Summary of the invention
The main purpose of the present invention is to provide a kind of authentication method of wireless network and routers, at least to solve correlation
The cumbersome problem of the identifying procedure of wireless network in technology.
To achieve the goals above, according to an aspect of the invention, there is provided a kind of authentication method of wireless network.It should
The authentication method of wireless network includes: that router receives the first request for requesting access to internet sent by target terminal
Order, wherein router and target terminal are established and be wirelessly connected, and target terminal is terminal to be certified;Router is according to first
Presupposed information in request command judges whether target terminal passes through certification;If router is according to pre- in the first request command
If information judges target terminal by certification, router, which is sent, authenticates successful authentication success message to target to target terminal
Terminal, target terminal access internet after receiving authentication success message.
Further, judge whether target terminal passes through certification according to the presupposed information in the first request command in router
Later, the authentication method of the wireless network further include: if router is judged according to the presupposed information in the first request command
For target terminal not over certification, router sends the first request command to certificate server, wherein certificate server is according to the
One request command judges whether target terminal meets preset condition, if certificate server judges mesh according to the first request command
Mark terminal does not meet preset condition, and certificate server is sent according to the first request command to be recognized for what is authenticated to target terminal
Information is demonstrate,proved to router;Router sends authentication information to target terminal, wherein target terminal receives user according to authentication information
The authentication operation of execution, and the second request command is sent to router according to authentication operation;Router forwards the second request command
To certificate server, wherein certificate server judges whether target terminal passes through certification according to the second request command;And if
Certificate server judges target terminal by certification according to the second request command, and router sends authentication success message to target
Presupposed information in first request command is added to the presetting database of router after target terminal is by certification by terminal
In.
Further, after router sends the first request command to certificate server, the authenticating party of the wireless network
Method further include: if certificate server judges that target terminal meets preset condition according to the first request command, router is by
Presupposed information in one request command is added in presetting database, and sends authentication success message to target terminal.
Further, it includes: that router is received from certificate server hair that router, which sends authentication information to target terminal,
The the first certification page information comprising certification token sent;Router sends the first certification page information to target terminal,
In, target terminal shows the first certification page that the first authentication operation is executed for user according to the first certification page information.
Further, it includes: that router is received from certificate server hair that router, which sends authentication information to target terminal,
What is sent includes the certification link information for authenticating connection, the password authentication information and default advertising information for password authentication
Second certification page information;Router sends the second certification page information to target terminal, wherein target terminal is recognized according to second
Card page info shows the second certification page that the second authentication operation is executed for user, wherein the second authentication operation includes using
The certification attended operation that family is carried out according to certification link information, the password authentication operation that user carries out according to password authentication information with
User checks operation to what default advertising information was checked, wherein router forwards the second request command to certificate server
It include: that router forwards the corresponding certification password of password authentication information to certificate server, wherein certificate server is according to certification
Password judges whether target terminal passes through certification, obtains authentication result, and returns to the prompt page for indicating authentication result
Information is to router;Router, which is sent, prompts the information of the page to target terminal, wherein target terminal is according to the letter for prompting the page
Cease the display reminding page.
Further, after router sends the second certification page information to target terminal, the certification of the wireless network
Method further include: in the case where target terminal installs default application, router is received default answers from what target terminal was sent
Preset data, and using preset data as the second request command, wherein if target terminal is fitted without default application,
When user carries out certification attended operation according to certification link information, target terminal installs default application execution.
Further, the second certification page includes the link verified by presetting account number, sends second in router
After certification page information to target terminal, the authentication method of the wireless network further include: router, which receives, comes from target terminal
The second request command as obtained from presetting the certification attended operation that account number is attached.
Further, default account number includes the account number of default social software or the account number of default website, and router, which receives, to be come
From target terminal according to the default verification information that certification attended operation obtains include: router receive pass through from target terminal it is pre-
If the account number of social software executes the second request command obtained from certification attended operation, or the account number by presetting website is held
Second request command obtained from row certification attended operation.
Further, after router sends authentication success message to target terminal, the authentication method of the wireless network
Further include: router sends authentication information to target terminal every preset time, wherein target terminal is receiving certification every time
After information, the page jump of the internet accessed from target terminal receives user according to recognizing to the page comprising authentication information
The authentication operation that information executes is demonstrate,proved, and third request command is sent to router according to authentication operation;Router is asked according to third
Ask whether command determination target terminal passes through certification;And if router judges that target terminal is logical according to third request command
Certification is crossed, router sends authentication success message to target terminal again, wherein target terminal authenticates successfully receiving again
Again internet is accessed after information.
Further, router judges whether target terminal passes through certification packet according to the presupposed information in the first request command
Include: router sends presupposed information in the first request command to certificate server, wherein certificate server judges authentication service
Whether device preserves the presupposed information in the first request command;If certificate server judges that certificate server preserves first
Presupposed information in request command, router receive the authentication success message sent from certificate server to determine router root
Judge that target terminal passes through certification according to the presupposed information in the first request command.
Further, after router sends authentication success message to target terminal, the authentication method of wireless network is also
It include: the presupposed information in router the first request command of acquisition;Router sends the presupposed information in the first request command extremely
Certificate server, wherein certificate server save presupposed information in the first request command.
To achieve the goals above, according to another aspect of the present invention, a kind of router is additionally provided.The router packet
It includes: receiving unit, the first request command for being used to request access to internet sent for receiving router by target terminal,
Wherein, router and target terminal, which are established, is wirelessly connected, and target terminal is terminal to be certified;Judging unit, for according to the
Presupposed information in one request command judges whether target terminal passes through certification;First transmission unit, for being asked according to first
The presupposed information in order is asked to judge that target terminal by certification, sends and authenticates successful authentication success message to target terminal
To target terminal, target terminal accesses internet after receiving authentication success message.
