From dedbf7d12142beef1278d95a51f6eead2a500673 Mon Sep 17 00:00:00 2001
From: =?utf8?q?=E5=88=98=E6=B4=AA=E9=9D=92?= <hongqing.liu@supwisdom.com>
Date: Mon, 20 Sep 2021 15:00:55 +0800
Subject: [PATCH] =?utf8?q?docs:=20=E6=95=B4=E7=90=86=201.4=20=E7=9A=84?=
 =?utf8?q?=E9=83=A8=E7=BD=B2=E6=96=87=E6=A1=A3?=
MIME-Version: 1.0
Content-Type: text/plain; charset=utf8
Content-Transfer-Encoding: 8bit

---
 ...50\345\225\206\345\272\227\357\274\211.md" | 105 +++++++++++-------
 1 file changed, 65 insertions(+), 40 deletions(-)

diff --git "a/deploy-manifests/charts/1.2.0000.\350\256\244\350\257\201\346\216\210\346\235\203\346\234\215\345\212\241\345\256\211\350\243\205\351\203\250\347\275\262\346\211\213\345\206\214\357\274\210\345\237\272\344\272\216\345\272\224\347\224\250\345\225\206\345\272\227\357\274\211.md" "b/deploy-manifests/charts/1.2.0000.\350\256\244\350\257\201\346\216\210\346\235\203\346\234\215\345\212\241\345\256\211\350\243\205\351\203\250\347\275\262\346\211\213\345\206\214\357\274\210\345\237\272\344\272\216\345\272\224\347\224\250\345\225\206\345\272\227\357\274\211.md"
index cd9be48..c510955 100644
--- "a/deploy-manifests/charts/1.2.0000.\350\256\244\350\257\201\346\216\210\346\235\203\346\234\215\345\212\241\345\256\211\350\243\205\351\203\250\347\275\262\346\211\213\345\206\214\357\274\210\345\237\272\344\272\216\345\272\224\347\224\250\345\225\206\345\272\227\357\274\211.md"
+++ "b/deploy-manifests/charts/1.2.0000.\350\256\244\350\257\201\346\216\210\346\235\203\346\234\215\345\212\241\345\256\211\350\243\205\351\203\250\347\275\262\346\211\213\345\206\214\357\274\210\345\237\272\344\272\216\345\272\224\347\224\250\345\225\206\345\272\227\357\274\211.md"
@@ -92,7 +92,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   mysqldump -u root -p token_server > token_server.sql
   mysqldump -u root -p user > user.sql
   mysqldump -u root -p user_authz > user_authz.sql
-  mysqldump -u root -p agent_service > agent_service.sql
+  mysqldump -u root -p authx_log > authx_log.sql
   ```
 
   è¿åï¼
@@ -101,7 +101,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   mysql -u root -p token_server < token_server.sql
   mysql -u root -p user < user.sql
   mysql -u root -p user_authz < user_authz.sql
-  mysql -u root -p agent_service < agent_service.sql
+  mysql -u root -p authx_log < authx_log.sql
   ```
 
 
@@ -131,6 +131,8 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   authx-service                 authx-service/*
 
+  authx-log                     authx-log/*
+
   user-data-service             goa/*
   user-authorization-service    user-authorization-service/*
   personal-security-center      personal-security-center/*
@@ -139,6 +141,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   cas-server                    cas-server/*
   token-server                  token-server/*
+  attest-server                 attest-server/*
   ```
 
   åæ­¥è§åï¼åå»ºå®æåï¼è¿è¡éååæ­¥
@@ -192,7 +195,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   jobs-server         åæ­¥æå¡
 
-  cas-server          è®¤è¯ï¼CAS è®¤è¯ + Token Serverï¼
+  cas-server          è®¤è¯ï¼CAS è®¤è¯ + Token Server + èº«ä»½è®¤è¯æå¡ï¼
   ```
 
 * ç¡®å®å½åç©ºé´
@@ -208,7 +211,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   jobs-server         åæ­¥æå¡
 
-  cas-server          è®¤è¯ï¼CAS è®¤è¯ + Token Serverï¼
+  cas-server          è®¤è¯ï¼CAS è®¤è¯ + Token Server + èº«ä»½è®¤è¯æå¡ï¼
   ```
 
 
@@ -222,10 +225,9 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   ```
   authx-minio.paas.xxx.edu.cn                 æä»¶æå¡
 
-  security-center.paas.xxx.edu.cn             å®å¨ä¸­å¿
+  authx-service.paas.xxx.edu.cn               ç¨æ·æææå¡ï¼åå« åå°ç®¡çUI + å®å¨ä¸­å¿UI + å®å¨ä¸­å¿åç«¯ï¼
 
-  cas.paas.xxx.edu.cn                         CAS è®¤è¯ï¼è§å·ä½æåµï¼å¯è°æ´ï¼
-  token.paas.xxx.edu.cn                       Token è®¤è¯ï¼APPéç¨ï¼
+  cas.paas.xxx.edu.cn                         è®¤è¯ï¼è§å·ä½æåµï¼å¯è°æ´ï¼åå« CAS è®¤è¯ + Token Server + èº«ä»½è®¤è¯æå¡ï¼
   ```
 
   å¦æä½¿ç¨ å­¦æ ¡ååï¼åå»é¤ .paas å³å¯ï¼åæ¶ç³è¯·å¼éç¸å³åå
@@ -249,8 +251,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   æå¡ | æ°æ®åºå¸å·
   - | -
-  ç¬¬ä¸æ¹ä»£çæå¡ thridparty-agent-service | agent_service
-  - | -
+  æ¥å¿æå¡ authx-log | authx_log
   ç¨æ·æå¡ user-data-service | user
   æææå¡ user-authorization-service | user_authz
   - | -
@@ -262,10 +263,10 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   å½ä»¤ï¼
   **è¯·ä¿®æ¹å½ä»¤ä¸­ç `your_password` ä¸ºå®éçæ°æ®åºç¨æ·çå¯ç **
   ```
-  create user 'agent_service'@'%' identified with mysql_native_password  by 'your_password';
-
+  create user 'authx_log'@'%' identified with mysql_native_password  by 'your_password';
   create user 'user'@'%' identified with mysql_native_password  by 'your_password';
   create user 'user_authz'@'%' identified with mysql_native_password  by 'your_password';
+
   create user 'cas_server'@'%' identified with mysql_native_password  by 'your_password';
   create user 'token_server'@'%' identified with mysql_native_password  by 'your_password';
 
@@ -279,8 +280,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   æå¡ | æ°æ®åº
   - | -
-  ç¬¬ä¸æ¹ä»£çæå¡ thridparty-agent-service | agent_service
-  - | -
+  æ¥å¿æå¡ authx-log | authx_log
   ç¨æ·æå¡ user-data-service | user
   æææå¡ user-authorization-service | user_authz
   - | -
@@ -291,10 +291,10 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   å½ä»¤ï¼
   ```
-  create database `agent_service` DEFAULT CHARSET utf8 COLLATE utf8_general_ci;
-
+  create database `authx_log` DEFAULT CHARSET utf8 COLLATE utf8_general_ci;
   create database `user` DEFAULT CHARSET utf8 COLLATE utf8_general_ci;
   create database `user_authz` DEFAULT CHARSET utf8 COLLATE utf8_general_ci;
+
   create database `cas_server` DEFAULT CHARSET utf8 COLLATE utf8_general_ci;
   create database `token_server` DEFAULT CHARSET utf8 COLLATE utf8_general_ci;
 
@@ -308,10 +308,10 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
   å½ä»¤ï¼
   ```
-  grant all privileges on `agent_service`.* to 'agent_service'@'%' with grant option;
-
+  grant all privileges on `authx_log`.* to 'authx_log'@'%' with grant option;
   grant all privileges on `user`.* to 'user'@'%' with grant option;
   grant all privileges on `user_authz`.* to 'user_authz'@'%' with grant option;
+
   grant all privileges on `cas_server`.* to 'cas_server'@'%' with grant option;
   grant all privileges on `token_server`.* to 'token_server'@'%' with grant option;
 
@@ -328,6 +328,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   ```
   grant SUPER on *.* to 'user'@'%';
   grant SUPER on *.* to 'user_authz'@'%';
+
   grant SUPER on *.* to 'cas_server'@'%';
 
   grant SUPER on *.* to 'tmp_data'@'%';
@@ -388,15 +389,6 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
 
 å½åç©ºé´ï¼ agent-service
 
-* å¤é¨MYSQL-è¿æ¥éç½®
-  å¤é¨MySQL hostï¼ <è¯·å¡«åæ°æ®åºæå¡çIPå°å>
-  å¤é¨MySQL portï¼ <è¯·å¡«åæ°æ®åºæå¡çç«¯å£>
-
-* AGENT SERVICE - MYSQLæ°æ®åºéç½®
-  ç¨æ·åï¼ `agent_service` ï¼åºå®å¼ãææå®éæåµä¿®æ¹
-  å¯ç ï¼ <è¯·å¡«ååå»ºçæ°æ®åºç¨æ·çå¯ç >
-  æ°æ®åºåï¼ `agent_service` ï¼åºå®å¼ãææå®éæåµä¿®æ¹
-
 * æä»¶æå¡è®¾ç½®
   Minio Urlï¼ `http://minio.authx-minio.svc.cluster.local:9000` ï¼è¥ minio çå½åç©ºé´æè°æ´ï¼è¯·ä¿®æ¹
   Minio Access Keyï¼ `1y8N@8R@a_2u`
@@ -417,6 +409,24 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   é¿éäºç­ä¿¡æ¥å£Access Keyï¼ 
   é¿éäºç­ä¿¡æ¥å£Access Secretï¼ 
 
+* äººè¸æå¡éç½®
+  å¯ä¸ æ°å¼æ®äººè¸å¹³å° æ ç¾åº¦äººè¸æå¡ è¿è¡å¯¹æ¥
+
+  äººè¸ç»å½ç±»åï¼ aiface: æ°å¼æ®äººè¸, aipface: ç¾åº¦äººè¸
+
+  **ä»¥ä¸éç½®ä» æ°å¼æ®äººè¸å¹³å° ç³è¯·**
+  æ°å¼æ®äººè¸æå¡ Urlï¼ 
+  æ°å¼æ®äººè¸æå¡ App Keyï¼ 
+  æ°å¼æ®äººè¸æå¡ App Secretï¼ 
+  æ°å¼æ®äººè¸æå¡ Secret Keyï¼ 
+  æ°å¼æ®äººè¸æå¡ Term Codeï¼ 
+
+  **ä»¥ä¸éç½®ä» ç¾åº¦å¼æ¾å¹³å° ç³è¯·**
+  ç¾åº¦äººè¸æå¡ App Idï¼ 
+  ç¾åº¦äººè¸æå¡ Api Keyï¼ 
+  ç¾åº¦äººè¸æå¡ Secret Keyï¼ 
+  ç¾åº¦äººè¸æå¡ ç»IDï¼
+
 
 #### authx-service
 
@@ -448,14 +458,20 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   å¯ç ï¼ <è¯·å¡«ååå»ºçæ°æ®åºç¨æ·çå¯ç >
   æ°æ®åºåï¼ `user_authz` ï¼åºå®å¼ãææå®éæåµä¿®æ¹
 
+* MYSQLæ°æ®åºéç½® - æ¥å¿æå¡
+
+  ç¨æ·åï¼ `authx_log` ï¼åºå®å¼ãææå®éæåµä¿®æ¹
+  å¯ç ï¼ <è¯·å¡«ååå»ºçæ°æ®åºç¨æ·çå¯ç >
+  æ°æ®åºåï¼ `authx_log` ï¼åºå®å¼ãææå®éæåµä¿®æ¹
+
 
 * ååå¨å±è®¾ç½®
 
   æ ¹ååï¼ `paas.<school>.edu.cn` ï¼è¯·ä¿®æ¹ä¸ºå®éçå­¦æ ¡åå
 
-* ååéç½® - å®å¨ä¸­å¿
+* ååéç½® - ç¨æ·æææå¡
 
-  å­ååï¼ `security-center` ï¼è¥é¡»ä¿®æ¹ï¼æ ¹æ®å®éæåµä¿®æ¹å³å¯
+  å­ååï¼ `authx-service` ï¼è¥é¡»ä¿®æ¹ï¼æ ¹æ®å®éæåµä¿®æ¹å³å¯
 
 
 * POA è®¾ç½®
@@ -480,6 +496,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   Agent Service æä»¶ä¸ä¼ è·¯å¾ï¼ `/api/v1/tpas/file/minio` ï¼ä¸è¬ä¸ç¨ä¿®æ¹
   Agent Service é®ä»¶åéè·¯å¾ï¼ `/api/v1/tpas/mail/smtp` ï¼ä¸è¬ä¸ç¨ä¿®æ¹
   Agent Service ç­ä¿¡åéè·¯å¾ï¼ `/api/v1/tpas/sms/aliyun` ï¼ è¥ä¸ä½¿ç¨é¿éäºç­ä¿¡æå¡ï¼é¡»ä¿®æ¹
+  Agent Service äººè¸æå¡æ¥å£ï¼ `/api/v1/tpas/face/aiface` ï¼æ°å¼æ®äººè¸ aifaceï¼ç¾åº¦äººè¸ aipface
 
 * ä¾èµ API - CAS SERVER
 
@@ -544,22 +561,29 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   æ°æ®åºåï¼ `token_server` ï¼åºå®å¼ãææå®éæåµä¿®æ¹
 
 
+* å¤é¨RABBITMQ - è¿æ¥éç½®
+
+  å¤é¨RabbitMQ hostï¼ `authx-service-rabbitmq.authx-service.svc.cluster.local` ï¼è¿æ¥ authx-service çrabbitmqï¼ è¥ authx-service çå½åç©ºé´æè°æ´ï¼è¯·ä¿®æ¹
+  å¤é¨RabbitMQ portï¼ 5672
+
+* RABBITMQéç½® - å®å¨éç½®
+
+  ç¨æ·åï¼ guest
+  å¯ç ï¼ guest
+
+
 * ååå¨å±è®¾ç½®
 
   æ ¹ååï¼ `paas.<school>.edu.cn` ï¼è¯·ä¿®æ¹ä¸ºå®éçå­¦æ ¡åå
 
-* ååéç½® - CAS è®¤è¯
+* ååéç½® - è®¤è¯æå¡
 
   å­ååï¼ `cas` ï¼è¥é¡»ä¿®æ¹ï¼æ ¹æ®å®éæåµä¿®æ¹å³å¯
 
-* ååéç½® - Token Server
-
-  å­ååï¼ `token` ï¼è¥é¡»ä¿®æ¹ï¼æ ¹æ®å®éæåµä¿®æ¹å³å¯
-
 
 * POA è®¾ç½®
 
-  POAç½å³å°åï¼ `http://poa.paas.<school>.edu.cn` ï¼è¯·è®¾ç½®ä¸º poa ç½å³çå¤ç½å°å
+  POAç½å³å°åï¼ `https://poa.paas.<school>.edu.cn` ï¼è¯·è®¾ç½®ä¸º poa ç½å³çå¤ç½å°å
   POA SAå°åï¼ è¯·è®¾ç½®ä¸º poa-sa ç®¡çæ¥å£ç k8s åé¨å°åï¼æ ¹æ®å®éé¨ç½²ç POA è¿è¡è°æ´ï¼
 
 
@@ -570,6 +594,7 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   Agent Service æä»¶ä¸ä¼ è·¯å¾ï¼ `/api/v1/tpas/file/minio` ï¼ä¸è¬ä¸ç¨ä¿®æ¹
   Agent Service é®ä»¶åéè·¯å¾ï¼ `/api/v1/tpas/mail/smtp` ï¼ä¸è¬ä¸ç¨ä¿®æ¹
   Agent Service ç­ä¿¡åéè·¯å¾ï¼ `/api/v1/tpas/sms/aliyun` ï¼ è¥ä¸ä½¿ç¨é¿éäºç­ä¿¡æå¡ï¼é¡»ä¿®æ¹
+  Agent Service äººè¸æå¡æ¥å£ï¼ `/api/v1/tpas/face/aiface` ï¼æ°å¼æ®äººè¸ aifaceï¼ç¾åº¦äººè¸ aipface
 
 * ä¾èµ API - ç¨æ·æå¡
 
@@ -580,6 +605,12 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   ç¨æ·ææAPIåé¨å°åï¼ `http://authx-service-user-authz-service-sa.authx-service.svc.cluster.local:8080` ï¼åºå®å¼ï¼è¥ authx-service çå½åç©ºé´æè°æ´ï¼è¯·ä¿®æ¹
 
 
+* POA CLIENT
+
+  Client Idï¼ ä» POA è¿è¡ç³è¯·
+  Client Secretï¼ ä» POA è¿è¡ç³è¯·
+
+
 
 * å¨æå¯ç 
 
@@ -618,12 +649,6 @@ v1 | åæ´ªé | 2021-05-15 | åç¨¿
   æ¶æ¯æå¡åºç¨IDï¼ ç±æ¶æ¯æå¡æä¾
 
 
-* TOKEN SERVER - POA CLIENT
-
-  Client Idï¼ ä» POA è¿è¡ç³è¯·
-  Client Secretï¼ ä» POA è¿è¡ç³è¯·
-
-
 * TOKEN SERVER - äººè¸æå¡éç½®
   å¯ä¸ æ°å¼æ®äººè¸å¹³å° æ ç¾åº¦äººè¸æå¡ è¿è¡å¯¹æ¥
 
-- 
2.17.1