CN105897746A - Cross-website login method, terminal and website server - Google Patents

Abstract

The embodiment of the invention discloses a cross-website login method, a terminal and a website server. The method comprises that the terminal sends a login request specific to a first website to a first website server, wherein user information, the IP address of the terminal and feature information of a browser are carried in the login request; the first website server produces cookie according to the user information, establishes a session by using the user information and encrypts the session, thus obtaining the encrypted session; the terminal receives a response message returned by the first website server, wherein the response message comprises the encrypted session; the terminal transmits the encrypted session to a second website server, wherein the second website server corresponds to a second website which establishes cooperative relationship with the first website; the second website server obtains the user information according to the encrypted session and produces the cookie according to the user information; and the terminal receives the cookie returned by the second website server and writes the cookie in the cache of the second website. Through application of the embodiment of the method, the terminal and the server, cross-website login of different domain names can be realized.

Description

A kind of across Website logging method, terminal and Website server

Technical field

The present invention relates to communication technical field, be specifically related to a kind of across Website logging method, terminal and website Server.

Background technology

Increasing along with the website such as forum, community, user is to it is frequently necessary to note using these websites Volume and login, to obtain operating right.Such as, user, when logging in A website, needs input to log in A The login authentication information (e.g., username and password) of website enters A website；When user logs in B website Time, need input to log in the login authentication information of B website, complicated login process can cause customer loss.

In order to solve the problems referred to above, in prior art, the conventional method sharing cookie, cookie, refer to Some website in order to distinguish user identity, conversate (English: session) to follow the tracks of and be stored in user Data on local terminal, such as, cookie can be " username and password ".When sharing cookie, The cookie that A website generates can be shared to B website, to realize across website log.But, Shared cookie is only applicable to A website and B website and has the situation of identical father field name, if A website with The father field name of B website differs, then cannot share cookie, it is impossible to the inter-network station realizing different domain name is stepped on Record.

Summary of the invention

The embodiment of the invention discloses a kind of across Website logging method, terminal and Website server, Ke Yishi Existing different domain names across website log.

Embodiment of the present invention first aspect discloses a kind of across Website logging method, including:

Sending the logging request for the first website to the first Website server, described logging request carries use Family information, the IP address of terminal and the characteristic information of browser so that described first Website server according to Described user profile generates text data cookie, and utilizes described user profile to create session, and root Described session is encrypted by the encryption key generated according to described IP address and described characteristic information, is added Secret meeting is talked about；

Terminal receives the response message that described first Website server returns, and described response message includes described Encryption session；

Described encryption session is passed to set up the second website pair of partnership with described first website by terminal The second Website server answered, so that described second Website server is according to described in described encryption acquisition conversation User profile, and generate described cookie according to described user profile；

Terminal receives the described cookie that described second Website server returns, and is write by described cookie In the caching of described second website.

Embodiment of the present invention second aspect discloses a kind of across Website logging method, including:

Receive terminal send the logging request for the first website, described logging request carry user profile, The IP address of terminal and the characteristic information of browser；

Generate cookie according to described user profile, and utilize described user profile to create session；

Encryption key is generated according to described IP address and described characteristic information；

Utilize described encryption key that described session is encrypted, obtain encrypting session；

Returning response message to described terminal, described response message includes described cookie and described adds secret meeting Words；So that described cookie is write in the caching of described first website by described terminal, and by described encryption Session passes to set up the second website service that the second website of partnership is corresponding with described first website Device；

After described second Website server is used for receiving described encryption session, obtain according to described encryption session Take described user profile, generate described cookie according to described user profile, described cookie is sent to Described terminal, so that described cookie is write in the caching of described second website by described terminal.

The embodiment of the present invention third aspect discloses a kind of across Website logging method, including:

Receive the encryption session that terminal sends；

According to described encryption acquisition conversation user profile, and generate cookie according to described user profile；

Described cookie is sent to described terminal, so that described cookie is write the second net by described terminal In the caching stood.

Embodiment of the present invention fourth aspect discloses a kind of terminal, including:

Transmitting element, for sending the logging request for the first website to the first Website server, described Logging request carries user profile, the IP address of terminal and the characteristic information of browser, so that described first Website server generates cookie according to described user profile, and utilizes described user profile to create session, And according to the encryption key of described IP address and the generation of described characteristic information, described session is encrypted, To encryption session；

First receive unit, for receive described first Website server return response message, described should Answer message and include described encryption session；

Transfer unit, for passing to set up partnership with described first website by described encryption session The second Website server that second website is corresponding so that described second Website server according to described in add secret meeting Words obtain described user profile, and generate described cookie according to described user profile；

Second receives unit, for receiving the described cookie that described second Website server returns, and will Described cookie writes in the caching of described second website.

The embodiment of the present invention the 5th aspect discloses a kind of Website server, including:

Receiving unit, for receiving the logging request for the first website that terminal sends, described login please Ask and carry user profile, the IP address of terminal and the characteristic information of browser；

Generate creating unit, for generating cookie according to described user profile, and utilize described user Information creating session；

Signal generating unit, for generating encryption key according to described IP address and described characteristic information；

Ciphering unit, is used for utilizing described encryption key to be encrypted described session, obtains encrypting session；

Transmitting element, for returning response message to described terminal, described response message includes described cookie With described encryption session；So that described cookie is write in the caching of described first website by described terminal, And the second website that described encryption session passes to set up with described first website partnership corresponding Two Website servers；

After described second Website server is used for receiving described encryption session, according to described encryption session Obtain described user profile, generate described cookie according to described user profile, described cookie is sent To described terminal, so that described cookie is write in the caching of described second website by described terminal.

The embodiment of the present invention the 6th aspect discloses a kind of Website server, including:

Receive unit, for receiving the encryption session that terminal sends；

Obtain signal generating unit, be used for according to described encryption acquisition conversation user profile, and according to described user Information generates cookie；

Transmitting element, for sending described cookie to described terminal, so that described terminal is by described Cookie writes in the caching of the second website.

In the embodiment of the present invention, terminal sends the logging request for the first website to the first Website server, Logging request carries user profile, the IP address of terminal and the characteristic information of browser, so that the first website Server generates cookie according to user profile, and utilizes user profile to create session, and according to IP ground Session is encrypted by the encryption key that location and characteristic information generate, and obtains encrypting session；Terminal receives the The response message that one Website server returns, response message includes encrypting session；Encryption session is passed by terminal Pass and set up the second Website server that the second website of partnership is corresponding, the second website with the first website Server is according to encryption acquisition conversation user profile, and generates cookie according to user profile；Terminal receives The cookie that second Website server returns, and cookie is write in the caching of the second website.Implement this Inventive embodiments, can be transferred to second differed with the first website domain name by cookie from the first website Website, it is achieved different domain names across website log.

Accompanying drawing explanation

In order to be illustrated more clearly that embodiment of the present invention technical scheme, required in embodiment being described below Accompanying drawing to be used is briefly described, it should be apparent that, the accompanying drawing in describing below is the one of the present invention A little embodiments, for those of ordinary skill in the art, on the premise of not paying creative work, Other accompanying drawing can also be obtained according to these accompanying drawings.

Fig. 1 is a kind of schematic flow sheet across Website logging method disclosed in the embodiment of the present invention；

Fig. 2 is the another kind of schematic flow sheet across Website logging method disclosed in the embodiment of the present invention；

Fig. 3 is the another kind of schematic flow sheet across Website logging method disclosed in the embodiment of the present invention；

Fig. 4 is the structural representation of a kind of terminal disclosed in the embodiment of the present invention；

Fig. 5 is the structural representation of another kind of terminal disclosed in the embodiment of the present invention；

Fig. 6 is the structural representation of a kind of Website server disclosed in the embodiment of the present invention；

Fig. 7 is the structural representation of another kind of Website server disclosed in the embodiment of the present invention；

Fig. 8 is the structural representation of the embodiment of the present invention another Website server disclosed；

Fig. 9 is the structural representation of another kind of Website server disclosed in the embodiment of the present invention；

Figure 10 is the structural representation of another kind of Website server disclosed in the embodiment of the present invention；

Figure 11 is the structural representation of the embodiment of the present invention another terminal disclosed.

Detailed description of the invention

Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out Clearly and completely describe, it is clear that described embodiment is only a part of embodiment of the present invention, and It is not all, of embodiment.Based on the embodiment in the present invention, those of ordinary skill in the art are not doing Go out the every other embodiment obtained under creative work premise, broadly fall into the scope of protection of the invention.