Further, the router further include: the second transmission unit, in router according in the first request command
After presupposed information judges whether target terminal passes through certification, if router is sentenced according to the presupposed information in the first request command
Disconnected target terminal out is not over certification, and router sends the first request command to certificate server, wherein certificate server root
Judge whether target terminal meets preset condition according to the first request command, if certificate server judges according to the first request command
Target terminal does not meet preset condition out, and certificate server is sent according to the first request command for authenticating to target terminal
Authentication information to router;Third transmission unit, for sending authentication information to target terminal, wherein target terminal receives
The authentication operation that user executes according to authentication information, and the second request command is sent to router according to authentication operation;Forwarding is single
Member, for forwarding the second request command to certificate server, wherein certificate server judges target end according to the second request command
Whether end passes through certification;And the 4th transmission unit, for according to the second request command judging target terminal by certification,
It sends authentication success message and adds the presupposed information in the first request command after target terminal is by certification to target terminal
It adds in the presetting database of router.
Further, the router further include: processing unit, for router send the first request command to authenticate clothes
It is engaged in after device, if certificate server judges that target terminal meets preset condition according to the first request command, by the first request
Presupposed information in order is added in presetting database, and sends authentication success message to target terminal.
Through the invention, the first request for requesting access to internet sent by target terminal is received using router
Order, wherein router and target terminal are established and be wirelessly connected, and target terminal is terminal to be certified;Router is according to first
Presupposed information in request command judges whether target terminal passes through certification;If router is according to pre- in the first request command
If information judges target terminal by certification, router, which is sent, authenticates successful authentication success message to target to target terminal
Terminal, target terminal access internet after receiving authentication success message, and router is according to default in presetting database
Information directly transmits authentication success message to target terminal, and the identifying procedure for solving wireless network in the related technology cumbersome is asked
Topic, and then achieved the effect that the identifying procedure of simplified wireless network.
Specific embodiment
It should be noted that in the absence of conflict, the features in the embodiments and the embodiments of the present application can phase
Mutually combination.The present invention will be described in detail below with reference to the accompanying drawings and embodiments.
In order to make those skilled in the art more fully understand application scheme, below in conjunction in the embodiment of the present application
Attached drawing, the technical scheme in the embodiment of the application is clearly and completely described, it is clear that described embodiment is only
The embodiment of the application a part, instead of all the embodiments.Based on the embodiment in the application, ordinary skill people
Member's every other embodiment obtained without making creative work, all should belong to the model of the application protection
It encloses.
It should be noted that the description and claims of this application and term " first " in above-mentioned attached drawing, "
Two " etc. be to be used to distinguish similar objects, without being used to describe a particular order or precedence order.It should be understood that using in this way
Data be interchangeable under appropriate circumstances, so as to embodiments herein described herein.In addition, term " includes " and " tool
Have " and their any deformation, it is intended that cover it is non-exclusive include, for example, containing a series of steps or units
Process, method, system, product or equipment those of are not necessarily limited to be clearly listed step or unit, but may include without clear
Other step or units listing to Chu or intrinsic for these process, methods, product or equipment.
The embodiment of the invention provides a kind of authentication methods of wireless network.
Fig. 1 is the flow chart of the authentication method of wireless network according to a first embodiment of the present invention.As shown in Figure 1, the nothing
The authentication method of gauze network the following steps are included:
Step S101, router receive the first request command for being used to request access to internet sent by target terminal.
Router receives the first request command for being used to request access to internet sent by target terminal.Router and mesh
It marks terminal and establishes wireless connection, for example, establishing WIFI wireless connection.Router is not provided with password, but target terminal is connected to
After router, if necessary to pass through router access internet, it is necessary to be authenticated to target terminal, for example, when connection
When wireless network, a portal page face can be jumped out to authenticate the mode logged in.Router is wireless router, for using
Family online has wireless coverage function, and target terminal is terminal to be certified, that is, terminal device, can be mobile phone, plate
Computer etc. facilitates user to carry the terminal surfed the Internet.Target terminal sends first for requesting access to internet to router
Request command, for example, user accesses a certain website of internet by browser on a target terminal, user cannot directly be browsed
Content shown by webpage on to the website, but first send online request to router, then first request command is to use
In the first request command for requesting access to internet web page, which sends to router as a data frame,
Router receives first request command in turn.
Step S102, router judge whether target terminal passes through certification according to the presupposed information in the first request command.
Router receive is sent by target terminal for routing after requesting access to the first request command of internet
Device obtains the presupposed information in the first request command, and the presupposed information in first request command is for identifying target terminal
Information, that is, the presupposed information of target terminal, for example, media access control (the Media Access Control of target terminal
Or Medium Access Control, referred to as MAC) address, which is used to define the position of the network equipment.Target
Terminal has a MAC Address, and each network site has the IP address for being specific to it, and MAC Address is that network interface card determines,
It is also fixed.Router judges whether target terminal passes through certification according to the data frame of access the Internet request.Work as router
When judging that target terminal passes through certification according to the presupposed information in the first request command, it can determine that target terminal has access
The permission of internet, when router judges target terminal not over certification according to the presupposed information in the first request command
When, it can determine that target terminal does not have the permission of access internet.
Step S103, if router judges target terminal by recognizing according to the presupposed information in the first request command
Card, router, which is sent, authenticates successful authentication success message to target terminal to target terminal, and target terminal is receiving certification
Internet is accessed after successful information.
