CN114615084B - Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene - Google Patents
Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene Download PDFInfo
- Publication number
- CN114615084B CN114615084B CN202210375427.4A CN202210375427A CN114615084B CN 114615084 B CN114615084 B CN 114615084B CN 202210375427 A CN202210375427 A CN 202210375427A CN 114615084 B CN114615084 B CN 114615084B
- Authority
- CN
- China
- Prior art keywords
- single sign
- service
- logout
- user
- token
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims description 27
- 238000000926 separation method Methods 0.000 title claims description 5
- 238000012795 verification Methods 0.000 claims description 16
- 235000014510 cooky Nutrition 0.000 claims description 13
- 238000004140 cleaning Methods 0.000 claims description 10
- 238000004590 computer program Methods 0.000 claims description 9
- 230000008569 process Effects 0.000 claims description 9
- 230000009191 jumping Effects 0.000 claims description 5
- 230000010354 integration Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000013475 authorization Methods 0.000 description 1
- 230000002457 bidirectional effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/143—Termination or inactivation of sessions, e.g. event-controlled end of session
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/161—Implementation details of TCP/IP or UDP/IP stack architecture; Specification of modified or new header fields
- H04L69/162—Implementation details of TCP/IP or UDP/IP stack architecture; Specification of modified or new header fields involving adaptations of sockets based mechanisms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
- Computer And Data Communications (AREA)
Abstract
After the user inputs an account number and the password is successfully verified, a session and a token are created, then a ticket is submitted to be verified to obtain jwt token, jwt token is stored in sessionStorage, jwt token is carried in a subsequently sent call request, current user information is obtained, and then connection is established with a Websocket server. The user of the invention invokes single sign-on cancellation operation in a certain service system, pushes cancellation information through the Websocket server, and executes cancellation operation, thereby realizing the consistency of cancellation operation, improving user experience and having strong practicability.
Description
Technical Field
The invention belongs to the field of integrated systems, and particularly relates to a single sign-on and logout method, a system, electronic equipment and a storage medium applied to a front-end and back-end separated scene.
Background
Along with the continuous development and construction of information systems, a plurality of sets of information systems exist in enterprises at the same time, and each set of information system needs to perform user account management, login authentication, resource access authorization and other similar operations, so that a single sign-on system (SSO) is generally used, information systems in different periods are constructed, and the single sign-on integration modes of the information systems are different. If the Web application is a system adopting a front-end and back-end separation mode, and the back-end system is a stateless service, a JWT token is generally used as a login credential between the front-end system and the back-end system, but when the JWT token is used, some problems exist in logging out (logout), such as when a user logs out in an a system for single sign-on, the logged-out B system of the user also needs to log out of a login state, but the validity of the login states of the front-end systems depends on the acquired JWT token, and the user has access to the back-end resource all the time within the validity period of the JWT token, so that a method and a system need to be designed to realize the consistency of the logging-out operation and improve the user experience.
Disclosure of Invention
The invention aims to overcome the defects and provide a single sign-on logout method, a system, electronic equipment and a storage medium applied to a front-end and back-end separation scene, and the problem of front-end logout is solved by adding a websocket pushing mechanism, so that consistency of logout operation is realized, and user experience is improved.
In order to achieve the above purpose, a single sign-on logout method applied to a front-end and back-end separated scene, the login comprises the following steps:
Inputting an account number and a password, and creating a session and a token according to the account number and the password;
verifying the ticket parameters, and obtaining jwttoken after verification is passed;
Jwttoken is stored sessionStorage;
continuously receiving a call request carrying jwt token, and verifying user identity information;
Establishing connection with a Websocket server to finish user login;
Logging out comprises the following steps:
pushing a logout message through the Websocket server according to the logout login command, and executing logout login operation.
When performing logout login:
Clearing sessionStorage and cookie information;
clearing session and token of the user;
and returning to the designated page.
When logging out, the method for logging out other integrated single sign-on business systems is as follows:
Clearing sessionStorage and cookie information of the current system;
Clearing session and token of the user in the current system;
For other business systems which are integrated with single sign-on and have the user logged in, the session and the token of the user are cleared;
pushing a logout message through a Websocket server;
Clearing sessionStorage and cookie information;
and returning to the designated page.
A single sign-on logout system for a front-end and back-end split scenario, comprising:
the session token creation module is used for inputting an account number and a password and creating a session and a token according to the account number and the password;
the parameter verification module is used for verifying the ticket parameters, and jwt token is obtained after verification is passed;
a storage module for storing jwt token in sessionStorage;
the user identity information verification module is used for continuously receiving the call request carrying jwt token and verifying the user identity information;
The connection establishment module is used for establishing connection with the Websocket server and completing user login;
And the logout execution module is used for pushing a logout message through the Websocket server according to the logout login command and executing logout login operation.
