要求1至8中任一项所述的方法,还包括:The method according to any one of claims 1 to 8, further comprising: 在所述个人数字空间中创建用于构建个人虚拟专网的路由分发模块,所述个人虚拟专网用于与智能设备、个人数字空间进行数据交互。A routing distribution module for constructing a personal virtual private network is created in the personal digital space, and the personal virtual private network is used for data interaction with smart devices and the personal digital space. 一种互联网应用管理方法,所述方法应用于互联网应用管理系统,所述方法包括:An Internet application management method, the method is applied to an Internet application management system, the method comprising: 在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建互联网应用运行环境以及个人数据库;Creating a personal digital space for the user on the cloud infrastructure, and creating an Internet application operating environment and a personal database in the personal digital space; 响应于用户通过所述互联网应用管理系统的客户端发起的安装互联网应用的请求,完成所述互联网应用的服务器端在所述个人数字空间中的安装、在互联网应用运行环境上启动运行实例,并提供所述运行实例对应的访问入口;以及In response to a request for installing an Internet application initiated by a user through a client of the Internet application management system, the server side of the Internet application is installed in the personal digital space, a running instance is started on the Internet application running environment, and an access portal corresponding to the running instance is provided; and 在用户通过所述访问入口访问所述互联网应用的过程中,将用户个人数据提供给所述互联网应用的服务器端,以便由所述互联网应用的服务器端进行数据处理,并将所述用户个人数据存储到所述个人数字空间上的个人数据库中。When a user accesses the Internet application through the access portal, the user's personal data is provided to the server of the Internet application so that the server of the Internet application processes the data and stores the user's personal data in a personal database on the personal digital space. 根据权利要求11所述的方法,其中,The method according to claim 11, wherein 所述将用户个人数据提供给所述互联网应用的服务器端,包括:Providing the user personal data to the server side of the Internet application includes: 向所述互联网应用的服务器端提供用户个人数据访问的应用程序编程接口API,以便所述互联网应用的服务器端通过所述用户个人数据访问的应用程序编程接口API获取所述个人数字空间中保存的用户个人数据。An application programming interface API for accessing user personal data is provided to the server side of the Internet application, so that the server side of the Internet application can obtain the user personal data stored in the personal digital space through the application programming interface API for accessing user personal data. 根据权利要求11所述的方法,其中,The method according to claim 11, wherein 所述互联网应用的服务器端包括数据获取服务器端,以及数据处理服务器端,其中,所述数据获取服务器端是根据所述互联网应用管理系统提供的API而开发的,所述数据处理服务器端运行在所述互联网应用的开发方所部署或租用的服务器上;The server side of the Internet application includes a data acquisition server side and a data processing server side, wherein the data acquisition server side is developed according to the API provided by the Internet application management system, and the data processing server side runs on a server deployed or rented by the developer of the Internet application; 所述将用户个人数据提供给所述互联网应用的服务器端,包括:Providing the user personal data to the server side of the Internet application includes: 在安装所述互联网应用时,将所述互联网应用的数据获取服务器端安装于所述用户对应的个人数字空间中,以便所述互联网应用的数据获取服务器端将所述个人数字空间中保存的用户个人数据发送给所述互联网应用的数据处理服务器端进行处理。When installing the Internet application, the data acquisition server of the Internet application is installed in the personal digital space corresponding to the user, so that the data acquisition server of the Internet application sends the user's personal data stored in the personal digital space to the data processing server of the Internet application for processing. 根据11至13中任一项所述的方法,还包括:The method according to any one of 11 to 13, further comprising: 在所述个人数字空间中创建用于构建个人虚拟专网的路由分发模块,所述个人虚拟专网用于与智能设备、个人数字空间进行数据交互。A routing distribution module for constructing a personal virtual private network is created in the personal digital space, and the personal virtual private network is used for data interaction with smart devices and the personal digital space. 一种数据管理方法,所述方法应用于互联网应用管理系统,所述方法包括:A data management method, the method being applied to an Internet application management system, the method comprising: 在云基础设施上为用户创建个人数字空间,并在所述个人数字空间中创建个人数据库;Creating a personal digital space for the user on a cloud infrastructure, and creating a personal database in the personal digital space; 响应于用户请求,所述互联网应用管理系统生成所述个人数字空间的个人数据库外部访问接口,所述个人数据库外部访问接口用于互联网应用在获得用户授权后写入用户个人数据;In response to a user request, the Internet application management system generates a personal database external access interface of the personal digital space, wherein the personal database external access interface is used for Internet applications to write user personal data after obtaining user authorization; 在所述用户注册或者使用所述互联网应用的过程中,获取所述个人数据库外部访问接口并获得用户授权,以使得所述互联网应用通过所述个人数据库外部访问接口向所述用户的个 人数字空间发起数据写入请求;During the process of the user registering