CN102739678B - Single-sign-on treatment system and single-sign-on processing method - Google Patents
Single-sign-on treatment system and single-sign-on processing method Download PDFInfo
- Publication number
- CN102739678B CN102739678B CN201210222687.4A CN201210222687A CN102739678B CN 102739678 B CN102739678 B CN 102739678B CN 201210222687 A CN201210222687 A CN 201210222687A CN 102739678 B CN102739678 B CN 102739678B
- Authority
- CN
- China
- Prior art keywords
- user
- described user
- sign
- name
- user profile
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The invention provides a kind of single-sign-on treatment system, comprise client process module and server end processing module, described client process module obtains the logging request that user sends, and be supplied to described server-side processes module, described server-side processes module obtains relevant information recording text from browser, and judge whether described user logs in accordingly, and notify described client process module, if, then described client process module obtains described user's name from described server-side processes module, and then the whole user information obtaining described user is to realize logging in.Correspondingly, present invention also offers a kind of single-sign-on processing method.By technical scheme of the present invention, can realize single-sign-on in the client of existing any language compilation, the coupling between minimizing system simultaneously, reduction integrated cost, realize plugging flexibly.
Description
Technical field
The present invention relates to single-sign-on integrated technology field, in particular to a kind of single-sign-on treatment system and a kind of single-sign-on processing method.
Background technology
Single Sign-On Technology Used has a lot of solutions now on the market, typical in CAS.
CAS(Central Authentication Service) be the open source projects that Yale university initiates, be intended to for Web application system provides a kind of single-point logging method reliably.
From structural system, CAS comprises two parts: CAS Server and CAS Client, as shown in Figure 1.
CAS Server has been responsible for the certification work to user, the vouchers such as usemame/password (Credentials) can be processed, it may arrive database retrieval usersaccount information, also may in XML file retrieval user password, to this mode, the mode that CAS all provides a kind of flexible but same interface/realization to be separated, which kind of authentication mode CAS uses, with CAS agreement be separated, namely, this certification realize details can oneself customization and expansion.
CAS Client is responsible for being deployed in client; in principle; the deployment of CAS Client means; when there being the access request to the locked resource that local Web applies; and when needing to carry out authentication to requesting party; Web application no longer accepts the similar Credentials such as any user name password, but is redirected to CAS Server and carries out certification.
At present, much more very client that CAS Client supports (some is in improving), comprise the clients such as Java .Net, ISAPI, Php, Perl, uPortal, Acegi, Ruby, VBScript.
The such Single Sign-On Technology Used of CAS needs the integrated a lot of auxiliary bag of Third party system, the client-side program that the system for different language exploitation is corresponding different.There is following defect in this Integrated Solution based on client-side program: 1) can not well utilize current techique to solve language difference; 2) intrusion of client-side program to original system is added larger; 3) different reactions cannot be made according to user's logging status flexibly.
Therefore, need a kind of new technical scheme, can realize single-sign-on in the client of existing any language compilation, the coupling between minimizing system simultaneously, reduction integrated cost, realize plugging flexibly.
Summary of the invention
Technical problem to be solved by this invention is, provides a kind of new technical scheme, can realize single-sign-on in the client of existing any language compilation, and the coupling between minimizing system simultaneously, reduction integrated cost, realize plugging flexibly.
In view of this, the invention provides a kind of single-sign-on treatment system, comprise the client process module being positioned at Authentication Client and the server-side processes module being positioned at certificate server end, described client process module obtains user sends registering service system request by browser, and be supplied to described server-side processes module, described server-side processes module obtains and described user-dependent information recording text from described browser, and judge whether described user logs according to described information recording text, and notify described client process module, described information recording text comprises the user's name of described user, described client process module is when described user logs in, described user's name is obtained from described server-side processes module, and obtain the complete user profile of described user according to described user's name, described operation system is logged in by described user profile.
