Zhijian Grid is a development framework combining client and cloud, which greatly simplifies the development and operation and maintenance of server and client, while taking into account safety and reliability. The small and micro enterprise services provided by Zhijian Grid, the code is open source and free to use forever.
1. Server
1.1 Realization of fully distributed service
Support service fragment forwarding, each instance can specify which fragment requests to carry when it starts. Fragmentation rules are specified when the business interface is defined, and one parameter can be specified or multiple parameters can be specified to combine fragmentation.
1.2 Flexible deployment
In large-scale deployment, multi-active deployment can be performed across AZs, or multi-active or backup can be performed across Regions; in small-scale deployments, it can be run on a single PC, or even deployed on an old Android phone .
At present, we mainly promote the deployment method of Android servers, which is convenient for small and micro enterprises to operate and manage their own servers, without purchasing or paying, and managing their own servers like managing mobile phone applications.
1.3 Simple business implementation
The business interface can be realized through simple json+sql configuration, and slightly more complicated ones can be realized with json+js configuration, which is especially suitable for database operations. The CRM and membership system implemented with this system do not have a single line of java code, which shows that it can fully realize most business scenarios. Only in rare cases, you need to write java code, such as realizing special protocol connection with other systems.
The business codes are all plain text, easy to develop and customize, and the development cost is low.
1.4 Reliable
There are a lot of reliable and safety-related implementations built into the underlying implementation. For example, multiple instances, distributed load balancing, to avoid single point of failure; two copies of data, remote backup, to prevent data loss, etc.
1.5 Security
The user password uses the PBKDF2 algorithm, which is recorded in the database after 6 iterations, and the password will not be lost even if the data is leaked.
The data field is encrypted, and there are three keys, which are the root key, the data root key, and the data key. As long as the root key is not lost, in the most extreme case, the database is compromised and the sensitive fields cannot be unlocked. In the Android version of the server, the local root key uses the mobile phone's own TEE, which is the root of trust usually used by online banking services; the data root key is backed up to the server using the user's own password, which is recorded in the user's mind. As long as the root password is not leaked, sensitive data will not be leaked.
The EC256 certificate is used for transmission, and its strength is equivalent to that of RSA3076, while most websites today use RSA1024 or RSA2048.
There are many security designs like this in the system.
2. Client
2.1 The essence is a light application framework
The client is essentially a set of light application development framework, which is implemented by built-in Vue3+Quasar2 by default, and built-in echarts is used by default for reports.
There are currently Android and Windows platform clients. The html and js are downloaded to the end side, and the interactive experience is not like ordinary web pages, and there is no obvious lag.
2.2 Simple development
If you know how to develop web pages, you can realize interaction, simple development and low cost. There is only an interface call with the server, which is exactly the same as the native application.
2.3 Security
The client also fully considers the security, and the data transmission uses the http2 secure channel to prevent the data from being eavesdropped by the middleman during the transmission process.
2.4 Both internal and external networks are accessible
The client can access the enterprise intranet, or open the external network mapping by itself, so that the internal and external networks can be accessed at the same time, and only some users can access the external network. If you do not have the ability to do external network mapping, you can also use the bridge service we provide. However, currently we recommend that we open up the external network mapping.
Zhijian grid has been partially launched, and the business code can be viewed in csdn, code cloud, and github
Simple Grid / Enterprise Service · GitCode
The home page of the project is Zhijian Grid-Client & Cloud Application Development Framework (zhijian.net.cn)
Welcome, and hope that more people will participate.