Further comprises:
The current system clearing module is used for clearing sessionStorage and cookie information of the current system and clearing session and tokens of users in the current system;
and the jump module is used for returning to the appointed page.
Further comprises:
the back-end service clearing module is used for clearing session and tokens of the user;
The front-end service clearing module is used for clearing sessionStorage and cookie information for other integrated single sign-on business systems;
And the cancellation information pushing module is used for pushing cancellation information through the Websocket server.
An electronic device, comprising: a processor; a memory for storing computer program instructions; and the method is used for realizing a single sign-on logout method applied to a front-end and back-end separated scene when the computer program is executed.
A storage medium storing computer program instructions that, when loaded and executed by a processor, perform a single sign-on logout method applied to a front-end and back-end split scenario.
Compared with the prior art, after the user inputs an account number and successfully verifies a password, a session and a token are created, then a ticket is submitted to verify to obtain jwt token, jwt token is stored in sessionStorage, the subsequently sent call requests all carry jwt token, current user information is obtained, and then connection is established with a Websocket server. The user of the invention invokes single sign-on cancellation operation in a certain service system, pushes cancellation information through the Websocket server, and executes cancellation operation, thereby realizing the consistency of cancellation operation, improving user experience and having strong practicability.
Drawings
FIG. 1 is a flow chart of a single sign-on authentication login process of the present invention;
FIG. 2 is a flow chart of a single sign-on logout process of the present invention;
FIG. 3 is a flow chart of a single sign-on logout message push of the present invention;
Fig. 4 is a system diagram of the present invention.
Detailed Description
In order that those skilled in the art will better understand the present invention, a technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in which it is apparent that the described embodiments are only some embodiments of the present invention, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the present invention without making any inventive effort, shall fall within the scope of the present invention.
Referring to fig. 1, the login in the present invention comprises the following steps:
1) The user requests to access any service system through the browser, and front-end service of the service system judges that the current user skips to the single sign-on system when not logged in;
2) The single sign-on system returns to the login page when judging that the current user is not logged in;
3) The user submits the login page after inputting the account number and the password, the single sign-on system server creates a session and a token after verification is successful, and then jumps back to the front page of the service system and carries the ticket parameter;
4) The front-end page submits a ticket to the back-end service of the business system, the back-end service verifies the ticket through the single sign-on client and the single sign-on system, jwt token is obtained after verification is passed, and then the ticket is returned to the front-end page;
5) The front-end page stores jwt token into sessionStorage, the subsequent http request header sent by the front-end to the back-end service is carried jwt token, and the back-end service judges jwt token the validity and identifies the user identity;
6) The front end calls a back end service to acquire current user information, and then establishes connection with a Websocket server to complete a user single sign-on process.
Referring to fig. 2, the login logout in the present invention comprises the following steps:
1) Clicking single sign-on and logout operation by a user on a front-end page of a service system, executing information such as cleaning cookie, sessionStorage and the like by the front end, and finally jumping to the single sign-on system;
2) The single sign-on system executes the operation of cleaning the current user session and the token, invokes the back-end service of other business systems which the current user has logged in, and executes the logout operation;
3) Jump back to the login page or the designated page of the single sign-on system.
Referring to fig. 3, the present invention further includes the following steps in the logout process of other service systems:
1) When a user calls single sign-on logout operation in a certain service system, if the user accesses other integrated single sign-on service systems before, the single sign-on system calls back-end service logout addresses registered by the service systems;
2) The back-end service executes corresponding cleaning work and pushes a logout message to the front-end through the Websocket service end;
3) And the front end executes the logout operation after receiving the message.
Referring to fig. 4, a single sign-on logout system for a front-end and back-end split scenario includes:
the session token creation module is used for inputting an account number and a password and creating a session and a token according to the account number and the password;
the parameter verification module is used for verifying the ticket parameters, and jwt token is obtained after verification is passed;
a storage module for storing jwt token in sessionStorage;
the user identity information verification module is used for continuously receiving the call request carrying jwt token and verifying the user identity information;
The connection establishment module is used for establishing connection between the client and the Websocket server and completing user login;
And the logout execution module is used for pushing a logout message through the Websocket server according to the logout login command and executing logout login operation.
The current system clearing module is used for clearing sessionStorage and cookie information of the current system and clearing session and tokens of users in the current system;
and the jump module is used for returning to the appointed page.