In the technical program, described information recording text is cookies said in the art, described server-side processes module directly obtains relevant cookies information from described browser, and then judge the login situation of associated user, this just makes described single-sign-on treatment system when judging that user logs in situation, certain main business system can not be depended on, but each operation system is processed as square one, which improves the degree of flexibility that single-sign-on operation realizes, improve Consumer's Experience.
In technique scheme, preferably, described server-side processes module is when described user logs in, unique identifier is generated according to described user's name, and be supplied to described client process module, described client process module, according to described unique identifier, obtains described user's name from described server-side processes module.By described server-side processes module when described user logs in, described unique identifier is generated according to described user's name, this identification code becomes the passage of described client process module when obtaining described user's name from described server-side processes module each time, like this, just make described client process module can get correspondingly user's name quickly and accurately, and then ensure the reliability of described single-sign-on operation realization each time.
In technique scheme, preferably, first described client process module obtains described user profile from the data of described operation system, when cannot get described user profile, then obtains described user profile from described server-side processes module.In the technical program, described user profile may just be present among described operation system after user is logged, if so, described client process module directly obtains this information from described operation system, by higher than obtaining efficiency from the described server-side processes module recording this information, be conducive to the operating experience improving user.But, if do not record described user profile in described operation system, then described client process module can only obtain this information from described server-side processes module, simultaneously can also complete initialization generating run to described user profile to described operation system.
In technique scheme, preferably, described client process module described user do not log in maybe cannot obtain described unique identifier time, receive the described user profile of described user input, and realize login by described user profile.That is, in the technical program, when described certificate server cannot normally work, described single-sign-on treatment system also can directly point out user to re-start register by independent operating, and then the coupling reduced between related system, achieve flexible plug.
In technique scheme, preferably, the dynamic javascript file of described server-side processes CMOS macro cell, records described unique identifier, and described client process module extracts described unique identifier from described java script file.
In the technical program, described java script file can be utilized to record described unique identifier, based on versatility and the flexibility of java script script height, make described single-sign-on treatment system can be adapted to, with the client of any one language compilation, greatly strengthen the flexibility of this system.
Correspondingly, present invention also offers a kind of single-sign-on processing method, comprising: step 302, sent the request of registering service system Authentication Client acquisition user by browser, and be supplied to certificate server end; Step 304, at described certificate server end, obtain and described user-dependent information recording text from described browser, and judge whether described user logs according to described information recording text, and notifying described Authentication Client, described information recording text comprises the user's name of described user; Step 306, at described Authentication Client, when described user logs in, obtains described user's name from described certificate server end, and obtains the complete user profile of described user according to described user's name, log in described operation system by described user profile.
In the technical program, described information recording text is cookies said in the art, directly from described browser, relevant cookies information is obtained at described certificate server end, and then judge the login situation of associated user, this just makes to apply described single-sign-on processing method when judging that user logs in situation, certain main business system can not be depended on, but each operation system is processed as square one, which improves the degree of flexibility that single-sign-on operation realizes, improve Consumer's Experience.
In technique scheme, preferably, described step 304 also comprises: when described user logs in, generates unique identifier, and be supplied to described Authentication Client according to described user's name; Described step 306 comprises: according to described unique identifier, obtains described user's name from described certificate server end.By when described user logs in, described unique identifier is generated according to described user's name, this identification code becomes passage when obtaining described user's name from described certificate server end each time, like this, just can get correspondingly user's name quickly and accurately, and then ensure the reliability of described single-sign-on operation realization each time.
In technique scheme, preferably, described step 306 comprises: first from the data of described operation system, obtain described user profile, when cannot get described user profile, then obtains described user profile from described certificate server end.In the technical program, described user profile may just be present among described operation system after user is logged, if so, directly can obtain this information from described operation system, by higher than obtaining efficiency from the described certificate server end recording this information, be conducive to the operating experience improving user.But, if do not record described user profile in described operation system, then can only obtain this information from described certificate server end, simultaneously can also complete initialization generating run to described user profile to described operation system.