or using the Internet application, the personal database external access interface is obtained and the user's authorization is obtained, so that the Internet application can access the user's personal database external access interface through the personal database external access interface. The human digital space initiates a data writing request; 响应于目标互联网应用通过调用所述个人数据库外部访问接口发起的数据写入请求,将所述数据写入请求中携带的所述目标互联网应用中产生的所述用户个人数据存储到所述个人数字空间上的个人数据库中;其中,所述个人数据库为非关系型数据库系统,以便多个不同的目标互联网应用在向所述个人数字空间存储所述用户个人数据时,按照各自的需求创建文件和/或创建数据表格式,并对数据表中的字段的含义进行定义;以及In response to a data write request initiated by a target Internet application by calling the personal database external access interface, the user personal data generated in the target Internet application carried in the data write request is stored in the personal database on the personal digital space; wherein the personal database is a non-relational database system, so that when multiple different target Internet applications store the user personal data in the personal digital space, they create files and/or create data table formats according to their respective needs, and define the meanings of the fields in the data table; and 响应于用户发起的对所述个人数字空间中保存的与目标互联网应用相关的用户个人数据进行访问的请求,对所述个人数据库中与目标互联网应用关联的文件和数据表进行解析,并展示解析结果。In response to a user's request to access the user's personal data related to the target Internet application stored in the personal digital space, the files and data tables associated with the target Internet application in the personal database are parsed, and the parsing results are displayed. 根据15所述的方法,还包括:The method according to item 15, further comprising: 在所述个人数字空间中创建用于构建个人虚拟专网的路由分发模块,所述个人虚拟专网用于与智能设备、个人数字空间进行数据交互。A routing distribution module for constructing a personal virtual private network is created in the personal digital space, and the personal virtual private network is used for data interaction with smart devices and the personal digital space. 一种互联网应用管理系统,包括个人数字空间管理模块、应用运行环境管理模块、数据库管理模块;其中,An Internet application management system includes a personal digital space management module, an application operating environment management module, and a database management module; wherein: 所述个人数字空间管理模块:用于在云基础设施上为用户创建并管理个人数字空间,并支持所述用户管理自己的个人数字空间;The personal digital space management module is used to create and manage a personal digital space for a user on a cloud infrastructure, and to support the user in managing his or her own personal digital space; 所述应用运行环境管理模块:用于在所述用户的个人数字空间中创建并管理互联网应用运行环境,将所述用户指定的互联网应用的服务器端安装于所述用户对应的个人数字空间中,以使得所述互联网应用的服务器端的运行实例在所述个人数字空间的互联网应用运行环境中运行、并仅响应所述用户的应用访问请求;以及The application running environment management module is used to create and manage the Internet application running environment in the personal digital space of the user, and install the server of the Internet application specified by the user in the personal digital space corresponding to the user, so that the running instance of the server of the Internet application runs in the Internet application running environment of the personal digital space and only responds to the application access request of the user; and 所述数据库管理模块:用于在所述用户的个人数字空间中创建并管理个人数据库,在所述个人数字空间中安装或首次运行互联网应用时,在所述个人数据库中为对应的互联网应用创建相应的应用数据存储空间,以便将互联网应用运行过程中产生的数据包括应用数据和用户个人数据存储到对应的应用数据存储空间。The database management module is used to create and manage a personal database in the personal digital space of the user. When an Internet application is installed or first run in the personal digital space, a corresponding application data storage space is created in the personal database for the corresponding Internet application, so that data generated during the operation of the Internet application, including application data and user personal data, can be stored in the corresponding application data storage space. 根据权利要求17所述的系统,其中,The system according to claim 17, wherein: 所述个人数字空间管理模块还用于:响应用户请求,通过应用运行环境管理模块管理用户的个人数字空间里的互联网应用的服务器端的运行实例;以及,响应用户请求,通过所述数据库管理模块管理用户的个人数字空间中的个人数据库。The personal digital space management module is also used to: respond to user requests, manage the server-side running instances of Internet applications in the user's personal digital space through the application running environment management module; and respond to user requests, manage the personal database in the user's personal digital space through the database management module. 根据权利要求17所述的系统,其中,The system according to claim 17, wherein: 所述应用运行环境管理模块包括:The application operating environment management module includes: 托管子模块,用于根据所述个人数字空间管理模块的应用启动命令,分配相应的服务器资源,并在所述服务器资源上启动互联网应用的服务器端的运行实例;A hosting submodule, for allocating corresponding server resources according to the application startup command of the personal digital space management module, and starting the server-side running instance of the Internet application on the server resources; 路由子模块:用于将来自客户端的应用访问请求路由到对应的互联网应用的服务器端的运行实例,以由所述对应的互联网应用的服务器端的运行实例响应用户的业务请求,完成相应的业务逻辑处理;Routing submodule: used to route the application access request from the client to the running instance of the corresponding Internet application server, so that the running instance of the corresponding Internet application server responds to the user's business request and completes the corresponding business logic processing; 个人数据库操作接口子模块:用于使能互联网应用的服务器端通过互联网应用运行环境访问所述个人数字空间上的个人数据库,以操作个人数据库中的数据,并将新产生的用户个人数据存储到个人数据库中。The personal database operation interface submodule is used to enable the server side of the Internet application to access the personal database on the personal digital space through the Internet application running environment to operate the data in the personal database and store the newly generated user personal data in the personal database. 根据权利要求19所述的系统,其中,The system according to claim 19, wherein: 所述应用运行环境管理模块还包括:The application running environment management module also includes: 监控子模块:用于监控互联网应用的服务器端的运行实例的运行状态,以触发故障告警或故障恢复时的响应措施。 Monitoring submodule: used to monitor the running status of the running instance of the server side of the Internet application to trigger fault alarm or response measures during fault recovery. 根据权利要求17所述的系统,其中,The system according to claim 17, wherein: 所述数据库管理模块还用于:The database management module is also used for: 将来自所述用户的对用户个人数据进行增删改查的数据访问请求路由到所述个人数据库及其对应的应用数据存储空间,以完成对所述个人数据库中用户个人数据的增删改查操作;以及在接收到所述个人数字空间管理模块的预设指令的情况下,对所述个人数据库进行数据导入、导出、备份或增删改查的数据管理操作。Routing data access requests from the user for adding, deleting, modifying and querying the user's personal data to the personal database and its corresponding application data storage space to complete the addition, deletion, modification and query operations on the user's personal data in the personal database; and upon receiving preset instructions from the personal digital space management module, performing data management operations such as data import, export, backup or addition, deletion, modification and query on the personal database. 根据权利要求17所述的系统,其中,The system according to claim 17, wherein: 所述互联网应用管理系统向所述用户请求获得的访问终端设备上的敏感资源和功能的授权,覆盖了所述互联网应用管理系统上安装的所有互联网应用。The authorization for accessing sensitive resources and functions on the terminal device that the Internet application management system requests from the user covers all Internet applications installed on the Internet application management system. 一种电子设备,包括处理器和存储器,其中,所述存储器存储有能够被所述处理器执行的计算机程序指令,所述处理器执行所述计算机程序指令时,实现如权利要求1至16中任一项所述的方法的步骤。An electronic device comprises a processor and a memory, wherein the memory stores computer program instructions that can be executed by the processor, and when the processor executes the computer program instructions, the steps of the method as claimed in any one of claims 1 to 16 are implemented. 一种个人云系统,包括根据权利要求23所述的电子设备、个人数字空间和所述互联网应用对应的智能设备。A personal cloud system comprises the electronic device according to claim 23, a personal digital space and a smart device corresponding to the Internet application. 根据权利要求24所述的个人云系统,其中,所述智能设备包括智能门锁、智能摄像头、智能手表,或其他由个人管理和控制的除手机、平板电脑之外的智能设备。The personal cloud system according to claim 24, wherein the smart device includes a smart door lock, a smart camera, a smart watch, or other smart devices other than mobile phones and tablet computers that are managed and controlled by individuals. 根据权利要求24所述的个人云系统,其中,所述电子设备、所述个人数字空间和所述智能设备基于所述电子设备建立的个人虚拟专网进行数据交互。The personal cloud system according to claim 24, wherein the electronic device, the personal digital space and the smart device interact with each other based on a personal virtual private network established by the electronic device. 一种计算机可读存储介质,所述计算机可读存储介质中存储有计算机程序指令,所述计算机程序指令被处理器执行时,促使所述处理器实现如权利要求1至16中任一项所述的方法的步骤。A computer-readable storage medium having computer program instructions stored therein, wherein when the computer program instructions are executed by a processor, the processor is prompted to implement the steps of the method according to any one of claims 1 to 16. 一种计算机程序产品,包括计算机程序,其中,所述计算机程序产品被处理器执行时,促使所述处理器实现如权利要求1至16中任一项所述的方法的步骤。 A computer program product comprises a computer program, wherein when the computer program product is executed by a processor, the processor is prompted to implement the steps of the method according to any one of claims 1 to 16.
PCT/CN2024/128528 2023-11-28 2024-10-30 Internet application management method and personal cloud system Pending WO2025113066A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202311623444.6 2023-11-28
CN202311623444.6A CN117614943A (en) 2023-11-28 2023-11-28 Internet application management methods and systems

