Design And Implementation Of Unified User Information Management Service Framework

With the continuous development of Internet and Web technologies, an increasing number of network applications appear in people’s field of vision. People get more and more Web services, but in the meantime they have to confront diverse problems, such as maintaining multiple account information and logging in repeatedly among a multitude of applications. For developers, this kind of basic services not only consume lots of time and development cost, but also break the principle of "software reuse" in software engineering.4A is short for Authentication, Authorization, Accounting and Audit, which provides a solution of platform level user management. At present, many domestic and foreign large Internet companies, such as Facebook, have opened up its own platform and interfaces for developers to create applications. But they only provide the unified authentication function, and the other3A abilities are rarely involved.So a Unified User Information Management Service Framework (UUIMSF) is brought forward in this paper, which supports unified account management, centralized authentication management, application authorization management, system audit management and single sign-on function. The system consists of three parts, which are the API server, the user portal and the administrator portal respectively, providing rich and open Web services for third-party developers, users and administrators. API server offers Web services via open APIs to the developers, which simplifies the application development process and reduces the cost of developing applications. The user portal and administrator portal set up a one-stop way to manage all the information of users and applications, which improve the convenience of information management.In this paper, the background knowledge of UUIMSF is introduced firstly, including4A System, SSO, OAuth2.0protocol and open APIs. Secondly, according to the analysis of the existing systems and technologies, both function and non-function requirements of UUIMSF are defined clearly. Then a user information model is proposed, and the design and implementation of UUIMSF are described in detail based on the layers of system architecture (basic component layer, logic function layer and Web service layer). Finally, the system implementation is specified and a series of tests of UUIMSF are performed. The test result demonstrates the usability and the good performance of UUIMSF, as well as its high value in practice.