In technique scheme, preferably, described step 306 also comprises: described user do not log in maybe cannot obtain described unique identifier time, receive the described user profile of described user input, and realize login by described user profile.That is, in the technical program, when described certificate server cannot normally work, apply described single-sign-on processing method and also can complete correlation function by directly pointing out user to re-start login, and then the coupling reduced between related system, achieve flexible plug.
In technique scheme, preferably, described step 302 also comprises: generate dynamic javascript file, record described unique identifier; Described step 304 also comprises: from described javascript file, extract described unique identifier.
In the technical program, described java script file can be utilized to record described unique identifier, based on versatility and the flexibility of java script script height, make described single-sign-on processing method can be adapted to, with the client of any one language compilation, increase the scope of application of the method.
By above technical scheme, can realize single-sign-on in the client of existing any language compilation, the coupling between minimizing system simultaneously, reduction integrated cost, realize plugging flexibly.
Accompanying drawing explanation
Fig. 1 shows the structure diagram of the CAS in correlation technique;
Fig. 2 shows the block diagram of single-sign-on treatment system according to an embodiment of the invention;
Fig. 3 shows the flow chart of single-sign-on processing method according to an embodiment of the invention;
Fig. 4 shows CAS Server according to an embodiment of the invention and holds the schematic diagram of DYNAMIC J S generative process;
Fig. 5 shows CAS Client according to an embodiment of the invention and holds the schematic diagram of DYNAMIC J S proof procedure;
Fig. 6 shows the flow chart that single-sign-on processing method according to an embodiment of the invention utilizes JS technology to realize.
Embodiment
In order to more clearly understand above-mentioned purpose of the present invention, feature and advantage, below in conjunction with the drawings and specific embodiments, the present invention is further described in detail.
Set forth a lot of detail in the following description so that fully understand the present invention, but the present invention can also adopt other to be different from other modes described here and implement, and therefore, the present invention is not limited to the restriction of following public specific embodiment.
Fig. 2 shows the block diagram of single-sign-on treatment system according to an embodiment of the invention.
As shown in Figure 2, single-sign-on treatment system 200 according to an embodiment of the invention, comprise the client process module 202 being positioned at Authentication Client and the server-side processes module 204 being positioned at certificate server end, described client process module 202 obtains user sends registering service system request by browser, and be supplied to described server-side processes module 204, described server-side processes module 204 obtains and described user-dependent information recording text from described browser, and judge whether described user logs according to described information recording text, and notify described client process module 202, described information recording text comprises the user's name of described user, described client process module 202 is when described user logs in, described user's name is obtained from described server-side processes module 204, and obtain the complete user profile of described user according to described user's name, described operation system is logged in by described user profile.
In the technical program, described information recording text is cookies said in the art, described server-side processes module 204 directly obtains relevant cookies information from described browser, and then judge the login situation of associated user, this just makes described single-sign-on treatment system 200 when judging that user logs in situation, certain main business system can not be depended on, but each operation system is processed as square one, which improves the degree of flexibility that single-sign-on operation realizes, improve Consumer's Experience.
In technique scheme, preferably, described server-side processes module 204 is when described user logs in, unique identifier is generated according to described user's name, and be supplied to described client process module 202, described client process module 202, according to described unique identifier, obtains described user's name from described server-side processes module 204.By described server-side processes module 204 when described user logs in, described unique identifier is generated according to described user's name, this identification code becomes the passage of described client process module 202 when obtaining described user's name from described server-side processes module 204 each time, like this, just make described client process module 202 can get correspondingly user's name quickly and accurately, and then ensure the reliability of described single-sign-on operation realization each time.