Publications (1)

Publication Number Publication Date
WO2025113066A1 true WO2025113066A1 (en) 2025-06-05

Family

ID=89951178

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2024/128528 Pending WO2025113066A1 (en) 2023-11-28 2024-10-30 Internet application management method and personal cloud system

Country Status (2)

Country Link
CN (1) CN117614943A (en)
WO (1) WO2025113066A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117614943A (en) * 2023-11-28 2024-02-27 小宙数字科技(深圳)有限公司 Internet application management methods and systems

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120136936A1 (en) * 2010-11-30 2012-05-31 France Telecom System and method for implementing dynamic access control rules to personal cloud information
CN103685341A (en) * 2012-08-31 2014-03-26 百度在线网络技术(北京)有限公司 Cloud storage data center and cloud storage data providing method
CN103685342A (en) * 2012-08-31 2014-03-26 百度在线网络技术(北京)有限公司 Personal cloud data storage center and cloud data storage method
CN103929473A (en) * 2014-03-25 2014-07-16 冯力新 Method and system for accessing multiple subsystems and public subsystem with distributed storage personalized data through single APP program
CN117614943A (en) * 2023-11-28 2024-02-27 小宙数字科技(深圳)有限公司 Internet application management methods and systems

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120136936A1 (en) * 2010-11-30 2012-05-31 France Telecom System and method for implementing dynamic access control rules to personal cloud information
CN103685341A (en) * 2012-08-31 2014-03-26 百度在线网络技术(北京)有限公司 Cloud storage data center and cloud storage data providing method
CN103685342A (en) * 2012-08-31 2014-03-26 百度在线网络技术(北京)有限公司 Personal cloud data storage center and cloud data storage method
CN103929473A (en) * 2014-03-25 2014-07-16 冯力新 Method and system for accessing multiple subsystems and public subsystem with distributed storage personalized data through single APP program
CN117614943A (en) * 2023-11-28 2024-02-27 小宙数字科技(深圳)有限公司 Internet application management methods and systems

Also Published As

Publication number Publication date
CN117614943A (en) 2024-02-27

Similar Documents

Publication Publication Date Title
US11740891B2 (en) Providing access to a hybrid application offline
US10880287B2 (en) Out of box experience application API integration
JP6876790B2 (en) Kernel event trigger
EP3235213B1 (en) No password user account access
US9298747B2 (en) Deployable, consistent, and extensible computing environment platform
US8745213B2 (en) Managed services platform and method of operation of same
US8788655B2 (en) Systems for accepting and approving applications and methods of operation of same
US8615581B2 (en) System for managing devices and method of operation of same
US8612582B2 (en) Managed services portals and method of operation of same
US8650290B2 (en) Portable computing device and method of operation of same
US8856322B2 (en) Supervisory portal systems and methods of operation of same
US11995453B2 (en) Method and apparatus for generating image file and computer-readable storage medium
CN109478149A (en) Access Services in Hybrid Cloud Computing Systems
CN117751347A (en) Techniques for distributed interface component generation
WO2025113066A1 (en) Internet application management method and personal cloud system
US11449186B2 (en) System and method for optimized generation of a single page application for multi-page applications

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 24896157

Country of ref document: EP

Kind code of ref document: A1