After router judges whether target terminal passes through certification according to the presupposed information in the first request command, if
Router judges target terminal by certification according to the presupposed information in the first request command, then target terminal has access mutual
The permission of networking, router, which is sent, authenticates successful authentication success message to target terminal to target terminal, and router allows mesh
Mark the resource of terminal access internet.Wherein, authentication success message can add on a target terminal for text, figure or text
The form of figure is shown, or the webpage that user requests access to is directly directed to, to prompt the user with router pair
Target terminal authenticates successfully, that is, wireless network authentication success.
When router, which is sent, authenticates successful authentication success message to target terminal to target terminal, the first request is ordered
Presupposed information in order is added in the presetting database of router, which is local authorised device database,
It can store the presupposed information for having passed through the terminal of certification.Optionally, the presupposed information in the first request command is added to
In the white list of router, then the corresponding terminal of the presupposed information stored in white list can send access internet in next time
When ordering when request, directly certification passes through.When presupposed information is the MAC Address of target terminal, router was sent to target end
End authenticates successful authentication success message to target terminal, and the MAC Address of the target terminal is added to the white list of router
In.
Optionally, after router sends and authenticates successful authentication success message to target terminal to target terminal, mesh
Mark terminal can normally access the webpage of internet.When target terminal is due to the replacement in place, need to send to router again
The first request command of internet is requested access to, for example, thering is more place to need to provide wirelessly in multiple cities for some
The company of online, client need to be advantageously connected to the network of its offer in different location, when router receives the again
When one request command, the presupposed information of the target terminal authenticated is provided due to stored in the presetting database of router,
Router directly transmits authentication success message to target terminal according to the presupposed information in presetting database, and target terminal directly obtains
The permission that internet must be accessed browses the webpage of internet, obtains Internet resources, and does not have to make user multiple in different occasions
It is manually entered password and completes certification, reduce in router memory of the user to authentication password in target terminal verification process
Burden, and certification error rate, and the safety and agility of target terminal access internet are improved, reach simplified nothing
The effect of the identifying procedure of gauze network, and then improve user experience.
The embodiment is received by router and is ordered by the first request for requesting access to internet that target terminal is sent
It enables, router and target terminal are established and be wirelessly connected, and target terminal is terminal to be certified;Router is according to the first request command
In presupposed information judge whether target terminal passes through certification;If router is sentenced according to the presupposed information in the first request command
For disconnected target terminal out by certification, router, which is sent, authenticates successful authentication success message to target terminal, mesh to target terminal
Mark terminal accesses internet after receiving authentication success message, and having reached target terminal, once certification passes through on the router
Later, the purpose for directly accessing internet, is realized the certification of wireless network to the certification of target terminal by router, reached
The effect of the identifying procedure of simplified wireless network.
As an alternative embodiment, judging target end according to the presupposed information in the first request command in router
After whether end is by certification, the authentication method of the wireless network further include: if router is according in the first request command
Presupposed information judges target terminal not over certification, and router sends the first request command to certificate server, wherein recognizes
It demonstrate,proves server and judges whether target terminal meets preset condition according to the first request command, if certificate server is asked according to first
It asks command determination to go out target terminal and does not meet preset condition, certificate server is sent according to the first request command for target end
Hold the authentication information that is authenticated to router;Router sends authentication information to target terminal, wherein target terminal, which receives, to be used
The authentication operation that family is executed according to authentication information, and the second request command is sent to router according to authentication operation;Router turns
The second request command is sent out to certificate server, wherein certificate server judges whether target terminal leads to according to the second request command
Cross certification;And if certificate server judges target terminal by certification according to the second request command, router transmission is recognized
It demonstrate,proves successful information and the presupposed information in the first request command is added to road after target terminal is by certification to target terminal
By in the presetting database of device.
Whether target terminal is judged according to the presupposed information in the first request command for accessing internet in router
After certification, if router judges target terminal not over recognizing according to the presupposed information in the first request command
Card, the first request command is sent to certificate server by router, the certificate server after receiving the first request command,
Judge whether target terminal meets preset condition according to the first request command, wherein the preset condition can be certificate server
In pre-stored condition.If certificate server judges that target terminal does not meet preset condition according to the first request command,
The authentication information for being authenticated to target terminal is sent to router according to the first request command, and router can will include
The certification page information of the authentication information is sent to target terminal, and target terminal shows certification page according to certification page information,
User executes authentication operation according to the authentication information on certification page in turn.Target terminal receives the authentication operation, is authenticated
The second request command comprising authentication operation information is sent to router by operation information, which is to ask again
Seek the request command of access internet.Router sends the second request command to recognizing after receiving second request command
Server is demonstrate,proved, to submit authentication operation information to certificate server, certificate server judges target according to the second request command
Whether terminal passes through certification, it can be determined that whether authentication operation information meets the requirement that certification passes through, if certificate server root
Target terminal is judged by certification according to the second request command, and router sends authentication success message to target terminal, allows mesh
The resource for marking terminal access internet, realizes the certification to target terminal.After being authenticated successfully to target terminal, router
The presupposed information for obtaining target terminal, the presupposed information of target terminal is stored in the presetting database of router, the road Ze Dang
When receiving the request command for accessing internet again by device, router is direct according to the presupposed information in presetting database
It sends authentication success message and adds the presupposed information in the first request command after target terminal is by certification to target terminal
It adds in the presetting database of router.