In technique scheme, preferably, first described client process module 202 obtains described user profile from the data of described operation system, when cannot get described user profile, then obtains described user profile from described server-side processes module 204.In the technical program, described user profile may just be present among described operation system after user is logged, if so, described client process module 202 directly obtains this information from described operation system, by higher than obtaining efficiency from the described server-side processes module 204 recording this information, be conducive to the operating experience improving user.But, if do not record described user profile in described operation system, then described client process module 202 can only obtain this information from described server-side processes module 204, simultaneously can also complete initialization generating run to described user profile to described operation system.
In technique scheme, preferably, described client process module 202 described user do not log in maybe cannot obtain described unique identifier time, receive the described user profile of described user input, and realize login by described user profile.That is, in the technical program, when described certificate server cannot normally work, described single-sign-on treatment system 200 also can directly point out user to re-start register by independent operating, and then the coupling reduced between related system, achieve flexible plug.
In technique scheme, preferably, described server-side processes module 204 generates dynamic java script file, records described unique identifier, and described client process module 202 extracts described unique identifier from described java script file.
In the technical program, described java script file can be utilized to record described unique identifier, based on versatility and the flexibility of java script script height, make described single-sign-on treatment system 200 can be adapted to, with the client of any one language compilation, greatly strengthen the flexibility of this system.
Fig. 3 shows the flow chart of single-sign-on processing method according to an embodiment of the invention.
As shown in Figure 3, single-sign-on processing method, comprising: step 302 according to an embodiment of the invention, is sent the request of registering service system, and be supplied to certificate server end Authentication Client acquisition user by browser; Step 304, at described certificate server end, obtain and described user-dependent information recording text from described browser, and judge whether described user logs according to described information recording text, and notifying described Authentication Client, described information recording text comprises the user's name of described user; Step 306, at described Authentication Client, when described user logs in, obtains described user's name from described certificate server end, and obtains the complete user profile of described user according to described user's name, log in described operation system by described user profile.
In the technical program, described information recording text is cookies said in the art, directly from described browser, relevant cookies information is obtained at described certificate server end, and then judge the login situation of associated user, this just makes to apply described single-sign-on processing method when judging that user logs in situation, certain main business system can not be depended on, but each operation system is processed as square one, which improves the degree of flexibility that single-sign-on operation realizes, improve Consumer's Experience.
In technique scheme, preferably, described step 304 also comprises: when described user logs in, generates unique identifier, and be supplied to described Authentication Client according to described user's name; Described step 306 comprises: according to described unique identifier, obtains described user's name from described certificate server end.By when described user logs in, described unique identifier is generated according to described user's name, this identification code becomes passage when obtaining described user's name from described certificate server end each time, like this, just can get correspondingly user's name quickly and accurately, and then ensure the reliability of described single-sign-on operation realization each time.
In technique scheme, preferably, described step 306 comprises: first from the data of described operation system, obtain described user profile, when cannot get described user profile, then obtains described user profile from described certificate server end.In the technical program, described user profile may just be present among described operation system after user is logged, if so, directly can obtain this information from described operation system, by higher than obtaining efficiency from the described certificate server end recording this information, be conducive to the operating experience improving user.But, if do not record described user profile in described operation system, then can only obtain this information from described certificate server end, simultaneously can also complete initialization generating run to described user profile to described operation system.
In technique scheme, preferably, described step 306 also comprises: described user do not log in maybe cannot obtain described unique identifier time, receive the described user profile of described user input, and realize login by described user profile.That is, in the technical program, when described certificate server cannot normally work, apply described single-sign-on processing method and also can complete correlation function by directly pointing out user to re-start login, and then the coupling reduced between related system, achieve flexible plug.
In technique scheme, preferably, described step 302 also comprises: generate dynamic javascript file, record described unique identifier; Described step 304 also comprises: from described javascript file, extract described unique identifier.
In the technical program, described java script file can be utilized to record described unique identifier, based on versatility and the flexibility of java script script height, make described single-sign-on processing method can be adapted to, with the client of any one language compilation, increase the scope of application of the method.
Fig. 4 shows CAS Server according to an embodiment of the invention and holds the schematic diagram of DYNAMIC J S generative process.
As shown in Figure 4, CAS Server(and described certificate server according to an embodiment of the invention) hold DYNAMIC J S generative process as follows:
Step 402, described certificate server end gets the request of browser.User increases interface newly at CASServer server, such as
http:// uop.yonyou.com/home/loginstat.jsp random=34323453432, described certificate server end, by the access of browser to this request, gets the cookies information about login user in browser.
Step 404, described certificate server end verifies correctness and the available time of cookies value in internal memory, specifically, comprises Third party system domain name legitimacy, Third party system request time legitimacy, Third party system key legitimacy etc.
Step 406, according to the check results of described step 404, judges the whether logged described CAS Server of user, and generates feedback DYNAMIC J S code according to this result: if user is not logged, then the JS code content fed back is: var_loginstat=false; If user is logged, then the JS code content fed back is:
var_lo ginstat=true;
var_isExpired=false;
var_uuid=550E8400E29B11D4A716446655440000。
Fig. 4 is only the schematic diagram of above-mentioned flow process, and arrow wherein, only for signal, not represents the flow direction of data in the absolute order of described step or described step.
Fig. 5 shows CAS Client according to an embodiment of the invention and holds the schematic diagram of DYNAMIC J S proof procedure.
As shown in Figure 5, CAS Client holds (i.e. described client) DYNAMIC J S proof procedure as follows according to an embodiment of the invention:
Step 502, user logs in described CAS Server, and by verification (such as cryptographic check, identifying code verification etc.), judges whether user logins successfully: if not, then return the information of login failure; If so, then change the internal storage state of browser, generate relevant cookies, and return the information logged in.
Step 504, the CAS Client for any language holds program, such as jsp program end, by code below the increase of Third party system homepage:
<script type="text/javascript"
src="
http://uop.yonyou.com/home/loginstat.jsp?random=34323453432”>
</script>
Illustrate: parameter random is a random parameter, prevents browse request buffer memory, nonsensical to request itself.
Quote the JS generated in above-mentioned steps 406.When described user logs in third party's operation system, according to the feedback result of this JS, carry out JS certification at the page, what determine described Third party system by this DYNAMIC J S content turns to strategy, and its logic is as follows:
Afterwards, CAS Client holds by filtering described JS feedack, obtain the uuid (Universally Unique Identifier, i.e. general exclusive identification code) that wherein said user logs in generation, and hold the verification initiated described uuid to described CAS Server.
Step 506, after completing for the verification of described uuid, described CAS Client end carries out user's verification according to described uuid, to obtain corresponding described user's name.
Fig. 6 shows the flow chart that single-sign-on processing method according to an embodiment of the invention utilizes JS technology to realize.
As shown in Figure 6, the single-sign-on processing method flow process that utilizes JS technology to realize is as follows according to an embodiment of the invention:
Step 602, embeds the javascript of single sign-on authentication server in each operation system.
Step 604, by analyzing the javascript file obtained, judges whether user logs in, if do not logged in, then points out user to log in, if logged in, then can obtain this unique identifier logged in of active user.
Step 606, according to unique sign of logged-in user as parameter, invoking web page service acquisition is to the actual user title of current login user.
Step 608, user profile complete in this operation system is loaded according to described user's name, if described user's name does not exist in this operation system, then can obtain complete user profile as the parameter of described web service from described certificate server by described user's name and complete initialization operation.