The embodiment of the invention discloses a kind of across Website logging method, terminal and Website server, Ke Yishi Existing different domain names across website log.It is described in detail individually below.

Referring to Fig. 1, Fig. 1 is that disclosed in the embodiment of the present invention, a kind of flow process across Website logging method is shown It is intended to.As it is shown in figure 1, should may comprise steps of across Website logging method.

101, terminal sends the logging request for the first website to the first Website server, and logging request is taken With user profile, the IP address of terminal and the characteristic information of browser.

In the embodiment of the present invention, when user needs to log in the first website, user can input in the terminal Logging in the user profile of the first website, user profile can include user name, password etc..Terminal is to first Website server sends for the logging request of the first website, and logging request carries user profile, terminal IP address and the characteristic information of browser, the characteristic information of browser can be the model of browser, version Number composition character string.

102, the first Website server generates cookie according to user profile, and utilizes user profile to create Session, and according to the encryption key of IP address and characteristic information generation, session is encrypted, encrypted Session.

In the embodiment of the present invention, the first Website server can generate cookie, cookie according to user profile Refer to some website in order to distinguish user identity, conversate (English: session) to follow the tracks of and be stored in Data on user local terminal, cookie is a kind of text data, and cookie can be character string, number The text messages such as value.First Website server utilize user profile create session (English: session), and According to the encryption key that IP address and characteristic information generate, session is encrypted, obtains encrypting session.The One Website server according to predetermined AES, can utilize IP address and the feature of browser of terminal Information generates encryption key.Owing to the IP address of terminal and the characteristic information of browser at short notice will not Change, there is temporal characteristics invariance, therefore IP address and the feature of browser of terminal can be utilized Information generates encryption key, is encrypted session.Implement the embodiment of the present invention, it is possible to use terminal Session is encrypted by the temporal characteristics invariance of the characteristic information of IP address and browser, improves encryption The safety of session.

Optionally, step 102 can include step:

(11), the first Website server create after session, IP address is carried out by the first Website server Segmentation is reset, and the IP address after resetting segmentation is circulated computing, obtains new IP address；

(12), new IP address is entered by the first Website server with characteristic information characteristic of correspondence character string Row splicing, obtains mixed characters string；

(13), the first Website server mixed characters string is carried out Hash operation, obtain encryption key；

(14), first Website server use encryption key session is encrypted, obtain encrypt session.

In the embodiment of the present invention, after the first Website server creates session, the first Website server is to IP Address carries out segmentation and resets；Such as, IP address is 8.10.8.253, and the first Website server is first to IP Address carries out segmentation and resets, and IP address is divided into 4 character string dimension, and first group is 8, and second group is 10, the 3rd group is 8, and the 4th group is 253, takes out last byte of the 4th character string dimension, i.e. " 3 ", are converted into integer variable, and to 10 deliverys, obtain seed: " 3 ", in the first Website server Preset " 0 ", " 1 ", " 2 ", " 3 ", " 4 ", " 5 ", " 6 ", " 7 ", " 8 ", " 9 " ten seeds, And the corresponding array sort of each seed, such as, the array sort that seed " 3 " is corresponding is " 2134 ", Then 4 character string dimension are reset, obtain the IP address after segmentation is reset for " 10.8.8.253 "； Then the IP address after resetting segmentation is circulated computing, obtains new IP address, such as, and ought The USA standard code for information interchange of front character string and character late string is (English: American Standard Code for Information Interchange, is called for short ASCII) summation, add a new character string to, New character string is reassembled into new IP address；First Website server by new IP address with browse The characteristic information characteristic of correspondence character string of device is spliced, and obtains mixed characters string；First website service Device carries out Hash operation to mixed characters string, obtains encryption key；Wherein, Hash operation can be md5 Or CRC scheduling algorithm；First Website server uses encryption key to be encrypted session, i.e. can be added Secret meeting is talked about.

103, terminal receives the response message that the first Website server returns, and response message includes encrypting session.

In the embodiment of the present invention, after the first Website server generates cookie and encryption session, the first website Server returns response message to terminal, and response message includes encrypting session.Owing to encryption session utilizes The IP address of terminal and the characteristic information of browser are encrypted, and safety is higher.Preferably, response disappears Breath can also include cookie, after terminal receives the response message that the first Website server returns, and terminal Above-mentioned cookie is write in the caching of the first website, in order to during user subsequent login the first website, as long as Terminal enables cookie, then terminal obtains above-mentioned cookie from the caching of the first website, by above-mentioned cookie Sending to the first Website server, the first Website server directly logs in the first website according to above-mentioned cookie, Again input the user profile such as user name, password without user, the first website can be logged in.

104, the second website that encryption session is passed to set up partnership with the first website by terminal is corresponding Second Website server.

In the embodiment of the present invention, after terminal receives response message, from response message, obtain encryption session, And encryption session passed set up the second website service that the second website of partnership is corresponding with the first website Device.Performing before step 104, needing to perform following steps:

Terminal determines that partnership is set up in the first website and the second website.

Can have one or more it should be noted that set up the website of partnership with the first website, eventually End can preset sets up one or more websites of partnership with the first website.Two or two with On website between set up partnership after, set up between the website of partnership, share identical adding Close algorithm is also trusted each other, after any one website log in above-mentioned two or plural website, Encryption session is passed to the website corresponding with the website that partnership is set up in any one website above-mentioned by terminal Server.The first website in the embodiment of the present invention can be identical with the domain name of the second website, it is also possible to no With, the embodiment of the present invention does not limits.

Optionally, step 104 may include that

(21), terminal add in the webpage of the first website request label, request label carry and the first net Uniform resource position mark URL and the encryption session of the second website of partnership is set up at station；

(22), terminal operating request label, encryption session is passed to the second Website server.

In the embodiment of the present invention, request label can include picture tag (image label) or script mark Signing (script label), such as, request label is script label, and terminal can be at the net of the first website Dynamically add a script label with script in Ye, can be at the URL of script label Indicating the URL of the second website in URL attribute, and add session parameter, session parameter includes the second website URL and encryption session, terminal operating script label, the second website just can be from script label Extract encryption session.Due to terminal request picture tag (image label) and script tag, (script marks Sign) time, do not have cross-domain access to limit, so, implement the embodiment of the present invention, it is possible to achieve different domain names Across website log.

105 second Website servers are according to encryption acquisition conversation user profile, and generate according to user profile cookie。

In the embodiment of the present invention, after encryption session is passed to the second Website server by terminal, the second net Site server is according to encryption acquisition conversation user profile.Concrete, the second Website server can be first When partnership is set up in website and the second website, share the AES identical with the first Website server, In the embodiment of the present invention, the first website according to predetermined AES, can utilize terminal IP address and The encryption key that the characteristic information of browser generates, the second website also according to above-mentioned predetermined AES, Utilize the decruption key that the IP address of terminal and the characteristic information of browser generate, if encryption key and deciphering Cipher key match, can to encryption session be decrypted, obtain user profile, the second Website server according to User profile generates cookie.It should be noted that the cookie that identical user profile generates is identical.

Optionally, step 105 may include that

(31), the second Website server generates decruption key according to IP address and the characteristic information of terminal；

(32) if encryption key mates with decruption key, encryption session is solved by the second Website server Close, obtain session, from session, extract user profile, and generate cookie according to user profile.

In the embodiment of the present invention, encryption session is passed to set up the of partnership with the first website by terminal After the second Website server that two websites are corresponding, the second Website server can be according to terminal transmission encryption The IP address of the terminal carried during session and the characteristic information of browser generate decruption key, due to the second net The algorithm that the algorithm of site server generation decruption key and the first Website server generate encryption key is identical, Encryption key mates with decruption key, and the second Website server can extract user profile from encryption session, And generate cookie according to user profile.Implement the embodiment of the present invention, utilize identical AES and phase Same decipherment algorithm, encryption session can be decrypted, obtain user profile by the second Website server, Thus generate cookie, it is achieved the inter-network station transmission of cookie, and then realize across website log.

Optionally, step 105 may include that

(41), second Website server obtain encryption session mark after, by encryption session mark send out Give the first Website server；

(42), the first Website server sends user profile according to the mark of encryption session and is sent to the second net Site server；

(43), the second Website server generates cookie according to user profile.

