CN104753755A

CN104753755A - System access method, system access device, application client, and IM background system

Info

Publication number: CN104753755A
Application number: CN201310738965.6A
Authority: CN
Inventors: 郭稷; 蒋德为; 胡建强; 巩吉璋; 穆战松; 李宜达; 曹小飞; 郭海宇
Original assignee: Guangzhou Huaduo Network Technology Co Ltd
Current assignee: Guangzhou Huaduo Network Technology Co Ltd
Priority date: 2013-12-26
Filing date: 2013-12-26
Publication date: 2015-07-01
Anticipated expiration: 2033-12-26
Also published as: CN104753755B

Abstract

The invention discloses a system access method, a system access device, an application client, and an IM background system, and belongs to the technical field of the Internet. The system access method comprises the following steps: sending the username and the password of an application client to an authentication server corresponding to the application client so that the authentication server can authenticate the application client according to the username and the password and return confirmation information when the application client passes authentication; receiving the confirmation information returned by the authentication server; and sending the user identification number of the application client and the application identification number of the application client to an instant messaging IM background system so that the IM background system can give the application client access permission, wherein the user identification number of the application client is the same with the user identification number of at least one application client of other types sharing the IM background system. Thus, the IM background system can uniquely determine an application client according to the user identification number and the application identification number of the application client and give the determined application client access permission.

Description

System access method, device, applications client and IM background system

Technical field

The present invention relates to Internet technical field, particularly a kind of system access method, device, applications client and IM background system.

Background technology

IM(Instant Messaging, instant messaging) background system to provide the IM background system of serving, being built by least one server.

When actual realization, when a certain applications client needs request IM service, applications client just needs to be linked into IM background system.At present, common a kind of system access method comprises: the username and password that applications client is first arranged by user is to the certificate server request authentication corresponding with this applications client, UID(User ID is sent by rear applications client in certification, customer identification number) to IM background system, this UID is that applications client is when certificate server registered user name and password, distribute to this applications client by certificate server, IM background system gives applications client access authority after receiving the UID that this applications client sends.

Realizing in process of the present invention, inventor finds correlation technique, and at least there are the following problems:

Build comparatively not easily due to IM background system, there will be dissimilar applications client and use an IM background system to the situation providing IM to serve simultaneously.When an IM background system provides IM to serve for dissimilar applications client simultaneously, due to the certificate server of each own correspondence of dissimilar applications client, the applications client that may there are two or more in the UID that different certificate servers distributes uses the situation of identical UID, and because dissimilar applications client uses same IM background system, so this just causes when the UID that IM background system receives is shared by two or more client, IM background system can not determine it is which applications client request access, so the wrong problem of applications client that IM background system determines may be there is in said system cut-in method.

Summary of the invention

The wrong problem of applications client that IM background system determines may be there is in order to solve the system access method provided in prior art, embodiments providing a kind of system access method, device, applications client and IM background system.Described technical scheme is as follows:

First aspect, provides a kind of system access method, and in applications client, described method comprises:

Send the username and password certificate server that extremely described applications client is corresponding of described applications client, so that described certificate server applications client according to described user name and described codon pair carries out certification, and certification by time return confirmation;

Receive the described confirmation that described certificate server returns;

The application identification sending the customer identification number of described applications client and described applications client number to instant messaging IM background system so that described IM background system gives described applications client access authority; The customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In the first possible implementation of first aspect, before the customer identification number of the described applications client of described transmission and the application identification of described applications client number to instant messaging IM background system, described method also comprises:

Send information to be certified to described IM background system, so that described IM background system carries out certification according to described information to be certified to described applications client, and in certification by returning the described application identification of described applications client afterwards number to described applications client;

Receive and preserve the described application identification number that described IM background system returns.

In the implementation that the second of first aspect is possible, described reception also preserves the described application identification number that described IM background system returns, and comprising:

Receive and preserve valid expiration date of described application identification that described IM background system returns number and described application identification number;

Before the customer identification number of the described applications client of described transmission and the application identification of described applications client number to instant messaging IM background system, described method also comprises:

Described application identification is detected number whether effective according to described valid expiration date;

If testing result is effectively, then perform the application identification number step to instant messaging IM background system of the customer identification number of the described applications client of described transmission and described applications client;

If testing result is invalid, then again perform the step of described transmission information to be certified to described IM background system.

In the third possible implementation of first aspect, described information to be certified comprises the key application word of described applications client and the application check code of described applications client, before described transmission information to be certified to described IM background system, described method also comprises:

Receive and described application check code after preserving the synchronous renewal of described IM background system, described application check code after described renewal be described IM background system when carrying out certification to other applications client of type identical with described applications client, upgrade after authentification failure and send;

Described transmission information to be certified, to described IM background system, comprising:

Send the described key application word of described applications client and the described application check code extremely described IM background system after upgrading.

Second aspect, provides a kind of system access method, and in instant messaging IM background system, described method comprises:

The customer identification number of described applications client that reception applications client sends after receiving the confirmation information and the application identification number of described applications client, after described confirmation is the described applications client username and password that sends described applications client to the certificate server that described applications client is corresponding, described certificate server in applications client certification according to described user name and described codon pair by returning afterwards;

Give the authority that described applications client accesses described IM background system, the customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In the first possible implementation of second aspect, before the customer identification number of the described applications client that described reception applications client sends after receiving the confirmation information and the application identification number of described applications client, described method also comprises:

Receive the information to be certified that described applications client sends;

According to described information to be certified, certification is carried out to described applications client;

When certification by time, return the described application identification number of described applications client to described applications client.

In the implementation that the second of second aspect is possible, described in return the described application identification number of described applications client to described applications client, comprising:

Return the valid expiration date of the described application identification number of described applications client and described application identification number to described applications client, so that described applications client receives and preserves the valid expiration date of described application identification number and described application identification number, described application identification is detected number whether effective according to described valid expiration date, when testing result is effective, send the application identification of the customer identification number of described applications client and described applications client number to described IM background system, when testing result is invalid, again send described information to be certified to described IM background system.

In the third possible implementation of second aspect, describedly according to described information to be certified, certification is carried out to described applications client, comprising:

Calculate the number of the information described to be certified received in historical time section;

Whether the described number that detection computations obtains is in predetermined span;

If testing result is in described predetermined span, then determine that described applications client certification is passed through.

In the 4th kind of possible implementation of second aspect, described method also comprises:

If when testing result is not in described predetermined span, then determine described applications client authentification failure, upgrade the described application check code in described information to be certified;

Described application check code after synchronized update is to other applications client of type identical with described applications client, so that other applications client described receives and preserves the described application check code after upgrading.

In the 5th kind of possible implementation of second aspect, the information to be certified that the described applications client of described reception sends, comprising:

Receive the described key application word of described applications client transmission and the described application check code after upgrading, described application check code after described renewal be described IM background system when carrying out certification to other applications client of type identical with described applications client and at authentification failure, perform and upgrade and be synchronized to described applications client.

The third aspect, provides a kind of system access device, and in applications client, described device comprises:

First sending module, for sending the username and password certificate server that extremely described applications client is corresponding of described applications client, so that described certificate server applications client according to described user name and described codon pair carries out certification, and certification by time return confirmation;

First receiver module, for receiving the described confirmation that described certificate server returns;

Second sending module, for the application identification of the customer identification number and described applications client that send described applications client number to instant messaging IM background system, so that described IM background system gives described applications client access authority; The customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In the first possible implementation of the third aspect, described device also comprises:

3rd sending module, for sending information to be certified to described IM background system, so that described IM background system carries out certification according to described information to be certified to described applications client, and in certification by returning the described application identification of described applications client afterwards number to described applications client;

Second receiver module, for receiving and preserving the described application identification number that described IM background system returns.

In the implementation that the second of the third aspect is possible, described second receiver module, also for receiving and preserving valid expiration date of described application identification that described IM background system returns number and described application identification number;

Described device also comprises:

Information detecting module, whether the described valid expiration date for receiving according to described second receiver module detects described application identification number effective;

Described second sending module, also for when the testing result of described information detecting module is effective, performs the application identification number step to instant messaging IM background system of the customer identification number of the described applications client of described transmission and described applications client;

Described 3rd sending module, also for when the testing result of described information detecting module is invalid, performs the step of described transmission information to be certified to described IM background system again.

In the third possible implementation of the third aspect, described authentication information comprises the key application word of described applications client and the application check code of described applications client, and described device also comprises:

3rd receiver module, for receiving and preserving the described application check code after the synchronous renewal of described IM background system, described application check code after described renewal be described IM background system when carrying out certification to other applications client of type identical with described applications client, upgrade after authentification failure and send;

Described 3rd sending module, also for sending the described key application word of described applications client and the described application check code extremely described IM background system after upgrading.

Fourth aspect, provides a kind of system access device, and in instant messaging IM background system, described device comprises:

First receiver module, for the application identification number of the customer identification number and described applications client that receive the described applications client that applications client sends after receiving the confirmation information, after described confirmation is the described applications client username and password that sends described applications client to the certificate server that described applications client is corresponding, described certificate server in applications client certification according to described user name and described codon pair by returning afterwards;

Authority gives module, accesses the authority of described IM background system for giving described applications client, and the customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In the first possible implementation of fourth aspect, described device comprises:

Second receiver module, for receiving the information to be certified that described applications client sends;

Client certificate module, carries out certification for the information described to be certified received according to described second receiver module to described applications client;

Information sending module, for described client certificate module authentication by time, return the described application identification number of described applications client to described applications client.

In the implementation that the second of fourth aspect is possible, described information sending module, also for returning the valid expiration date of the described application identification number of described applications client and described application identification number to described applications client, so that described applications client receives and preserves the valid expiration date of described application identification number and described application identification number, described application identification is detected number whether effective according to described valid expiration date, when testing result is effective, send the application identification of the customer identification number of described applications client and described applications client number to described IM background system, when testing result is invalid, again send described information to be certified to described IM background system.

In the third possible implementation of fourth aspect, described client certificate module, comprising:

Number computing unit, for calculating the number of the information described to be certified received in historical time section;

Number detecting unit, for detecting described number that described number computing unit calculates whether in predetermined span;

Certification, by unit, for when the testing result of described number detecting unit is in described predetermined span, determines that described applications client certification is passed through.

In the 4th kind of possible implementation of fourth aspect, described device also comprises:

Check code update module, during for being in the testing result of described number detecting unit not in described predetermined span, determining described applications client authentification failure, upgrading the described application check code in described information to be certified;

Check code synchronization module, described application check code after upgrading for synchronous described check code update module is to other applications client of type identical with described applications client, so that other applications client described receives and preserves the described application check code after upgrading.

In the 5th kind of fourth aspect possible possible mode, described second receiver module, also for receiving the described key application word of described applications client transmission and the described application check code after upgrading, described application check code after described renewal be described IM background system when carrying out certification to other applications client of type identical with described applications client and at authentification failure, perform and upgrade and be synchronized to described applications client.

5th aspect, provides a kind of applications client, it comprise arbitrary in the various possible implementation as the third aspect and the third aspect as described in system access device.

6th aspect, provides a kind of instant messaging IM background system, it comprise arbitrary in the various possible implementation as fourth aspect and fourth aspect as described in system access device.

The beneficial effect of the technical scheme that the embodiment of the present invention provides is:

By sending the username and password of applications client to certificate server corresponding to applications client, receive certificate server certification by time the confirmation that returns, send the application identification of the customer identification number of applications client and applications client number to instant messaging IM background system, so that IM background system gives applications client access authority, wherein, the customer identification number of applications client is identical with the customer identification number of the applications client of other type of at least one shared IM background system; Solve the problem that applications client that in correlation technique, IM background system is determined may be wrong; Reaching IM background system can according to the customer identification number of applications client and application identification number unique determination applications client, and then the effect of the applications client access authority determined.

Accompanying drawing explanation

In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, below the accompanying drawing used required in describing embodiment is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.

Fig. 1 is the structural representation of a kind of implementation environment involved by the embodiment of the present invention;

Fig. 2 A is a kind of block diagram of the IM background system involved by the embodiment of the present invention;

Fig. 2 B is another block diagram of the IM background system involved by the embodiment of the present invention;

Fig. 3 is the method flow diagram of the system access method that one embodiment of the invention provides;

Fig. 4 is the method flow diagram of the system access method that another embodiment of the present invention provides;

Fig. 5 is the method flow diagram of the system access method that yet another embodiment of the invention provides;

Fig. 6 is the block diagram of the system access device that one embodiment of the invention provides;

Fig. 7 A is the block diagram of the system access device that another embodiment of the present invention provides;

Fig. 7 B is another block diagram of the system access device that another embodiment of the present invention provides;

Fig. 7 C is a block diagram again of the system access device that another embodiment of the present invention provides;

Fig. 8 is the block diagram of the system access device that one embodiment of the invention provides;

Fig. 9 is the block diagram of the system access device that another embodiment of the present invention provides.

Embodiment

In order to make the object, technical solutions and advantages of the present invention clearly, below in conjunction with accompanying drawing, the present invention is described in further detail, and obviously, described embodiment is only a part of embodiment of the present invention, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making other embodiments all obtained under creative work prerequisite, belong to the scope of protection of the invention.

Please refer to Fig. 1, it illustrates the structural representation of a kind of implementation environment involved by system access method that each embodiment of the present invention provides.This implementation environment comprises applications client 110, certificate server 120 and IM background system.

Applications client 110 be run in the terminal, the IM client that provided by a certain instant messaging service provider; When actual realization, applications client 110 has two or more, and in two or more applications client 110, has at least the type of two methods client different but customer identification number UID is identical; Such as, there are 2000 ' QX ' applications client and 1320 ' YX ' applications client, wherein have at least the UID of ' QX ' applications client corresponding identical with the UID of ' YX ' applications client.Applications client 110 can be connected with certificate server 120 by wired or wireless network, thus applications client 110 can send username and password to certificate server 120, so that certificate server 120 pairs of applications client 110 carry out certification, and return confirmation to applications client 110 after certification is passed through; Wherein, the applications client 110 of same kind can share same certificate server 120, the certificate server 120 that dissimilar applications client 110 is corresponding different; In addition, because applications client 110 needs request IM service, so applications client 110 can also be connected with IM background system 130 by wired or wireless network, send the customer identification number of applications client 110 and application identification number to IM background system 130, so that IM background system 130 gives applications client access authority.It should be noted that, in the implementation environment shown in Fig. 1, first applications client 110 and second applications client 110 are applications client of identical type, can common same certificate server 120; And the 3rd applications client 110 with it the first two applications client 110 are dissimilar applications client, so its with it the first two applications client 110 use different certificate servers, the present embodiment does not repeat them here.

Certificate server 120 is servers that the instant messaging provider of applications client 110 provides, be connected with applications client 110 by wired or wireless network, for receiving the username and password that applications client 110 sends, thus according to the username and password received, certification is carried out to applications client 110, and certification by time return confirmation to applications client 110.

IM background system 130 is for providing IM to serve for dissimilar applications client 110; The corresponding application program of applications client of every type, when each application program opens the rights of using of IM background system 130, IM background system 130 can distribute AppID(Application ID for all applications client 110 of this application program, application identification number), wherein, AppID is unique identification one application in IM background system 130, and can be character string, numeral or both combinations when actual realization; Thus when applications client 110 needs the IM service of asking IM background system 130 to provide, applications client 110 can send UID and AppID to the IM background system 130 of applications client 110, so that IM background system 130 gives to access authority.Wherein, IM background system 130 can be connected with applications client 110 by wired or wireless network.Please refer to Fig. 2 A, IM background system 130 can comprise access subsystem 131, forward subsystem 132 and online subsystem 133; Applications client 110 sends the access subsystem 131 in UID and AppID to IM background system 130, and access subsystem 131 gives applications client 110 and accesses authority; And access subsystem 131 informs that this applications client 110 of online subsystem 133 is online, online subsystem 133 is informed and is forwarded the current state of subsystem 132 applications client 110, makes to forward subsystem 132 and the state of applications client is forwarded to its good friend.

It should be noted that, the AppID of generation, after generation AppID, can be returned to applications client 110 by IM background system 130, to use after applications client 110; When actual realization, IM background system 130 can also be applications client 110 dispensing applications keyword Appkey and the application check code Appsecret of every type, and Appkey and Appsecret of generation is returned to applications client 110, and directly AppID is not back to applications client 110; Like this when applications client 110 needs access IM background system 130, the Appkey that applications client 110 needs use to receive in advance and Appsecret to IM background system 130 request authentication, and return AppID to applications client 110 in certification by IM background system 130 afterwards, applications client 110 normally uses after receiving AppID, now, can also comprise the power mirror subsystem 134 for carrying out certification to Appkey and Appsecret in IM background system, concrete structure block diagram please refer to Fig. 2 B.

Some terms involved by the present embodiment are as follows:

UID: customer identification number is applications client 110 when to certificate server 120 registered user name of correspondence and password, by certificate server 120 distribute to applications client 110, for the identifier of unique identification applications client 110 identity.When actual realization, UID is represented by numeral usually.

AppID: application identification number, that each application program is when opening the rights of using of IM background system 130, generated by IM background system 130 and distribute to all applications client 110 of application program, AppID is used for mark one application unique in IM background system 130.

Appkey: key application word, that each application program is when opening the rights of using of IM background system 130, generated by IM background system 130 and distribute to all applications client 110 of application program, for representing the title of application program in IM background system 130.Wherein, IM background system 130 can adopt UUID(Universally Unique Identifier, general unique identifier) mode generate Appkey, the present embodiment generating mode concrete to it does not limit.

Appsecret: application check code, that each application program is when opening the rights of using of IM background system 130, being generated by IM background system 130 and to distribute to all applications client 110 of application program, to reflect subsystem 134 request authentication to the power in the IM background system 130 shown in Fig. 2 B for combining with Appkey.When actual realization, Appsecret can be character string type usually, and IM background system 130 can adopt the mode of stochastic generation to generate Appsecret, and the present embodiment does not limit this.

It should be noted that, according to the different situations of different embodiment, may not relate in certain embodiments in foregoing, the situation that the present embodiment may be used in this is just with the most full embodiment illustrates.

Please refer to Fig. 3, it illustrates the method flow diagram of the system access method that one embodiment of the invention provides, the present embodiment is used for illustrating in the implementation environment shown in Fig. 1 with this system access method, and this system access method can comprise:

Step 301, applications client sends the username and password of applications client to certificate server corresponding to applications client;

Wherein, the customer identification number of applications client is identical with the customer identification number of the applications client of other type of at least one shared IM background system.

Step 302, certificate server carries out certification according to username and password to applications client;

Step 303, certificate server certification by time return confirmation;

Step 304, applications client receives the confirmation that certificate server returns;

Step 305, applications client sends the application identification of the customer identification number of applications client and applications client number to instant messaging IM background system;

Step 306, IM background system gives applications client access authority.

In sum, the system access method that the present embodiment provides, by sending the username and password of applications client to certificate server corresponding to applications client, receive certificate server certification by time the confirmation that returns, send the application identification of the customer identification number of applications client and applications client number to instant messaging IM background system, so that IM background system gives applications client access authority, wherein, the customer identification number of applications client is identical with the customer identification number of the applications client of other type of at least one shared IM background system; Solve the problem that applications client that in correlation technique, IM background system is determined may be wrong; Reaching IM background system can according to the customer identification number of applications client and application identification number unique determination applications client, and then the effect of the applications client access authority determined.

Please refer to Fig. 4, it illustrates the method flow diagram of the system access method that another embodiment of the present invention provides, the present embodiment is used for illustrating in the implementation environment shown in Fig. 1 with this system access method, and this system access method can comprise:

Step 401, applications client sends the username and password of applications client to certificate server corresponding to applications client;

When user needs the service using a certain applications client to provide, user can use the username and password of registered in advance to log in applications client, and accordingly, applications client can send username and password to certificate server corresponding to applications client.Wherein, the certificate server that dissimilar applications client is corresponding different, the applications client of same type uses same certificate server.Wherein, the customer identification number of applications client is identical with the customer identification number of the applications client of other type of at least one shared IM background system.

Such as, be ' QX ' applications client for applications client, user is after input username and password, and ' QX ' applications client can send the certificate server of username and password to ' QX ' correspondence; When applications client is " YX " applications client, ' YX ' applications client just can send the certificate server of username and password to ' XY ' correspondence.

Step 402, certificate server carries out certification according to username and password to applications client;

Certificate server is after receiving username and password, and certificate server can carry out certification according to the username and password received to applications client.Concrete, whether there is one group that mates with the username and password received in each group of username and password that certificate server can store in Test database; If testing result is for existing, then certification is passed through; Otherwise when testing result is not for existing, authentification failure flow process terminates, and now certificate server can send for pointing out the information of mistake to applications client, so that applications client sends username and password to the certificate server after upgrading and carrys out request authentication again, this enforcement does not repeat them here.

Step 403, certificate server certification by time return confirmation;

In certificate server certification by afterwards, certificate server can return confirmation to applications client.

Step 404, applications client receives the confirmation that certificate server returns;

Accordingly, applications client can receive the confirmation that certificate server returns.

Step 405, applications client sends information to be certified to IM background system;

After applications client receives the confirmation information, applications client can send information to be certified to IM background system.Wherein, information to be certified comprises the Appkey of applications client and the Appsecret of applications client.

Step 406, IM background system receives the information to be certified that applications client sends;

Accordingly, IM background system can receive the information to be certified that applications client sends.

Step 407, IM background system carries out certification according to information to be certified to applications client;

After IM background system receives information to be certified, IM background system can carry out certification according to information to be certified to applications client.Wherein, IM background system can comprise the step that applications client carries out certification according to information to be certified:

The first, calculate the number of the information to be certified received in historical time section;

IM background system is after receiving information to be certified, and in order to the execution of subsequent step, IM background system can calculate the number of the information to be certified received in historical time section.Concrete, all applications client due to identical type use identical information to be certified, so in order to the applications client obtaining identical type is by situation about using, IM background system is after receiving information to be certified, and IM background system can calculate the number of the information all to be certified received in historical time section.Wherein, historical time section can for there is scheduled duration, time period of taking current time as finish time, such as, historical time section is one week in the past, then IM background system can calculate the number of the information to be certified received in one week in the past.

The second, whether the number that detection computations obtains is in predetermined span;

After the number calculating the information to be certified received in historical time section, IM background system can the number that obtains of detection computations whether in predetermined span.Wherein, predetermined span is the span of the number of the information to be certified that IM background system receives within the time period having an identical duration with historical time section that training in advance obtains.Such as, IM background system can add up the number of the information to be certified received weekly, and statistics represents that the value of the number of the information to be certified received weekly is floated between 1500-2000, then predetermined span can be set to 1500-2000 by IM background system.

3rd, if testing result is in predetermined span, then determine that applications client certification is passed through.

If the testing result of IM background system is in predetermined span, then application client is the applications client of normal access, and now IM background system can determine that applications client certification is passed through.

4th, if when testing result is not in predetermined span, then determine applications client authentification failure, upgrade the application check code in information to be certified;

If and the testing result of IM background system is not in predetermined span, then illustrate that the use total degree of each applications client of type identical with applications client in historical time section occurs abnormal, the now client that replaces by other client of forging after being likely and being intercepted and captured Appkkey and Appsecret by lawless person of applications client, so now IM background system can determine applications client authentification failure, and continue access IM background system to prevent the applications client of forging, IM background system can upgrade the Appsecret in information to be certified.

After IM background system more new opplication check code, IM background system can application check code after synchronized update to other applications client of type identical with applications client so that other applications client receives and application check code after preserving renewal.

After IM background system upgrades the Appsecret in information to be certified, normal use can be continued to make other applications client with identical Appkkey, IM background system can application check code Appsecret after synchronized update to other applications client of type identical with client so that other applications client receives and applications client after preserving renewal.

It should be noted that, when actual realization, also may there is other authentication method, the present embodiment is no longer illustrated at this, and does not also limit its concrete authentication method.

Step 408, when the certification of IM background system by time, return the application identification of applications client number to applications client;

When the certification of IM background system by time, IM background system can return the application identification of applications client number to applications client.

Wherein, when the AppID that IM background system returns applications client is to applications client, the valid expiration date of AppID can also be returned to applications client, so the IM background system application identification number that returns applications client to the step of applications client can comprise: return the valid expiration date of the application identification number of applications client and application identification number to applications client.

Concrete, when the certification of IM background system is passed through, IM background system can generate the cookies corresponding to applications client, and while returning AppID to applications client, returns the cookies of generation to applications client; Wherein, cookies can represent that applications client is authenticated in IM background system to be passed through, and has certain existence time limit due to cookies, so when this just made within the existence time limit of cookies, AppID is effective, and when the existence time limit of cookies is outer, AppID is invalid; Also cookies namely can be used to identify the valid expiration date of AppID.

Step 409, applications client receives and preserves the application identification number that IM background system returns;

Accordingly, applications client can receive the application identification number that IM background system returns, and preserves the application identification number received.

When actual realization, when the valid expiration date that IM background system returns AppID to applications client time, applications client receives and the step of preserving the AppID that IM background system returns can comprise: receive and preserve valid expiration date of AppID and AppID that IM background system returns.Concrete, applications client can receive AppID and cookies that IM background system returns.

In addition, when applications client receives the valid expiration date of AppID, and when applications client needs again to access IM background system, applications client can perform following steps:

The first, detect application identification according to valid expiration date number whether effective;

When applications client needs again to access IM background system, receive due to applications client and preserved the valid expiration date of AppID and AppID, so the interaction complexity in order to reduce applications client and IM background system, applications client can detect AppID whether also within valid expiration date.Concrete, whether applications client can detect the cookies of preservation surviving in the time limit, if testing result is that then IM background system can determine that AppID is still effective within the existence time limit; Otherwise, if testing result is that then IM background system can determine that AppID lost efficacy not within the existence time limit.

The second, if testing result is effectively, then perform the application identification number step to instant messaging IM background system of customer identification number and the applications client sending applications client;

If it is effective that the testing result of IM background system is AppID, then applications client directly can perform step 410.

3rd, if testing result is invalid, then again performs and send the step of information to be certified to IM background system.

And if the testing result of IM background system is that AppID is invalid, then in order to be linked into IM background system, applications client sends the step of information to be certified to IM background system by again performing.

Step 410, applications client sends the application identification of the customer identification number of applications client and applications client number to instant messaging IM background system;

After applications client receives AppID, applications client can send UID and AppID to IM background system.Certainly, when receiving cookies while applications client receives AppID, applications client can also send UID, AppID and cookies to IM background system.When actual realization, applications client can send the access subsystem 134 in the IM background system shown in UID and AppID to Fig. 2 B.

Step 411, IM background system gives applications client access authority.

After IM background system receives UID and AppID of applications client transmission, IM background system can give applications client access authority.

In the present embodiment, applications client is by sending key application word and applying check code to IM background system, the certification of IM background system, by returning application identification afterwards again number to applications client, avoids when the problem of IM background system service to be intercepted and captured and then stolen to the key application word of applications client and application check code by lawless person.

Simultaneously, while IM background system returns application identification number to applications client, IM background system can also return the valid expiration date of application identification number to applications client, make when applications client needs access IM background system again, whether applications client first can detect application identification number effective, and when effective directly transmission identifier and application identification number to IM background system, so that IM background system gives to access authority, reduce the interaction complexity of applications client and IM background system.

Please refer to Fig. 5, it illustrates the method flow diagram of the system access method that yet another embodiment of the invention provides, the present embodiment is used for illustrating in the implementation environment shown in Fig. 1 with this system access method, and this system access method can comprise:

Step 501, applications client sends the username and password of applications client to certificate server corresponding to applications client;

Step 502, certificate server carries out certification according to username and password to applications client;

Step 503, certificate server certification by time return confirmation;

Step 504, applications client receives the confirmation that certificate server returns;

Step 505, applications client receives and application check code after preserving the synchronous renewal of IM background system;

Applications client can receive and Appsecret after preserving the synchronous renewal of IM background system.Wherein, the Appsecret after renewal be IM background system when carrying out certification to other applications client of type identical with applications client, upgrade after authentification failure and send.

Concrete, when other applications client of type identical with applications client is to IM background system request authentication, and during authentification failure, IM background system can upgrade Appsecret, and the Appsecret after renewal is synchronized to all applications client of same type, so when actual realization, applications client can receive and Appsecret after preserving the synchronous renewal of IM background system.

It should be noted that, IM background system carries out the step 407 in the process of certification and above-described embodiment to other applications client, and concrete ins and outs please refer to above-described embodiment, and the present embodiment does not repeat them here.

Step 506, the key application word of applications client transmission applications client and the application check code after upgrading are to IM background system, and wherein, key application word and the application check code after upgrading are information to be certified;

Applications client can send the Appkey of applications client and Appsecret to the IM background system after upgrading.Wherein, Appkey and the Appsecret after upgrading forms information to be certified.

Step 507, IM background system receives the key application word of applications client transmission and the application check code after upgrading;

Accordingly, IM background system can receive the Appkey of applications client transmission and the Appsecret after upgrading, and also namely receives the information to be certified that applications client sends.

Step 508, IM background system carries out certification according to information to be certified to applications client;

Meter is after IM background system receives information to be certified, and IM background system can carry out certification according to information to be certified to applications client.Wherein, IM background system can comprise the step that applications client carries out certification according to information to be certified:

IM background system is after receiving information to be certified, and in order to the execution of subsequent step, IM background system can calculate the number of the information to be certified received in historical time section.Concrete, all applications client due to identical type use identical information to be certified, so in order to the applications client obtaining identical type is by situation about using, IM background system is after receiving information to be certified, and IM background system can calculate the number of the information all to be certified received in historical time section.Wherein, historical time section can for there is scheduled duration, time period of taking current time as finish time.

After the number calculating the information to be certified received in historical time section, IM background system can the number that obtains of detection computations whether in predetermined span.Wherein, predetermined span is the span of the number of the information to be certified that IM background system receives within the time period having an identical duration with historical time section that training in advance obtains.

If the testing result of IM background system is in predetermined span, then application client is the client of normal access, and now IM background system can determine that applications client certification is passed through.

And if the testing result of IM background system is not in predetermined span, then illustrate that the use total degree of each applications client of type identical with applications client in historical time section occurs abnormal, the now applications client that replaces by other client of forging after being likely and being intercepted and captured Appkkey and Appsecret by lawless person of applications client, so now IM background system can determine applications client authentification failure, and in order to prevent the applications client of forging from continuing to use, IM background system can upgrade the Appsecret in information to be certified.

After IM background system upgrades the Appsecret in information to be certified, normal use can be continued to make other applications client with Appkkey and Appsecret, IM background system can Appsecret after synchronized update to other applications client of type identical with client so that other applications client receives and applications client after preserving renewal.

Step 509, IM background system when certification by time, return the application identification of applications client number to applications client;

When the certification of IM background system is passed through, IM background system can return the AppID of applications client to applications client.

Wherein, when the AppID that IM background system returns applications client is to applications client, the valid expiration date of AppID can also be returned to applications client, so the IM background system AppID that returns applications client can comprise to the step of applications client: return the valid expiration date of the application identification number of applications client and application identification number to applications client.

Step 510, applications client receives and preserves the application identification number that IM background system returns;

Step 511, applications client sends the application identification of the customer identification number of applications client and applications client number to instant messaging IM background system;

Step 512, IM background system gives applications client access authority.

Please refer to Fig. 6, it illustrates the block diagram of the system access device that one embodiment of the invention provides, this system access device may be used in applications client, and this system access device can comprise: the first sending module 610, first receiver module 620 and the second sending module 630;

First sending module 610, for sending the username and password certificate server that extremely described applications client is corresponding of described applications client, so that described certificate server applications client according to described user name and described codon pair carries out certification, and certification by time return confirmation;

First receiver module 620, for receiving the described confirmation that described certificate server returns;

Second sending module 630, for the application identification of the customer identification number and described applications client that send described applications client number to instant messaging IM background system, so that described IM background system gives described applications client access authority; The customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In sum, the system access device that the present embodiment provides, by sending the username and password of applications client to certificate server corresponding to applications client, receive certificate server certification by time the confirmation that returns, send the application identification of the customer identification number of applications client and applications client number to instant messaging IM background system, so that IM background system gives applications client access authority, wherein, the customer identification number of applications client is identical with the customer identification number of the applications client of other type of at least one shared IM background system; Solve the problem that applications client that in correlation technique, IM background system is determined may be wrong; Reaching IM background system can according to the customer identification number of applications client and application identification number unique determination applications client, and then the effect of the applications client access authority determined.

Please refer to Fig. 7 A, it illustrates the system access device that yet another embodiment of the invention provides block diagram, this system access device may be used in applications client, and this system access device can comprise: the first sending module 710, first receiver module 720 and the second sending module 730;

First sending module 710, for sending the username and password certificate server that extremely described applications client is corresponding of described applications client, so that described certificate server applications client according to described user name and described codon pair carries out certification, and certification by time return confirmation;

First receiver module 720, for receiving the described confirmation that described certificate server returns;

Second sending module 730, for the application identification of the customer identification number and described applications client that send described applications client number to instant messaging IM background system, so that described IM background system gives described applications client access authority; The customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In the first possible implementation of the present embodiment, described device also comprises: the 3rd sending module 740 and the second receiver module 750;

3rd sending module 740, for sending information to be certified to described IM background system, so that described IM background system carries out certification according to described information to be certified to described applications client, and in certification by returning the described application identification of described applications client afterwards number to described applications client;

Second receiver module 750, for receiving and preserving the described application identification number that described IM background system returns.

Please refer to Fig. 7 B, in the implementation that the second of the present embodiment is possible,

Described second receiver module 750, also for receiving and preserving valid expiration date of described application identification that described IM background system returns number and described application identification number;

Described device also comprises:

Information detecting module 760, whether the described valid expiration date for receiving according to described second receiver module detects described application identification number effective;

Described second sending module 730, also for when the testing result of described information detecting module is effective, performs the application identification number step to instant messaging IM background system of the customer identification number of the described applications client of described transmission and described applications client;

Described 3rd sending module 740, also for when the testing result of described information detecting module is invalid, performs the step of described transmission information to be certified to described IM background system again.

Please refer to Fig. 7 C, in the third possible implementation of the present embodiment, described authentication information comprises the key application word of described applications client and the application check code of described applications client, and described device also comprises: the 3rd receiver module 770;

Described 3rd sending module 740, also for sending the described key application word of described applications client and the described application check code extremely described IM background system after upgrading.

Please refer to Fig. 8, it illustrates the block diagram of the system access device that one embodiment of the invention provides, this system access device can realize becoming all or part of of IM background system by software, hardware or both combinations, and this system access device can comprise: the first receiver module 810 and authority give module 820;

First receiver module 810, for the application identification number of the customer identification number and described applications client that receive the described applications client that applications client sends after receiving the confirmation information, after described confirmation is the described applications client username and password that sends described applications client to the certificate server that described applications client is corresponding, described certificate server in applications client certification according to described user name and described codon pair by returning afterwards;

Authority gives module 820, accesses the authority of described IM background system for giving described applications client, and the customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

Please refer to Fig. 9, it illustrates the block diagram of the system access device that another embodiment of the present invention provides, this system access device can realize becoming all or part of of IM background system by software, hardware or both combinations, and this system access device can comprise: the first receiver module 910 and authority give module 920;

First receiver module 910, for the application identification number of the customer identification number and described applications client that receive the described applications client that applications client sends after receiving the confirmation information, after described confirmation is the described applications client username and password that sends described applications client to the certificate server that described applications client is corresponding, described certificate server in applications client certification according to described user name and described codon pair by returning afterwards;

Authority gives module 920, accesses the authority of described IM background system for giving described applications client, and the customer identification number of described applications client is identical with the customer identification number that at least one shares the applications client of other type of described IM background system.

In the first possible implementation of the present embodiment, described device comprises: the second receiver module 930, client certificate module 940 and information sending module 950;

Second receiver module 930, for receiving the information to be certified that described applications client sends;

Client certificate module 940, carries out certification for the information described to be certified received according to described second receiver module 930 to described applications client;

Information sending module 950, for the certification of described client certificate module 940 by time, return the described application identification number of described applications client to described applications client.

In the implementation that the second of the present embodiment is possible,

Described information sending module 950, also for returning the valid expiration date of the described application identification number of described applications client and described application identification number to described applications client, so that described applications client receives and preserves the valid expiration date of described application identification number and described application identification number, described application identification is detected number whether effective according to described valid expiration date, when testing result is effective, send the application identification of the customer identification number of described applications client and described applications client number to described IM background system, when testing result is invalid, again send described information to be certified to described IM background system.

In the third possible implementation of the present embodiment, described client certificate module 940, comprising:

Number computing unit 941, for calculating the number of the information described to be certified received in historical time section;

Number detecting unit 942, for detecting described number that described number computing unit 941 calculates whether in predetermined span;

Certification, by unit 943, for when the testing result of described number detecting unit 942 is in described predetermined span, determines that described applications client certification is passed through.

In the 5th kind of possible implementation of the present embodiment, described device also comprises:

In the 6th kind of possible implementation of the present embodiment,

Described second receiver module 930, also for receiving the described key application word of described applications client transmission and the described application check code after upgrading, described application check code after described renewal be described IM background system when carrying out certification to other applications client of type identical with described applications client and at authentification failure, perform and upgrade and be synchronized to described applications client.

It should be noted that: the system access device that above-described embodiment provides is when carrying out system access, only be illustrated with the division of above-mentioned each functional module, in practical application, can distribute as required and by above-mentioned functions and be completed by different functional modules, internal structure by equipment is divided into different functional modules, to complete all or part of function described above.In addition, the embodiment of the method for the system access equipment and system cut-in method that above-described embodiment provides belongs to same design, and its specific implementation process refers to embodiment of the method, repeats no more here.

The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.

One of ordinary skill in the art will appreciate that all or part of step realizing above-described embodiment can have been come by hardware, the hardware that also can carry out instruction relevant by program completes, described program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium mentioned can be read-only memory, disk or CD etc.

The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.

Claims

1. a system access method, is characterized in that, in applications client, described method comprises:

Receive the described confirmation that described certificate server returns;

2. method according to claim 1, is characterized in that, before the customer identification number of the described applications client of described transmission and the application identification of described applications client number to instant messaging IM background system, described method also comprises:

3. method according to claim 2, is characterized in that, described reception also preserves the described application identification number that described IM background system returns, and comprising:

4. according to the method in claim 2 or 3, it is characterized in that, described information to be certified comprises the key application word of described applications client and the application check code of described applications client, and before described transmission information to be certified to described IM background system, described method also comprises:

5. a system access method, is characterized in that, in instant messaging IM background system, described method comprises:

6. method according to claim 5, is characterized in that, before the customer identification number of the described applications client that described reception applications client sends after receiving the confirmation information and the application identification number of described applications client, described method also comprises:

7. method according to claim 6, is characterized in that, described in return the described application identification number of described applications client to described applications client, comprising:

8. method according to claim 6, is characterized in that, describedly carries out certification according to described information to be certified to described applications client, comprising:

9. method according to claim 8, is characterized in that, described method also comprises:

10. method according to claim 6, is characterized in that, the information to be certified that the described applications client of described reception sends, and comprising:

11. 1 kinds of system access devices, is characterized in that, in applications client, described device comprises:

12. devices according to claim 11, is characterized in that, described device also comprises:

13. devices according to claim 12, is characterized in that,

Described second receiver module, also for receiving and preserving valid expiration date of described application identification that described IM background system returns number and described application identification number;

Described device also comprises:

14. devices according to claim 12 or 13, it is characterized in that, described authentication information comprises the key application word of described applications client and the application check code of described applications client, and described device also comprises:

15. 1 kinds of system access devices, is characterized in that, in instant messaging IM background system, described device comprises:

16. devices according to claim 15, is characterized in that, described device comprises:

17. devices according to claim 16, is characterized in that,

Described information sending module, also for returning the valid expiration date of the described application identification number of described applications client and described application identification number to described applications client, so that described applications client receives and preserves the valid expiration date of described application identification number and described application identification number, described application identification is detected number whether effective according to described valid expiration date, when testing result is effective, send the application identification of the customer identification number of described applications client and described applications client number to described IM background system, when testing result is invalid, again send described information to be certified to described IM background system.

18. devices according to claim 16, is characterized in that, described client certificate module, comprising:

19. devices according to claim 18, is characterized in that, described device also comprises:

20. devices according to claim 16, is characterized in that,

Described second receiver module, also for receiving the described key application word of described applications client transmission and the described application check code after upgrading, described application check code after described renewal be described IM background system when carrying out certification to other applications client of type identical with described applications client and at authentification failure, perform and upgrade and be synchronized to described applications client.

21. 1 kinds of applications client, is characterized in that, it comprises certificate server, as arbitrary in claim 11 to 14 as described in system access device.

22. 1 kinds of instant messaging IM background systems, is characterized in that, it comprise as arbitrary in claim 15 to 20 as described in system access device.