The back-end service clearing module is used for clearing session and tokens of the user;
The front-end service clearing module is used for clearing sessionStorage and cookie information for other integrated single sign-on business systems;
And the cancellation information pushing module is used for pushing cancellation information through the Websocket server.
An electronic device, comprising: a processor; a memory for storing computer program instructions; and the method is used for realizing a single sign-on logout method applied to a front-end and back-end separated scene when the computer program is executed.
A storage medium storing computer program instructions that, when loaded and executed by a processor, perform a single sign-on logout method applied to a front-end and back-end split scenario.
Examples:
referring to fig. 1, the present invention includes the following units:
the single sign-on system provides functions of user sign-on authentication, access authentication, jwt token generation and the like, and provides a client for service system integration;
the Websocket server pushing system is responsible for carrying out bidirectional real-time communication with the Web front-end system;
The front-end service of the business system mainly comprises a user interaction interface which is responsible for data presentation and performs data interaction with the back-end service through an Ajax request;
The service system back-end service is mainly responsible for complex service logic realization and service data maintenance and management and provides a Restful interface.
The specific process of single sign-on comprises the following steps:
Referring to fig. 1, a browser accesses a front end Web service website of a business system a, after loading a page, judging that a current user is not logged in (without a local jwt token), jumping to a single sign-on system, judging that the current user is not logged in (without related session and token), returning to a login page, submitting the user after the login page inputs an account number and a password, creating session and token by a service end of the single sign-on system after successful verification, then jumping back to the front end page and carrying a ticket parameter, submitting the ticket to a back end service of the business system, verifying by the back end service through the single sign-on client and the single sign-on system, obtaining jwt token after verification, returning to the front end page, storing jwt token in sessionStorage by the front end page, judging jwt token whether to be effective and identifying a user identity by the subsequent http request header called by an interface sent by the front end to the back end service, then executing corresponding interface logic and returning data to the front end, calling the back end service interface to acquire current user information, then establishing a successful business system a with the socket service end.
The user accesses the front end Web service website of the integrated single sign-on service system B, judges that the user is not logged in currently (no local jwt token) after the page is loaded, jumps to the single sign-on system, judges that the current user is logged in (relevant session and token exist), then jumps back to the front end page again and carries the token parameter, and submits the token to the back end service by the front end page, and the subsequent flow is the same as the login process of the service system A, wherein the main difference is that the account password is not required to be input when the single sign-on system is accessed at the present time, and jwt token can be obtained. The front-end service of the service system B is also connected with the Websocket server, and the user successfully logs in the service system B.
The specific process of single sign-on logout comprises the following steps:
Referring to fig. 2 and fig. 3, when the service system A performs A single sign-on and logout operation, the front end performs information such as clearing cookie, sessionStorage, and finally jumps to the single sign-on system, and the single sign-on system performs the operation of clearing the current user session and token, jumps back to the login page or the designated page of the single sign-on system. If the user logs in the service system B before, the single sign-on system can call the back end service address registered by the service system B at the same time when logging out, the back end service executes corresponding cleaning work, the logging-out message is pushed to the front end through the Websocket service end, the front end executes cleaning cookie, sessionStorage and other information after receiving the message, then the user turns to the single sign-on system or the appointed page, and the user successfully logs out of all the logged-in systems.
It should be noted that, for simplicity of description, the foregoing method embodiments are all described as a series of acts, but it should be understood by those skilled in the art that the present invention is not limited by the order of acts described, as some steps may be performed in other orders or concurrently in accordance with the present invention. Further, those skilled in the art will appreciate that the embodiments described in the specification are presently preferred embodiments, and that the acts are not necessarily required for the present invention.