In the embodiment of the present invention, after the second website obtains the mark of encryption session, by the mark of encryption session Knowing and be sent to the first Website server, the mark of encryption session can be a character string or a numerical value. Owing to the first website and the second website have been set up partnership, mutual trust, the first Website server Search the user profile corresponding with the mark of encryption session to the second Website server.In the first website service In device, encryption session identification and user profile corresponding relation, different user profile pair can be prestored Answering different encryption session identifications, such as, user profile is A, comprises user profile in encryption session B A, then can arrange encryption session B is designated C, and wherein, C with A is corresponding.Implement the present invention real Executing example, it is not necessary to share identical AES in the second Website server, the second Website server receives After encryption session, the second Website server can be to the mark of the first Website server request encryption session Corresponding user profile, the second Website server can obtain user profile, due to the first Website server And establish partnership between the second Website server, can trust each other, thus realize user profile Inter-network station transmission.

Optionally, after the second Website server is according to encryption acquisition conversation user profile, it is also possible to perform Following steps:

Second Website server obtains from the first Website server trusts user profile set, it is judged that Yong Huxin Whether breath is positioned in trust user profile set；

If so, the second Website server performs to generate the step of cookie according to user profile.

In the embodiment of the present invention, after the second Website server is according to encryption acquisition conversation user profile, the Whether the user profile of the two uncertain acquisitions of Website server is illegal user information, the second Website server Needing to go to confirm to the first Website server, the second Website server obtains from the first Website server trusts User profile set, it is judged that whether user profile is positioned in trust user profile set, if so, the second net Site server performs to generate the step of cookie according to user profile, if it is not, then process ends.Wherein, First Website server can prestore trust user profile set.The enforcement embodiment of the present invention, second Website server can obtain the first Website server pass over encryption session in user profile it After, user profile is verified, if checking user profile is positioned in trust user profile set, the most really Determining user profile is user profile, and generates cookie according to user profile, improves the cookie's of generation Safety.

106, terminal receives the cookie that the second Website server returns, and cookie writes the second net In the caching stood.

In the embodiment of the present invention, after the second Website server generates cookie, above-mentioned cookie is sent to Terminal, above-mentioned cookie is write in the caching of the second website by terminal, in order to user's subsequent login the second net When standing, terminal obtains above-mentioned cookie from the caching of the second website, sends above-mentioned cookie to second Website server, the second Website server directly logs in the second website according to above-mentioned cookie, it is not necessary to user Again input the user profile such as user name, password, the second website can be logged in.

In the embodiment depicted in figure 1, terminal, can be by the first website clothes when logging in the first website The encryption session of business device is shared to the second Website server, due to the most by the first Website server AES is shared to the second Website server, and the second Website server can utilize identical AES Encryption session is decrypted, obtains user profile, ultimately generate identical with the first Website server Cookie, it is achieved cookie is transferred to from the first website set up the second website of partnership with the first website, Owing to the domain name of the first website can be identical with the domain name of the second website, it is also possible to different.Implement the present invention Embodiment, can be transferred to the second website differed with the first website domain name by cookie from the first website, Realize different domain name across website log.

Referring to Fig. 2, Fig. 2 is the another kind of flow process across Website logging method disclosed in the embodiment of the present invention Schematic diagram.As in figure 2 it is shown, should may comprise steps of across Website logging method.

201, the first Website server receives the logging request for the first website that terminal sends, and logging in please Ask and carry user profile, the IP address of terminal and the characteristic information of browser.

In the embodiment of the present invention, user profile can include user name, password etc., the feature letter of browser Breath can be the model of browser, the character string of version number's composition.

202, the first Website server generates cookie according to user profile, and utilizes user profile to create Session.

In the embodiment of the present invention, cookie refer to some website in order to distinguish user identity, conversate (English Literary composition: session) follow the tracks of and be stored in the data on user local terminal, cookie can be character string, The text messages such as numerical value.

203, the first Website server generates encryption key according to IP address and characteristic information.

In the embodiment of the present invention, the first Website server can utilize terminal according to predetermined AES IP address and browser characteristic information generate encryption key.IP address and browser due to terminal Characteristic information will not change at short notice, there is temporal characteristics invariance, therefore end can be utilized The IP address of end and the characteristic information of browser generate encryption key, are encrypted session.Implement this Bright embodiment, it is possible to use the IP address of terminal and the temporal characteristics invariance pair of the characteristic information of browser Session is encrypted, and improves the safety of encryption session.

Optionally, step 203 may include steps of:

(51), the first Website server carries out segmentation and resets, to the IP ground after segmentation rearrangement IP address Location is circulated computing, obtains new IP address；

(52), new IP address is entered by the first Website server with characteristic information characteristic of correspondence character string Row splicing, obtains mixed characters string；

(53), the first Website server mixed characters string is carried out Hash operation, obtain encryption key.

In the embodiment of the present invention, after the first Website server creates session, the first Website server is to IP Address carries out segmentation and resets；Such as, IP address is 8.10.8.253, and the first Website server is first to IP Address carries out segmentation and resets, and IP address is divided into 4 character string dimension, and first group is 8, and second group is 10, the 3rd group is 8, and the 4th group is 253, takes out last byte of the 4th character string dimension, i.e. " 3 ", are converted into integer variable, and to 10 deliverys, obtain seed: " 3 ", in the first Website server Preset " 0 ", " 1 ", " 2 ", " 3 ", " 4 ", " 5 ", " 6 ", " 7 ", " 8 ", " 9 " ten seeds, And the corresponding array sort of each seed, such as, the array sort that seed " 3 " is corresponding is " 2134 ", Then 4 character string dimension are reset, obtain the IP address after segmentation is reset for " 10.8.8.253 "； Then the IP address after resetting segmentation is circulated computing, obtains new IP address, such as, and ought The USA standard code for information interchange of front character string and character late string is (English: American Standard Code for Information Interchange, is called for short ASCII) summation, add a new character string to, New character string is reassembled into new IP address；First Website server by new IP address with browse The characteristic information characteristic of correspondence character string of device is spliced, and obtains mixed characters string；First website service Device carries out Hash operation to mixed characters string, obtains encryption key；Wherein, Hash operation can be md5 Or CRC scheduling algorithm.

204, the first Website server utilizes encryption key to be encrypted session, obtains encrypting session.

205, the first Website server returns response message to terminal, and response message includes cookie and adds Secret meeting is talked about.

In the embodiment of the present invention, response message includes cookie and encryption session, and wherein, terminal receives After cookie, perform step 206, after terminal receives encryption session, perform step 207.Encryption session Utilizing the IP address of terminal and the characteristic information of browser to be encrypted, safety is higher.

206, during cookie is write the caching of the first website by terminal.

In the embodiment of the present invention, after terminal receives the response message that the first Website server returns, terminal Cookie is write the caching of the first website, in order to during user subsequent login the first website, as long as terminal opens With cookie, then terminal obtains above-mentioned cookie from the caching of the first website, is sent by above-mentioned cookie To the first Website server, the first Website server directly logs in the first website, nothing according to above-mentioned cookie Need user again to input the user profile such as user name, password, the first website can be logged in.

207, the second website that encryption session is passed to set up partnership with the first website by terminal is corresponding Second Website server.

208, after the second Website server receives encryption session, the second Website server is according to encryption Acquisition conversation user profile, generates cookie according to user profile.

209, cookie is sent to terminal by the second Website server.

210, during cookie is write the caching of the second website by terminal.

Step 201～step 204 in the embodiment of the present invention may refer to the step 101 shown in Fig. 1～step Rapid 102, step 207～step 210 may refer to the step 104 shown in Fig. 1～step 106, the present invention Embodiment repeats no more.

In the embodiment depicted in fig. 2, first Website server receive terminal send for the first net After the logging request stood, first Website server generate cookie and encryption session, and return cookie and The cookie that first Website server generates can be saved in the first website to terminal, terminal by encryption session Caching in, terminal can by first Website server generate encryption session share to the second website service Device, owing to the most the AES of the first Website server being shared to the second Website server, the Two Website servers can utilize identical AES to be decrypted encryption session, obtains user profile, Ultimately generate the cookie identical with the first Website server, it is achieved cookie be transferred to from the first website with The second website of partnership is set up in first website, due to domain name and the domain name of the second website of the first website Can be identical, it is also possible to different.Implement the embodiment of the present invention, cookie can be transmitted from the first website To the second website of differing with the first website domain name, it is achieved different domain names across website log.

Referring to Fig. 3, Fig. 3 is the another kind of flow process across Website logging method disclosed in the embodiment of the present invention Schematic diagram.As it is shown on figure 3, should may comprise steps of across Website logging method.

301, the second Website server receives the encryption session that terminal sends.

In the embodiment of the present invention, the encryption session that the second Website server receives is to set up with the second website to close Making what the first Website server corresponding to the first website of relation generated, encryption session includes that user logs in The user profile of the first website, user profile can include user name, password etc..

302, the second Website server is according to encryption acquisition conversation user profile, and generates according to user profile cookie。

Step 302 in the embodiment of the present invention may refer to the step 105 in embodiment illustrated in fig. 1, this Inventive embodiments repeats no more.

Optionally, step 302 may include steps of:

(61), the second Website server generates solve according to the IP address of terminal and the characteristic information of browser Decryption key；

(62), second Website server confirm decruption key with encrypt session encryption key mate after, Encryption session is decrypted by the second Website server, obtains session, extracts user profile from session, And generate cookie according to user profile.

In the embodiment of the present invention, encryption session is passed to set up the of partnership with the first website by terminal After the second Website server that two websites are corresponding, the second Website server can be according to terminal transmission encryption The IP address of the terminal carried during session and the characteristic information of browser generate decruption key, due to the second net The algorithm that the algorithm of site server generation decruption key and the first Website server generate encryption key is identical, Encryption key mates with decruption key, and the second Website server can extract user profile from encryption session, And generate cookie according to user profile.Implement the embodiment of the present invention, utilize identical AES and phase Same decipherment algorithm, encryption session can be decrypted, obtain user profile by the second Website server, Thus generate cookie, it is achieved the inter-network station transmission of cookie, and then realize across website log.

Optionally, step 302 may include steps of:

(71), second Website server obtain encryption session mark, by encryption session mark be sent to First Website server, so that the first Website server sends corresponding with mark according to the mark of encryption session User profile give the second Website server；

(72), the second Website server receive first Website server send user profile, and according to Family information generates cookie.

In the embodiment of the present invention, after the second website obtains the mark of encryption session, by the mark of encryption session Knowing and be sent to the first Website server, the mark of encryption session can be a character string or a numerical value. Owing to the first website and the second website have been set up partnership, mutual trust, the first Website server Search the user profile corresponding with the mark of encryption session to the second Website server.In the first website service In device, encryption session identification and user profile corresponding relation, different user profile pair can be prestored Answering different encryption session identifications, such as, user profile is A, comprises user profile in encryption session B A, then can arrange encryption session B is designated C, and wherein, C with A is corresponding.Implement the present invention real Executing example, it is not necessary to share identical AES in the second Website server, the second Website server receives After encryption session, the second Website server can be to the mark of the first Website server request encryption session Corresponding user profile, the second Website server can obtain user profile, due to the first Website server And establish partnership between the second Website server, can trust each other, thus realize user profile Inter-network station transmission.

303, cookie is sent to terminal by the second Website server.

304, during cookie is write the caching of the second website by terminal.

Step 303 and step 304 in the embodiment of the present invention may refer to the step in embodiment illustrated in fig. 1 Rapid 106, the embodiment of the present invention repeats no more.

In the embodiment described by Fig. 3, after the second Website server receives encryption session, Ke Yitong Cross encryption session is decrypted and obtain encrypting the user profile in session, ultimately generate and the first website clothes The cookie that business device is identical, it is achieved cookie is transferred to from the first website set up partnership with the first website The second website, owing to the domain name of the first website can be identical with the domain name of the second website, it is also possible to different. Implement the embodiment of the present invention, can be transferred to cookie from the first website differ with the first website domain name The second website, it is achieved different domain names across website log.

Referring to Fig. 4, Fig. 4 is the structural representation of a kind of terminal disclosed in the embodiment of the present invention, such as Fig. 4 Shown in, can include that transmitting element 401, first receives unit 402, transfer unit 403 and second receives Unit 404, wherein:

Transmitting element 401, for sending the logging request for the first website to the first Website server, Logging request carries user profile, the IP address of terminal and the characteristic information of browser, so that the first website Server generates cookie according to user profile, and utilizes user profile to create session, and according to IP ground Session is encrypted by the encryption key that location and characteristic information generate, and obtains encrypting session.

In the embodiment of the present invention, if user needs to log in the first website, user can input in the terminal and step on Recording the user profile of the first website, user profile can include user name, password etc..Transmitting element 401 Send for the logging request of the first website to the first Website server, logging request carry user profile, The IP address of terminal and the characteristic information of browser, the characteristic information of browser can be the type of browser Number, version number composition character string.First Website server can generate cookie according to user profile, Cookie refer to some website in order to distinguish user identity, conversate (English: session) follow the tracks of and Being stored in the data on user local terminal, cookie can be the text message such as character string, numerical value.The It is (English: session), and according to IP address and spy that one Website server utilizes user profile to create session Session is encrypted by the encryption key that reference breath generates, and obtains encrypting session.First Website server can With according to predetermined AES, the IP address of terminal and the characteristic information of browser is utilized to generate encryption close Key.Owing to the IP address of terminal and the characteristic information of browser will not change at short notice, have Temporal characteristics invariance, therefore it is close that the IP address of terminal and the characteristic information of browser can be utilized to generate encryption Key, is encrypted session.Implement the embodiment of the present invention, it is possible to use the IP address of terminal and browser The temporal characteristics invariance of characteristic information session is encrypted, improve the safety of encryption session.

Optionally, transmitting element 401 sends the logging request for the first website to the first Website server, Logging request carries user profile, the IP address of terminal and the characteristic information of browser, so that the first website Server generates cookie according to user profile, and utilizes user profile to create session, and according to IP ground Session is encrypted by the encryption key that location and characteristic information generate, obtain encrypting the mode of session particularly as follows:

Transmitting element 401 sends the logging request for the first website to the first Website server, and logging in please Ask and carry user profile, the IP address of terminal and the characteristic information of browser, so that the first Website server Generate cookie according to user profile, and utilize user profile to create session；

Wherein, after the first Website server is used for creating session, IP address is carried out segmentation and resets, right IP address after segmentation is reset is circulated computing, obtains new IP address；By new IP address with special Reference breath characteristic of correspondence character string is spliced, and obtains mixed characters string；Mixed characters string is breathed out Uncommon computing, obtains encryption key；And use encryption key that session is encrypted, obtain encrypting session.

In the embodiment of the present invention, transmitting element 401 sends for the first website to the first Website server Logging request, logging request carries user profile, the IP address of terminal and the characteristic information of browser, and One Website server generates cookie according to user profile, and the first Website server utilizes user profile to create Session, after the first Website server creates session, the first Website server carries out segmentation weight to IP address Row；Such as, IP address is 8.10.8.253, and first the first Website server carries out segmentation weight to IP address Row, is divided into 4 character string dimension by IP address, and first group is 8, and second group is 10, and the 3rd group is 8, 4th group is 253, takes out last byte of the 4th character string dimension, i.e. " 3 ", is converted into whole Type variable, and to 10 deliverys, obtains seed: " 3 ", the first Website server presets " 0 ", " 1 ", " 2 ", " 3 ", " 4 ", " 5 ", " 6 ", " 7 ", " 8 ", " 9 " ten seeds, and each seed pair Answering an array sort, such as, the array sort that seed " 3 " is corresponding is " 2134 ", then to 4 words Symbol string array is reset, and obtains the IP address after segmentation is reset for " 10.8.8.253 "；Then to segmentation IP address after rearrangement is circulated computing, obtains new IP address, such as, by current string and The USA standard code for information interchange of character late string is (English: American Standard Code for Information Interchange, is called for short ASCII) summation, add a new character string to, new Character string is reassembled into new IP address；First Website server is by new IP address and browser Characteristic information characteristic of correspondence character string is spliced, and obtains mixed characters string；First Website server pair Mixed characters string carries out Hash operation, obtains encryption key；Wherein, Hash operation can be md5 or CRC scheduling algorithm；First Website server uses encryption key to be encrypted session, i.e. can be encrypted Session.

First receives unit 402, and for receiving the response message that the first Website server returns, response disappears Breath includes encrypting session.

In the embodiment of the present invention, after the first Website server generates cookie and encryption session, first receives Unit 402 receives the response message that the first Website server returns, and response message includes encrypting session. Owing to encryption session utilizes the IP address of terminal and the characteristic information of browser to be encrypted, safety is relatively High.Preferably, response message can also include cookie, and first receives unit 402 receives the first website After the response message that server returns, above-mentioned cookie is write in the caching of the first website by terminal, with Just during user's subsequent login the first website, as long as terminal enables cookie, then terminal delaying from the first website Deposit the above-mentioned cookie of middle acquisition, above-mentioned cookie is sent to the first Website server, the first website service Device directly logs in the first website according to above-mentioned cookie, it is not necessary to user again inputs user name, password etc. and uses Family information, can log in the first website.

Transfer unit 403, for passing to set up the second of partnership with the first website by encryption session The second Website server that website is corresponding, so that the second Website server is according to encryption acquisition conversation user letter Breath, and generate cookie according to user profile.

In the embodiment of the present invention, after the first reception unit 402 receives response message, from response message Obtaining encryption session, encryption session is passed and is set up the of partnership with the first website by transfer unit 403 The second Website server that two websites are corresponding.

Optionally, encryption session is passed to set up the of partnership with the first website by transfer unit 403 The second Website server that two websites are corresponding, so that the second Website server is according to encryption acquisition conversation user Information, and according to user profile generate cookie mode particularly as follows:

Encryption session is passed to set up the second website pair of partnership with the first website by transfer unit 403 The second Website server answered, so that the second Website server is raw according to IP address and the characteristic information of terminal Become decruption key；

If encryption key mates with decruption key, the second Website server is used for being decrypted encryption session, Obtain session, from session, extract user profile, and generate cookie according to user profile.

In the embodiment of the present invention, encryption session is passed to set up cooperation with the first website by transfer unit 403 After the second Website server that second website of relation is corresponding, the second Website server can be according to transmission The IP address of terminal and the characteristic information of browser that carry during unit 403 transmission encryption session generate deciphering Key, owing to the second Website server generates algorithm and the generation encryption of the first Website server of decruption key The algorithm of key is identical, and encryption key mates with decruption key, and the second Website server can be from adding secret meeting Words are extracted user profile, and generates cookie according to user profile.Implement the embodiment of the present invention, utilize Identical AES and identical decipherment algorithm, encryption session can be solved by the second Website server Close, obtain user profile, thus generate cookie, it is achieved the inter-network station transmission of cookie, and then realize Across website log.

Optionally, encryption session is passed to set up the of partnership with the first website by transfer unit 403 The second Website server that two websites are corresponding, so that the second Website server is according to encryption acquisition conversation user Information, and according to user profile generate cookie mode particularly as follows:

Encryption session is passed to set up the second website pair of partnership with the first website by transfer unit 403 The second Website server answered；

Wherein, the second Website server is after obtaining the mark of encryption session, by the mark of encryption session Know and be sent to the first Website server；First Website server is used for sending according to the mark of encryption session Family information is sent to the second Website server, and the second Website server is additionally operable to generate according to user profile cookie。

In the embodiment of the present invention, encryption session is passed to set up cooperation with the first website by transfer unit 403 The second Website server that second website of relation is corresponding, after the second website obtains the mark of encryption session, The mark of encryption session is sent to the first Website server, the mark of encryption session by the second Website server Can be a character string or a numerical value.Close owing to the first website and the second website have been set up cooperation System, mutual trust, the first Website server searches user profile corresponding to mark with encryption session to the Two Website servers.In the first Website server, encryption session identification can be prestored and believe with user Breath corresponding relation, the corresponding different encryption session identification of different user profile, such as, user profile is A, comprises user profile A in encryption session B, then can arrange encryption session B is designated C, its In, C with A is corresponding.Implement the embodiment of the present invention, it is not necessary to share identical in the second Website server AES, after the second Website server receives encryption session, the second Website server can be to first The user profile of the mark correspondence of Website server request encryption session, the second Website server can obtain User profile, owing to establishing partnership between the first Website server and the second Website server, can With mutual trust, thus realize the inter-network station transmission of user profile.

Optionally, as it is shown in figure 5, transfer unit 403 can also include adding device 4031 and run single Unit 4032, wherein:

Adding device 4031, for adding request label in the webpage of the first website, request label carries Uniform resource position mark URL and encryption session with the second website that partnership is set up in the first website；

Running unit 4032, is used for running request label, encryption session is passed to the second Website server.

In the embodiment of the present invention, request label can include picture tag (image label) or script mark Signing (script label), such as, request label is script label, and adding device 4031 can be first The webpage of website dynamically adds a script label with script, can be in the unified resource of script label Indicating the URL of the second website in finger URL URL attribute, and add session parameter, session parameter includes The URL of the second website runs script label with encryption session, running unit 4032, and the second website is just Encryption session can be extracted from script label.Due to terminal request picture tag (image label) and During script tag (script label), cross-domain access is not had to limit, so, implement the embodiment of the present invention, Can realize different domain name across website log.

Second receives unit 404, for receiving the cookie that the second Website server returns, and by cookie Write in the caching of the second website.

In the embodiment of the present invention, after the second Website server generates cookie, above-mentioned cookie is sent to Terminal, above-mentioned cookie is write in the caching of the second website by terminal, in order to user's subsequent login the second net When standing, terminal obtains above-mentioned cookie from the caching of the second website, sends above-mentioned cookie to second Website server, the second Website server directly logs in the second website according to above-mentioned cookie, it is not necessary to user Again input the user profile such as user name, password, the second website can be logged in.

In the terminal described by Fig. 4, terminal, can be by the first website service when logging in the first website The encryption session of device is shared to the second Website server, due to the most adding the first Website server Close algorithm is shared to the second Website server, and the second Website server can utilize identical AES pair Encryption session is decrypted, and obtains user profile, ultimately generates identical with the first Website server Cookie, it is achieved cookie is transferred to from the first website set up the second website of partnership with the first website, Owing to the domain name of the first website can be identical with the domain name of the second website, it is also possible to different.Implement the present invention Embodiment, can be transferred to the second website differed with the first website domain name by cookie from the first website, Realize different domain name across website log.

Referring to Fig. 6, Fig. 6 is the structural representation of a kind of Website server disclosed in the embodiment of the present invention, As shown in Figure 6, can include receiving unit 601, generation creating unit 602, signal generating unit 603, adding Close unit 604 and transmitting element 605, wherein:

Receiving unit 601, for receiving the logging request for the first website that terminal sends, logging in please Ask and carry user profile, the IP address of terminal and the characteristic information of browser.

In the embodiment of the present invention, user profile can include user name, password etc., the feature letter of browser Breath can be the model of browser, the character string of version number's composition.

Generate creating unit 602, for generating cookie according to user profile, and utilize user profile Create session.

In the embodiment of the present invention, cookie refer to some website in order to distinguish user identity, conversate (English Literary composition: session) follow the tracks of and be stored in the data on user local terminal, cookie can be character string, The text messages such as numerical value.

Signal generating unit 603, for generating encryption key according to IP address and characteristic information.

In the embodiment of the present invention, signal generating unit 603 can utilize terminal according to predetermined AES The characteristic information of IP address and browser generates encryption key.Due to the IP address of terminal and browser Characteristic information will not change at short notice, has temporal characteristics invariance, therefore can utilize terminal IP address and browser characteristic information generate encryption key, session is encrypted.Implement the present invention Embodiment, it is possible to use the temporal characteristics invariance of the IP address of terminal and the characteristic information of browser is to meeting Words are encrypted, and improve the safety of encryption session.

Optionally, as it is shown in fig. 7, signal generating unit 603 includes splitting rearrangement units 6031, concatenation unit 6032 and arithmetic element 6033, wherein:

Segmentation rearrangement units 6031, resets for IP address carries out segmentation, the IP after resetting segmentation Address is circulated computing, obtains new IP address；

Concatenation unit 6032, for carrying out new IP address with characteristic information characteristic of correspondence character string Splicing, obtains mixed characters string；

Arithmetic element 6033, for mixed characters string is carried out Hash operation, obtains encryption key.

In the embodiment of the present invention, after generation creating unit 602 creates session, split rearrangement units 6031 IP address carries out segmentation reset；Such as, IP address is 8.10.8.253, splits rearrangement units 6031 IP address is divided into 4 character string dimension, and first group is 8, and second group is 10, and the 3rd group is 8, the Four groups is 253, takes out last byte of the 4th character string dimension, i.e. " 3 ", is converted into integer Variable, and to 10 deliverys, obtains seed: " 3 ", the first Website server presets " 0 ", " 1 ", " 2 ", " 3 ", " 4 ", " 5 ", " 6 ", " 7 ", " 8 ", " 9 " ten seeds, and each seed correspondence one Individual array sort, such as, the array sort that seed " 3 " is corresponding is " 2134 ", then to 4 character strings Array is reset, and obtains the IP address after segmentation is reset for " 10.8.8.253 "；Then segmentation is reset After IP address be circulated computing, obtain new IP address, such as, by current string and next The USA standard code for information interchange of individual character string is (English: American Standard Code for Information Interchange, is called for short ASCII) summation, add a new character string to, new Character string is reassembled into new IP address；Concatenation unit 6032 is by the spy of new IP address Yu browser Reference breath characteristic of correspondence character string is spliced, and obtains mixed characters string；Arithmetic element 6033 is to mixing Character string carries out Hash operation, obtains encryption key；Wherein, Hash operation can be md5 or CRC Scheduling algorithm.

Ciphering unit 604, is used for utilizing encryption key to be encrypted session, obtains encrypting session.

Transmitting element 605, for returning response message to terminal, response message includes cookie and encryption Session；So that cookie is write in the caching of the first website by terminal, and encryption session is passed to and the The second Website server that the second website of partnership is corresponding is set up in one website；

After second Website server is used for receiving encryption session, according to encryption acquisition conversation user profile, Generate cookie according to user profile, cookie is sent to terminal, so that terminal is by cookie write the In the caching of two websites.

In the embodiment of the present invention, response message includes cookie and encryption session, wherein, transmitting element 605 After terminal returns response message, cookie is write the caching of the first website by terminal, in order to Yong Huhou During continuous login the first website, as long as terminal enables cookie, then terminal obtains from the caching of the first website Above-mentioned cookie, sends above-mentioned cookie to the first Website server, and the first Website server is according to upper State cookie and directly log in the first website, it is not necessary to user inputs the user profile such as user name, password again, The first website can be logged in.Transmitting element 605 is after terminal returns encryption session, and terminal will encrypt session Pass to set up with the first website the second Website server that the second website of partnership is corresponding, add secret meeting Words utilize the IP address of terminal and the characteristic information of browser to be encrypted, and safety is higher.

Implement Fig. 6 describe Website server, receive unit 601 receive terminal send for the first net After the logging request stood, generate creating unit 602 and generate cookie according to user profile, and utilize use Family information creating session, signal generating unit 603 generates encryption key, encryption according to IP address and characteristic information Unit 604 utilizes encryption key to be encrypted session, obtains encrypting session, and transmitting element 605 returns Cookie and encryption session can will generate the cookie preservation that creating unit 602 generates to terminal, terminal In the caching of the first website, the encryption session that signal generating unit 603 generates can be shared to second by terminal Website server, owing to the most sharing the AES of the first Website server to the second website clothes Business device, the second Website server can utilize identical AES to be decrypted encryption session, obtain User profile, ultimately generates the cookie identical with the first Website server, it is achieved cookie is from the first net Station is transferred to set up the second website of partnership, due to the domain name and second of the first website with the first website The domain name of website can be identical, it is also possible to different.Implement the embodiment of the present invention, can be by cookie from the One website is transferred to the second website differed with the first website domain name, it is achieved the inter-network station of different domain names is stepped on Record.

Refer to the structural representation that Fig. 8, Fig. 8 are the embodiment of the present invention another Website servers disclosed Figure, as shown in Figure 8, can include receiving unit 801, obtaining signal generating unit 802 and transmitting element 803, Wherein:

Receive unit 801, for receiving the encryption session that terminal sends.

In the embodiment of the present invention, the encryption session receiving unit 801 reception is and the foundation cooperation of the second website First Website server corresponding to the first website of relation generates, and encryption session includes that user logs in the The user profile of one website, user profile can include user name, password etc..

Obtain signal generating unit 802, be used for according to encryption acquisition conversation user profile, and according to user profile Generate cookie.

In the embodiment of the present invention, after encryption session is passed to the second Website server by terminal, obtain raw Become unit 802 according to encryption acquisition conversation user profile.Concrete, the second Website server can be the When partnership is set up in one website and the second website, share the AES identical with the first Website server, In the embodiment of the present invention, the first website according to predetermined AES, can utilize terminal IP address and The encryption key that the characteristic information of browser generates, the second website also according to above-mentioned predetermined AES, Utilize the decruption key that the IP address of terminal and the characteristic information of browser generate, if encryption key and deciphering Cipher key match, can to encryption session be decrypted, obtain user profile, the second Website server according to User profile generates cookie.It should be noted that the cookie that identical user profile generates is identical.

Optionally, as it is shown in figure 9, obtain signal generating unit 802 can include the first signal generating unit 8021, Decryption unit 8022 and extraction signal generating unit 8023, wherein:

First signal generating unit 8021, the characteristic information for the IP address according to terminal and browser generates Decruption key；

For the second Website server, decryption unit 8022, confirms that decruption key is close with the encryption of encryption session After key coupling, encryption session is decrypted, obtains session；

Extract signal generating unit 8023, for extracting user profile from session, and generate according to user profile cookie。

In the embodiment of the present invention, encryption session is passed to set up the of partnership with the first website by terminal The first signal generating unit 8021 after the second Website server that two websites are corresponding, in the second Website server The IP address of the terminal carried when can encrypt session according to terminal transmission and the characteristic information of browser are raw Become decruption key, owing to the second Website server generates algorithm and the life of the first Website server of decruption key The algorithm becoming encryption key is identical, and encryption key mates with decruption key, and decryption unit 8022 can be to adding Secret meeting words are decrypted, and obtain session, extract signal generating unit 8023 and can extract user from encryption session Information, and generate cookie according to user profile.Implement the embodiment of the present invention, utilize identical encryption to calculate Method and identical decipherment algorithm, encryption session can be decrypted, obtain user by the second Website server Information, thus generate cookie, it is achieved the inter-network station transmission of cookie, and then realize across website log.

Optionally, as shown in Figure 10, obtain signal generating unit 802 can include obtaining transmitting element 8024 With receive signal generating unit 8025, wherein:

Obtain transmitting element 8024, for obtaining the mark of encryption session, the mark of encryption session is sent To the first Website server, so that the first Website server is right with mark according to the mark transmission of encryption session The user profile answered gives the second Website server；

Receive signal generating unit 8025, for receiving the user profile that the first Website server sends, and according to User profile generates cookie.

In the embodiment of the present invention, after obtaining the mark that transmitting element 8024 obtains encryption session, will encryption The mark of session is sent to the first Website server, and the mark of encryption session can be a character string or Individual numerical value.Owing to the first website and the second website have been set up partnership, mutual trust, the first net Site server searches the user profile corresponding with the mark of encryption session to the second Website server.First In Website server, encryption session identification and user profile corresponding relation, different use can be prestored The corresponding different encryption session identification of family information, such as, user profile is A, comprises in encryption session B User profile A, then can arrange encryption session B is designated C, and wherein, C with A is corresponding.Implement The embodiment of the present invention, it is not necessary to share identical AES, the second website clothes in the second Website server After business device receives encryption session, obtaining transmitting element 8024 can be to the first Website server request encryption The user profile that the mark of session is corresponding, receives signal generating unit 8025 and can obtain user profile, due to the Establish partnership between one Website server and the second Website server, can trust each other, thus Realize the inter-network station transmission of user profile.

Transmitting element 803, for sending cookie to terminal, so that cookie is write second by terminal In the caching of website.

In the embodiment of the present invention, after acquisition signal generating unit 802 generates cookie, transmitting element 803 is by upper Stating cookie and be sent to terminal, above-mentioned cookie is write in the caching of the second website by terminal, in order to user During subsequent login the second website, terminal obtains above-mentioned cookie from the caching of the second website, by above-mentioned Cookie sends to the second Website server, and the second Website server directly logs in the according to above-mentioned cookie Two websites, it is not necessary to user inputs the user profile such as user name, password again, can log in the second website.

In the Website server described by Fig. 8, after reception unit 801 receives encryption session, obtain Signal generating unit 802 can obtain encrypting the user profile in session by being decrypted encryption session, Become throughout one's life the cookie identical with the first Website server, it is achieved cookie is transferred to from the first website and the The second website of partnership is set up in one website, owing to the domain name of the first website and the domain name of the second website can With identical, it is also possible to different.Implement the embodiment of the present invention, cookie can be transferred to from the first website The second website differed with the first website domain name, it is achieved different domain names across website log.

Refer to the structural representation that Figure 11, Figure 11 are the embodiment of the present invention another terminals disclosed, Browser in the embodiment of the present invention can run in terminal, and as shown in figure 11, this terminal may include that At least one processor 1110, such as CPU, memorizer 1120, at least one communication bus 1130, Network interface 1140.Wherein, communication bus 1130 is for realizing the communication connection between these assemblies. Memorizer 110 can be high-speed RAM memorizer, it is also possible to be non-labile memorizer (non-volatile memory), for example, at least one disk memory.Memorizer 1120 the most also may be used Being that at least one is located remotely from the storage device of aforementioned processor 1110.Network interface 1140 can connect Receive the data in the first Website server, the second Website server, it is also possible to the first Website server, Second Website server sends data.Wherein, memorizer 1120 stores batch processing code, and processes Device 1110 calls in memorizer 1120 program code of storage, is used for performing following operation:

Sending the logging request for the first website to the first Website server, logging request carries user's letter Breath, the IP address of terminal and the characteristic information of browser, so that the first Website server is according to user profile Generate cookie, and utilize user profile establishment session, and generate according to IP address and characteristic information Session is encrypted by encryption key, obtains encrypting session；

Receiving the response message that the first Website server returns, response message includes encrypting session；

Encryption session is passed to set up with the first website the second website that the second website of partnership is corresponding Server, so that the second Website server is according to encryption acquisition conversation user profile, and according to user profile Generate cookie；

Receive the cookie that the second Website server returns, and cookie is write in the caching of the second website.

Optionally, encryption session is passed to set up the second of partnership with the first website by processor 110 The second Website server that website is corresponding, so that the second Website server is according to encryption acquisition conversation user letter Breath, and according to user profile generate cookie mode particularly as follows:

Encryption session is passed to set up with the first website the second website that the second website of partnership is corresponding Server, so that the second Website server generates decruption key according to IP address and the characteristic information of terminal；

If the second Website server mates with decruption key for encryption key, encryption session is decrypted, Obtain session, from session, extract user profile, and generate cookie according to user profile.

Optionally, encryption session is passed to set up the second of partnership with the first website by processor 110 The second Website server that website is corresponding, so that the second Website server is according to encryption acquisition conversation user letter Breath, and according to user profile generate cookie mode particularly as follows:

Encryption session is passed to set up with the first website the second website that the second website of partnership is corresponding Server；

Wherein, the second Website server is after obtaining the mark of encryption session, by the mark of encryption session Know and be sent to the first Website server；First Website server is used for sending according to the mark of encryption session Family information is sent to the second Website server, and the second Website server is additionally operable to generate according to user profile cookie。

Optionally, processor 110 sends the logging request for the first website to the first Website server, Logging request carries user profile, the IP address of terminal and the characteristic information of browser, so that the first website Server generates cookie according to user profile, and utilizes user profile to create session, and according to IP ground Session is encrypted by the encryption key that location and characteristic information generate, obtain encrypting the mode of session particularly as follows:

Sending the logging request for the first website to the first Website server, logging request carries user's letter Breath, the IP address of terminal and the characteristic information of browser, so that the first Website server is according to user profile Generate cookie, and utilize user profile to create session；

Wherein, after the first Website server is used for creating session, IP address is carried out segmentation and resets, right IP address after segmentation is reset is circulated computing, obtains new IP address；By new IP address with special Reference breath characteristic of correspondence character string is spliced, and obtains mixed characters string；Mixed characters string is breathed out Uncommon computing, obtains encryption key；And use encryption key that session is encrypted, obtain encrypting session.

Optionally, encryption session is passed to set up the second of partnership with the first website by processor 110 The second Website server that website is corresponding particularly as follows:

Adding request label in the webpage of the first website, request label carries sets up cooperation with the first website The uniform resource position mark URL of the second website of relation and encryption session；

Run request label, encryption session is passed to the second Website server.

By implementing the terminal shown in Figure 11, cookie can be transferred to and the first net from the first website The second website that domain name of standing differs, it is achieved different domain names across website log.

Step in embodiment of the present invention method can carry out order according to actual needs and adjust, merges and delete Subtract.

Unit or subelement in embodiment of the present invention terminal or equipment can close according to actual needs And, divide and delete.

One of ordinary skill in the art will appreciate that all or part of step in the various methods of above-described embodiment Suddenly the program that can be by is carried out the device-dependent hardware of command terminal and is completed, and this program can be stored in one In computer-readable recording medium, storage medium may include that flash disk, read only memory (Read-Only Memory, ROM), random access device (Random Access Memory, RAM), disk or light Dish etc..

A kind of enter across Website logging method, terminal and Website server the embodiment of the invention discloses above Having gone and be discussed in detail, principle and the embodiment of the present invention are explained by specific case used herein Stating, the explanation of above example is only intended to help to understand method and the core concept thereof of the present invention；Meanwhile, For one of ordinary skill in the art, according to the thought of the present invention, at detailed description of the invention and application model Placing and all will change, in sum, this specification content should not be construed as limitation of the present invention.

Claims (20)

1. one kind across Website logging method, it is characterised in that including:

Sending the logging request for the first website to the first Website server, described logging request carries use Family information, the IP address of terminal and the characteristic information of browser so that described first Website server according to Described user profile generates text data cookie, and utilizes described user profile to create session, and root Described session is encrypted by the encryption key generated according to described IP address and described characteristic information, is added Secret meeting is talked about；

Receiving the response message that described first Website server returns, described response message includes described encryption Session；

The second website that described encryption session passes to set up with described first website partnership is corresponding Second Website server, so that described second Website server is according to user described in described encryption acquisition conversation Information, and generate described cookie according to described user profile；

Receive the described cookie that described second Website server returns, and by described for described cookie write In the caching of the second website.

Method the most according to claim 1, it is characterised in that described by described encryption session transmission Give the second Website server that the second website setting up partnership with described first website is corresponding, so that institute State the second Website server according to user profile described in described encryption acquisition conversation, and believe according to described user Breath generates described cookie, including:

The second website that described encryption session passes to set up with described first website partnership is corresponding Second Website server, so that described second Website server is according to the IP address of described terminal and described spy Reference breath generates decruption key；

If described second Website server is when described encryption key mates with described decruption key, to institute State encryption session to be decrypted, obtain described session, from described session, extract described user profile, and Described cookie is generated according to described user profile.

Method the most according to claim 1, it is characterised in that described by described encryption session transmission Give the second Website server that the second website setting up partnership with described first website is corresponding, so that institute State the second Website server according to user profile described in described encryption acquisition conversation, and believe according to described user Breath generates described cookie, including:

The second website that described encryption session passes to set up with described first website partnership is corresponding Second Website server；

Wherein, described second Website server is after obtaining the mark of described encryption session, by described The mark of encryption session is sent to described first Website server；Described first Website server is used for basis The mark of described encryption session sends described user profile and is sent to described second Website server, and described the Two Website servers are additionally operable to generate described cookie according to described user profile.

Method the most according to claim 1, it is characterised in that described send out to the first Website server Send the logging request for the first website, described logging request carry user profile, the IP address of terminal and The characteristic information of browser, so that described first Website server generates cookie according to described user profile, And utilize described user profile to create session, and generate according to described IP address and described characteristic information Described session is encrypted by encryption key, obtains encrypting session, including:

Sending the logging request for the first website to the first Website server, described logging request carries use Family information, the IP address of terminal and the characteristic information of browser so that described first Website server according to Described user profile generates cookie, and utilizes described user profile to create session；

Wherein, after described first Website server is used for creating described session, described IP address is carried out Segmentation is reset, and the described IP address after resetting segmentation is circulated computing, obtains new IP address； Described new IP address is spliced with described characteristic information characteristic of correspondence character string, obtains mixing word Symbol string；Described mixed characters string is carried out Hash operation, obtains encryption key；And use described encryption close Described session is encrypted by key, obtains encrypting session.

5. according to the method described in any one of Claims 1 to 4, it is characterised in that described add described Secret meeting words pass to set up the second website service that the second website of partnership is corresponding with described first website Device, including:

Adding request label in the webpage of described first website, described request label carries and described first The uniform resource position mark URL of the second website of partnership and described encryption session are set up in website；

Run described request label, described encryption session is passed to described second Website server.

6. one kind across Website logging method, it is characterised in that including:

Receive terminal send the logging request for the first website, described logging request carry user profile, The IP address of terminal and the characteristic information of browser；

Generate cookie according to described user profile, and utilize described user profile to create session；

Encryption key is generated according to described IP address and described characteristic information；

Utilize described encryption key that described session is encrypted, obtain encrypting session；

Returning response message to described terminal, described response message includes described cookie and described adds secret meeting Words；So that described cookie is write in the caching of described first website by described terminal, and by described encryption Session passes to set up the second website service that the second website of partnership is corresponding with described first website Device；

After described second Website server is used for receiving described encryption session, according to described encryption session Obtain described user profile, generate described cookie according to described user profile, described cookie is sent To described terminal, so that described cookie is write in the caching of described second website by described terminal.

Method the most according to claim 6, it is characterised in that described according to described IP address and Described characteristic information generates encryption key, including:

Described IP address carrying out segmentation reset, the described IP address after resetting segmentation is circulated fortune Calculate, obtain new IP address；

Described new IP address is spliced with described characteristic information characteristic of correspondence character string, is mixed Close character string；

Described mixed characters string is carried out Hash operation, obtains encryption key.

8. one kind across Website logging method, it is characterised in that including:

Receive the encryption session that terminal sends；

According to described encryption acquisition conversation user profile, and generate cookie according to described user profile；

Described cookie is sent to described terminal, so that described cookie is write the second net by described terminal In the caching stood.

Method the most according to claim 8, it is characterised in that described obtain according to described encryption session Take user profile, and generate cookie according to described user profile, including:

IP address and the characteristic information of browser according to terminal generate decruption key；

After confirming that described decruption key mates with the encryption key of described encryption session, add secret meeting to described Words are decrypted, and obtain session, extract user profile from described session, and according to described user profile Generate cookie.

Method the most according to claim 8, it is characterised in that described according to described encryption session Obtain user profile, and generate cookie according to described user profile, including:

Obtain the mark of described encryption session, the mark of described encryption session is sent to described first website Server, so that described first Website server sends and described mark according to the mark of described encryption session Corresponding user profile gives the second Website server；

Receive the described user profile that described first Website server sends, and raw according to described user profile Become cookie.

11. 1 kinds of terminals, it is characterised in that including:

Transmitting element, for sending the logging request for the first website to the first Website server, described Logging request carries user profile, the IP address of terminal and the characteristic information of browser, so that described first Website server generates cookie according to described user profile, and utilizes described user profile to create session, And according to the encryption key of described IP address and the generation of described characteristic information, described session is encrypted, To encryption session；

First receive unit, for receive described first Website server return response message, described should Answer message and include described encryption session；

Transfer unit, for passing to set up partnership with described first website by described encryption session The second Website server that second website is corresponding so that described second Website server according to described in add secret meeting Words obtain described user profile, and generate described cookie according to described user profile；

Second receives unit, for receiving the described cookie that described second Website server returns, and will Described cookie writes in the caching of described second website.

12. terminals according to claim 11, it is characterised in that described transfer unit adds described Secret meeting words pass to set up the second website service that the second website of partnership is corresponding with described first website Device, so that described second Website server is according to user profile described in described encryption acquisition conversation, and according to Described user profile generate described cookie mode particularly as follows:

Described encryption session is passed to set up the of partnership with described first website by described transfer unit The second Website server that two websites are corresponding, so that described second Website server is according to the IP of described terminal Address and described characteristic information generate decruption key；

If described encryption key mates with described decruption key, described second Website server is for described Encryption session is decrypted, and obtains described session, extracts described user profile, and root from described session Described cookie is generated according to described user profile.

13. terminals according to claim 11, it is characterised in that described transfer unit adds described Secret meeting words pass to set up the second website service that the second website of partnership is corresponding with described first website Device, so that described second Website server is according to user profile described in described encryption acquisition conversation, and according to Described user profile generate described cookie mode particularly as follows:

Described encryption session is passed to set up the of partnership with described first website by described transfer unit The second Website server that two websites are corresponding；

Wherein, described second Website server is after obtaining the mark of described encryption session, by described The mark of encryption session is sent to described first Website server；Described first Website server is used for basis The mark of described encryption session sends described user profile and is sent to described second Website server, and described the Two Website servers are additionally operable to generate described cookie according to described user profile.

14. terminals according to claim 11, it is characterised in that described transmitting element is to the first net Site server sends the logging request for the first website, and described logging request carries user profile, terminal IP address and the characteristic information of browser so that described first Website server is according to described user profile Generate cookie, and utilize described user profile to create session, and according to described IP address and described spy Reference breath generate encryption key described session is encrypted, obtain encrypt session mode particularly as follows:

Described transmitting element sends for the logging request of the first website to the first Website server, described in step on User profile, the IP address of terminal and the characteristic information of browser are carried in record request, so that described first net Site server generates cookie according to described user profile, and utilizes described user profile to create session；

Wherein, after described first Website server is used for creating described session, described IP address is carried out Segmentation is reset, and the described IP address after resetting segmentation is circulated computing, obtains new IP address； Described new IP address is spliced with described characteristic information characteristic of correspondence character string, obtains mixing word Symbol string；Described mixed characters string is carried out Hash operation, obtains encryption key；And use described encryption close Described session is encrypted by key, obtains encrypting session.

15. according to the terminal described in any one of claim 11～14, it is characterised in that described transmission list Unit includes:

Adding device, for adding request label, described request label in the webpage of described first website Carry and set up the uniform resource position mark URL of the second website and the institute of partnership with described first website State encryption session；

Running unit, is used for running described request label, described encryption session is passed to described second net Site server.

16. 1 kinds of Website servers, it is characterised in that including:

Receiving unit, for receiving the logging request for the first website that terminal sends, described login please Ask and carry user profile, the IP address of terminal and the characteristic information of browser；

Generate creating unit, for generating cookie according to described user profile, and utilize described user Information creating session；

Signal generating unit, for generating encryption key according to described IP address and described characteristic information；

Ciphering unit, is used for utilizing described encryption key to be encrypted described session, obtains encrypting session；

Transmitting element, for returning response message to described terminal, described response message includes described cookie With described encryption session；So that described cookie is write in the caching of described first website by described terminal, And the second website that described encryption session passes to set up with described first website partnership corresponding Two Website servers；

After described second Website server is used for receiving described encryption session, according to described encryption session Obtain described user profile, generate described cookie according to described user profile, described cookie is sent To described terminal, so that described cookie is write in the caching of described second website by described terminal.

17. Website servers according to claim 16, it is characterised in that described signal generating unit bag Include:

Segmentation rearrangement units, resets for described IP address carries out segmentation, described in after resetting segmentation IP address is circulated computing, obtains new IP address；

Concatenation unit, for entering described new IP address with described characteristic information characteristic of correspondence character string Row splicing, obtains mixed characters string；

Arithmetic element, for described mixed characters string is carried out Hash operation, obtains encryption key.

18. 1 kinds of Website servers, it is characterised in that including:

Receive unit, for receiving the encryption session that terminal sends；

Obtain signal generating unit, be used for according to described encryption acquisition conversation user profile, and according to described user Information generates cookie；

Transmitting element, for sending described cookie to described terminal, so that described terminal is by described Cookie writes in the caching of the second website.

19. Website servers according to claim 18, it is characterised in that described acquisition generates single Unit includes:

First signal generating unit, it is close that the characteristic information for the IP address according to terminal and browser generates deciphering Key；

Decryption unit, after confirming that described decruption key mates with the encryption key of described encryption session, Described encryption session is decrypted, obtains session；

Extract signal generating unit, for extracting user profile from described session, and according to described user profile Generate cookie.

20. Website servers according to claim 18, it is characterised in that described acquisition generates single Unit includes:

Obtain transmitting element, for obtaining the mark of described encryption session, by the mark of described encryption session It is sent to described first Website server, so that described first Website server is according to described encryption session Mark sends the user profile corresponding with described mark to the second Website server；

Receive signal generating unit, for receiving the described user profile that described first Website server sends, and Cookie is generated according to described user profile.