CN110866229A - Multi-platform account authority unified management method and system - Google Patents
Multi-platform account authority unified management method and system Download PDFInfo
- Publication number
- CN110866229A CN110866229A CN201810987782.0A CN201810987782A CN110866229A CN 110866229 A CN110866229 A CN 110866229A CN 201810987782 A CN201810987782 A CN 201810987782A CN 110866229 A CN110866229 A CN 110866229A
- Authority
- CN
- China
- Prior art keywords
- platform
- user
- data
- authority
- dynamic token
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a unified management method and a system for multi-platform account permissions, wherein the method comprises the following steps: after a first platform in the multi-platform account authority unified management system receives and responds to control operation from a user, first dynamic token request information sent by the first platform is received, a first dynamic token is created and sent to the first platform; receiving a first request which is sent by the first platform and used for requesting the authority data of the user on a second platform, wherein the first request carries the first dynamic token; and if the first request is verified successfully, acquiring the authority data of the user on the second platform. The method is used for solving the technical problems that the existing multi-platform account authority unified management method is poor in flexibility and low in authority data management efficiency.
Description
Technical Field
The invention relates to the technical field of computers, in particular to a unified management method and a unified management system for multi-platform account permissions.
Background
The existing management of account authority data is usually performed on a single platform, and users in different levels can obtain fixed authority data according to differential hierarchical processing of different users.
In addition to the single-platform rights data management method described above, the conventional multi-platform account rights management method generally classifies users into different categories based on authentication services, and then binds the users of the different categories with the rights data. However, the relationship between the authority data and the service in the method is excessively coupled, so that the uniformity and the expansibility of the method are poor. And only when the user logs in the platform at the time point, the authority data corresponding to the user is determined, so that the account authority data cannot be managed in real time. In addition, the method also needs to perform authentication of the authority data through cross-platform, the cross-platform authentication is often related to account information, and a third-party platform accessing the multi-platform account authority management system needs to strictly follow the unification requirements of the system on methods such as account information storage, submission, verification and the like, so that the flexibility of accessing the system by the third-party platform is reduced.
Therefore, the conventional unified management method for the multi-platform account permission has poor flexibility and low management efficiency on permission data.
Disclosure of Invention
The embodiment of the invention provides a method and a device for unified management of multi-platform account permission, which are used for solving the technical problems of poor flexibility and low permission data management efficiency of the conventional method for unified management of multi-platform account permission.
In a first aspect, an embodiment of the present invention provides a unified management method for multi-platform account permissions, including:
after a first platform in the multi-platform account authority unified management system receives and responds to control operation from a user, first dynamic token request information sent by the first platform is received, a first dynamic token is created and sent to the first platform;
receiving a first request which is sent by the first platform and used for requesting the authority data of the user on a second platform, wherein the first request carries the first dynamic token;
and if the first request is verified successfully, acquiring the authority data of the user on the second platform.
In the technical scheme of the embodiment of the invention, once a user performs control operation on a first platform in the multi-platform account authority unified management system, the first platform sends first dynamic token request information to the multi-platform account authority unified management system, the multi-platform account authority unified management system creates a first dynamic token, and the first dynamic token is sent to the first platform. Then, the first platform sends a first request carrying the first dynamic token and used for requesting the authority data of the user on the second platform to the multi-platform account authority unified management system. And then, the multi-platform account authority unified management system checks the first request, and if the checking is successful, the multi-platform account authority unified management system acquires the authority data of the user on the second platform. The user state can be sensed in real time through the dynamic token, so that the multi-platform account authority unified management system can monitor the full life cycle of the user state on a corresponding platform, and the authority data can be managed in real time. And the flexibility of the unified management method for the multi-platform account permission and the management efficiency of permission data are improved.
Optionally, the method further comprises:
formatting the permission data on the second platform into json data and sending the json data to the second platform so that the json data can be analyzed into public menu data and page self permission data by the second platform;
when a first common package of a page to be displayed and a front-end menu reaches a terminal device and is rendered, an ajax request is sent to a background of a second platform through the common package of the front-end menu, a second page content to be displayed corresponding to common menu data on the terminal device is determined, and the terminal device is enabled to display the first content to be displayed and the second content to be displayed, wherein the ajax request is a request used for obtaining the common menu data needed by the common package of the front-end menu, and the first page content to be displayed is determined by logic analysis of authority data of the page itself by the background of the second platform.
In the embodiment of the invention, the multi-platform account authority unified management system formats the authority data on the second platform into json data and sends the json data to the second platform, and the second platform analyzes the json data to obtain the public menu data and the authority data of the page. And the background of the second platform performs logic analysis on the authority data of the page, and determines the content of the first page to be displayed corresponding to the authority data of the page on the terminal equipment. When the first page content to be displayed and the front-end menu public packet reach the terminal device and are rendered, the front-end menu public packet sends an ajax request for acquiring public menu data required by the front-end menu public packet to a background of the second platform, and then second page content to be displayed corresponding to the public menu data on the terminal device is determined. And further, displaying the first page content to be displayed and the second page content to be displayed to the user by the terminal equipment. That is to say, the multi-platform account permission unified management system can uniformly manage the common menu data among the platforms and the page permission data of the platforms, so that the multi-platform account permission unified management system can uniformly manage the third-party platform page.
Optionally, the method further comprises:
if the user registers the first platform, receiving user data information of the user and authority data on the first platform, which are sent by the first platform, wherein the user data information and the authority data of the user on the first platform carry the first dynamic token;
and according to a preset authority rule between the first platform and the multi-platform account authority unified management system, creating a mapping relation between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system.
In the embodiment of the invention, when a user registers a first platform, the multi-platform account authority unified management system receives user data information of the user and authority data on the first platform, which are sent by the first platform, so that a mapping relation between the user data information and the authority data of the user on the first platform is created according to a preset authority rule between the first platform and the multi-platform account authority unified management system, and the creation and management of the authority data by the multi-platform account authority unified management system are realized when the user registers the platform.
Optionally, after creating a mapping relationship between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system, the method further includes:
if the user logs in the first platform, checking login information of the user based on the first dynamic token;
if the verification is successful, receiving second dynamic token request information sent by the first platform, creating a second dynamic token different from the first dynamic token, and sending the second dynamic token to the first platform;
receiving a second request which is sent by the first platform and used for requesting the authority data of the user on the first platform, wherein the second request carries the second dynamic token;
and if the second request is verified successfully, determining the authority data of the user on the first platform based on the mapping relation.
In the embodiment of the invention, when a user logs in a first platform, a multi-platform account authority unified management system verifies login information of the user based on a first dynamic token, if the verification is successful, the multi-platform account authority unified management system receives second dynamic token request information sent by the first platform, creates a second dynamic token (namely, updates the dynamic token) different from the first dynamic token and sends the second dynamic token to the first platform, and then the first platform sends a second request carrying the second dynamic token and used for requesting authority data of the user on the first platform to the multi-platform account authority unified management system. If the multi-platform account authority unified management system successfully verifies the second request, the authority data of the user on the first platform is further determined based on the mapping relation between the user data information and the authority data of the user on the first platform, so that the multi-platform account authority unified management system can uniformly manage the authority data when the user logs in the platform.
Optionally, the method further comprises:
creating a third dynamic token different from the second dynamic token, encrypting the authority data of the user on the first platform, and sending the encrypted authority data to the first platform;
receiving authority data which is sent by the first platform and is decrypted aiming at the encrypted authority data;
and formatting the decrypted authority data into json data and sending the json data to the first platform.
In the embodiment of the invention, after the multi-platform account authority unified management system determines the authority data of the user on the first platform, the multi-platform account authority unified management system creates a third dynamic token (namely, updates the dynamic token) different from the second dynamic token, encrypts the authority data of the user on the first platform, and sends the encrypted authority data to the first platform, thereby ensuring the security of the authority data. And then, the first platform decrypts the encrypted authority data and sends the decrypted authority data to the multi-platform account authority unified management system. And then, the multi-platform account authority unified management system formats the decrypted authority data into json data and sends the json data to the first platform. That is to say, in the process that the user logs in the first platform, the multi-platform account authority unified management system encrypts and decrypts the authority data by creating a new dynamic token, so that the multi-platform account authority unified management system is ensured to safely manage the authority data.
Optionally, the method further comprises:
if the user clicks on the first platform to access data under a third platform different from the first platform, receiving a third request sent by the first platform and used for requesting to access authority data of the user on the third platform, wherein the third request carries the third dynamic token;
and if the verification of the third request is successful and the verification of the mapping relation between the user data information and the authority data under the third platform is successful, acquiring the authority data of the user under the third platform.
In the embodiment of the invention, after a user logs in a first platform, if the user clicks on the first platform to access data under a third platform, the first platform sends a third request carrying a third dynamic token and used for requesting to access the authority data of the user on the third platform to a multi-platform account authority unified management system. And then, the multi-platform account authority unified management system verifies the third request and the mapping relation between the user information and the authority data under the third platform, and if the verification is successful, the multi-platform account authority unified management system obtains the authority data of the user under the third platform. And then, after the first platform jumps to the third platform, determining the authority data which the user has the right to see and click. Therefore, the unified management of the multi-platform account authority unified management system on the entry authority data during the jump among the platforms is realized.
Optionally, if the permission data of the user on the second platform is a page permission in the platform, the method further includes:
and performing preset tree type division according to page resources, and grading users, wherein the users at different grades have branch resource authorities at different grades.
In the embodiment of the invention, the multi-platform account authority unified management system carries out preset tree type division according to page resources, users are classified, and users at different levels have branch resource authorities at different levels. Due to the fact that different branches correspond to different resource authorities, the multi-platform account authority unified management system can rapidly set user authority data.
Optionally, if the permission data of the user on the second platform is an inter-platform entry permission, the method further includes:
and presetting the authority for the second platform to jump to other platforms in the multi-platform account unified management system.
Optionally, if the authority data of the user on the second platform is a specific authority, the method further includes:
and presetting the authority which accords with the preset user attribute or the preset resource attribute in the second platform.
In a second aspect, an embodiment of the present invention further provides a system for unified management of multiple platform account permissions, including:
the processing unit is used for receiving first dynamic token request information sent by a first platform, creating a first dynamic token and sending the first dynamic token to the first platform after the first platform in the multi-platform account authority unified management system receives and responds to control operation from a user; a receiving unit, configured to receive a first request, which is sent by the first platform and used to request permission data of the user on a second platform, where the first request carries the first dynamic token;
and the acquisition unit is used for acquiring the authority data of the user on the second platform if the first request is verified successfully.
Optionally, the system further includes a front-end menu public package, and the processing unit is further configured to format the permission data on the second platform into json data and send the json data to the second platform;
when a first common package of a page to be displayed and a front-end menu reaches a terminal device and is rendered, the common package of the front-end menu is used for sending an ajax request to a background of a second platform, and determining second page content to be displayed corresponding to common menu data on the terminal device, so that the terminal device displays the first content to be displayed and the second content to be displayed, wherein the ajax request is a request for acquiring the common menu data required by the common package of the front-end menu, and the first page content to be displayed is determined by logic analysis of authority data of a page of the background of the second platform.
Optionally, the processing unit is further configured to:
if the user registers the first platform, receiving user data information of the user and authority data on the first platform, which are sent by the first platform, wherein the user data information and the authority data of the user on the first platform carry the first dynamic token;
and according to a preset authority rule between the first platform and the multi-platform account unified management system, creating a mapping relation between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system.
Optionally, after creating a mapping relationship between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system, the processing unit is further configured to:
if the user logs in the first platform, checking login information of the user based on the first dynamic token;
if the verification is successful, receiving second dynamic token request information sent by the first platform, creating a second dynamic token different from the first dynamic token, and sending the second dynamic token to the first platform;
receiving a second request which is sent by the first platform and used for requesting the authority data of the user on the first platform, wherein the second request carries the second dynamic token;
and if the second request is verified successfully, determining the authority data of the user on the first platform based on the mapping relation.
Optionally, the processing unit is further configured to:
creating a third dynamic token different from the second dynamic token, encrypting the authority data of the user on the first platform, and sending the encrypted authority data to the first platform;
receiving authority data which is sent by the first platform and is decrypted aiming at the encrypted authority data;
and formatting the decrypted authority data into json data and sending the json data to the first platform.
Optionally, the processing unit is further configured to:
if the user clicks on the first platform to access data under a third platform different from the first platform, receiving a third request sent by the first platform and used for requesting to access authority data of the user on the third platform, wherein the third request carries the third dynamic token;
and if the verification of the third request is successful and the verification of the mapping relation between the user data information and the authority data under the third platform is successful, acquiring the authority data of the user under the third platform.
Optionally, if the permission data of the user on the second platform is a page permission in the platform, the processing unit is further configured to:
and performing preset tree type division according to page resources, and grading users, wherein the users at different grades have branch resource authorities at different grades.
Optionally, if the permission data of the user on the second platform is an inter-platform entry permission, the processing unit is further configured to:
and presetting the authority for the second platform to jump to other platforms in the multi-platform account unified management system.
Optionally, if the authority data of the user on the second platform is a specific authority, the processing unit is further configured to:
and presetting the authority which accords with the preset user attribute or the preset resource attribute in the second platform.
In a third aspect, an embodiment of the present invention further provides a system for unified management of multiple platform account permissions, where the system includes a processor, and the processor is configured to implement the steps of the method for unified management of multiple platform account permissions according to the first aspect when executing a computer program stored in a memory.
In a fourth aspect, the embodiment of the present invention further provides a readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the steps of the unified management method for rights of multiple platforms according to the first aspect.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention.
FIG. 1 is a flowchart of a method for unified management of multi-platform account permissions according to an embodiment of the present invention;
FIG. 2 is a flowchart of another method for unified management of multi-platform account permissions according to an embodiment of the present invention;
FIG. 3 is a flowchart of a method for a unified management method of multi-platform account permissions when a user registers a platform according to an embodiment of the present invention;
FIG. 4 is a flowchart of a method for a unified management method of multi-platform account permissions when a user logs in a platform according to an embodiment of the present invention;
FIG. 5 is a flowchart of another method for unified management of multi-platform account permissions according to an embodiment of the present invention;
FIG. 6 is a flowchart of a method for unified management of rights for multiple platforms according to an embodiment of the present invention when jumping between platforms;
fig. 7 is a block diagram of a structure of a unified management system for multi-platform account permissions according to an embodiment of the present invention.
Detailed Description
The terms "first," "second," and the like in the description and claims of the present invention and in the above-described drawings are used for distinguishing between different objects and not for describing a particular order. Furthermore, the terms "comprises" and any variations thereof, are intended to cover non-exclusive inclusions. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those steps or elements listed, but may alternatively include other steps or elements not listed, or inherent to such process, method, article, or apparatus.
Reference herein to "an embodiment" means that a particular feature, structure, or characteristic described in connection with the embodiment can be included in at least one embodiment of the invention. The appearances of the phrase in various places in the specification are not necessarily all referring to the same embodiment, nor are separate or alternative embodiments mutually exclusive of other embodiments. It is explicitly and implicitly understood by one skilled in the art that the embodiments described herein can be combined with other embodiments.
In order to better understand the technical solutions of the present invention, the technical solutions of the present invention are described in detail below with reference to the drawings and the specific embodiments, and it should be understood that the specific features in the embodiments and the embodiments of the present invention are detailed descriptions of the technical solutions of the present invention, and are not limitations of the technical solutions of the present invention, and the technical features in the embodiments and the embodiments of the present invention may be combined with each other without conflict.
Referring to fig. 1, an embodiment of the present invention provides a unified management method for multi-platform account permissions, including:
s101: after a first platform in the multi-platform account authority unified management system receives and responds to control operation from a user, first dynamic token request information sent by the first platform is received, a first dynamic token is created and sent to the first platform;
s102: receiving a first request which is sent by the first platform and used for requesting the authority data of the user on a second platform, wherein the first request carries the first dynamic token;
s103: and if the first request is verified successfully, acquiring the authority data of the user on the second platform.
In the specific implementation process, the specific implementation process from step S101 to step S103 is as follows:
firstly, a user performs control operation on a first platform in the multi-platform account authority unified management system, and the control operation can be performed on clicking, double clicking, long pressing and the like of keys or links on the first platform. The functions to be implemented may be to implement business functions of the user on the first platform such as registration, login, platform jump, package purchase, etc. Of course, those skilled in the art may set the control operation and the service function corresponding to the control operation according to the actual usage habit of the user, and this is not illustrated here.
Then, the first platform sends first dynamic token request information to the multi-platform account authority unified management system, and after receiving the first dynamic token request information, the multi-platform account authority unified management system creates a first dynamic token and sends the first dynamic token to the first platform. Then, the first platform sends a first request carrying a first dynamic token and used for requesting the authority data of the user on the second platform to the multi-platform account authority unified management system, and the multi-platform account authority unified management system verifies the first request. If the verification is successful, the multi-platform account permission unified management system acquires permission data of the user on the second platform. The permission data is specifically information that the user has a right to see and click on the second platform, and the first platform and the second platform may be the same platform or different platforms. The user states (such as registration states, login states and the like) can be sensed in real time through the dynamic token, so that the multi-platform account authority unified management system can monitor the full life cycle of the user states on the corresponding platform, and the authority data can be managed in real time. And the flexibility of the unified management method for the multi-platform account permission and the management efficiency of permission data are improved.
In the embodiment of the present invention, in order to ensure that the multi-platform account authority unified management system uniformly manages the menu pages under each platform, please refer to fig. 2, where the method further includes:
s201: formatting the authority data on the second platform into json data and sending the json data to the second platform;
s202: when a first common package of a page to be displayed and a front-end menu reaches a terminal device and is rendered, an ajax request is sent to a background of a second platform through the common package of the front-end menu, a second page content to be displayed corresponding to common menu data on the terminal device is determined, and the terminal device is enabled to display the first content to be displayed and the second content to be displayed, wherein the ajax request is a request used for obtaining the common menu data needed by the common package of the front-end menu, and the first page content to be displayed is determined by logic analysis of authority data of the page itself by the background of the second platform.
In the specific implementation process, the specific implementation process from step S201 to step S202 is as follows:
firstly, after the multi-platform account authority unified management system acquires authority data of a user on a second platform, the multi-platform account authority unified management system formats the authority data into json data and sends the json data to the second platform. After the json data is obtained by the second platform, splitting the json data into public menu data and page self authority data of the second platform. Wherein, the common menu data can be directly stored in the buffer memory of the second platform. In a specific implementation, the json data may be formatted in a manner of specifying a resource number and fuzzy matching the resource number, for example, in a format of "1-2-" to represent all three-level title resources under the "1-2" secondary title. Therefore, the transmission of corresponding data volume is simplified by formatting the authority data, and the occupation of system resources is reduced.
And then, the background of the second platform analyzes the authority data of the page, and determines the content of the first page to be displayed, which is to be displayed on the terminal equipment and corresponds to the authority data of the page. Then, when the first page content to be displayed and the front-end menu public packet reach the terminal device and are rendered, the front-end menu public packet sends an ajax request to the background of the second platform to acquire public menu data required by the front-end menu public packet, and then second page content to be displayed corresponding to the public menu data on the terminal device is determined. And further, displaying the first page content to be displayed and the second page content to be displayed to the user by the terminal equipment. That is to say, the multi-platform account permission unified management system can uniformly manage the common menu data among the platforms and the page permission data of the platforms, so that the multi-platform account permission unified management system can uniformly manage the third-party platform page. In addition, the authority data of the second platform page is judged by the second platform logic to display the page content, and then the page is sent to the user. That is to say, the multi-platform account authority unified management system can not only carry out unified management on the menu pages under each third-party platform, but also ensure the personalized display of the authority data of each third-party platform.
In the embodiment of the invention, after the third-party platform acquires the resource authority data of the user, the third-party platform delivers the page menu module of the front-end page of the platform, and the module analyzes the formatted data to the user and displays the formatted data on the page in a uniform menu mode, so that the user has the user-sensible authority functions of reading, writing, cross-platform jumping and the like. The page menu module comprises a front-end public packaging packet (namely, a front-end menu public packet), the packaging packet is based on javascript technology, particularly Jsonp, and is used for uniformly integrating functions of displaying and managing authority menu data at the front end of a third-party platform, and further automatically displaying formatted authority data in a menu of a front-end page for a user to click and access, so that the functions of the front end are unified; the module can provide uniform front-end menu style and structure, user permission data and other platform resources of the cross-domain multi-platform account permission unified management system, and repetitive research and development work of a third-party platform accessing the multi-platform account permission unified management system is simplified.
In this embodiment of the present invention, in order to implement unified management of user permission data by a multi-platform account permission unified management system when a user registers a platform, please refer to fig. 3, where the method further includes:
s301: if the user registers the first platform, receiving user data information of the user and authority data on the first platform, which are sent by the first platform, wherein the user data information and the authority data of the user on the first platform carry the first dynamic token;
s302: and according to a preset authority rule between the first platform and the multi-platform account authority unified management system, creating a mapping relation between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system.
In the specific implementation process, the specific implementation process from step S301 to step S302 is as follows:
firstly, when a user registers a first platform, a multi-platform account authority unified management system receives user data information of the user and authority data on the first platform, wherein the user data information is sent by the first platform, and the user data information can be information such as a user ID, an account name, a password, a mobile phone number, a mailbox address and the like. And then, according to a preset authority rule between the first platform and the multi-platform account authority unified management system, creating a mapping relation between user data information and the authority data of the user on the first platform. The preset authority rules can be formatted tree type division according to page resources in the platform, users are classified, different branches correspond to different resources and have unique resource IDs, and users at different levels have different branch resource authorities. Therefore, the unified management system for the multi-platform account authority manages the authority of the user when the user registers on the platform. In addition, the mapping relation can be changed on the multi-platform account authority unified management system by an administrator according to the actual use habit of the user, so that the performance of managing the authority data by the multi-platform account authority unified management system is improved.
In the embodiment of the invention, after the user successfully registers in the third-party platform for the first time, the third-party platform informs the multi-platform account authority unified management system of the user information, the system automatically (or manually by an administrator) creates the basic authority data of the user, and meanwhile, the administrator can change the authority of the user through the system; after the user logs in the third-party platform, the unified account authority management and control system generates authority data for the third-party platform user and informs the third-party platform of 'resource authority possessed by the user', so that the platform can know the visible resources of the user. The corresponding relation between the user data information and the authority data depends on three variables to be uniquely determined: platform ID, platform user ID, platform resource ID. Through the three variables, the high abstraction of the multi-platform account permission unified management system on the permission mapping relation can be realized, so that the system becomes a 'unified interface' of multi-platform permission data, and the resource permission service docking of the system and third-party platforms with different architectures and different systems can be realized more conveniently.
In this embodiment of the present invention, referring to fig. 4, in order to implement unified management of rights data by a multi-platform account rights unified management system when a user logs in a platform, the method further includes:
s401: if the user logs in the first platform, checking login information of the user based on the first dynamic token;
s402: if the verification is successful, receiving second dynamic token request information sent by the first platform, creating a second dynamic token different from the first dynamic token, and sending the second dynamic token to the first platform;
s403: receiving a second request which is sent by the first platform and used for requesting the authority data of the user on the first platform, wherein the second request carries the second dynamic token;
s404: and if the second request is verified successfully, determining the authority data of the user on the first platform based on the mapping relation.
In the specific implementation process, the specific implementation process from step S401 to step S404 is as follows:
firstly, when a user logs in a first platform, a multi-platform account authority unified management system verifies login information of the user based on a first dynamic token, if the verification is successful, the multi-platform account authority unified management system receives second dynamic token request information sent by the first platform, creates a second dynamic token (namely, updates the dynamic token) different from the first dynamic token and sends the second dynamic token to the first platform, and then the first platform sends a second request carrying the second dynamic token and used for requesting authority data of the user on the first platform to the multi-platform account authority unified management system. If the multi-platform account authority unified management system successfully verifies the second request, the authority data of the user on the first platform is further determined based on the mapping relation between the user data information and the authority data of the user on the first platform, so that the multi-platform account authority unified management system can uniformly manage the authority data when the user logs in the platform.
In this embodiment of the present invention, in order to ensure the security management of the unified management system for rights of multiple platforms for accounts on rights data, please refer to fig. 5, where the method further includes:
s501: creating a third dynamic token different from the second dynamic token, encrypting the authority data of the user on the first platform, and sending the encrypted authority data to the first platform;
s502: receiving authority data which is sent by the first platform and is decrypted aiming at the encrypted authority data;
s503: and formatting the decrypted authority data into json data and sending the json data to the first platform.
In the specific implementation process, the specific implementation process of steps S501 to S503 is as follows:
after the multi-platform account authority unified management system determines the authority data of the user on the first platform, the multi-platform account authority unified management system creates a third dynamic token (namely, updates the dynamic token) different from the second dynamic token, encrypts the authority data of the user on the first platform and sends the encrypted authority data to the first platform, so that the safety of the authority data is ensured. And then, the first platform decrypts the encrypted authority data and sends the decrypted authority data to the multi-platform account authority unified management system. And then, the multi-platform account authority unified management system formats the decrypted authority data into json data and sends the json data to the first platform. Then, the page content of the related rights data is presented on the terminal device by the method in step S202. In a specific implementation process, in the process that a user logs in a first platform, the multi-platform account authority unified management system encrypts and decrypts authority data by creating a new dynamic token, so that the multi-platform account authority unified management system is ensured to safely manage the authority data.
In this embodiment of the present invention, referring to fig. 6, in order to implement unified management of entry permission data when jumping between platforms by a multi-platform account permission unified management system, the method further includes:
s601: if the user clicks on the first platform to access data under a third platform different from the first platform, receiving a third request sent by the first platform and used for requesting to access authority data of the user on the third platform, wherein the third request carries the third dynamic token;
s602: and if the verification of the third request is successful and the verification of the mapping relation between the user data information and the authority data under the third platform is successful, acquiring the authority data of the user under the third platform.
In the specific implementation process, the specific implementation process of step S601 to step S602 is as follows:
firstly, after a user logs in a first platform, if the user clicks on the first platform to access data under a third platform, the first platform sends a third request carrying a third dynamic token and used for requesting to access the authority data of the user on the third platform to a multi-platform account authority unified management system. For example, when a user clicks on a page link on platform P1 that platform P1 can jump to platform P2, platform P1 sends a request carrying a dynamic token to the multi-platform account rights unified management system for requesting rights data on platform P2. And then, the multi-platform account authority unified management system verifies the third request and the mapping relation between the user information and the authority data under the third platform, and if the verification is successful, the multi-platform account authority unified management system obtains the authority data of the user under the third platform. And then, after the first platform jumps to the third platform, determining the authority data which the user has the right to see and click. Therefore, the unified management of the multi-platform account authority unified management system on the entry authority data during the jump among the platforms is realized.
In the embodiment of the invention, the authority data of the user on each platform can be page authority in the platform, entrance authority between platforms, special user authority based on the user and special resource authority based on the resource. Specifically, if the authority data is the page authority in the platform, formatting tree type division can be specifically performed according to page resources in the platform, users are classified, and users in different levels have branch resource authorities in different levels. Due to the fact that different branches correspond to different resource authorities, the multi-platform account authority unified management system can rapidly set user authority data. In addition, under the multi-platform account authority unified management system, an administrator can also manually adjust the mapping relation between the page authority and the user data information in the platform to create a new mapping relation. In any mode, the multi-platform account authority unified management system can uniformly manage the authority data of the users, and the management performance is good.
In a specific implementation process, if the authority data is an inter-platform entry authority, the inter-platform entry authority is used for representing the skip capability authority among the platforms, and the authority can be preset in the multi-platform account authority unified management system by an administrator according to the actual use habits of users. For example, a registered user on the platform P1 has the authority of the universal inter-platform jumping capability of the platform P1, and after the user registers on the platform P1, the multi-platform account authority unified management system may automatically assign corresponding platform entry authority to the user.
In the specific implementation process, if the authority data is the special user authority which accords with the preset user attribute and is based on the user, the multi-platform account authority unified management system gives special authority to the user special information in the platform, the part of authority is embodied in the process that the platform sends the user to the multi-platform account authority unified management system after the user registers, the multi-platform account authority unified management system judges the special authority possessed by the user according to the parameter condition requested by the platform, and after the user registers the platform, the multi-platform account authority unified management system automatically distributes the special authority to the special user.
In a specific implementation process, if the authority data is a special resource authority based on resources, which accords with preset resource attributes, and the special resource authority deviates from other resource authorities of the platform, the multi-platform account authority unified management system does not automatically allocate the authority to the resources, and an administrator can manually allocate the special resource authority through the multi-platform account authority unified management system. After the user registers the platform, the platform informs the multi-platform account authority unified management system of the special resource authority data, and corresponding resource authorities are automatically allocated by the multi-platform account authority unified management system or manually allocated by an administrator.
As a specific example, the flow of the unified management method for multi-platform account permissions provided by the embodiment of the present invention may be as follows:
(1) the User registers in the platform P1, the platform P1 stores the User data information (or the multi-platform account authority unified management system S stores the User data information);
(2) the platform P1 requests a dynamic token from the multi-platform account authority unified management system S through a platform back-end public packet module;
(3) the multi-platform account authority unified management system S creates a dynamic token T1 through a dynamic token management module and returns to a platform P1;
(4) the platform P1 carries a dynamic token T1 to send the basic registration data of the User to the multi-platform account authority unified management system S, and simultaneously, the platform P1 can send the basic authority data of the registered User;
(5) the multi-platform account authority unified management system S obtains User data, and creates mapping data of users and related platform resource authorities in an S database through an account authority management module in the multi-platform account authority unified management system according to an authority rule agreed with a platform P1 in advance;
(6) in the multi-platform account authority unified management system S, an administrator Admin can modify inter-platform authority data and intra-platform authority data of a User through an account authority management module, and generate and store new mapping data of the User and related platform resource authorities;
(7) the User logs in at a platform P1, and the platform P1 verifies that the User login information is successful (or the User login information is verified by a multi-platform account authority unified management system S);
(8) the platform P1 requests a dynamic token from the multi-platform account authority unified management system S through a platform back-end public packet module;
(9) the multi-platform account authority unified management system S creates a dynamic token T2 through a dynamic token management module and returns to a platform P1;
(10) the platform P1 carries a dynamic token T2 and requests resource authority data of a User from a multi-platform account authority unified management system S through a platform rear-end common package module;
(11) the multi-platform account authority unified management system S verifies that the request of the platform P1 is successful through the dynamic token management module;
(12) the multi-platform account authority unified management system S acquires resource authority data of a User through an account authority management module;
(13) the multi-platform account authority unified management system S reformats the original data into json data meeting the format requirement of a front-end menu public packet through an authority data management module;
(14) the multi-platform account authority unified management system S encrypts the resource authority data through the dynamic token management module, creates a new dynamic token T3 at the same time, and returns all the data to the platform P1;
(15) after the platform P1 acquires the resource authority data of the User, the data is decrypted by a platform rear-end public packet module to restore formatted resource authority data and an updated dynamic token T3;
(16) the platform P1 transmits the decrypted and formatted resource authority data to the front-end menu processing module, the front-end menu processing module analyzes the data, and data information which a User has the right to see and click is displayed in a User page menu;
(17) the User can find multi-level titles in the page menu data, and the multi-level titles correspond to platform-level authorities which can be accessed by the User and resource authorities under the platform respectively.
(18) When a user clicks and accesses resources under a certain platform P2, a menu page initiates an ajax request through a front-end menu processing module, and the key information is transmitted to a platform P1;
(19) the platform P1 carries the dynamic token T3 updated in the early stage to send the resource information of the platform P2 to be accessed by the user to the multi-platform account authority unified management system S through a platform rear-end public packet module;
(20) the multi-platform account authority unified management system S successfully verifies the data requested by the platform P1 through the dynamic token management module;
(21) the multi-platform account authority unified management system S verifies that the mapping relation between the User and the resources under the platform P2 is successful;
(22) the multi-platform account authority unified management system S obtains data information of resources under a platform P2, encrypts the data through a dynamic token management module, creates an updated dynamic token T4 at the same time, and returns the updated dynamic token T4 to the platform P1;
(23) the platform P1 decrypts the data through a platform rear-end public packet module, obtains the access data of the User resource under the platform P2, and obtains an updated dynamic token T4;
(24) the platform P1 gives the access data of the resource under the platform P2 and the dynamic token T4 to the terminal of the User through a front-end menu processing module, and the terminal initiates the actual access of the User to the resource under the platform P2;
(25) and the User jumps to the resource under the platform P2, and acquires the menu authority data and the updated dynamic token T5 again according to the dynamic token T4 by the front-end menu management module in the platform P2.
The authority data takes the multi-platform account authority unified management system S as a data source, takes a platform rear-end public package module as a data interaction bridge between the multi-platform account authority unified management system S and the platforms P1 and P2, and takes a front-end menu management module as authority data display and page management to jointly provide unified authority management service for a third-party platform accessed to the multi-platform account authority unified management system S.
1-6, after the user registers and creates an account for the first time, the platform P1 interacts with the unified account authority control system, and the authority data of the user is created by the unified account authority control system; the flow 7-17 is the process of obtaining the authority data by the user on the platform P1, and the authority data is finally embodied as the authority menu bar on the user terminal device page; the process 18-24 is a process of acquiring the authority data of the platform P2 resource entry on the platform P1 by the user, and the authority data is finally embodied as that the user terminal page jumps from the platform P1 to the platform P2 (here, the authentication and verification of the platform P2 to the user are not in the functional scope of the multi-platform account authority unified management system); the process 25 is a (simplified) acquisition process of the user on the platform P2 for the rights data, and the actual process is the same as the process 7-17 or the process 18-24 of the user on the platform P1.
Based on the same inventive concept, please refer to fig. 7, an embodiment of the present invention further provides a unified management system for multi-platform account permissions, including:
the processing unit 10 is configured to receive, after a first platform in the multi-platform account right unified management system receives and responds to a control operation from a user, first dynamic token request information sent by the first platform, create a first dynamic token, and send the first dynamic token to the first platform;
a receiving unit 20, configured to receive a first request sent by the first platform and used to request permission data of the user on a second platform, where the first request carries the first dynamic token;
the obtaining unit 30 obtains the authority data of the user on the second platform if the first request is verified successfully.
In the implementation of the present invention, the system further includes a front-end menu public packet, and the processing unit 20 is further configured to format the authority data on the second platform into json data and send the json data to the second platform;
when a first common package of a page to be displayed and a front-end menu reaches a terminal device and is rendered, the common package of the front-end menu is used for sending an ajax request to a background of a second platform, and determining second page content to be displayed corresponding to common menu data on the terminal device, so that the terminal device displays the first content to be displayed and the second content to be displayed, wherein the ajax request is a request for acquiring the common menu data required by the common package of the front-end menu, and the first page content to be displayed is determined by logic analysis of authority data of a page of the background of the second platform.
In the embodiment of the present invention, the processing unit 10 is further configured to:
if the user registers the first platform, receiving user data information of the user and authority data on the first platform, which are sent by the first platform, wherein the user data information and the authority data of the user on the first platform carry the first dynamic token;
and according to a preset authority rule between the first platform and the multi-platform account unified management system, creating a mapping relation between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system.
In this embodiment of the present invention, after creating a mapping relationship between the user data information and the authority data of the user on the first platform in the database of the multi-platform account unified management system, the processing unit 10 is further configured to:
if the user logs in the first platform, checking login information of the user based on the first dynamic token;
if the verification is successful, receiving second dynamic token request information sent by the first platform, creating a second dynamic token different from the first dynamic token, and sending the second dynamic token to the first platform;
receiving a second request which is sent by the first platform and used for requesting the authority data of the user on the first platform, wherein the second request carries the second dynamic token;
and if the second request is verified successfully, determining the authority data of the user on the first platform based on the mapping relation. In the embodiment of the present invention, the processing unit 10 is further configured to:
creating a third dynamic token different from the second dynamic token, encrypting the authority data of the user on the first platform, and sending the encrypted authority data to the first platform;
receiving authority data which is sent by the first platform and is decrypted aiming at the encrypted authority data;
and formatting the decrypted authority data into json data and sending the json data to the first platform.
In the embodiment of the present invention, the processing unit 10 is further configured to:
if the user clicks on the first platform to access data under a third platform different from the first platform, receiving a third request sent by the first platform and used for requesting to access authority data of the user on the third platform, wherein the third request carries the third dynamic token;
and if the verification of the third request is successful and the verification of the mapping relation between the user data information and the authority data under the third platform is successful, acquiring the authority data of the user under the third platform.
In this embodiment of the present invention, if the permission data of the user on the second platform is a page permission in the platform, the processing unit 10 is further configured to:
and performing preset tree type division according to page resources, and grading users, wherein the users at different grades have branch resource authorities at different grades.
In this embodiment of the present invention, if the permission data of the user on the second platform is an inter-platform entry permission, the processing unit 10 is further configured to:
and presetting the authority for the second platform to jump to other platforms in the multi-platform account unified management system.
In this embodiment of the present invention, if the authority data of the user on the second platform is a specific authority, the processing unit 10 is further configured to:
and presetting the authority which accords with the preset user attribute or the preset resource attribute in the second platform.
Based on the same inventive concept, the embodiment of the invention provides a multi-platform account authority unified management system, which comprises: a processor for implementing the steps of the unified management method of multi-platform account permissions described above when executing a computer program stored in a memory.
Based on the same inventive concept, the embodiment of the present invention further provides a readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the steps of the unified management method for rights of multiple platforms accounts as described above.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While preferred embodiments of the present invention have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all such alterations and modifications as fall within the scope of the invention.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.
Claims (15)
1. A unified management method for multi-platform account permissions is characterized by comprising the following steps:
after a first platform in the multi-platform account authority unified management system receives and responds to control operation from a user, first dynamic token request information sent by the first platform is received, a first dynamic token is created and sent to the first platform;
receiving a first request which is sent by the first platform and used for requesting the authority data of the user on a second platform, wherein the first request carries the first dynamic token;
and if the first request is verified successfully, acquiring the authority data of the user on the second platform.
2. The method of claim 1, wherein the method further comprises:
formatting the permission data on the second platform into json data and sending the json data to the second platform so that the json data can be analyzed into public menu data and page self permission data by the second platform;
when a first common package of a page to be displayed and a front-end menu reaches a terminal device and is rendered, an ajax request is sent to a background of a second platform through the common package of the front-end menu, a second page content to be displayed corresponding to common menu data on the terminal device is determined, and the terminal device is enabled to display the first content to be displayed and the second content to be displayed, wherein the ajax request is a request used for obtaining the common menu data needed by the common package of the front-end menu, and the first page content to be displayed is determined by logic analysis of authority data of the page itself by the background of the second platform.
3. The method of claim 1, wherein the method further comprises:
if the user registers the first platform, receiving user data information of the user and authority data on the first platform, which are sent by the first platform, wherein the user data information and the authority data of the user on the first platform carry the first dynamic token;
and according to a preset authority rule between the first platform and the multi-platform account authority unified management system, creating a mapping relation between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system.
4. The method of claim 3, wherein after creating a mapping relationship between the user data information and the user's rights data on the first platform in a database of the multi-platform account unified management system, the method further comprises:
if the user logs in the first platform, checking login information of the user based on the first dynamic token;
if the verification is successful, receiving second dynamic token request information sent by the first platform, creating a second dynamic token different from the first dynamic token, and sending the second dynamic token to the first platform;
receiving a second request which is sent by the first platform and used for requesting the authority data of the user on the first platform, wherein the second request carries the second dynamic token;
and if the second request is verified successfully, determining the authority data of the user on the first platform based on the mapping relation.
5. The method of claim 4, wherein the method further comprises:
creating a third dynamic token different from the second dynamic token, encrypting the authority data of the user on the first platform, and sending the encrypted authority data to the first platform;
receiving authority data which is sent by the first platform and is decrypted aiming at the encrypted authority data;
and formatting the decrypted authority data into json data and sending the json data to the first platform.
6. The method of claim 5, wherein the method further comprises:
if the user clicks on the first platform to access data under a third platform different from the first platform, receiving a third request sent by the first platform and used for requesting to access authority data of the user on the third platform, wherein the third request carries the third dynamic token;
and if the verification of the third request is successful and the verification of the mapping relation between the user data information and the authority data under the third platform is successful, acquiring the authority data of the user under the third platform.
7. The method of claim 1, wherein if the permission data of the user on the second platform is an intra-platform page permission, the method further comprises:
and performing preset tree type division according to page resources, and grading users, wherein the users at different grades have branch resource authorities at different grades.
8. The method of claim 1, wherein if the rights data of the user on the second platform is inter-platform entry rights, the method further comprises:
and presetting the authority for the second platform to jump to other platforms in the multi-platform account unified management system.
9. The method of claim 1, wherein if the rights data of the user on the second platform is a specific right, the method further comprises:
and presetting the authority which accords with the preset user attribute or the preset resource attribute in the second platform.
10. A unified management system for multi-platform account permissions is characterized by comprising:
the processing unit is used for receiving first dynamic token request information sent by a first platform, creating a first dynamic token and sending the first dynamic token to the first platform after the first platform in the multi-platform account authority unified management system receives and responds to control operation from a user;
a receiving unit, configured to receive a first request, which is sent by the first platform and used to request permission data of the user on a second platform, where the first request carries the first dynamic token;
and the acquisition unit is used for acquiring the authority data of the user on the second platform if the first request is verified successfully.
11. The system of claim 10, wherein the system further comprises a front-end menu public package, the processing unit further to format and send the permission data on the second platform as json data to the second platform;
when a first common package of a page to be displayed and a front-end menu reaches a terminal device and is rendered, the common package of the front-end menu is used for sending an ajax request to a background of a second platform, and determining second page content to be displayed corresponding to common menu data on the terminal device, so that the terminal device displays the first content to be displayed and the second content to be displayed, wherein the ajax request is a request for acquiring the common menu data required by the common package of the front-end menu, and the first page content to be displayed is determined by logic analysis of authority data of a page of the background of the second platform.
12. The system of claim 10, wherein the processing unit is further to:
if the user registers the first platform, receiving user data information of the user and authority data on the first platform, which are sent by the first platform, wherein the user data information and the authority data of the user on the first platform carry the first dynamic token;
and according to a preset authority rule between the first platform and the multi-platform account unified management system, creating a mapping relation between the user data information and the authority data of the user on the first platform in a database of the multi-platform account unified management system.
13. The system of claim 12, wherein after creating a mapping relationship between the user data information and the user's rights data on the first platform in a database of the multi-platform account unified management system, the processing unit is further configured to:
if the user logs in the first platform, checking login information of the user based on the first dynamic token;
if the verification is successful, receiving second dynamic token request information sent by the first platform, creating a second dynamic token different from the first dynamic token, and sending the second dynamic token to the first platform;
receiving a second request which is sent by the first platform and used for requesting the authority data of the user on the first platform, wherein the second request carries the second dynamic token;
and if the second request is verified successfully, determining the authority data of the user on the first platform based on the mapping relation.
14. A system for unified management of rights to multiple platforms accounts, characterized in that the system comprises a processor for implementing the steps of the method for unified management of rights to multiple platforms accounts according to any of claims 1-9 when executing a computer program stored in a memory.
15. A readable storage medium having stored thereon a computer program, characterized in that: the computer program when executed by a processor implements the steps of the method for unified management of rights to multiple platform accounts according to any of claims 1-9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810987782.0A CN110866229B (en) | 2018-08-28 | 2018-08-28 | Multi-platform account authority unified management method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810987782.0A CN110866229B (en) | 2018-08-28 | 2018-08-28 | Multi-platform account authority unified management method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110866229A true CN110866229A (en) | 2020-03-06 |
| CN110866229B CN110866229B (en) | 2021-12-24 |
Family
ID=69651831
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810987782.0A Active CN110866229B (en) | 2018-08-28 | 2018-08-28 | Multi-platform account authority unified management method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110866229B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111831999A (en) * | 2020-07-13 | 2020-10-27 | 中国银行股份有限公司 | Method and system for aggregating multi-station operation |
| CN114500097A (en) * | 2022-03-03 | 2022-05-13 | 中国农业银行股份有限公司四川省分行 | Verification mechanism based on single sign-on of Web system |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2012143945A2 (en) * | 2011-04-18 | 2012-10-26 | Ineda Systems Pvt. Ltd | Power management in multi host computing systems |
| CN103685267A (en) * | 2013-12-10 | 2014-03-26 | 小米科技有限责任公司 | Data access method and device |
| CN104125063A (en) * | 2013-04-28 | 2014-10-29 | 腾讯科技(深圳)有限公司 | Authentication method, equipment and system |
| CN104378376A (en) * | 2014-11-18 | 2015-02-25 | 深圳中兴网信科技有限公司 | SOA-based single-point login method, authentication server and browser |
| CN104702562A (en) * | 2013-12-05 | 2015-06-10 | 中国电信股份有限公司 | Terminal fusion service access method, terminal fusion service access system, and terminal |
| US20180013745A1 (en) * | 2012-08-24 | 2018-01-11 | United Parcel Service Of America, Inc. | Methods, apparatuses & computer program products for utilizing visual authentication tokens as cross-platform credentials |
| CN107645512A (en) * | 2017-10-20 | 2018-01-30 | 国信嘉宁数据技术有限公司 | The method, apparatus and server of a kind of authentication |
-
2018
- 2018-08-28 CN CN201810987782.0A patent/CN110866229B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2012143945A2 (en) * | 2011-04-18 | 2012-10-26 | Ineda Systems Pvt. Ltd | Power management in multi host computing systems |
| US20180013745A1 (en) * | 2012-08-24 | 2018-01-11 | United Parcel Service Of America, Inc. | Methods, apparatuses & computer program products for utilizing visual authentication tokens as cross-platform credentials |
| CN104125063A (en) * | 2013-04-28 | 2014-10-29 | 腾讯科技(深圳)有限公司 | Authentication method, equipment and system |
| CN104702562A (en) * | 2013-12-05 | 2015-06-10 | 中国电信股份有限公司 | Terminal fusion service access method, terminal fusion service access system, and terminal |
| CN103685267A (en) * | 2013-12-10 | 2014-03-26 | 小米科技有限责任公司 | Data access method and device |
| CN104378376A (en) * | 2014-11-18 | 2015-02-25 | 深圳中兴网信科技有限公司 | SOA-based single-point login method, authentication server and browser |
| CN107645512A (en) * | 2017-10-20 | 2018-01-30 | 国信嘉宁数据技术有限公司 | The method, apparatus and server of a kind of authentication |
Non-Patent Citations (2)
| Title |
|---|
| HIDEHITO GOMI: "Dynamic Identity Delegation Using Access Tokens in Federated Environments", 《 2011 IEEE INTERNATIONAL CONFERENCE ON WEB SERVICES》 * |
| 龙琦: "基于Hadoop的电子政务平台设计与实现", 《中国优秀硕士学位论文全文数据库 信息科技辑》 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111831999A (en) * | 2020-07-13 | 2020-10-27 | 中国银行股份有限公司 | Method and system for aggregating multi-station operation |
| CN111831999B (en) * | 2020-07-13 | 2022-08-19 | 中国银行股份有限公司 | Method and system for aggregating multi-station operation |
| CN114500097A (en) * | 2022-03-03 | 2022-05-13 | 中国农业银行股份有限公司四川省分行 | Verification mechanism based on single sign-on of Web system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110866229B (en) | 2021-12-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP7222036B2 (en) | Model training system and method and storage medium | |
| US11258662B2 (en) | Dedicated virtual computing system servers | |
| EP2757744B1 (en) | System for muti-point publication syndication | |
| US10833859B2 (en) | Automating verification using secure encrypted phone verification | |
| CN109977690A (en) | A kind of data processing method, device and medium | |
| KR20220110804A (en) | User Consent Framework | |
| US11093482B2 (en) | Managing access by third parties to data in a network | |
| CN108959864B (en) | Method and device for function call authentication and function call and authority information establishing method | |
| CN107528830B (en) | Account login method, system and storage medium | |
| KR101977624B1 (en) | Method and apparatus for providing authentication information on a web page | |
| CN111062028B (en) | Authority management method and device, storage medium and electronic equipment | |
| CN110287691A (en) | Application program login method, device, equipment and storage medium | |
| US20060136425A1 (en) | Data-centric distributed computing | |
| CN107690175A (en) | A kind of method and apparatus for being used to manage WAP | |
| US20240097963A1 (en) | System and method for integration of dynamic embedded process communications | |
| CN110866229B (en) | Multi-platform account authority unified management method and system | |
| JP2016224578A (en) | Between saas data cooperation support system and between saas data cooperation support method | |
| WO2022151888A1 (en) | Data sharing method and apparatus | |
| EP4310673A2 (en) | Customized application architecture utilizing sparse and base metadata layers | |
| CN116049300A (en) | Visual chart display method and system and electronic equipment | |
| CN109635558A (en) | Access control method, device and system | |
| US11977837B2 (en) | Consent to content template mapping | |
| CN112508693B (en) | Resource distribution channel distribution method and device based on user tags and electronic equipment | |
| CN112994882B (en) | Authentication method, device, medium and equipment based on block chain | |
| US20160366125A1 (en) | Service providing method, and service providing device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |