1. A safe and controllable agile software development method under a controlled network environment is characterized by comprising the following steps:

s1, issuing a real-time debugging deployment mode request of a software project to be developed;

s2, configuring project resources required in a real-time debugging and deploying mode and configuring updating authorization information;

s3, issuing a software deployment package required by the real-time debugging mode to update software deployment;

s4, opening a debugging mode for real-time development, and controlling to open corresponding project resources in a software development console according to the configured project resources and authorization information;

and S5, controlling to close the debugging mode according to the authorization information, and synchronously updating the developed real-time debugging development file to a corresponding server.

2. A method for developing agile software that is safe and controllable in a controlled network environment according to claim 1, wherein: after the step S1 and before the step S2, verifying the security of the distribution environment according to the received real-time debugging deployment request, and if the security of the distribution environment is verified, executing the step S2, otherwise terminating the real-time debugging deployment mode.

3. A method for developing agile software that is safe and controllable in a controlled network environment according to claim 1, wherein: the project resource comprises any one or more than two kinds of information of project number information, resource information required to be related to the project and project debuggable resource information.

4. An agile software development method safe and controllable in a controlled network environment according to claim 1, wherein the authorization information includes any one or more of authorization machine information, authorization time range, authorization development account, authorization development resource, enabling position, enabling mode, and enabling times.

5. The method for developing the agile software which is safe and controllable in the controlled network environment according to any one of claims 1 to 4, is characterized in that: before the step S3 of issuing the software deployment package required by the real-time debugging, the method further includes verifying information of the issuing developer, and if the verification fails, the issuing of the software deployment package in the real-time debugging mode is terminated.

6. The method for developing the agile software which is safe and controllable in the controlled network environment according to any one of claims 1 to 4, is characterized in that: when the real-time development is performed in step S4, the software development console is controlled to be opened according to the enabling mode configured in the authorization information, and the number of times of opening the software development console is controlled according to the enabling number configured in the authorization information.

7. The method for developing agile software that is safe and controllable in a controlled network environment of claim 6, wherein: and when any one of the development environment, the developed project resource, the debugging time and the mode of opening the software development console does not accord with the configured information, terminating the execution of the real-time debugging deployment mode request.

8. The method for developing security controllable agile software in a controlled network environment according to any one of claims 1-4, wherein the step S5 comprises: and directly closing the debugging mode after the development test is finished, if the debugging mode is not closed, controlling to automatically close the debugging mode after the preset time is exceeded according to the configured authorization information, packaging the changed codes, updating and uploading the updated codes to a code server so as to realize the synchronous updating of the code version.

9. A system for implementing the method for secure and controllable agile software development in a controlled network environment of claims 1-8, comprising:

the back-end verification service module is used for completing the security verification of the issuing environment;

the back-end authorization service module is used for providing back-end system services to respond to the front-end operation request in the resource authorization and resource configuration processes so as to complete resource configuration, authorization and verification release operations;

the back-end debugging service module is used for providing back-end debugging service after the deployment installation package is released and installed in the server;

and the front-end development console is used for completing real-time development and debugging on the server end in a matched control mode.

10. A computer arrangement comprising a processor and a memory, the memory being adapted to store a computer program, the processor being adapted to execute the computer program, wherein the processor is adapted to execute the computer program to perform the method according to any of claims 1-8.

Background

At present, a plurality of core service software need to be deployed in a security isolation and internal controlled network environment, and external computer equipment cannot be directly accessed in a controlled network, and the traditional software development method mainly realizes the upgrading and development of service system codes by performing software development in a development machine environment, packaging and publishing a software update package, and copying the software update package to a computer in the controlled network environment. In the traditional software development process, a software developer needs to continuously update codes, deploy codes and run test codes, so that the whole process is complicated and consumes a lot of time, the software development and updating efficiency is low, and the updating efficiency cannot be improved by a corresponding development task faster.

For example, in a given environment, the general flow of a conventional software development method is generally as follows:

1. developing and debugging on a developing machine;

2. copying or transmitting the deployment package to a server;

3. deploying software installation packages to servers

4. Testing the system;

5. recording the problem;

6. returning to the development debugging and recurrence problem of the development machine, and repeatedly executing the steps between 2 and 6.

In the conventional software development process, the whole development process needs different deployment and debugging environments to and fro, and the deployment package needs to be frequently and repeatedly copied and transmitted between a development machine and a server because the deployment package is in a network environment controlled in a safety isolation interior, so that the overall efficiency of the development process is low, and the real-time software development requirement cannot be met.

Disclosure of Invention

The technical problem to be solved by the invention is as follows: aiming at the technical problems in the prior art, the invention provides the safe and controllable agile software development method under the controlled network environment, which has the advantages of simple realization method, less development and deployment time, high development efficiency, good real-time performance and high safety and reliability.

In order to solve the technical problems, the technical scheme provided by the invention is as follows:

a safe and controllable agile software development method under a controlled network environment is characterized by comprising the following steps:

s1, issuing a real-time debugging deployment mode request of a software project to be developed;

s2, configuring project resources required in a real-time debugging and deploying mode and configuring updating authorization information;

s3, issuing a software deployment package required by the real-time debugging mode to update software deployment;

s4, opening a debugging mode for real-time development, and controlling to open corresponding project resources in a software development console according to the configured project resources and authorization information;

and S5, controlling to close the debugging mode according to the authorization information, and synchronously updating the developed real-time debugging development file to a corresponding server.

Further, after the step S1 and before the step S2, the method further includes verifying the security of the distribution environment according to the received real-time debugging deployment request, and if the security of the distribution environment is verified, the method proceeds to the step S2, otherwise, the real-time debugging deployment mode is terminated.

Further, the project resource includes any one or more of project number information, resource information required by the project, and project debuggable resource information.

Further, the authorization information includes any one or more than two kinds of information of authorization machine information, authorization time range, authorization development account, authorization development resource, enabling position, enabling mode and enabling times.

Further, before the step S3 of issuing the software deployment package required by the real-time debugging, the method further includes verifying information of an issuing developer, and if the verification fails, terminating the issuing of the software deployment package in the real-time debugging mode.

Further, when the real-time development is performed in step S4, the software development console is controlled to be opened according to the enabling mode configured in the authorization information, and the number of times of opening the software development console is controlled according to the number of enabling times configured in the authorization information.

Further, when any one of the development environment, the developed project resource, the debugging time and the mode of opening the software development console does not accord with the configured information, the real-time debugging deployment mode request is stopped to be executed.

Further, the step S5 includes: and directly closing the debugging mode after the development test is finished, if the debugging mode is not closed, controlling to automatically close the debugging mode after the preset time is exceeded according to the configured authorization information, packaging the changed codes, updating and uploading the updated codes to a code server so as to realize the synchronous updating of the code version.

A system for implementing the above method, comprising:

the back-end verification service module is used for completing the security verification of the issuing environment;

the back-end authorization service module is used for providing back-end system services to respond to the front-end operation request in the resource authorization and resource configuration processes so as to complete resource configuration, authorization and verification release operations;

the back-end debugging service module is used for providing back-end debugging service after the deployment installation package is released and installed in the server;

and the front-end development console is used for completing real-time development and debugging on the server end in a matched control mode.

A computer apparatus comprising a processor and a memory, the memory being arranged to store a computer program, the processor being arranged to execute the computer program, and the processor being arranged to execute the computer program to perform the method as described above.

Compared with the prior art, the invention has the advantages that:

1. aiming at the software development of a network environment system in a safety isolation internal control state, the invention is based on an agile software development mode, and can be suitable for realizing the software development and debugging under the safety isolation and internal control network environment through debugging and deploying project resources, configuring and updating the authorization of a development kit and controlling a software development console in real time.

2. In the joint debugging stage, the invention can remove the link of system problem recurrence, reduce code transmission between the development machine and the deployment service, and optimize the development process, thereby reducing the time and potential safety hazard of software deployment and development in the environment of safely isolating the internal controlled network.

3. The invention can reduce the development and deployment times and time as much as possible on the premise of ensuring the development and deployment safety, improve the software development efficiency under the safety isolation and internal controlled network environment, and solve the problem of low software starting and deployment debugging process efficiency under the traditional safety isolation and internal controlled network environment.

Drawings

Fig. 1 is a schematic implementation flow diagram of the method for developing security-controllable agile software in a controlled network environment according to this embodiment.

Fig. 2 is a schematic diagram of an implementation flow for implementing software release deployment in an embodiment of the present invention.

Fig. 3 is a schematic diagram of an implementation flow for implementing authorization of a development kit in an embodiment of the present invention.

Fig. 4 is a schematic diagram illustrating the principle of implementing software development and debugging in this embodiment.

Fig. 5 is a schematic diagram of the structural principle of the system implementing the software development method according to the embodiment.

Detailed Description

The invention is further described below with reference to the drawings and specific preferred embodiments of the description, without thereby limiting the scope of protection of the invention.

In the specific embodiments of the present invention, the terminology used is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention. The use of "a," "an," "the" and the like in the examples and the appended claims is intended to include the plural forms as well, unless the context clearly indicates otherwise.

As shown in fig. 1, the steps of the method for developing security-controllable agile software in a controlled network environment in this embodiment include:

s1, issuing a real-time debugging deployment mode request of a software project to be developed;

s2, configuring project resources required in a real-time debugging and deploying mode and configuring updating authorization information;

s3, issuing a software deployment package required by the real-time debugging mode to update software deployment;

s4, opening a debugging mode for real-time development, and controlling to open corresponding project resources in a software development console according to the configured project resources and authorization information;

and S5, controlling to close the debugging mode according to the authorization information, and synchronously updating the developed real-time debugging development file to a corresponding server.

The embodiment aims at software development of a network environment system controlled in a security isolation interior, and based on an agile software development mode, by debugging and deploying project resources in real time, configuring update development kit authorization and controlling a software development console, software development and debugging under the environment of a safe isolation and an internal controlled network are realized, in the joint debugging stage, the system problem recurrence link can be removed, the code transmission between the development machine and the deployment service is reduced, the development process is optimized, thereby reducing the time and potential safety hazard of traditional software deployment and development under the environment of safely isolating the internal controlled network, on the premise of ensuring the development and deployment safety, the development and deployment times and time can be reduced, the software development efficiency under the safety isolation and internal controlled network environment is improved, and the problem of low software starting and deployment debugging process efficiency under the traditional safety isolation and internal controlled network environment is solved.

In this embodiment, after step S1 and before step S2, verifying the security of the release environment according to the received real-time debugging deployment request, and if the environment is verified to be secure, executing step S2, otherwise terminating the real-time debugging deployment mode, and enhancing the security verification of the security weak link in the software development process.

In a specific application embodiment, a request for a software project real-time debugging deployment mode is sent out in a development machine environment, and meanwhile, a verification program is started to verify the safety of a release environment; and when the environment is verified to be safe, continuing to step S2, otherwise, checking according to the prompted safety problem, terminating the real-time debugging deployment mode issue after the safety times are exceeded, and interrupting the issue process or continuing to execute the traditional deployment issue. The above environment security verification mainly checks whether the development machine SN is registered or not, and whether external insecure factors including an illegal usb disk and the like exist.

In this embodiment, the project resource in step S2 specifically includes information such as project number information, resource information required by the project, and project debuggable resource information. The authorization information comprises information such as authorization machine information, an authorization time range, an authorization development account, authorization development resources, a starting position, a starting mode and starting times, wherein the authorization machine information comprises machine hardware codes and the like automatically generated according to various hardware information of the server; the authorized time range is a time range allowed to be started, and if the authorized time range exceeds the time range, the current real-time debugging deployment mode can be automatically closed; the authorized development account is an authorized legal development account, the real-time debugging deployment mode can be started subsequently after the authentication is passed, otherwise, the real-time debugging deployment mode cannot be started; the authorized development resources are authorized debuggable resources, and the software development console only provides the authorized debuggable resources in the subsequent development process; the starting position, the starting mode and the starting times are respectively the position, the mode and the times started in the software control platform by a developer in the development process, and the software development console can be opened only by adopting the correct starting position and the correct starting mode.

In a specific application embodiment, after passing the environment security verification, the system pops up a resource configuration list of the account, which can debug and deploy a project in real time, can specify project resources under a multi-project condition, and needs to perform specific authorization operations before configuration, including setting authorized deployment machine hardware codes, an authorized time range, the authorized account, authorized development codes, an enabling position, an enabling mode, enabling times, and the like, wherein undisplayed or unconfigured resources cannot be debugged after deployment subsequently. The authorization operation may be configured to be saved as a default configuration after one configuration to facilitate a quick completion of the configuration again.

In this embodiment, before the software deployment package required by the real-time debugging is issued in step S3, the method further includes verifying information of the issuing developer, and if the verification fails, the issuing of the software deployment package in the real-time debugging mode is terminated, so as to ensure safe and controllable issuing.

In a specific application embodiment, after the project resources and the authorization information are configured, the software package of the real-time debugging deployment mode is continuously sent, and before the software package is finally released, the account and the password of a release developer need to be verified, so that safe and controllable release is ensured; if the verification fails or the verification times exceed the preset upper limit, the real-time debugging mode issuing behavior is terminated, the upper-level manager is required to unlock the limit to continue the type of issuing, and the software deployment and installation on the client server can be realized by the successfully issued deployment and installation package.

In order to realize the verification of the developers, the account and the password information of the developers are stored in the database in an irreversible encryption mode in advance, and the storage guarantee can be sufficiently safe.

In the present embodiment, when performing real-time development in step S4, the software development console is controlled to be opened according to the enabling mode configured in the authorization information, and the number of times of opening the software development console is controlled according to the enabling number configured in the authorization information. And when any one of the development environment, the developed project resource, the debugging time and the mode of opening the software development console does not accord with the configured information, stopping executing the real-time debugging deployment mode request.

In a specific application embodiment, after a real-time debugging mode software package is released, the deployment package is uploaded to a server in a compliance mode, the debugging mode can be opened at a preset position after deployment by adopting a configured starting mode, a software development console is opened for real-time development, the software development console can be opened only by adopting a correct starting mode, the opening times are reduced once after the console is opened every time, and debugging development cannot be carried out again until the configured starting times are used. Editing the code in the console can specifically realize the operations of code error recognition, code indentation format check and the like.

In a specific application embodiment, the development console is carried by the inside of the system and is used for assisting in completing the development of real-time debugging and deployment project codes, and the development and debugging of configured code resources can be realized only on the premise of correct configuration and calling; after the development personnel open and call, a software development console can be popped up, the real-time development of project codes is completed in the console, the development code types include but are not limited to front-end page codes, background codes do not need to be compiled, system script codes and the like, and the development results can be stored and tested in real time after the code development is completed.

Step S5 in this embodiment specifically includes: and directly closing the debugging mode after the development test is finished, if the debugging mode is not closed, controlling to automatically close the debugging mode after the preset time is exceeded according to the configured authorization information, packaging the changed codes, and then updating and uploading the updated codes to the code server so as to realize the synchronous updating of the code version.

In a specific application embodiment, after the development test is completed, a developer needs to close the real-time debugging function, otherwise, after the configured debugging time range is exceeded, the debugging function is automatically closed, the changed codes can be summarized in a manual or automatic packaging mode, and the changed codes are copied or uploaded to a code server in a compliance mode, so that the synchronous updating of the code version is realized.

In the following, a method for implementing secure and controllable agile software development in a controlled network environment by using the above method of the present invention is further described as an example, and the detailed steps are as follows:

step S101: and sending a request for a software project real-time debugging and deployment mode in a development machine environment, and simultaneously starting a verification program to verify the safety of a release environment. After the environment is verified to be safe, step S2 may be continued, otherwise, checking needs to be performed according to the prompted security problem, and after the number of times of security is exceeded, the real-time debugging deployment mode is terminated, the deployment process is interrupted, or the conventional deployment is continuously executed.

The above environment security verification mainly checks whether the development machine SN is registered or not, and whether external insecure factors including an illegal usb disk and the like exist.

Step S102: after environment security verification, the system pops up a resource configuration list of the account, which can debug and deploy projects in real time, project resources can be specified under the condition of multiple projects, and specific authorization operation is performed before configuration, including setting authorized deployment machine hardware codes, an authorized time range, the authorized account, authorized development codes, an enabling position, an enabling mode, enabling times and the like, wherein undisplayed or unconfigured resources cannot be debugged any more. And the authorization operation configuration is stored as default configuration after being configured once, so that the configuration is rapidly performed again.

Step S103: after the configuration is finished, the real-time debugging mode software package is continuously issued, and before the software package is finally issued, the account and the password of an issuing developer need to be verified, so that safe and controllable issuing is ensured; if the verification fails or the verification times exceed the preset upper limit, the real-time debugging mode issuing behavior is terminated, the upper-level manager is required to unlock the limit to continue the type of issuing, and the software deployment and installation on the client server can be realized by the successfully issued deployment and installation package. The account and password information of the developer are stored in a database in an irreversible encrypted form.

Step S104: the deployment package is uploaded to the server in a compliance mode, a debugging mode can be opened in a preset position after deployment by adopting a configured starting mode, a software development console is opened for real-time development, the opening times are reduced once after the console is opened every time, and debugging development cannot be performed until the opening times are used up.

The codes, the starting positions and the starting modes which can be developed in the step are configured in step S103, the software development console can be opened only by adopting the correct starting mode, and the codes can be edited in the console to realize the operations of code error recognition, code indentation format check and the like.

Step S105: after the development personnel open and call, a software development console can be popped up, the real-time development of project codes is completed in the console, the development code types include but are not limited to front-end page codes, background codes do not need to be compiled, system script codes and the like, and the development results can be stored and tested in real time after the code development is completed.

The development console is carried by the inside of the system and is used for assisting in completing the development of real-time debugging and deployment project codes, and the development and the debugging of the configured code resources can be realized only on the premise of correct configuration and calling.

Step S106: after the development test is completed, a developer needs to close the real-time debugging function, otherwise, after a period of time, the debugging function is automatically closed, the changed codes can be gathered in a manual or automatic packaging mode and copied or uploaded to a code server in a compliance mode, and the synchronous updating of the code version is realized. The time range for automatically closing the debugging function in the step is configured by an administrator in advance, otherwise, the operation is executed according to the default configuration of the system.

Through the steps, the development and deployment times and time can be greatly reduced on the premise of ensuring the development and deployment safety, and the software development efficiency under the environment of a safety isolation and internal controlled network is effectively improved.

In a specific application embodiment, after a developer sends a request for a software project real-time debugging deployment mode, a processing flow of the method for the request according to the embodiment is shown in fig. 2, and specifically includes the following steps:

verifying the hardware environment, checking whether the signature developer is used, feeding back a checking result to a developer, and continuing the next step if the signature developer is used and the hardware environment is qualified; if the hardware environment is judged to be unqualified by the non-signature development machine, terminating the request of deploying the project;

verifying the software environment, checking whether the developer is a signature developer, feeding back a checking result to the developer in a notification mode, and continuing the next step if the developer is a legal signature developer; if the developer is not signed, judging that the validity verification of the software environment fails, and directly terminating the request for deploying the project;

configuring deployment project resources, after the developer configures the deployment project resources at the front end, the system continuously checks whether the configured resources are in a legal resource range at the background, and if the configured resources belong to the legal resource range which can be deployed by the developer, the next step is continued; if the unauthorized or illegal resources exist, canceling the configured deployment project resources, and skipping to the step of terminating the deployment project request;

configuring a debugging time range, giving a default debugging time range by a system, customizing the debugging time range by a developer, checking whether the time range is a legal time range by background service, and continuing to deploy the project if the configured time range is legal; if the configured time range exceeds the maximum limit of the system or other administrator setting rules, the configured debugging time range can be judged to be illegal, and the project deployment request is directly terminated;

if all the legal checks pass, executing the deployment project request; otherwise, the project deployment request is directly terminated, the failure reason is fed back to the developer, a software project real-time debugging deployment mode request can be sent out, and the software release deployment process can not be successfully completed until all checks are qualified.

In a specific application embodiment, when a developer configures and authorizes deployment of an installation package resource, as shown in fig. 3, configuration is specifically implemented according to the following configuration mode:

the system can automatically generate machine hardware codes according to various hardware information of the server, and the machine hardware codes generated by the server need to be configured when a debugging mode request of a deployment project is issued, wherein the machine hardware codes can be acquired by a management background of a project which has been run by the server.

Setting an authorization time range, configuring the authorization time range for debugging after the project is issued, when the current authorization time for the project to run is less than the maximum time upper limit, continuing to start the real-time development mode, otherwise, automatically closing the real-time development mode, in order to avoid the problem that the service modification system time prolongs the authorization range, automatically starting a timer after the project is deployed, generating a maximum time count value according to the configured authorization time range, and when the counter exceeds the maximum time count value, stopping starting the real-time development mode no matter whether the authorization time range meets the condition or not.

Selecting an authorized development account, setting a development account of a project, wherein the account is used for carrying out development account authentication login when a real-time development mode is started, and the debugging console can be opened only after the authentication is passed, otherwise the real-time development mode cannot be started; the maximum login error times are set by default, when the maximum login error times are exceeded, the real-time development mode of the release is automatically locked and completely closed, the release cannot be started again, and the release is authorized to be deployed again, and then the user can log in again.

And configuring authorized development resources, wherein the configuration of the authorized development resources mainly relates to actual debugging resources of a release project, all the debuggable resources of the current project are given by default, a resource list authorized to be developed can be displayed on an opened debugging console, and if the resources are not authorized to be developed, the resources cannot be displayed on the debugging console.

And configuring an enabling position, wherein the configuration of the enabling position can be at a specific component or page of the system, and a developer can access the configured enabling position to realize the enablement of the real-time development mode through the configured enabling mode.

And selecting an enabling mode, enabling the developer to configure the specific enabling mode to be mouse clicking, double clicking and the like, carrying out real-time development mode enabling login verification at an enabling position by adopting the enabling mode, and calling the debugging console after the verification authorization passes.

The starting times are set, the default starting times of the real-time development of the project are designated by a system administrator, the starting times can be customized by a developer within the range of the maximum debugging upper limit, the starting times can be reduced once after the development is completed and the debugging console is closed each time, and when the starting times are used up, the system completely closes the real-time development mode service.

In a specific application embodiment, as shown in fig. 4, a complete software development process using the above method of the present invention is: in a software development environment, firstly, a developer sends a real-time debugging deployment request, and a system background service receives the request; after the environmental security of the development machine is verified, popping up a configuration and deployment project resource interface, and showing project resources which are accessed and debugged by the developer and have authority; then, the developer performs identity verification and sets the related settings of deployment package authorization, successfully releases the software deployment package after completing each process, otherwise, terminates the release of the deployment package; after the release is finished, the software installation and deployment package is arranged in a deployment environment of a client server, installation and deployment are carried out, a system is started, a development and debugging console is started after developers pass through a correct mode and identity verification, after the debugging, development and testing and other whole research and development processes are finished, a debugging and development mode is closed, finished codes can be packaged, and the finished codes can be synchronously updated into a development code management server.

In order to implement the above method in this embodiment in a matching manner, the present embodiment further constructs and forms a real-time software development security system, as shown in fig. 5, including:

the back-end verification service module is mainly used for completing (as the step S101) the verification of the security of the release environment, and after the developer sends out a request for real-time debugging and deployment of the software project, the system automatically invokes and executes the request, and the returned result not only includes whether the verification is successful, but also prompts the reason of the verification failure.

The back-end authorization service module is configured to (as in step S102 and step S103 above) provide back-end system services for a project resource list request, a project resource detailed configuration, and an authorized release deployment installation package of a developer during resource authorization and resource configuration, respond to a front-end operation request, and complete resource configuration, authorization, and verification release operations safely and reliably through means such as communication encryption and account encryption.

The back-end debugging service module is used for (as the step S104 and the step S105) implementing the specific processes of code development, debugging, running, testing and the like on the server side of the published project by a developer after the deployment installation package is published and installed on the server, and at the moment, providing back-end debugging service for the developer by combining operations such as system verification and the like, and providing service support of different scenes according to the actual configuration condition of the project.

The front-end development console is an independent part and is used for providing operations such as code viewing, development and compliance checking, and the processes such as real-time development, debugging and testing of the project on the server side can be finally completed in cooperation with other processes (step S106).

The present embodiment further provides a computer apparatus, including a processor and a memory, the memory is used for storing a computer program, the processor is used for executing the computer program, and the processor is used for executing the computer program to execute the software development method.

The foregoing is considered as illustrative of the preferred embodiments of the invention and is not to be construed as limiting the invention in any way. Although the present invention has been described with reference to the preferred embodiments, it is not intended to be limited thereto. Therefore, any simple modification, equivalent change and modification made to the above embodiments according to the technical spirit of the present invention should fall within the protection scope of the technical scheme of the present invention, unless the technical spirit of the present invention departs from the content of the technical scheme of the present invention.