For example, the condition that above-mentioned preset condition is met by the order information in hotel reservation, the order information packet
Containing the information such as telephone number or order.After client is by mode reservation on line or under line, order information can upload or
It stores in the Property Management System (Property Management System, referred to as PMS) in corresponding hotel, PMS system
Order information is uploaded into certificate server using the target presupposed information as certification.The first request command is sent extremely in router
After certificate server, certificate server judges whether presupposed information is preset with target according to the presupposed information of the first request command and believes
Manner of breathing symbol, if certificate server judges that presupposed information is consistent with target presupposed information according to presupposed information, it is determined that target
Terminal meets preset condition, then the presupposed information in the first request command is added in presetting database by router, and is sent
Authentication success message is to target terminal.After target terminal is by certification, the presupposed information in the first request command is added to
In the presetting database of router.
As an alternative embodiment, this is wireless after router sends the first request command to certificate server
The authentication method of network further include: if certificate server judges that target terminal meets default item according to the first request command
Presupposed information in first request command is added in presetting database by part, router, and sends authentication success message to mesh
Mark terminal.
After router sends the first request command to certificate server, certificate server judges according to the first request command
Whether target terminal meets preset condition.It optionally, include user information in the first request command, certificate server is according to first
User information in request command judge target terminal whether be authorized user terminal, if certificate server is asked according to first
It asks the user information in order to judge that target terminal is the terminal of authorized user, determines that target terminal meets preset condition, such as
Fruit certificate server according to the user information in the first request command judges target terminal not and is the terminal of authorized user, determines
Target terminal does not meet preset condition.If certificate server judges target end according to the user information in the first request command
End is the terminal of authorized user, then certificate server returns to user information to router, and router is preset the target terminal
Information is added in the local authorised device database of router, and sends authentication success message to target terminal, makes target
Terminal shows the webpage that user requests access to, and realizes the purpose to user's checking network access authority.
As an alternative embodiment, it includes: that router receives that router, which sends authentication information to target terminal,
The first certification page information comprising certification token that Self-certified server is sent;Router sends the first certification page information
To target terminal, wherein target terminal is shown according to the first certification page information executes the of the first authentication operation for user
One certification page.
The authentication information that certificate server is sent includes certification token, and certification token is authentication token, is made by oneself for user
The character string of justice, generally one section of random number.Router receives first comprising certification token sent from certificate server
Certification page information.Router sends the first certification page information to target terminal, and target terminal is believed according to the first certification page
Breath display executes the first certification page of the first authentication operation for user, interconnects so that target terminal be made to access from current request
The page jump of net is to the first certification page.
As an alternative embodiment, it includes: that router receives that router, which sends authentication information to target terminal,
Self-certified server send include for authenticate connection certification link information, for password authentication password authentication information with
Second certification page information of default advertising information;Router sends the second certification page information to target terminal, wherein target
Terminal shows the second certification page that the second authentication operation is executed for user according to the second certification page information, wherein second
Authentication operation includes the certification attended operation that user carries out according to certification link information, and user carries out according to password authentication information
Password authentication operation and user check operation to what default advertising information was checked, wherein router forwarding the second request life
Enabling to certificate server includes: that router forwards the corresponding certification password of password authentication information to certificate server, wherein certification
Server judges whether target terminal passes through certification according to certification password, obtains authentication result, and returns for indicating certification knot
Fruit prompts the information of the page to router;Router, which is sent, prompts the information of the page to target terminal, wherein target terminal root
According to the information display reminding page of the prompt page, different authentication modes is provided for the user of different rights to realize.
Router can pass through the certification that target terminal access preset webpage carries out to the certification of target terminal for user, than
Such as, which is the page that businessman launches advertisement.Mouth for authenticating the certification link information of connection, for password authentication
Authentication information and default advertising information is enabled to be stored in advance in certificate server, router reception is sent from certificate server
Including authenticating link information, the second certification page information of password authentication information and default advertising information, router sends second
Certification page information is to target terminal, wherein target terminal is shown according to the second certification page information executes second for user
Second certification page of authentication operation, second certification page include certification connection, as one group of data of certification password and wide
Accuse the page.User executes the second authentication operation by the second certification page, wherein the second authentication operation includes user according to certification
The certification attended operation that link information carries out, user need to click the connection of the certification in the second certification page, could complete online
Certification.After user clicks certification connection, user carries out password authentication operation according to password authentication information, obtains certification password,
Certification password is returned into router and certificate server, certificate server judges the certification to target terminal by the certification password
Whether succeed, obtain authentication result, and returns to information for indicating the prompt page of authentication result to router, to prompt to use
Whether family succeeds to the certification of target terminal.Router sends the information of the prompt page to target terminal, and target terminal is according to mentioning
Show the information display reminding page of the page, when prompt page can show the advertisement that other businessmans launch to user, thus real
Show and advertisement has been promoted while being authenticated to target terminal, increased the propaganda strength of advertisement, has realized as not
User with permission provides different authentication modes.
As an alternative embodiment, after router sends the second certification page information to target terminal, it should
The authentication method of wireless network further include: in the case where target terminal installs default application, router receives whole from target
The preset data of the default application sent is held, and using preset data as the second request command, wherein if target terminal does not have
The default application of installation, when user carries out certification attended operation according to certification link information, target terminal is to default application execution
Installation.
Router can carry out the certification of target terminal for user by target terminal in locally-installed default application
Certification.After router sends the second certification page information to target terminal, target terminal is aobvious according to second certification page
Show the second certification page, which includes certification connection, authenticates connection request invocation target terminal locally-installed
Default application.In the case where target terminal installs default application, target terminal sends the default of default application to router
Data receive the present count sent from target terminal as the second request command for requesting access to internet, router
According to.If target terminal is fitted without default application, when user carries out certification attended operation according to certification link information, pass through
The certification connection of second page jumps to the installation page of default application automatically, and target terminal is answered by the installation page default
With executing installation.This it is default apply after locally-installed success, call the default application, it is default to apply after called
Preset data is returned as the second request command to router, and then realizes the certification to target terminal, is realized by default
Service on net is provided using for user, realizes and provides different authentication modes for the user of different rights.
As an alternative embodiment, the second certification page includes the link verified by presetting account number,
After router sends the second certification page information to target terminal, the authentication method of the wireless network further include: router connects
It receives from target terminal second request command as obtained from presetting the certification attended operation that account number is attached.
Router can authenticate the certification of target terminal by default account number.Router can be by default account number pair
The white list of router is added in the software answered, and the default corresponding software of account number is allowed to pass through router access internet, Huo Zheyun
Perhaps the webpage of the default corresponding software of account number is accessed.Second certification page includes the link verified by presetting account number.
After router sends the second certification page information to target terminal, target terminal is shown according to the second certification page information
Second certification page, target terminal execute certification attended operation in the second certification page by default account number, send to router
Second request command.
As an alternative embodiment, default account number includes the account number of default social software or the account of default website
Number, router receive from target terminal according to certification attended operation obtain default verification information include: router receive come
From target terminal second request command as obtained from presetting the account number of social software and execute certification attended operation, or pass through
The account number of default website executes the second request command obtained from certification attended operation.
Router can authenticate the certification of target terminal by the account number of social software.Router can will be social
The white list of router is added in software, allows social software by router access internet, or to allow to access the social activity soft
The webpage of part.Second certification page includes the link verified by the account number of social software.Second is sent in router to recognize
After demonstrate,proving page info to target terminal, target terminal shows the second certification page, target according to the second certification page information
Terminal executes certification attended operation in the second certification page by the account number of social software, sends the second request life to router
It enables.
Router can also authenticate the certification of target terminal by presetting the account number of website.Second authentication page bread
Include the link verified by the account number for presetting website.Router send the second certification page information to target terminal it
Afterwards, target terminal shows the second certification page, the account number that target terminal passes through default website according to the second certification page information
Certification attended operation is executed in the second certification page, sends the second request command to router.
Optionally, presetting account number is WeChat accounts, and user clicks " verifying using WeChat accounts in the second certification page
The link of net ", then the second certification page jumps to the WeChat accounts of network provider, user's follow the WeChat public platform or clothes
After business number, the button of " determining online " for providing in the WeChat accounts is clicked, by verification information return authentication server, by recognizing
Card server is authenticated.Other than wechat, the default corresponding software of account number can also be QQ application, microblogging, facebook
(Facebook) etc..In addition, default account number can also be the account number of default website, for example, exempting from if it is what Meituan website provided
Take wireless Internet services, is verified then can set using Meituan account number;If by go where website provide free nothing
Line service on net, then can set use goes where account number is verified, so as to easily to the member of default website
Service on net is provided, or provides service on net for registration user.
As an alternative embodiment, this is wireless after router sends authentication success message to target terminal
The authentication method of network further include: router sends authentication information to target terminal every preset time, wherein target terminal is every
The page jump of the secondary internet after receiving authentication information, accessed from target terminal to the page comprising authentication information,
The authentication operation that user executes according to authentication information is received, and third request command is sent to router according to authentication operation;Road
Judge whether target terminal passes through certification according to third request command by device;And if router is sentenced according to third request command
Disconnected target terminal out sends authentication success message to target terminal by certification, router again, wherein target terminal is again
It receives authentication success message and accesses internet again later.
The embodiment can provide different access authorities for the user of different authentication mode, router send certification at
After function information to target terminal, router every preset time send authentication information to target terminal with to target terminal again
It is authenticated, that is, providing the service on net of preset time for user, needs to jump to certification page again more than preset time
It is authenticated.Target terminal every time after receiving authentication information, the page jump of the internet accessed from target terminal to
The page comprising authentication information receives user's authentication operation according to performed by authentication information again, and is sent out according to authentication operation
Send third request command to router;Router judges whether target terminal passes through certification according to third request command;If road
Target terminal is judged by certification according to third request command by device, router sends authentication success message to target end again
End, wherein target terminal accesses internet after receiving authentication success message again again.For example, using advertisement is received
Authentication mode provide the service on net of certain time for user, need to jump to advertisement page again more than the time and be tested
Card can obtain permanent access authority using the user that predetermined software application or default account number are authenticated.
As an alternative embodiment, router judges target terminal according to the presupposed information in the first request command
It whether include: that router sends presupposed information in the first request command to certificate server by certification, wherein authentication service
Device judges whether certificate server preserves the presupposed information in the first request command;If certificate server judges certification clothes
Business device preserves the presupposed information in the first request command, and router receives the authentication success message sent from certificate server
To determine that router judges that target terminal passes through certification according to the presupposed information in the first request command.
The MAC Address of the terminal by certification is saved in certificate server.Router sends the MAC Address of target terminal extremely
Certificate server, if certificate server is judged to preserve the MAC Address of the target terminal, direct return authentication is successfully believed
Breath is to determine that router judges that target terminal passes through certification according to the MAC Address of the target terminal.Router adds the MAC Address
Enter local white list, is readily achieved certification online.
As an alternative embodiment, this is wireless after router sends authentication success message to target terminal
The authentication method of network further include: router obtains the presupposed information in the first request command;Router sends the first request life
Presupposed information in order is to certificate server, wherein certificate server save presupposed information in the first request command.
After router sends authentication success message to target terminal, target terminal is obtained in router by certification
Net permission.The MAC Address of the available target terminal of router, router send MAC Address and to certificate server and save.
Technical solution of the present invention is illustrated below with reference to preferred embodiment.
This embodiment offers a kind of rapid authentication cut-in methods of router.In this embodiment, router is wireless
Router, is not provided with password, and target terminal can be client device.
Target terminal is after connecting wireless router, if necessary to need to target by router access internet
Terminal is authenticated, and specific step is as follows for certification: target terminal sends the request command for accessing internet to router,
For example, sending the access request order for accessing the webpage of internet.Router is being received for accessing asking for internet
After asking order, router judges whether target terminal passes through according to the data frame of the request command for accessing internet and recognizes
Card.If the target terminal has passed through certification, router allows target terminal to access Internet resources;If target terminal
Not over certification, then the request command for being used to access internet is sent to certificate server by router, and certificate server exists
After receiving the request command for accessing internet, to router return authentication information, router will include certification letter
The certification page information of breath is back to target terminal;Target terminal shows certification page, Yong Hutong according to the certification page information
The authentication operation that the certification page executes certificate server requirement on a target terminal is crossed, obtains authentication operation information, and again
The request command for being used to access internet with authentication operation information is sent to router.Router is receiving this with recognizing
After the request command for accessing internet of card operation information, to certificate server authentication verification operation information, if recognized
Server is demonstrate,proved to the authentication operation information by certification, then target terminal is allowed to access Internet resources.
Router judges whether target terminal passes through certification according to the data frame for the request command that accesses internet can
Judge that target terminal by certification, judges target end in the MAC Address according to target terminal with the MAC Address according to target terminal
After end is by certification, router the MAC Address of target terminal is added in the white list of router.
In actual operation, user accesses the default website of internet in target terminal by browser, for example, this is default
Website is the website of network address " www.baidu.com ".Access request order for accessing internet first passes around router, road
Judge whether the target terminal obtains access authority by the information in the request command for accessing internet by device, for example,
Router judges whether the target terminal obtains access authority according to the MAC Address of target terminal.If the target terminal is
Through obtaining the terminal device of access authority, then router is normally the webpage that target terminal oriented users request access to, if should
Target terminal is unauthenticated, then the request command for being used to access internet is sent to certificate server, certificate server according to
Information for accessing the request command of internet judges whether the user of target terminal is authorized user, if target terminal
User is authorized user, then certificate server is preset to router return authentication user information, router by the target terminal
Information is added in the local authorised device database of router, and the webpage that oriented users request access to, wherein this is local
Authorisation device database saves the information for having passed through the terminal of certification.If certificate server is according to for accessing internet
The information of request command is judged as that the user of target terminal is unauthorized user, needs to authenticate the target terminal, then recognizes
It demonstrate,proving server and returns to the certification page comprising certification token to router, certification token is generally one section of random number,
Router requests access to page jump to the certification page to target terminal for user's.
Optionally, which includes that user is required to access ad hoc networks by target terminal to the authentication mode of target terminal
Page can be used for launching advertisement to the user of target terminal, for example, target terminal is first connected to router, and request access to
When internet web page, router will be to target terminal return authentication page info, and target terminal is aobvious according to the certification page information
Show certification page, which includes certification connection, as the one group of data and advertisement page of certification password.User needs a little
The certification connection hit in the certification page could complete network access authentication.After user clicks certification connection, target terminal will be recognized
It demonstrate,proves password and returns to router and certificate server, certificate server judges whether target terminal authenticates by the certification password
Function, and the prompt page is returned, to prompt the success of ownership goal terminal authentication or authentification failure.In target terminal display reminding page
While face, other advertisements can be shown to user.
Optionally, for the router of the embodiment to the target terminal return authentication page, which includes certification connection,
Some default application of connection request invocation target terminal local is authenticated, if target terminal is fitted without the default application,
The installation page for jumping to application automatically according to certification connection, executes installation to default application (APP).To default application execution
After installation, the default application is called, preset data is returned to as authentication information to router, is recognized according to preset data completion
Card.The embodiment can be used for providing service on net to the user of default application.
Optionally, which allows user to recognize by the acquisition of social software account number for what is authenticated to target terminal
Demonstrate,prove information.White list can be added in social software by router, and social software is allowed to pass through router access internet, Huo Zheyun
Perhaps the webpage of the social software is accessed.For user when needing to access internet, router orders the request for being used to access internet
Order is sent to certificate server, and certificate server is to router return authentication information, and router is by the certification comprising authentication information
Page info returns to target terminal;Target terminal shows certification page according to certification page information.The certification page includes making
The link verified with social software account number, user, which can choose, carries out network access authentication using self-designed software account number,
For example, user clicks the link " using WeChat accounts verifying online ", then the WeChat accounts of network provider, Yong Hu are jumped to
After paying close attention to wechat public platform or service number, " determining online " button provided in the WeChat accounts is provided, authentication information is returned
It is back to certificate server, is authenticated by certificate server, to realize the purpose of target terminal access internet.In addition to micro-
Except letter, social software can also be the softwares such as QQ application, microblogging, Facebook.In addition, the authentication mode, which also can choose, to be made
It is authenticated with the account number of default website, for example, the free wireless networking that the account number of default website is provided if it is Meituan website
Service, is authenticated then can set using Meituan account number;If by go where website provide free wireless Internet services,
Use can so be set and go where account number is authenticated, this method is used in which can be convenient to the member of default website or registration
Family provides service on net.
On the other hand, different access authorities can be provided for the user of different authentication mode.For example, if using to mesh
The mode that the user of mark terminal launches advertisement authenticates, and provides the service on net of preset time for the user, when being more than default
Between after, target terminal, which needs to jump to advertisement page again, to be authenticated.It is default by some of invocation target terminal local
The mode of application authenticate or can provide in such a way that social software account number authenticates target terminal for user
The permission permanently surfed the Internet.For example, can store the MAC Address of the target terminal by certification in certificate server, target is whole
After router is by authenticating and obtaining permanent access authority, router uploads to the MAC Address of the target terminal at end
Certificate server simultaneously saves, and when needing to surf the Internet or connect other routers the target terminal next time, router sets the terminal
Standby MAC Address is sent to certificate server, certificate server if it is judged that the MAC Address has obtained permanent access authority,
Then direct return authentication success message, meanwhile, the MAC Address is added in local white list router, easily to target end
Certification online is completed at end, realizes the certification of wireless network to the certification of target terminal by router, it is multiple to avoid user
The cumbersome identifying procedure of input authentication password, to achieve the effect that the identifying procedure of simplified wireless network.
In the embodiment, a variety of authentication modes can be used simultaneously, also can choose using a kind of authentication mode, for example,
When free nets supplier need to promote it is default in application, can by way of the default application of invocation target terminal local into
Row certification is exempted from that is, whether verifying target terminal is mounted with the default application of network provider if target terminal is fitted without
The default application for taking network provider then jumps to the page of the downloading default application, by the page to default application execution
It downloads and installs.To the default application complete that network could be accessed after installation.For another example, when free nets supplier needs
When forcing user's browse advertisements to withdraw network cost, can only it provide by the way of launching advertisement to the user of target terminal
It is authenticated, and the time of access authority is shortened, optionally, user needs to jump again for 5 minutes by the every online of target terminal
Advertisement page is gone to be authenticated.The embodiment is selected according to the demand of itself suitably to target terminal by network provider
Authentication mode, realize to application or product popularization.
Fig. 2 is the flow chart of the authentication method of wireless network according to a second embodiment of the present invention.As shown in Fig. 2, the nothing
The authentication method of gauze network the following steps are included:
Step S201, target terminal send the first request command for accessing internet.
First request command is the first request command for requesting access to internet web page, first request command with
The form of data frame is sent to router, includes the information of target terminal in first request command, for example, the first request life
Enable the MAC Address comprising target terminal.
First request command is forwarded to certificate server by step S202, router.
Router receives the first request command.Optionally, it in the case where target terminal is not over certification, jumps to and recognizes
Server is demonstrate,proved, router sends the first request command to certificate server.
Step S203, certificate server judge whether target terminal has access authority according to the first request command, are sentenced
Disconnected result.
On certificate server judges whether target terminal has after receiving the first request command, according to the first request command
Net permission, obtains judging result.It optionally, include user information in the first request command, certificate server is according to the first request
User information in order judge target terminal whether be authorized user terminal, if certificate server according to first request order
User information in order judges that target terminal is the terminal of authorized user, obtains the judgement knot that target terminal has access authority
Fruit, if certificate server according to the user information in the first request command judges target terminal not and be the end of authorized user
End, obtaining target terminal does not have the judging result of access authority.
Step S204, certificate server send judging result to router.
Judge whether target terminal has access authority according to the first request command in certificate server, obtain judging result it
Afterwards, certificate server sends judging result to router.When judging result is that target terminal does not have access authority, certification clothes
Business device also returns to the information comprising the certification page for authenticating token to router.
Step S205, when judging result is that target terminal has access authority, router return user requests access to mutual
The webpage of networking.
When judging result is that target terminal has access authority, router returns to the net for the internet that user requests access to
Page allows target terminal to surf the Internet.
Step S206, when judging result is that target terminal does not have access authority, router return authentication page info.
When judging result is that target terminal does not have access authority, router returns to the certification authenticated to target terminal
Page info, the certification page information include certification token.
Step S207, target terminal show certification page according to certification page information, receive user and execute to certification page
Authentication operation, and the second request command is sent to router according to authentication operation.
When judging result is that target terminal does not have access authority, target terminal shows authentication page according to certification page information
Face, user execute authentication operation to certification page, which includes that user connects according to the certification that certification link information carries out
Operation is connect, the password authentication operation and user that user carries out according to password authentication information are looked into what default advertising information was checked
See operation, target terminal receives the authentication operation that user executes certification page, and sends the second request according to authentication operation and order
It enables to router.
Step S208, router forward the second request command to certificate server.
Router forwards the second request command to certificate server, which includes certification token.
Step S209, certificate server judge whether target terminal passes through certification according to the second request command.
After certificate server early receives the second request command, judge whether target terminal leads to according to the second request command
Certification is crossed, authentication result is obtained.
Step S210, certificate server, which is returned, judges that target terminal passes through the result of certification according to the second request command.
If certificate server judges target terminal by certification according to the second request command, certificate server is to router
It returns and judges that target terminal passes through the result of certification according to the second request command.
Step S211, router send authentication success message.
Router sends authentication success message to target terminal, and target terminal is allowed to surf the Internet.
The embodiment can provide the mode of a variety of network access authentications for wireless networking user, and eliminate and recognize in progress network
Memory during card and the step of input user name password, the operation of wireless network authentication is simpler convenient, in addition, being
Free wireless network provider provides the method for a kind of convenient distributing network and popularization product, for some in multiple cities
For the company for having more place to need to offer wireless internet services, client can be advantageously connected to it in different location
The wireless network of offer.For example, for the member of hotel chains, online clothes are required at the hotel for moving in different regions
Business, by using the method that wireless network of the invention accesses, member authenticates when first time is using Hotel-Network, is recognizing
The MAC Address that card obtains the target terminal of access authority after will be stored in certificate server, when the member exists next time
When other hotel chains are needed using network, access authority can be directly obtained.And a large amount of partners are possessed for some other
The Internet enterprises at family and member can also use the method for the embodiment of the present invention and provide conveniently freely for its member
Wireless network, for example, Meituan net can be in all cooperation restaurants using the authentication method of the wireless network of the embodiment of the present invention
Its member provide service on net, go where net can its cooperation hotel using the embodiment of the present invention wireless network certification
Method, to use where the client of reserving hotel provides service on net, method through the embodiment of the present invention can also be promoted
Specific advertisement and application.
In this embodiment, certificate server judges whether target terminal has access authority according to the first request command, obtains
To judging result, certificate server sends judging result to router, when judging result is that target terminal has access authority, road
The webpage that the internet that user requests access to is returned to by device, when judging result is that target terminal does not have access authority, router
Return authentication page info, target terminal show certification page according to certification page information, receive user and execute to certification page
Authentication operation, and the second request command is sent to router according to authentication operation, router forwards the second request command to recognizing
Server is demonstrate,proved, certificate server judges whether target terminal passes through certification according to the second request command, and certificate server returns to root
Judge target terminal by certification as a result, router transmission authentication success message, realizes conveniently according to the second request command
The efficiently purpose of wireless network access authentication, improves user experience, has reached the effect of the identifying procedure of simplified wireless network
Fruit.
It should be noted that step shown in the flowchart of the accompanying drawings can be in such as a group of computer-executable instructions
It is executed in computer system, although also, logical order is shown in flow charts, and it in some cases, can be with not
The sequence being same as herein executes shown or described step.
The embodiment of the invention also provides a kind of routers.It should be noted that the router of the embodiment can be used for
Execute the authentication method of the wireless network of the embodiment of the present invention.
Fig. 3 is the schematic diagram of router according to an embodiment of the present invention.As shown in figure 3, the router includes: receiving unit
10, judging unit 20 and the first transmission unit 30.
Receiving unit 10 is asked by what target terminal was sent for requesting access to the first of internet for receiving router
Ask order, wherein router and target terminal are established and be wirelessly connected, and target terminal is terminal to be certified.
Judging unit 20, for judging whether target terminal passes through certification according to the presupposed information in the first request command.
First transmission unit 30, for judging target terminal by recognizing according to the presupposed information in the first request command
Card sends and authenticates successful authentication success message to target terminal to target terminal, and target terminal is successfully believed receiving to authenticate
Internet is accessed after breath.
Optionally, router further include: the second transmission unit, third transmission unit, retransmission unit and the 4th send list
Member.Wherein, the second transmission unit, for whether judging target terminal according to the presupposed information in the first request command in router
After certification, if router judges target terminal not over recognizing according to the presupposed information in the first request command
Card, router send the first request command to certificate server, wherein certificate server judges target according to the first request command
Whether terminal meets preset condition, if certificate server judges that target terminal does not meet default item according to the first request command
Part, certificate server send the authentication information for being authenticated to target terminal to router according to the first request command;The
Three transmission units, for sending authentication information to target terminal, wherein target terminal receives what user executed according to authentication information
Authentication operation, and the second request command is sent to router according to authentication operation;Retransmission unit, for forwarding the second request command
To certificate server, wherein certificate server judges whether target terminal passes through certification according to the second request command;4th sends
Unit sends authentication success message to target terminal for judging target terminal by certification according to the second request command,
After target terminal is by certification, the presupposed information in the first request command is added in the presetting database of router.
Optionally, certificate server judges whether target terminal meets preset condition according to the first request command, the routing
Device further include: processing unit is used for after router sends the first request command to certificate server, if certificate server
Judge that target terminal meets preset condition according to the first request command, the presupposed information in the first request command is added to pre-
If in database, and sending authentication success message to target terminal.
The embodiment makes router reception be used to request access to internet by what target terminal was sent by receiving unit 10
The first request command, wherein router and target terminal, which are established, to be wirelessly connected, and target terminal is terminal to be certified, is passed through
Judging unit 20 judges whether target terminal passes through certification according to the presupposed information in the first request command, sends by first single
Member 30 according to the presupposed information in the first request command judging target terminal by certification, send to target terminal certification at
The authentication success message of function to target terminal, target terminal accesses internet after receiving authentication success message, reaches
Simplify the effect of the identifying procedure of wireless network.
Obviously, those skilled in the art should be understood that each module of the above invention or each step can be with general
Computing device realize that they can be concentrated on a single computing device, or be distributed in multiple computing devices and formed
Network on, optionally, they can be realized with the program code that computing device can perform, it is thus possible to which they are stored
Be performed by computing device in the storage device, perhaps they are fabricated to each integrated circuit modules or by they
In multiple modules or step be fabricated to single integrated circuit module to realize.In this way, the present invention is not limited to any specific
Hardware and software combines.
The foregoing is only a preferred embodiment of the present invention, is not intended to restrict the invention, for the skill of this field
For art personnel, the invention may be variously modified and varied.All within the spirits and principles of the present invention, made any to repair
Change, equivalent replacement, improvement etc., should all be included in the protection scope of the present invention.