Finally, it should be noted that: the above embodiments are only for illustrating the technical solution of the present invention, and are not limiting; although the invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (6)
1. A single sign-on logout method applied to a front-end and back-end separation scene is characterized in that the sign-on includes the following steps:
The user requests to access any service system through the browser, and front-end service of the service system judges that the current user skips to the single sign-on system when not logged in;
The single sign-on system returns to the login page when judging that the current user is not logged in;
The user submits the login page after inputting the account number and the password, the single sign-on system server creates a session and a token after verification is successful, and then jumps back to the front page of the service system and carries the ticket parameter;
the front-end page submits a ticket to the back-end service of the business system, the back-end service verifies the ticket through the single sign-on client and the single sign-on system, jwt token is obtained after verification is passed, and then the ticket is returned to the front-end page;
The front-end page stores jwt token into sessionStorage, the subsequent http request header sent by the front-end to the back-end service is carried jwt token, and the back-end service judges jwt token the validity and identifies the user identity;
The front end calls a back end service to acquire current user information, and then establishes connection with a Websocket server to complete a user single sign-on process;
Logging out comprises the following steps:
Clicking single sign-on and logout operation by a user on a front-end page of a service system, executing information such as cleaning cookie, sessionStorage and the like by the front end, and finally jumping to the single sign-on system;
The single sign-on system executes the operation of cleaning the current user session and the token, invokes the back-end service of other business systems which the current user has logged in, and executes the logout operation;
jumping back to a login page or a designated page of the single sign-on system;
The other business system logout in the logout login process further comprises the following steps:
1) When a user calls single sign-on logout operation in a certain service system, if the user accesses other integrated single sign-on service systems before, the single sign-on system calls back-end service logout addresses registered by the service systems;
2) The back-end service executes corresponding cleaning work and pushes a logout message to the front-end through the Websocket service end;
3) And the front end executes the logout operation after receiving the message.
2. A single sign-on logout system for a front-end and back-end split scenario, comprising:
the session token creation module is used for inputting an account number and a password and creating a session and a token according to the account number and the password;
the parameter verification module is used for verifying the ticket parameters, and jwt token is obtained after verification is passed;
a storage module for storing jwt token in sessionStorage;
the user identity information verification module is used for continuously receiving the call request carrying jwt token and verifying the user identity information;
The connection establishment module is used for establishing connection with the Websocket server and completing user login;
And the logout execution module is used for pushing a logout message through the Websocket server according to the logout login command and executing logout login operation.
3. A single sign-on logoff system for a front-end and back-end split scenario as claimed in claim 2, further comprising:
The current system clearing module is used for clearing sessionStorage and cookie information of the current system and clearing session and tokens of users in the current system;
and the jump module is used for returning to the appointed page.
4. A single sign-on logoff system for a front-end and back-end split scenario as claimed in claim 2, further comprising:
the back-end system cleaning module is used for cleaning session and tokens of the user;
The cancellation information pushing module is used for pushing cancellation information through the Websocket server;
And the front-end system clearing module is used for clearing sessionStorage and cookie information for other integrated single sign-on service systems.
5. An electronic device, comprising: a processor; a memory for storing computer program instructions; the method is characterized by the steps for realizing the single sign-on logout method applied to the front-end and back-end separated scene as claimed in claim 1 when the computer program is executed.
6. A storage medium storing computer program instructions which, when loaded and executed by a processor, perform the single sign-on-log-off method of claim 1 applied to a front-end and back-end split scenario.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210375427.4A CN114615084B (en) | 2022-04-11 | 2022-04-11 | Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210375427.4A CN114615084B (en) | 2022-04-11 | 2022-04-11 | Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114615084A CN114615084A (en) | 2022-06-10 |
| CN114615084B true CN114615084B (en) | 2024-04-16 |
Family
ID=81868969
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210375427.4A Active CN114615084B (en) | 2022-04-11 | 2022-04-11 | Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114615084B (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20060067732A (en) * | 2004-12-15 | 2006-06-20 | 한국전자통신연구원 | Method of service logout in single sign on service using federated identity |
| CN106470190A (en) * | 2015-08-19 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of Web real-time communication platform authentication cut-in method and device |
| US9699171B1 (en) * | 2014-06-23 | 2017-07-04 | Symantec Corporation | Systems and methods for logging out of cloud-based applications managed by single sign-on services |
| CN107911357A (en) * | 2017-11-09 | 2018-04-13 | 北京锐安科技有限公司 | A kind of method, apparatus of single-sign-on, server and storage medium |
| CN111431838A (en) * | 2019-01-09 | 2020-07-17 | 北京神州泰岳软件股份有限公司 | Method and device for single-point login and single-point logout in cluster and API gateway |
| CN112468481A (en) * | 2020-11-23 | 2021-03-09 | 西安西热电站信息技术有限公司 | Single-page and multi-page web application identity integrated authentication method based on CAS |
| CN113347163A (en) * | 2021-05-20 | 2021-09-03 | 远景智能国际私人投资有限公司 | Single sign-on method, device, equipment and medium |
| CN114218552A (en) * | 2021-11-16 | 2022-03-22 | 成都智鑫易利科技有限公司 | Method for realizing uniform identity authentication of ultra-large user quantity by adopting service bus |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060218628A1 (en) * | 2005-03-22 | 2006-09-28 | Hinton Heather M | Method and system for enhanced federated single logout |
| US10511589B2 (en) * | 2016-09-14 | 2019-12-17 | Oracle International Corporation | Single logout functionality for a multi-tenant identity and data security management cloud service |
| US10764273B2 (en) * | 2018-06-28 | 2020-09-01 | Oracle International Corporation | Session synchronization across multiple devices in an identity cloud service |
-
2022
- 2022-04-11 CN CN202210375427.4A patent/CN114615084B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20060067732A (en) * | 2004-12-15 | 2006-06-20 | 한국전자통신연구원 | Method of service logout in single sign on service using federated identity |
| US9699171B1 (en) * | 2014-06-23 | 2017-07-04 | Symantec Corporation | Systems and methods for logging out of cloud-based applications managed by single sign-on services |
| CN106470190A (en) * | 2015-08-19 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of Web real-time communication platform authentication cut-in method and device |
| CN107911357A (en) * | 2017-11-09 | 2018-04-13 | 北京锐安科技有限公司 | A kind of method, apparatus of single-sign-on, server and storage medium |
| CN111431838A (en) * | 2019-01-09 | 2020-07-17 | 北京神州泰岳软件股份有限公司 | Method and device for single-point login and single-point logout in cluster and API gateway |
| CN112468481A (en) * | 2020-11-23 | 2021-03-09 | 西安西热电站信息技术有限公司 | Single-page and multi-page web application identity integrated authentication method based on CAS |
| CN113347163A (en) * | 2021-05-20 | 2021-09-03 | 远景智能国际私人投资有限公司 | Single sign-on method, device, equipment and medium |
| CN114218552A (en) * | 2021-11-16 | 2022-03-22 | 成都智鑫易利科技有限公司 | Method for realizing uniform identity authentication of ultra-large user quantity by adopting service bus |
Non-Patent Citations (5)
| Title |
|---|
| The study of multi-level authentication-based single sign-on system;Niu Ying; Zhao Yao; Zou Hua;2009 2nd IEEE International Conference on Broadband Network & Multimedia Technology;20091204;448-452 * |
| 基于CAS协议单点登录***的改进与实现;赵侃侃;戴佳男;;计算机与网络;20200512(09);73-76 * |
| 基于CAS的门户单点登录方案;刘峰;王峥;曹华平;罗守山;;计算机***应用(06);79-82 * |
| 基于JASIG-CAS的SSO***的研究与实现;赵晋;硕士电子期刊(第3期);第2-4章 * |
| 基于SAML改进的单点登录模型研究;高昊江;肖田元;;计算机工程与设计(03);75-77 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114615084A (en) | 2022-06-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102546570B (en) | Processing method and system for single sign-on | |
| US8099768B2 (en) | Method and system for multi-protocol single logout | |
| US11190501B2 (en) | Hybrid single sign-on for software applications and services using classic and modern identity providers | |
| CN104320423B (en) | Single-sign-on lightweight implementation method based on Cookie | |
| CN110086822A (en) | The realization method and system of unified identity authentication strategy towards micro services framework | |
| CN104539615B (en) | Cascade connection authentication method based on CAS | |
| US9584615B2 (en) | Redirecting access requests to an authorized server system for a cloud service | |
| WO2009050058A1 (en) | Browser-based logoff | |
| CN110493308B (en) | Distributed consistency system session method and device, storage medium and server | |
| CN112385191A (en) | Middle layer messaging system | |
| CN102882903A (en) | Method and system for acquiring multi-site application information | |
| JP2006502496A (en) | Method and system for communicating in a client-server network | |
| CN103001973A (en) | Method, system and device used for controlling login and based on two-dimensional code | |
| US9332433B1 (en) | Distributing access and identification tokens in a mobile environment | |
| CN109246076A (en) | A kind of method and apparatus of single-sign-on multisystem | |
| CN106331003B (en) | The access method and device of application door system on a kind of cloud desktop | |
| CN112800411A (en) | Multi-protocol and multi-mode supporting safe and reliable identity authentication method and device | |
| CN107196909A (en) | Invitation registration method and device | |
| CN116170234B (en) | Single sign-on method and system based on virtual account authentication | |
| CN110232265A (en) | Dual-identity authentication method, apparatus and system | |
| US12010194B2 (en) | Scalable server-based web scripting with user input | |
| CN107872445A (en) | Access authentication method, equipment and Verification System | |
| CN113821784A (en) | Multi-system single sign-on method and device and computer readable storage medium | |
| CN106161356B (en) | Method and system for rapidly logging in website through client | |
| CN108683651A (en) | A kind of single-point logging method, server-side and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |