CN114329591A - Method and device for determining access user of application interface, computer equipment and storage medium - Google Patents

Method and device for determining access user of application interface, computer equipment and storage medium Download PDF

Info

Publication number
CN114329591A
CN114329591A CN202111626566.1A CN202111626566A CN114329591A CN 114329591 A CN114329591 A CN 114329591A CN 202111626566 A CN202111626566 A CN 202111626566A CN 114329591 A CN114329591 A CN 114329591A
Authority
CN
China
Prior art keywords
user
target application
username
application
field
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111626566.1A
Other languages
Chinese (zh)
Inventor
李猛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Topsec Technology Co Ltd
Beijing Topsec Network Security Technology Co Ltd
Beijing Topsec Software Co Ltd
Hubei Topsec Network Security Technology Co Ltd
Original Assignee
Beijing Topsec Technology Co Ltd
Beijing Topsec Network Security Technology Co Ltd
Beijing Topsec Software Co Ltd
Hubei Topsec Network Security Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Topsec Technology Co Ltd, Beijing Topsec Network Security Technology Co Ltd, Beijing Topsec Software Co Ltd, Hubei Topsec Network Security Technology Co Ltd filed Critical Beijing Topsec Technology Co Ltd
Priority to CN202111626566.1A priority Critical patent/CN114329591A/en
Publication of CN114329591A publication Critical patent/CN114329591A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Stored Programmes (AREA)

Abstract

The application provides a method and a device for determining an access user of an application interface, a computer device and a storage medium, wherein the method for determining the access user of the application interface comprises the following steps: acquiring attribute information of a target application; extracting a first username of the user and first session information of the user from the login message based on the username field of the target application and the cookie field of the target application, storing the first username of the user and the first session information of the user and generating a username relationship table; receiving an access message which is triggered by a user and aims at an interface in a target application; extracting second session information of the user from the access message based on the cookie field of the target application; determining a second user name for accessing the interface based on the user name relationship table and second session information of the user; and saving the information of the second user name and the application interface. The application can determine the access user of the application interface.

Description

Method and device for determining access user of application interface, computer equipment and storage medium
Technical Field
The present application relates to the field of computer technologies, and in particular, to a method and an apparatus for determining an access user of an application interface, a computer device, and a storage medium.
Background
With the rapid development of information technology, computers and networks have become essential tools and approaches for daily office work, communication and cooperative interaction. However, while improving the work efficiency of people, information systems also place security demands on the storage and access control of information and the access control of computer terminals and servers in the information systems. At present, the solutions for internal and external security still remain in passive protection means such as firewalls, intrusion detection, network antivirus, and the like. According to the data display of the national computer information security evaluation center, in the unit of economic loss caused by the leakage of the internal important confidential data through the network, the ratio of the important data stolen by a hacker to the important data leaked by internal staff is 1: 99. this is data from the national computer information security evaluation center, and according to survey, only 1% of internet access units are stolen by hackers in the event of significant loss due to internal important secrets leaked through the network, and 97% are caused by internal staff leakage intentionally or unintentionally.
In order to solve the above problems, a data leakage prevention system is created, and a conventional data leakage prevention system is created, however, the conventional data leakage prevention system can better ensure the security of data, but cannot monitor which interfaces corresponding to applications that a user accesses, so as to determine whether the user has unauthorized access.
Disclosure of Invention
An object of the embodiments of the present application is to provide a method and an apparatus for determining an access user of an application interface, a computer device, and a storage medium, which are used to determine an access user of an application interface.
To this end, a first aspect of the present application discloses a method for determining an access user of an application interface, the method comprising:
when a login message of a user is received, acquiring attribute information of a target application, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application;
extracting a first username of the user and first session information of the user from the login message based on the username field of the target application and the cookie field of the target application, saving the first username of the user and the first session information of the user, and generating a username relationship table;
receiving an access message which is triggered by a user and aims at an interface in the target application;
extracting second session information of the user from the access message based on the cookie field of the target application;
determining a second user name for accessing the interface based on the user name relationship table and second session information of the user;
and saving the information of the second user name and the application interface.
In the first aspect of the present application, as an optional implementation manner, the extracting, from the login packet, the first username of the user and the first session information of the user based on the username field of the target application and the cookie field of the target application, storing the first username of the user and the first session information of the user, and generating a username relationship table includes:
calling an analysis interface to execute a first user name of the user and first session information of the user from the login message based on a user name field of the target application and a cookie field of the target application, wherein the solution interface is realized based on the lua language;
and starting a redis process, and storing the second user name and the information of the application interface in a redis database based on a storage interface provided by the redis process.
In the first aspect of the present application, as an optional implementation manner, invoking an analysis interface to execute extracting a first username of the user and first session information of the user from the login packet based on the username field of the target application and the cookie field of the target application includes:
extracting a first username of the user from the login message based on a username field of the target application;
extracting first cookie information of the user from the login message based on a cookie field of the target application;
and extracting the first session information based on the first cookie information of the user.
In the first aspect of the present application, as an optional implementation manner, after the storing interface provided based on the redis process stores the second username and the information of the application interface in a redis database, the method further includes:
creating an updating process;
and updating the redis database to the mysql database based on the updating process and a preset updating period.
In the first aspect of the present application, as an optional implementation manner, the attribute information of the target application further includes an IP address of the target application;
and after receiving a login message of a user, before extracting a first username of the user and first session information of the user from the login message based on a username field of the target application and a cookie field of the target application, saving the first username of the user and the first session information of the user, and generating a username relationship table, the method further comprises:
acquiring a destination IP address of the login message;
and judging whether the login message is initiated aiming at the target application or not based on the destination IP address of the login message and the IP address of the target application, if so, executing the user name field based on the target application and the cookie field of the target application to extract the first user name of the user and the first session information of the user from the login message, saving the first user name of the user and the first session information of the user and generating the user name relationship table.
In the first aspect of the present application, as an optional implementation manner, before the obtaining attribute information of the target application, where the attribute information of the target application includes a username field of the target application and a cookie field of the target application, the method further includes:
configuring attribute information of an application needing to be monitored and generating a configuration table;
and the acquiring of the attribute information of the target application, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application, and comprises:
and acquiring attribute information of the target application based on the destination IP address of the login message and the configuration table, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application.
In the first aspect of the present application, as an optional implementation manner, the storing a first username of the user and first session information of the user and generating a username relationship table includes:
and taking the IP address of the target application and the first user name as keys, taking the first session information of the user as a value, storing the first user name of the user and the first session information of the user, and generating the user name relation table.
A second aspect of the present application discloses an apparatus for determining an access user of an application interface, the apparatus comprising:
the device comprises an acquisition module, a storage module and a processing module, wherein the acquisition module is used for acquiring attribute information of a target application when receiving a login message of a user, and the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application;
a first extraction module, configured to extract, from the login packet, a first username of the user and first session information of the user based on a username field of the target application and a cookie field of the target application;
the first storage module is used for storing a first user name of the user and first session information of the user and generating a user name relation table;
the receiving module is used for receiving an access message which is triggered by a user and aims at an interface in the target application;
the second extraction module is used for extracting second session information of the user from the access message based on the cookie field of the target application;
a determining module, configured to determine, based on the username relationship table and the second session information of the user, a second username for accessing the interface;
and the second storage module stores the information of the second user name and the application interface.
A third aspect of the present application discloses a computer apparatus, the apparatus comprising:
a memory storing executable program code;
a processor coupled with the memory;
the processor calls the executable program code stored in the memory to execute the method for determining the access user of the application interface of the first aspect of the present application.
A fourth aspect of the present application discloses a storage medium, where the storage medium stores computer instructions, and the computer instructions are used to execute the method for determining an access user of an application interface according to the first aspect of the present application when the computer instructions are called.
Compared with the prior art, the application has the following beneficial technical effects:
the device of the embodiment of the application acquires the attribute information of the target application based on the login message, the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application, and then the first username of the user and the first session information of the user can be extracted from the login message based on the username field of the target application and the cookie field of the target application, and saves the first user name of the user and the first session information of the user and generates a user name relation table, and further when receiving an access message which is triggered by the user and aims at the interface in the target application, extracting second session information of the user from the access message based on the cookie field of the target application, and further determines a second username for accessing the interface based on the username relationship table, the second session information of the user, thus, by saving the second username with the application interface information, it may be convenient to determine which user accessed the application interface.
On the other hand, the data are analyzed by adopting the lua script language and the data are stored by using the redis, so that the CPU consumption can be reduced, and the performance of the equipment is ensured.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are required to be used in the embodiments of the present application will be briefly described below, it should be understood that the following drawings only illustrate some embodiments of the present application and therefore should not be considered as limiting the scope, and that those skilled in the art can also obtain other related drawings based on the drawings without inventive efforts.
Fig. 1 is a schematic flowchart of an access user determination method of an application interface disclosed in an embodiment of the present application;
FIG. 2 is a flow chart illustrating another method for determining an accessing user of an application interface disclosed in an embodiment of the present application;
fig. 3 is a schematic structural diagram of an access user determination device of an application interface disclosed in an embodiment of the present application;
fig. 4 is a schematic structural diagram of a computer device disclosed in an embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present application will be described below with reference to the drawings in the embodiments of the present application.
Example one
Referring to fig. 1, fig. 1 is a schematic flowchart of a method for determining an access user of an application interface disclosed in an embodiment of the present application, and fig. 1 and fig. 2 are schematic flowcharts of another method for determining an access user of an application interface disclosed in an embodiment of the present application. As shown in fig. 1 and fig. 2, the method of the embodiment of the present application includes the following steps:
101. when a login message of a user is received, acquiring attribute information of a target application, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application;
102. extracting a first username of the user and first session information of the user from the login message based on the username field of the target application and the cookie field of the target application, storing the first username of the user and the first session information of the user and generating a username relationship table;
103. receiving an access message which is triggered by a user and aims at an interface in a target application;
104. extracting second session information of the user from the access message based on the cookie field of the target application;
105. determining a second user name for accessing the interface based on the user name relationship table and second session information of the user;
106. and saving the information of the second user name and the application interface.
In this embodiment, as an optional implementation manner, regarding step 101, the method in this embodiment further includes the following steps:
configuring attribute information of an application needing monitoring and generating a configuration table, and correspondingly, step 101: acquiring attribute information of a target application, wherein the attribute information comprises the following steps:
and acquiring the attribute information of the target application based on the destination IP address and the configuration table of the login message.
For example, if both application a and application B are the applications that need to monitor, that is, both application a and application B are the applications that need to monitor which user accesses, the IP address of application a, the username field of application a, and the cookie field of application a are stored in the configuration table, and the IP address of application B, the username field of application B, and the cookie field of application B are stored in the configuration table.
In this optional embodiment, specifically, the username field of the application is used to indicate which field in the message for the application represents the username, for example, the username field of the application a may be "login", that is, for the message of the application a, a value corresponding to the "login" field in the message needs to be extracted, and then the value corresponding to the field is used as the username, and for the application B, if the username field of the application B is "name", a value corresponding to the "name" field in the message of the application B needs to be extracted, and then the value corresponding to the "name" field is used as the username, so that by configuring the attribute information of the application, when the username in the message is extracted, the username can be extracted from the username field corresponding to the application, and then the probability of username extraction error can be reduced, for example, when the value of the "login" field "is extracted in the application B as the username, since there is no "login" field in application B, the username extraction is in error.
In this optional embodiment, specifically, the IP address of the application in the configuration table is used to determine whether the packet is a packet for the application to be monitored after receiving the packet, for example, assuming that the destination IP address of one packet is "172.31.255.255", and only one application a is in the configuration table, and the IP address of the application a is "162.21.255.255", at this time, since the destination IP address of the packet is not consistent with the IP address of the application a, it may be determined that the packet is not a packet for the application to be monitored, and monitoring is not required, otherwise, if the destination IP address of one packet is "162.21.255.255", it may be determined that the destination IP address of the packet is the same as the IP address of the application a by matching the destination IP address of the packet with the configuration table, and it may be determined that the packet is a packet for the application to be monitored, and monitoring is required.
Therefore, the message aiming at the application needing to be monitored can be screened out from the massive messages by configuring the IP address of the application.
Accordingly, in this optional embodiment, optionally, in the step: the specific way of obtaining the attribute information of the target application based on the destination IP address and the configuration table of the login message is as follows:
matching a target IP address of a login message with a configuration table, wherein the target IP address of the login message is consistent with the IP address of one application in the configuration table, determining that the login message is the login message for the application to be monitored, and if the target IP address of the login message is different from the IP addresses of all applications in the configuration table, determining that the login message is not the login message for the application to be monitored;
when the login message is a login message aiming at an application needing to be monitored, taking an application with the IP address consistent with the target IP address of the login message in a configuration table as a target application, and triggering and executing to acquire the attribute information of the target application, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application;
and when the login message is not the login message of the application needing to be monitored, triggering execution to acquire the attribute information of the target application, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application.
Specifically, when the configuration table includes attribute information of a target application, a destination IP address of a login message is obtained, whether the login message is initiated for the target application is judged based on the destination IP address of the login message and the IP address of the target application, if yes, a first user name of a user and first session information of the user are extracted from the login message based on a user name field of the target application and a cookie field of the target application, the first user name of the user and the first session information of the user are stored, and a user name relationship table is generated.
In this embodiment of the application, for step 102, generating the username relationship table means that the first username of the user and the IP address of the application are used as a key, the first session information of the user is used as a field of the key, and then the IP address of the application, the first username of the user and the first session information of the user are saved in a key-value pair manner, and the username relationship table is generated.
In this embodiment, for step 103, the interface in the target application is a resource link provided by the target application, for example, the target application provides a trigger picture downloading key, and the picture downloading key may be regarded as an interface for downloading a picture.
In this embodiment of the application, for the steps 105 and 106, the access message is different from the login message, where the access message is used to access a certain resource provided by the target application, and the login message is used to carry login information, so that the server verifies, based on the login information, whether the user has the authority to operate the target application, and generally, the access message triggered by the user can be received only after it is determined that the user has the operation authority. Further, the login message carries a user name for login, and the access message does not need to be authenticated, so that the user name is not included, so that it cannot be intuitively determined which user triggered the access of the interface based on the information carried in the access message, for example, at time a, the server receives two access messages at the same time, if the two messages are not processed, the server only displays that two access messages are generated, but cannot display whether the access message is generated by user a or user B, at this time, the information of the access message needs to be combined with the user name relationship table, and it is determined which user triggered the access message, specifically, since the access message has the same session information as the login message, the embodiment of the present application extracts the session information in the access message and uses the session information of the access message as the second session information, and further uses the second session information as the query condition, and inquiring a corresponding user name in the user name relationship table, namely inquiring to obtain a second user name, further corresponding and storing the second user name and the information of the application interface, for example, if the information of the application interface is a picture downloading path, then using the second user name and the application IP as keys, and the picture downloading path as a side field, and further storing the information of the second user name and the application interface.
In the embodiment of the present application, optionally, a set is used to store a plurality of sets of correspondence between the second user names and the information of the application interfaces.
In this embodiment of the present application, optionally, in step 102: after extracting the first username of the user and the first session information of the user from the login message based on the username field of the target application and the cookie field of the target application, storing the first username of the user and the first session information of the user and generating a username relationship table, step 103: before receiving an access message triggered by a user and directed to an interface in a target application, the method of the embodiment of the application further includes the following steps:
and establishing and storing the corresponding relation between the first user name and the IP address of the target application, for example, taking the IP address of the target application as a key and the first user name as a field to store the corresponding relation between the first user name and the IP address of the target application. In this optional embodiment, by storing the correspondence between the first username and the IP address of the target application, the record of the user accessing the target application can be maintained.
In this optional embodiment, optionally, the correspondence between the multiple sets of first user names and the IP addresses of the target applications is stored in a set form.
In this embodiment of the present application, as an optional implementation manner, a specific manner of extracting a first username of a user and first session information of the user from a login packet based on a username field of a target application and a cookie field of the target application, storing the first username of the user and the first session information of the user, and generating a username relationship table is as follows:
calling an analysis interface to execute a user name field based on the target application and a cookie field of the target application to extract a first user name of a user and first session information of the user from the login message, and realizing the interface based on the lua language;
and starting the redis process, and storing the second user name and the information of the application interface in a redis database based on a storage interface provided by the redis process.
In the optional embodiment, the lua script language is adopted to analyze data and the redis is used to store the data, so that cpu consumption can be reduced, and the performance of the equipment is ensured.
In this optional embodiment, further optionally, the step of: calling an analysis interface to extract a first user name of a user and first session information of the user from a login message based on a user name field of a target application and a cookie field of the target application, and comprising the following substeps:
extracting a first user name of a user from the login message based on a user name field of the target application;
extracting first cookie information of a user from the login message based on a cookie field of the target application;
and extracting first session information based on the first cookie information of the user.
In this optional embodiment, further optionally, in the step: after the information of the second username and the application interface is saved in the redis database based on the storage interface provided by the redis process, the method of the embodiment of the application further includes the following steps:
creating an updating process;
and updating the redis database to the mysql database based on the updating process and the preset updating period.
In the optional embodiment, the update process is created, and then the redis database can be updated to the mysql database based on the update process and the preset update period, so that the data of the mysql database queried by the user can be the latest, wherein the mysql database is docked by the display terminal when the user queries the relevant records through the display terminal, and therefore the data needs to be acquired from the mysql database instead of directly acquiring the data from the redis database.
Example two
Referring to fig. 3, fig. 3 is a schematic structural diagram of an apparatus for determining an access user of an application interface according to an embodiment of the present application. As shown in fig. 3, the apparatus of the embodiment of the present application includes the following functional modules:
an obtaining module 201, configured to obtain attribute information of a target application when receiving a login message of a user, where the attribute information of the target application includes a username field of the target application and a cookie field of the target application;
a first extraction module 202, configured to extract, from the login packet, a first username of the user and first session information of the user based on the username field of the target application and the cookie field of the target application;
the first saving module 203 is configured to save a first username of the user and first session information of the user and generate a username relationship table;
a receiving module 204, configured to receive an access packet, triggered by a user, for an interface in a target application;
a second extraction module 205, configured to extract second session information of the user from the access packet based on the cookie field of the target application;
a determining module 206, configured to determine a second username for accessing the interface based on the username relationship table and the second session information of the user;
and a second saving module 207, configured to save the information of the second username and the application interface.
The device of the embodiment of the application acquires the attribute information of the target application based on the login message, the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application, and then the first username of the user and the first session information of the user can be extracted from the login message based on the username field of the target application and the cookie field of the target application, and saves the first user name of the user and the first session information of the user and generates a user name relation table, and further when receiving an access message which is triggered by the user and aims at the interface in the target application, extracting second session information of the user from the access message based on the cookie field of the target application, and further determines a second username for accessing the interface based on the username relationship table, the second session information of the user, thus, by saving the second username with the application interface information, it may be convenient to determine which user accessed the application interface.
Please refer to the related description of the first embodiment of the present application for other descriptions of the apparatus in the embodiments of the present application, which are not repeated herein.
EXAMPLE III
Referring to fig. 4, fig. 4 is a schematic structural diagram of a computer device according to an embodiment of the present disclosure. As shown in fig. 4, the computer device of the embodiment of the present application includes the following functional modules:
a memory 302 storing executable program code;
a processor 301 coupled to a memory 302;
the processor 301 calls the executable program code stored in the memory 302 to execute the access user determination method of the application interface according to the first embodiment of the present application.
The computer device of the embodiment of the application acquires the attribute information of the target application based on the login message, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application, and then the first username of the user and the first session information of the user can be extracted from the login message based on the username field of the target application and the cookie field of the target application, and saves the first user name of the user and the first session information of the user and generates a user name relation table, and further when receiving an access message which is triggered by the user and aims at the interface in the target application, extracting second session information of the user from the access message based on the cookie field of the target application, and further determines a second username for accessing the interface based on the username relationship table, the second session information of the user, thus, by saving the second username with the application interface information, it may be convenient to determine which user accessed the application interface.
Example four
The embodiment of the application discloses a storage medium, wherein the storage medium stores a computer instruction, and the computer instruction is used for executing an access user determination method of an application interface in the first embodiment of the application when being called.
The storage medium of the embodiment of the application acquires the attribute information of the target application based on the login message, the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application, and then the first username of the user and the first session information of the user can be extracted from the login message based on the username field of the target application and the cookie field of the target application, and saves the first user name of the user and the first session information of the user and generates a user name relation table, and further when receiving an access message which is triggered by the user and aims at the interface in the target application, extracting second session information of the user from the access message based on the cookie field of the target application, and further determines a second username for accessing the interface based on the username relationship table, the second session information of the user, thus, by saving the second username with the application interface information, it may be convenient to determine which user accessed the application interface.
In the embodiments provided in the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units is only one logical division, and there may be other divisions when actually implemented, and for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection of devices or units through some communication interfaces, and may be in an electrical, mechanical or other form.
In addition, units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
Furthermore, the functional modules in the embodiments of the present application may be integrated together to form an independent part, or each module may exist separately, or two or more modules may be integrated to form an independent part.
It should be noted that the functions, if implemented in the form of software functional modules and sold or used as independent products, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present application or portions thereof that substantially contribute to the prior art may be embodied in the form of a software product stored in a storage medium and including instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
In this document, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions.
The above description is only an example of the present application and is not intended to limit the scope of the present application, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, improvement and the like made within the spirit and principle of the present application shall be included in the protection scope of the present application.

Claims (10)

1. An access user determination method for an application interface, the method comprising:
when a login message of a user is received, acquiring attribute information of a target application, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application;
extracting a first username of the user and first session information of the user from the login message based on the username field of the target application and the cookie field of the target application, saving the first username of the user and the first session information of the user, and generating a username relationship table;
receiving an access message which is triggered by a user and aims at an interface in the target application;
extracting second session information of the user from the access message based on the cookie field of the target application;
determining a second user name for accessing the interface based on the user name relationship table and second session information of the user;
and saving the information of the second user name and the application interface.
2. The method of claim 1, wherein the extracting the first username of the user and the first session information of the user from the login message based on the username field of the target application and the cookie field of the target application, saving the first username of the user and the first session information of the user, and generating a username relationship table comprises:
calling an analysis interface to execute a first user name of the user and first session information of the user from the login message based on a user name field of the target application and a cookie field of the target application, wherein the solution interface is realized based on the lua language;
and starting a redis process, and storing the second user name and the information of the application interface in a redis database based on a storage interface provided by the redis process.
3. The method of claim 2, wherein the invoking parsing interface performing extracting the first username of the user and the first session information of the user from the login packet based on the username field of the target application and the cookie field of the target application comprises:
extracting a first username of the user from the login message based on a username field of the target application;
extracting first cookie information of the user from the login message based on a cookie field of the target application;
and extracting the first session information based on the first cookie information of the user.
4. The method of claim 2, wherein after the storing of the second username and the application interface information in a redis database based on the storage interface provided by the redis process, the method further comprises:
creating an updating process;
and updating the redis database to the mysql database based on the updating process and a preset updating period.
5. The method of claim 2, wherein the attribute information of the target application further includes an IP address of the target application;
and after receiving a login message of a user, before extracting a first username of the user and first session information of the user from the login message based on a username field of the target application and a cookie field of the target application, saving the first username of the user and the first session information of the user, and generating a username relationship table, the method further comprises:
acquiring a destination IP address of the login message;
and judging whether the login message is initiated aiming at the target application or not based on the destination IP address of the login message and the IP address of the target application, if so, executing the user name field based on the target application and the cookie field of the target application to extract the first user name of the user and the first session information of the user from the login message, saving the first user name of the user and the first session information of the user and generating the user name relationship table.
6. The method of claim 1, wherein: before the obtaining of the attribute information of the target application, the attribute information of the target application including a username field of the target application and a cookie field of the target application, the method further includes:
configuring attribute information of an application needing to be monitored and generating a configuration table;
and the acquiring of the attribute information of the target application comprises:
and acquiring attribute information of the target application based on the destination IP address of the login message and the configuration table, wherein the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application.
7. The method of claim 1, wherein the saving the first username of the user and the first session information of the user and generating a username relationship table comprises:
and taking the IP address of the target application and the first user name as keys, taking the first session information of the user as a value, storing the first user name of the user and the first session information of the user, and generating the user name relation table.
8. An access user determination apparatus for an application interface, the apparatus comprising:
the device comprises an acquisition module, a storage module and a processing module, wherein the acquisition module is used for acquiring attribute information of a target application when receiving a login message of a user, and the attribute information of the target application comprises a user name field of the target application and a cookie field of the target application;
a first extraction module, configured to extract, from the login packet, a first username of the user and first session information of the user based on a username field of the target application and a cookie field of the target application;
the first storage module is used for storing a first user name of the user and first session information of the user and generating a user name relation table;
the receiving module is used for receiving an access message which is triggered by a user and aims at an interface in the target application;
the second extraction module is used for extracting second session information of the user from the access message based on the cookie field of the target application;
a determining module, configured to determine, based on the username relationship table and the second session information of the user, a second username for accessing the interface;
and the second storage module stores the information of the second user name and the application interface.
9. A computer device, the device comprising:
a memory storing executable program code;
a processor coupled with the memory;
the processor calls the executable program code stored in the memory to perform an access user determination method of an application interface according to any of claims 1-7.
10. A storage medium storing computer instructions for performing an access user determination method of an application interface according to any one of claims 1 to 7 when invoked.
CN202111626566.1A 2021-12-28 2021-12-28 Method and device for determining access user of application interface, computer equipment and storage medium Pending CN114329591A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111626566.1A CN114329591A (en) 2021-12-28 2021-12-28 Method and device for determining access user of application interface, computer equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111626566.1A CN114329591A (en) 2021-12-28 2021-12-28 Method and device for determining access user of application interface, computer equipment and storage medium