More than be described with reference to the accompanying drawings technical scheme of the present invention.By the application of the technical program, can realize single-sign-on in the client of existing any language compilation, the coupling between minimizing system simultaneously, reduction integrated cost, realize plugging flexibly.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for a person skilled in the art, the present invention can have various modifications and variations.Within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (6)
1. a single-sign-on treatment system, it is characterized in that, comprise the client process module being positioned at Authentication Client and the server-side processes module being positioned at certificate server end, described client process module obtains user sends registering service system request by browser, and be supplied to described server-side processes module, described server-side processes module obtains and described user-dependent information recording text from described browser, and judge whether described user logs according to described information recording text, and notify described client process module, described information recording text comprises the user's name of described user, described client process module is when described user logs in, described user's name is obtained from described server-side processes module, and obtain the complete user profile of described user according to described user's name, described operation system is logged in by described user profile,
Described server-side processes module is when described user logs in, unique identifier is generated according to described user's name, and being supplied to described client process module, described client process module, according to described unique identifier, obtains described user's name from described server-side processes module;
Described server-side processes CMOS macro cell dynamic java script file, records described unique identifier, and described client process module extracts described unique mark code from described java script file.
2. single-sign-on treatment system according to claim 1, it is characterized in that, first described client process module obtains described user profile from the data of described operation system, when cannot get described user profile, then obtains described user profile from described server-side processes module.
3. single-sign-on treatment system according to claim 1, it is characterized in that, described client process module described user do not log in maybe cannot obtain described unique identifier time, receive the described user profile of described user input, and realize login by described user profile.
4. a single-sign-on processing method, is characterized in that, comprising:
Step 302, is sent the request of registering service system, and is supplied to certificate server end by browser Authentication Client acquisition user;
Step 304, at described certificate server end, obtain and described user-dependent information recording text from described browser, and judge whether described user logs according to described information recording text, and notifying described Authentication Client, described information recording text comprises the user's name of described user;
Step 306, at described Authentication Client, when described user logs in, obtains described user's name from described certificate server end, and obtains the complete user profile of described user according to described user's name, log in described operation system by described user profile;
Described step 304 also comprises: when described user logs in, generates unique identifier, and be supplied to described Authentication Client according to described user's name;
Described step 306 comprises: according to described unique identifier, obtains described user's name from described certificate server end;
Described step 302 also comprises: generate dynamic java script file, record described unique identifier;
Described step 304 also comprises: from described java script file, extract described unique mark code.
5. single-sign-on processing method according to claim 4, is characterized in that, described step 306 comprises:
First from the data of described operation system, obtain described user profile, when cannot get described user profile, then obtain described user profile from described certificate server end.
6. single-sign-on processing method according to claim 4, is characterized in that, described step 306 also comprises:
Described user do not log in maybe cannot obtain described unique identifier time, receive the described user profile of described user input, and realize login by described user profile.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210222687.4A CN102739678B (en) | 2012-06-28 | 2012-06-28 | Single-sign-on treatment system and single-sign-on processing method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210222687.4A CN102739678B (en) | 2012-06-28 | 2012-06-28 | Single-sign-on treatment system and single-sign-on processing method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102739678A CN102739678A (en) | 2012-10-17 |
| CN102739678B true CN102739678B (en) | 2015-09-02 |
Family
ID=46994461
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210222687.4A Active CN102739678B (en) | 2012-06-28 | 2012-06-28 | Single-sign-on treatment system and single-sign-on processing method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102739678B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103124260B (en) * | 2012-12-14 | 2016-06-29 | 北京新媒传信科技有限公司 | The login method of a kind of Web page and device |
| CN103036887B (en) * | 2012-12-18 | 2015-11-25 | 北京奇虎科技有限公司 | Realize the system and method for website log |
| CN103036993B (en) * | 2012-12-18 | 2015-11-25 | 北京奇虎科技有限公司 | Realize browser client and the method for website log |
| CN103209168B (en) * | 2013-01-30 | 2017-03-08 | 广东欧珀移动通信有限公司 | A kind of method and system for realizing single-sign-on |
| CN104753855B (en) * | 2013-12-25 | 2019-01-04 | 中国移动通信集团公司 | Single-point logging method, applications client, browser, terminal and server |
| CN104717228A (en) * | 2015-03-31 | 2015-06-17 | 北京羽乐创新科技有限公司 | Method and device for authorizing account number |
| CN105592035A (en) * | 2015-04-03 | 2016-05-18 | 中国银联股份有限公司 | Single sign on method used for multiple application systems |
| CN107786552A (en) * | 2017-10-19 | 2018-03-09 | 用友网络科技股份有限公司 | Single-point logging method, system and computer equipment |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101127603A (en) * | 2007-08-16 | 2008-02-20 | 中兴通讯股份有限公司 | A method for single point login of portal website and IMS client |
| CN101605030A (en) * | 2008-06-13 | 2009-12-16 | 新奥特(北京)视频技术有限公司 | A kind of uniform authentication realizing method of using towards TV station based on Active Directory |
| CN101651666A (en) * | 2008-08-14 | 2010-02-17 | 中兴通讯股份有限公司 | Method and device for identity authentication and single sign-on based on virtual private network |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8527774B2 (en) * | 2009-05-28 | 2013-09-03 | Kaazing Corporation | System and methods for providing stateless security management for web applications using non-HTTP communications protocols |
-
2012
- 2012-06-28 CN CN201210222687.4A patent/CN102739678B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101127603A (en) * | 2007-08-16 | 2008-02-20 | 中兴通讯股份有限公司 | A method for single point login of portal website and IMS client |
| CN101605030A (en) * | 2008-06-13 | 2009-12-16 | 新奥特(北京)视频技术有限公司 | A kind of uniform authentication realizing method of using towards TV station based on Active Directory |
| CN101651666A (en) * | 2008-08-14 | 2010-02-17 | 中兴通讯股份有限公司 | Method and device for identity authentication and single sign-on based on virtual private network |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102739678A (en) | 2012-10-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102739678B (en) | Single-sign-on treatment system and single-sign-on processing method | |
| JP6533871B2 (en) | System and method for controlling sign-on to web applications | |
| US8621589B2 (en) | Cross domain single sign on | |
| CN106936853B (en) | Cross-domain single sign-on method based on system integration-oriented cross-domain single sign-on system | |
| CN104320377B (en) | The anti-stealing link method and equipment of a kind of files in stream media | |
| CN104735066B (en) | A kind of single-point logging method of object web page application, device and system | |
| WO2017028804A1 (en) | Web real-time communication platform authentication and access method and device | |
| EP3210107B1 (en) | Method and apparatus for facilitating the login of an account | |
| EP2860906B1 (en) | Identity authentication method and device | |
| CN106375270B (en) | Token generation and authentication method and authentication server | |
| US20130283362A1 (en) | Authenticating user through web extension using token based authentication scheme | |
| CN104836803B (en) | Single-point logging method based on session mechanism | |
| CN105007280A (en) | Application sign-on method and device | |
| CN105337949A (en) | SSO (Single Sign On) authentication method, web server, authentication center and token check center | |
| CN104113551A (en) | Platform authorization method, platform server side, application client side and system | |
| CN102624737A (en) | Single sign-on integrated method for Form identity authentication in single login system | |
| CN104065616A (en) | Single sign-on method and system | |
| CN104113552A (en) | Platform authorization method, platform server side, application client side and system | |
| JP6044299B2 (en) | Data reference system and application authentication method | |
| CN103220259A (en) | Using method, call method, device and system of Oauth application programming interface (API) | |
| CN104158802A (en) | Platform authorization method, platform service side, application client side and system | |
| CN102682009A (en) | Method and system for logging in webpage | |
| CN103634399B (en) | Method and device for realizing cross-domain data transmission | |
| CN106341233A (en) | Authentication method for client to log into server, device, system and electronic device | |
| CN104394133A (en) | Login method and login system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C56 | Change in the name or address of the patentee | ||
| CP03 | Change of name, title or address |
Address after: 100094 Haidian District North Road, Beijing, No. 68 Patentee after: Yonyou Network Technology Co., Ltd. Address before: 100094 Beijing city Haidian District North Road No. 68, UFIDA Software Park Patentee before: UFIDA Software Co., Ltd. |