Publications (1)

Publication Number Publication Date
CN114329591A true CN114329591A (en) 2022-04-12

Family

ID=81014332

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111626566.1A Pending CN114329591A (en) 2021-12-28 2021-12-28 Method and device for determining access user of application interface, computer equipment and storage medium

Country Status (1)

Country Link
CN (1) CN114329591A (en)

Similar Documents

Publication Publication Date Title
CN110798472B (en) Data leakage detection method and device
US9569471B2 (en) Asset model import connector
CN113489713B (en) Network attack detection method, device, equipment and storage medium
US9973513B2 (en) Method and apparatus for communication number update
EP3852327A1 (en) Exception access behavior identification method and server
WO2014012441A1 (en) Method and apparatus for determining malicious program
CN111131221B (en) Interface checking device, method and storage medium
CN110704816B (en) Interface cracking recognition method, device, equipment and storage medium
CN112583815B (en) Operation instruction management method and device
US11178160B2 (en) Detecting and mitigating leaked cloud authorization keys
CN111767573A (en) Database security management method and device, electronic equipment and readable storage medium
CN115150261B (en) Alarm analysis method, device, electronic equipment and storage medium
CN111488572A (en) User behavior analysis log generation method and device, electronic equipment and medium
CN113923008B (en) Malicious website interception method, device, equipment and storage medium
WO2021135257A1 (en) Vulnerability processing method and related device
US10489584B2 (en) Local and global evaluation of multi-database system
CN111371811B (en) Resource calling method, resource calling device, client and service server
CN113839944B (en) Method, device, electronic equipment and medium for coping with network attack
CN114329591A (en) Method and device for determining access user of application interface, computer equipment and storage medium
CN113836173B (en) Data processing method and device, electronic equipment and storage medium
CN115827379A (en) Abnormal process detection method, device, equipment and medium
CN112351008B (en) Network attack analysis method and device, readable storage medium and computer equipment
CN110958267B (en) Method and system for monitoring threat behaviors in virtual network
US11604877B1 (en) Nested courses of action to support incident response in an information technology environment
CN107066538B (en) Data statistics method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination