CN106453414B - Third party login authentication method, proxy server, client and system - Google Patents

Third party login authentication method, proxy server, client and system Download PDF

Info

Publication number
CN106453414B
CN106453414B CN201611075637.2A CN201611075637A CN106453414B CN 106453414 B CN106453414 B CN 106453414B CN 201611075637 A CN201611075637 A CN 201611075637A CN 106453414 B CN106453414 B CN 106453414B
Authority
CN
China
Prior art keywords
client
authentication
party platform
proxy server
target application
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201611075637.2A
Other languages
Chinese (zh)
Other versions
CN106453414A (en
Inventor
邓海红
张洪
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Maipu Communication Technology Co Ltd
Original Assignee
Maipu Communication Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Maipu Communication Technology Co Ltd filed Critical Maipu Communication Technology Co Ltd
Priority to CN201611075637.2A priority Critical patent/CN106453414B/en
Publication of CN106453414A publication Critical patent/CN106453414A/en
Application granted granted Critical
Publication of CN106453414B publication Critical patent/CN106453414B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0884Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The present invention provides a kind of third party login authentication method, proxy server, client and systems, belong to data communication field, this method comprises: proxy server receives the request for the acquisition third-party platform authenticating address that client is initiated;It is searching acquisition registered in advance with the corresponding docking authentication information;The docking authentication information, the third-party platform authenticating address and proxy server address are sent to the client;Receive the authentication result information generated after responding the login authentication request that the client is sent, the login authentication request carries the target application identification information of the docking authentication information, proxy server address and the client, and the authentication result carries the target application identification information of the client;The authentication result is sent to the client by the target application identification information based on the client.This method can promote the efficiency of Third Party Authentication login.

Description

Third party login authentication method, proxy server, client and system
Technical field
The present invention relates to data communication fields, in particular to a kind of third party login authentication method, agency service Device, client and system.
Background technique
Third Party Authentication logs in the login side as mobile applications prevalences such as website major on existing market and all kinds of APP Formula brings great convenience during Website login or APP for user, avoids in traditional login mode, user Login and next operation must just be can be carried out after new registration in new website or APP.But traditional third party During certification logs in, in order to support Third Party Authentication to log in, website or APP need to log in platform application to Third Party Authentication in advance Account and key are authenticated, brings great inconvenience to the supplier of website or APP.
Summary of the invention
In view of this, the embodiment of the present invention be designed to provide a kind of third party login authentication method, proxy server, Client and system, to promote the efficiency of third party login certification.
In a first aspect, this method is applied to agency's clothes the embodiment of the invention provides a kind of third party login authentication method Business device, comprising: proxy server receives the request for the acquisition third-party platform authenticating address that client is initiated;It searches registered in advance The docking authentication information corresponding with the third-party platform obtained;The docking authentication information, the third-party platform are recognized Card address and proxy server address are sent to the client;It receives the third-party platform and is responding the client transmission Login authentication request after the authentication result information that generates, the login authentication request carries the docking authentication information, generation The target application identification information of server address and the client is managed, the authentication result carries the mesh of the client Mark application identification information;The authentication result is sent to the client by the target application identification information based on the client End.
Second aspect, the embodiment of the invention provides a kind of third party login authentication method, this method is applied to client, It include: the request for initiating to obtain third-party platform authenticating address to proxy server;It is registered in advance to obtain the proxy server Docking authentication information corresponding with the third-party platform, the third-party platform authenticating address and the proxy server obtained Location;Send login authentication request to the third-party platform, login authentication request carry the docking authentication information with And the target application identification information of the client;Target application identification information based on the client, obtains the third The authentication result generated after the request of login authentication described in square platform response.
The third aspect, the embodiment of the invention provides a kind of proxy servers, comprising: receiving unit, for receiving client The request for the acquisition third-party platform authenticating address that end is initiated;Searching unit, for search acquisition registered in advance with described The corresponding docking authentication information of tripartite's platform;Transmission unit, for authenticating the docking authentication information, the third-party platform Address and proxy server address are sent to the client;The receiving unit is also used to receive the third-party platform and exists The authentication result information generated after the login authentication request that the client is sent is responded, the login authentication request carries The target application identification information of docking authentication information, proxy server address and the client is stated, the authentication result is taken Target application identification information with the client;The transmission unit is also used to the target application based on the client The authentication result is sent to the client by identification information.
Fourth aspect, the embodiment of the invention provides a kind of clients, comprising: acquiring unit is used for proxy server Initiate the request of acquisition third-party platform authenticating address;The acquiring unit is also used to obtain the proxy server and infuses in advance Docking authentication information corresponding with the third-party platform, the third-party platform authenticating address and the proxy server that volume obtains Address;Transmission unit, for sending login authentication request to the third-party platform, the login authentication request carries described Dock the target application identification information of authentication information and client;The acquiring unit is also used to based on the client Target application identification information obtains the third-party platform and responds the authentication result generated after the login authentication request.
5th aspect, the embodiment of the invention provides a kind of third party login system, which includes above-mentioned fourth aspect Client, destination application server and the above-mentioned third aspect proxy server;
The application server is used for, and Xiang Suoshu proxy server is registered, and is based on receiving client initiation After the access request that third-party platform logs in, Xiang Suoshu client returns to proxy server address;And from the proxy server The authentication result information of third-party platform is received, and the authentication result information is sent to the client.
Compared with prior art, the third party login authentication method of various embodiments of the present invention proposition, proxy server, client End and system obtain proxy server in advance to the corresponding with the third-party platform of third-party platform registration acquisition by client Authentication information is docked, then sends the mode that third-party platform carries out login authentication for the docking authentication information, so that the visitor Family end does not need still the user of client can be allowed in the visitor to third-party platform login authentication information registered in advance in advance It realizes that Third Party Authentication logs on the end of family, reduces client and need the Jin Erwei the third-party platform authentication registration account the step of The application provider of client provides conveniently third party login and authenticates, and improves the efficiency of Third Party Authentication login.
Detailed description of the invention
The schematic diagram that Fig. 1 is server provided in an embodiment of the present invention, user terminal, third-party platform interact;
Fig. 2 is a kind of flow chart for third party login authentication method that first embodiment of the invention provides;
Fig. 3 is a kind of flow chart for third party login authentication method that second embodiment of the invention provides;
Fig. 4 is a kind of flow chart for third party login authentication method that third embodiment of the invention provides;
Fig. 5 is a kind of flow chart for third party login authentication method that fourth embodiment of the invention provides;
Fig. 6 is a kind of timing diagram for third party login Verification System that fifth embodiment of the invention provides;
Fig. 7 is a kind of structural block diagram for proxy server that sixth embodiment of the invention provides;
Fig. 8 is a kind of structural block diagram for proxy server that seventh embodiment of the invention provides;
Fig. 9 is a kind of structural block diagram for client that eighth embodiment of the invention provides;
Figure 10 is a kind of structural block diagram for client that ninth embodiment of the invention provides.
Specific embodiment
Below in conjunction with attached drawing in the embodiment of the present invention, technical solution in the embodiment of the present invention carries out clear, complete Ground description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Usually exist The component of the embodiment of the present invention described and illustrated in attached drawing can be arranged and be designed with a variety of different configurations herein.
As shown in Figure 1, being user terminal 100 provided in an embodiment of the present invention, proxy server 200, target application service The schematic diagram mutually interacted between device 300 and third-party platform 400 by network 500.The proxy server 200 can It is communicated to connect with being established by network 500 and one or more user terminals 100, to carry out data communication or interaction, certainly, generation Data communication can also be carried out by network 500 and destination application server 300 by managing server 200.One or more user Terminal 100 can be established by network 500 and third-party platform 400 and destination application server 300 and be communicated to connect, to carry out Data communication or interaction.Third-party platform 400 can be established by network 500 and proxy server 200 and be communicated to connect, with into Row data communication or interaction.The user terminal 100 can be PC (personal computer, PC), plate electricity Brain, smart phone, personal digital assistant (personal digital assistant, PDA) etc..In the present embodiment, user Client can be set in terminal 100, will be responsive to the acquisition third-party platform certification ground that third party login authentication event obtains The request of location is sent to proxy server 200.The proxy server 200 can be network server, database server etc., Can in advance in major common third-party platform authentication registration account, with obtain third-party platform distribution verifying account and Authentication secret.The third-party platform 400 is also possible to network server, data server etc., can carry out Third Party Authentication.
First embodiment
Fig. 2 is please referred to, Fig. 2 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party Method is applied to proxy server.The described method includes:
Step S110: the request for the acquisition third-party platform authenticating address that client is initiated is received.
Wherein, client end response sends to proxy server after third party login authentication event and obtains third-party platform The request of authenticating address.The third party login authentication event can be the user of the client in the process using client In, the thing that is triggered when needing by application in third party login mode (such as QQ, microblogging, wechat etc.) Lai Denglu client Part.The request is triggered by the user of client, is also possible to client triggering when being installed.It is appreciated that described ask The identification information for carrying third-party platform is sought, so as to proxy server identification.For example, user wants to carry out by way of QQ Tripartite logs in, then the request carries the identification information of third-party platform corresponding with QQ.
Step S120: the docking authentication information corresponding with the third-party platform of acquisition registered in advance is searched.Third party Platform agent server, can and type common in multiple major applications in advance before third party login authentication event is triggered Different third-party platform (such as with QQ, microblogging, the corresponding third-party platform such as wechat) is registered, to obtain described The verifying account and authentication secret of tripartite's platform distribution, using these verifying accounts and authentication secret as docking authentication information It is stored in local.
After proxy server receives the request of acquisition third-party platform authenticating address of client transmission, looked into locally Look for the docking authentication information of corresponding third-party platform.It should be noted that the proxy server the third-party platform into When row registration, the third-party platform is stored with the network address of the proxy server, and using proxy server address as Loopback address, so that information relevant to the proxy server is sent to the proxy server.
Step S130: the docking authentication information, the third-party platform authenticating address and proxy server address are sent out Give the client.
Step S140: receive what the third-party platform generated after responding the login authentication request that the client is sent Authentication result information, the login authentication request carry the docking authentication information, proxy server address and the visitor The target application identification information at family end, the authentication result carry the target application identification information of the client.
The third-party platform is received after responding the login authentication request that the client is sent, it is raw to execute authentication operation At authentication result information.
The authentication result includes that third party login authenticates successfully or third party login authentification failure.Certainly, described to recognize Card result also carries the target application identification information of the client, and the target application identification information of the client can be The address of the client target application to be accessed, the third-party platform or the proxy server can be by described The address of the client target application to be accessed sends information to the target application of the client.
It is sent to it is worth noting that the authentication result is based on the proxy server address by the third-party platform The proxy server.
Step S150: the authentication result is sent to the visitor by the target application identification information based on the client Family end.
A kind of third party login authentication method provided in an embodiment of the present invention, is receiving client by proxy server When the request of the acquisition third-party platform authenticating address of transmission, the docking authentication information stored in advance is sent to client, visitor Family end group sends login authentication request to third-party platform in docking authentication information, so that third-party platform is sent based on client Login authentication request after generate authentication result information, and authentication result information is sent to proxy server, proxy server Transmit verification result to client.So that client does not need in advance to third-party platform login authentication letter registered in advance Breath can still allow the user of client to realize that Third Party Authentication logs on the client, reduce client and need in third The step of Fang Pingtai authentication registration account, and then provide conveniently third party login for the application provider of client and recognize Card improves the efficiency of Third Party Authentication login.
Second embodiment
Fig. 3 is please referred to, Fig. 3 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party Method is applied to proxy server.The described method includes:
Step S210: the request for the acquisition third-party platform authenticating address that client is initiated is received.
Step S211: the parsing request for obtaining third-party platform authenticating address, the target for obtaining the client are answered With identification information, the target application mark letter of the client is searched in pre-stored registered application identification information Breath executes docking corresponding with the third-party platform certification letter for searching acquisition registered in advance if searched successfully Breath.
The proxy server can respond the registration request of the client, and to client registers when is used Target application identification information saved.When the proxy server is recognized in the acquisition third-party platform for receiving client initiation When demonstrate,proving the request of address, the request for obtaining third-party platform authenticating address is parsed, the visitor for initiating the request is obtained The target application identification information at family end.The proxy server searches institute in pre-stored registered application identification information State the target application identification information of client.If searching successfully, indicate the target application of the client in the agency Server is registered, then executes subsequent step;If lookup is unsuccessful, the request institute for obtaining third-party platform authenticating address is indicated The target application of the client of carrying does not have the qualification for obtaining docking authentication information corresponding with third-party platform.
Step S220: the docking authentication information corresponding with the third-party platform of acquisition registered in advance is searched.
Step S230: the docking authentication information, the third-party platform authenticating address and proxy server address are sent out Give the client.
Step S240: receive what the third-party platform generated after responding the login authentication request that the client is sent Authentication result information, the login authentication request carry the docking authentication information, proxy server address and the visitor The target application identification information at family end, the authentication result carry the target application identification information of the client.
Step S250: the authentication result is sent to the visitor by the target application identification information based on the client Family end.
A kind of third party login authentication method provided in an embodiment of the present invention, is receiving client by proxy server When the request of the acquisition third-party platform authenticating address of initiation, the target application mark for initiating the client of the request is obtained Know information, and whether the target application identification information for searching the client is to have been registered on proxy server in advance Application identification information, so that it is determined that whether the target application of client has acquisition corresponding with third-party platform docking certification The qualification of information ensure that the application provider for client provides conveniently third party login certification, improve the While the efficiency of tripartite's login authentication, the safety of client is also ensured.
3rd embodiment
Fig. 4 is please referred to, Fig. 4 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party Method is applied to client.The described method includes:
Step S310: it initiates to obtain the request of third-party platform authenticating address to proxy server.
Certainly, client can be initiated to destination application server in advance after in response to third party login authentication event Based on the access request of third-party platform certification, the proxy server address that the destination application server returns is received.
Proxy server address of the client based on return initiates to obtain third-party platform authenticating address to proxy server Request.
In the present embodiment, third party login authentication event can use the client in user, and third party is selected to step on Client is triggered when record certification.It is also possible to user when authenticating using other target application selection third party logins, His target application triggers client.
Step S320: the docking corresponding with the third-party platform for obtaining proxy server acquisition registered in advance is recognized Demonstrate,prove information, the third-party platform authenticating address and proxy server address.
As an implementation, client can receive the proxy server response acquisition third-party platform and recognize Demonstrate,prove address request return, in the access authentication information of the proxy server acquisition registered in advance with the third-party platform Corresponding target access authentication information.As another embodiment, it can be embedded in advance in the development process of client The docking authentication information of proxy server acquisition registered in advance, or after client installs, so that it may to proxy server Get the docking authentication information of proxy server acquisition registered in advance, so as in client in use in response to third When square login authentication event, information needed locally directly can be being obtained, to promote the whole efficiency of third party login certification.Make For a kind of embodiment, the client end response can first be sent to third-party platform pre- after third party login authentication event First login authentication request, the preparatory login authentication request carry the client and step in advance to what third-party platform registration obtained Authentication information is recorded, i.e. client is first registered to the third-party platform, to obtain authentication result.The authentication result includes recognizing It demonstrate,proves successfully and authentification failure.Respond what the preparatory login authentication request returned when client receives the third-party platform When authentication failure message, the request for obtaining third-party platform authenticating address is initiated to proxy server.When client receives institute When stating third-party platform and responding the authentication success message that the preparatory login authentication request returns, process terminates.
S330: Xiang Suoshu third-party platform of step sends login authentication request, and the login authentication request carries described Dock the target application identification information of authentication information and the client.
Wherein, the docking authentication information includes the third when proxy server is registered to the third-party platform The verifying account and authentication secret of Fang Pingtai distribution, the target application identification information of the client are that the client will visit The address for the target application asked.
Step S340: the target application identification information based on the client obtains the Third Party Authentication platform response The authentication result generated after the login authentication request.
Since login authentication request carries the verifying account and authentication secret of third-party platform distribution, the third party Platform can generate authentication result, the certification based on the verifying account and authentication secret after response login authentication request As a result it is authenticated successfully or third party login authentification failure comprising third party login.
In addition, the login authentication request also carries the target application identification information of the client.
As an implementation, the authentication result that the client obtains, can be by the third-party platform base It is transmitted directly in the target application identification information (i.e. the address of the client target application to be accessed) of the client described Application server, then the client is sent to by the application server.A kind of third party provided in an embodiment of the present invention steps on Authentication method is recorded, through client end response when third party login authentication event, it is flat to third party in advance to obtain proxy server The docking authentication information corresponding with the third-party platform that platform registration obtains, then send third party for the docking authentication information and put down Platform carries out the mode of login authentication, so that the client does not need in advance to third-party platform login authentication letter registered in advance Breath can still allow the user of client to realize that third party login authenticates on the client, reduce client and need in third The step of Fang Pingtai authentication registration account, and then provide conveniently third party login for the application provider of client and recognize Card improves the efficiency of third party login certification.
Fourth embodiment
Fig. 5 is please referred to, Fig. 5 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party Method is applied to client.The described method includes:
Step S410: it initiates to obtain the request of third-party platform authenticating address to proxy server.
Step S420: the docking corresponding with the third-party platform for obtaining proxy server acquisition registered in advance is recognized Demonstrate,prove information, the third-party platform authenticating address and proxy server address.
S430: Xiang Suoshu third-party platform of step sends login authentication request, and the login authentication request carries described Dock the target application identification information of authentication information and the client.
Step S440: the target application identification information based on the client obtains the Third Party Authentication platform response The authentication result generated after the login authentication request, the authentication result are sent to the application by the proxy server and take Business device, then the client is sent to by the application server.
Likewise, the login authentication request carries the target application identification information of the client, the mesh of client Mark application identification information can be the address of the target application of the client.
The authentication result is generated and is first sent to described after responding the login authentication request by the third-party platform Proxy server.The authentication result that the client obtains, the target by the proxy server based on the client Application identification information, i.e., the target application address of the described client are sent to the application server, then by the application service Device is sent to the client.
As an implementation, the identification information of the client can also be the target application of the client in institute Account title when proxy server is registered is stated, the proxy server is also based on the account title of the client The verification result is sent to the client.
5th embodiment
A kind of third party login Verification System provided in an embodiment of the present invention, the system include client, target application clothes Business device and proxy server.Fig. 6 is please referred to, the method applied to the system includes:
Step S510: the client initiates the visit authenticated based on the third-party platform to the destination application server Ask request.
Step S520: the application server receives the access request, and sends proxy server to the client Address.
Step S530: the client is initiated to obtain the request of third-party platform authenticating address to the proxy server.
Step S540: the docking corresponding with the third-party platform that the proxy server searches acquisition registered in advance is recognized Demonstrate,prove information.
Step S550: the proxy server is by the docking authentication information, the third-party platform authenticating address and generation Reason server address is sent to the client.
Step S560: the client sends login authentication request, the login authentication request to the third-party platform Carry the target application identification information of the docking authentication information, the proxy server address and the client.
Step S570: the third-party platform generates certification knot after responding the login authentication request that the client is sent The authentication result information is sent to the proxy server by fruit information.
Step S580: the proxy server receives the authentication result information, and the authentication result information is sent To the application server.
Step S590: the application server receives the authentication result information, and the authentication result is sent to institute State client.
Sixth embodiment
Fig. 7 is please referred to, Fig. 7 is a kind of structural block diagram of proxy server 600 provided in an embodiment of the present invention.It below will be right Structural block diagram shown in Fig. 7 is illustrated, and shown proxy server 600 includes:
Receiving unit 610, the request of the acquisition third-party platform authenticating address for receiving client initiation;
Searching unit 620, for searching the docking authentication information corresponding with the third-party platform of acquisition registered in advance;
Transmission unit 630 is used for the docking authentication information, the third-party platform authenticating address and proxy server Address is sent to the client;
Receiving unit 610 is also used to, and is received the third-party platform and is asked in the login authentication for responding the client transmission The authentication result information generated after asking, the login authentication request carry the docking authentication information, proxy server address And the target application identification information of the client, the authentication result carry the target application mark letter of the client Breath;
Transmission unit 630 is also used to, and the target application identification information based on the client sends the authentication result To the client.
The present embodiment realizes the process of respective function to each functional unit of proxy server 600, refers to above-mentioned Fig. 1 extremely Content described in embodiment illustrated in fig. 6, details are not described herein again.
7th embodiment
Fig. 8 is please referred to, Fig. 8 is a kind of structural block diagram of proxy server 700 provided in an embodiment of the present invention.It below will be right Structural block diagram shown in Fig. 8 is illustrated, and shown proxy server 700 includes:
Receiving unit 710, the request of the acquisition third-party platform authenticating address for receiving client initiation;
Searching unit 720 obtains the client for parsing the request for obtaining third-party platform authenticating address Target application identification information searches the target application mark of the client in pre-stored registered application identification information Know information, if searched successfully, executes the docking corresponding with the third-party platform for searching acquisition registered in advance and recognize Demonstrate,prove information;
Searching unit 720 is also used to, and searches docking corresponding with the third-party platform certification letter of acquisition registered in advance Breath;
Transmission unit 730 is used for the docking authentication information, the third-party platform authenticating address and proxy server Address is sent to the client;
Receiving unit 710 is also used to, and is received the third-party platform and is asked in the login authentication for responding the client transmission The authentication result information generated after asking, the login authentication request carry the docking authentication information, proxy server address And the target application identification information of the client, the authentication result carry the target application mark letter of the client Breath;
Transmission unit 730 is also used to, and the target application identification information based on the client sends the authentication result To the client.
The present embodiment realizes the process of respective function to each functional unit of proxy server 700, refers to above-mentioned Fig. 1 extremely Content described in embodiment illustrated in fig. 6, details are not described herein again.
8th embodiment
Fig. 9 is please referred to, Fig. 9 is a kind of structural block diagram of client 800 provided in an embodiment of the present invention.It below will be to Fig. 9 Shown in structural block diagram be illustrated, shown client 800 includes:
Unit 810 is initiated, for initiating the request of acquisition third-party platform authenticating address to proxy server;
Acquiring unit 820, for obtaining the corresponding with the third-party platform of proxy server acquisition registered in advance Docking authentication information, the third-party platform authenticating address and proxy server address;
Transmission unit 830, for sending login authentication request to the third-party platform, the login authentication request is carried There is the target application identification information of the docking authentication information and the client;
The acquiring unit 820 is also used to the target application identification information based on the client, obtains the third party Authentication platform responds the authentication result generated after the login authentication request.
Wherein, as an implementation, the acquiring unit 820 may include receiving subelement 821, come for receiving The certification generated from after the request of login authentication described in the received Third Party Authentication platform response of the destination application server As a result, the authentication result responds life after the login authentication is requested received from the third-party platform by the proxy server At and send, and the target application identification information based on the client carried in the authentication result received is sent to institute State destination application server.
As another embodiment, the client 800 can also include receiving unit 840, for initiating unit Before 810 initiate the request of acquisition third-party platform authenticating address to proxy server, it is based on to destination application server initiation After the access request of third-party platform certification, the proxy server address that the destination application server returns is received.
The present embodiment realizes the process of respective function to each functional unit of client 800, refers to above-mentioned Fig. 1 to Fig. 6 Content described in illustrated embodiment, details are not described herein again.
9th embodiment
Figure 10 is please referred to, Figure 10 is the structural block diagram of client 900 provided in an embodiment of the present invention.It below will be to Figure 10 institute The structural block diagram shown is illustrated, and shown client 900 includes:
Unit 910 is initiated, for initiating the request of acquisition third-party platform authenticating address to proxy server;
Acquiring unit 920, for obtaining the corresponding with the third-party platform of proxy server acquisition registered in advance Docking authentication information, the third-party platform authenticating address and proxy server address;
Transmission unit 930, for sending login authentication request to the third-party platform, the login authentication request is carried There is the target application identification information of the docking authentication information and the client;
Acquiring unit 920 is also used to, and is also used to the target application identification information based on the client, is obtained the third Square authentication platform responds the authentication result generated after the login authentication request, and the authentication result is sent out by the proxy server It send.
Wherein, as an implementation, the acquiring unit 920 may include receiving subelement 921, come for receiving The certification generated from after the request of login authentication described in the received Third Party Authentication platform response of the destination application server As a result, the authentication result responds life after the login authentication is requested received from the third-party platform by the proxy server At and send, and the target application identification information based on the client carried in the authentication result received is sent to institute State destination application server.
As another embodiment, the client 900 can also include receiving unit 940, for initiating unit Before 910 initiate the request of acquisition third-party platform authenticating address to proxy server, it is based on to destination application server initiation After the access request of third-party platform certification, the proxy server address that the destination application server returns is received.
The present embodiment realizes the process of respective function to each functional unit of client 900, refers to above-mentioned Fig. 1 to Fig. 6 Content described in illustrated embodiment, details are not described herein again.
In conclusion various embodiments of the present invention propose third party login authentication method, proxy server, client and be System is rung by client and obtains the docking corresponding with the third-party platform that proxy server is obtained to third-party platform registration in advance Authentication information, then the mode that third-party platform carries out login authentication is sent by the docking authentication information, so that the client It does not need still the user of client can be allowed in the client to third-party platform login authentication information registered in advance in advance Upper realization Third Party Authentication logs in, and reduces client and needs the third-party platform authentication registration account the step of, and then is client The application provider at end provides conveniently third party login and authenticates, and improves the efficiency of Third Party Authentication login.
The above description is merely a specific embodiment, but scope of protection of the present invention is not limited thereto, any Those familiar with the art in the technical scope disclosed by the present invention, can easily think of the change or the replacement, and should all contain Lid is within protection scope of the present invention.Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (15)

1. a kind of third party login authentication method is applied to proxy server, which is characterized in that the described method includes:
Receive the request for the acquisition third-party platform authenticating address that client is initiated;
The request for obtaining third-party platform authenticating address is parsed, the target application identification information of the client is obtained, In, the target application identification information is the address of the client target application to be accessed;
When finding the target application identification information of the client in pre-stored registered application identification information, look into Look for the docking authentication information corresponding with the third-party platform of acquisition registered in advance, wherein the docking authentication information includes The verifying account and authentication secret of proxy server third-party platform distribution when being registered to the third-party platform, It is described it is registered refer to that client is registered in the proxy server in advance, it is described registered in advance to refer to the agency service Device is registered in the third-party platform in advance;
The docking authentication information, the third-party platform authenticating address and proxy server address are sent to the client End;
The authentication result information that the third-party platform generates after responding the login authentication request that the client is sent is received, The login authentication request carries the target application of the docking authentication information, proxy server address and the client Identification information, the authentication result carry the target application identification information of the client;
The authentication result is sent to the client by the target application identification information based on the client.
2. the method according to claim 1, wherein the docking authentication information includes to the third-party platform The verifying account and authentication secret of the third-party platform distribution when registration.
3. the method according to claim 1, wherein the target application identification information of the client is the visitor The address of the family end target application to be accessed.
4. a kind of third party login authentication method is applied to client, which is characterized in that the described method includes:
The request of acquisition third-party platform authenticating address is initiated to proxy server, so as to obtain described in proxy server parsing The request for taking third-party platform authenticating address obtains the target application identification information of the client, has infused pre-stored In the application identification information of volume when finding the target application identification information of the client, search acquisition registered in advance with institute State the corresponding docking authentication information of third-party platform, wherein the target application identification information client will access The address of target application;The docking authentication information include when the proxy server is registered to the third-party platform described in Tripartite's platform distribution verifying account and authentication secret, it is described it is registered refer to client in advance the proxy server into Row registration, it is described registered in advance to refer to that the proxy server is registered in the third-party platform in advance;
Obtain proxy server acquisition registered in advance docking authentication information corresponding with the third-party platform, described Tripartite's platform authentication address and proxy server address;
Send login authentication request to the third-party platform, login authentication request carry the docking authentication information with And the target application identification information of the client;
Target application identification information based on the client, after obtaining the third-party platform response login authentication request The authentication result of generation.
5. according to the method described in claim 4, it is characterized in that, initiating to obtain third-party platform to proxy server described Before the request of authenticating address, the method also includes;
After initiating the access request authenticated based on third-party platform to destination application server, the destination application server is received The proxy server address of return.
6. according to the method described in claim 5, it is characterized in that, the acquisition third-party platform response login is recognized The authentication result generated after card request, comprising:
It receives to respond after the login authentication is requested from the received third-party platform of the destination application server and generate Authentication result, the authentication result responds the login authentication received from the third-party platform by the proxy server and asks It generates and sends after asking, and is sent out based on the target application identification information of the client carried in the authentication result received Give the destination application server.
7. according to the method described in claim 6, it is characterized in that, the docking authentication information include the proxy server to The verifying account and authentication secret of third-party platform third-party platform distribution when registering;And/or
The target application identification information of the client is the address of the client target application to be accessed.
8. a kind of proxy server characterized by comprising
Receiving unit, the request of the acquisition third-party platform authenticating address for receiving client initiation;
Searching unit, for parsing the request for obtaining third-party platform authenticating address, the target for obtaining the client is answered Use identification information;The target application mark letter of the client is found in pre-stored registered application identification information When breath, the docking authentication information corresponding with the third-party platform of acquisition registered in advance is searched, wherein the target application mark Know the address that information is the client target application to be accessed;The docking authentication information include the proxy server to The verifying account and authentication secret of the third-party platform distribution when third-party platform is registered, it is described registered to refer to visitor Family end is registered in the proxy server in advance, described registered in advance to refer to the proxy server in advance in the third Fang Pingtai is registered;
Transmission unit, for sending out the docking authentication information, the third-party platform authenticating address and proxy server address Give the client;
The receiving unit is also used to receive the third-party platform after responding the login authentication request that the client is sent The authentication result information of generation, login authentication request carry the docking authentication information, proxy server address and The target application identification information of the client, the authentication result carry the target application identification information of the client;
The transmission unit is also used to the target application identification information based on the client, the authentication result is sent to The client.
9. proxy server according to claim 8, which is characterized in that the docking authentication information includes to the third The verifying account and authentication secret of Fang Pingtai third-party platform distribution when registering.
10. proxy server according to claim 8, which is characterized in that the target application identification information of the client For the address of the client target application to be accessed.
11. a kind of client characterized by comprising
Unit is initiated, for initiating the request of acquisition third-party platform authenticating address to proxy server, so that the agency takes Business device parses the request for obtaining third-party platform authenticating address, obtains the target application identification information of the client;In When finding the target application identification information of the client in pre-stored registered application identification information, search preparatory Register the docking authentication information corresponding with the third-party platform obtained, wherein the target application identification information is described The address of the client target application to be accessed;The docking authentication information includes that the proxy server is flat to the third party The verifying account and authentication secret of the third-party platform distribution when platform is registered, it is described registered to refer to client in advance in institute Proxy server is stated to be registered, it is described registered in advance to refer to that the proxy server is infused in the third-party platform in advance Volume;
Acquiring unit, the docking corresponding with the third-party platform for obtaining proxy server acquisition registered in advance are recognized Demonstrate,prove information, the third-party platform authenticating address and proxy server address;
Transmission unit, for sending login authentication request to the third-party platform, the login authentication request carries described Dock the target application identification information of authentication information and client;
The acquiring unit is also used to the target application identification information based on the client, obtains the third-party platform and rings The authentication result generated after answering the login authentication to request.
12. client according to claim 11, which is characterized in that the client further includes receiving unit, is used for Before the initiation unit initiates the request of acquisition third-party platform authenticating address to proxy server, to destination application server After initiating the access request authenticated based on third-party platform, with receiving the proxy server that the destination application server returns Location.
13. client according to claim 12, which is characterized in that the acquiring unit includes:
Receiving subelement responds the login from the received third-party platform of the destination application server for receiving The authentication result generated after certification request, the authentication result are responded by the proxy server received from the third-party platform It is generated and sent after the login authentication request, and the target based on the client carried in the authentication result received Application identification information is sent to the destination application server.
14. client according to claim 13, which is characterized in that the docking authentication information includes to the third party The verifying account and authentication secret of platform third-party platform distribution when registering;And/or
The target application identification information of the client is the address of the client target application to be accessed.
15. a kind of third party login Verification System, which is characterized in that the system comprises any one of such as claim 11-14 institutes Client, destination application server and such as described in any item proxy servers of claim 8-10 stated;
The application server is used for, and Xiang Suoshu proxy server is registered, and is initiated receiving client based on third After the access request that Fang Pingtai is logged in, Xiang Suoshu client returns to proxy server address;And it is received from the proxy server The authentication result information of third-party platform, and the authentication result information is sent to the client.
CN201611075637.2A 2016-11-29 2016-11-29 Third party login authentication method, proxy server, client and system Active CN106453414B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611075637.2A CN106453414B (en) 2016-11-29 2016-11-29 Third party login authentication method, proxy server, client and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611075637.2A CN106453414B (en) 2016-11-29 2016-11-29 Third party login authentication method, proxy server, client and system

Publications (2)

Publication Number Publication Date
CN106453414A CN106453414A (en) 2017-02-22
CN106453414B true CN106453414B (en) 2019-11-19

Family

ID=58224098

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611075637.2A Active CN106453414B (en) 2016-11-29 2016-11-29 Third party login authentication method, proxy server, client and system

Country Status (1)

Country Link
CN (1) CN106453414B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106685998B (en) * 2017-02-24 2020-02-07 浙江仟和网络科技有限公司 SSO authentication method based on CAS unified authentication service middleware
CN109063148A (en) * 2018-08-07 2018-12-21 黑龙江阳光惠远信息技术有限公司 A kind of related patents recommender system and recommended method based on third-party platform
CN109819020B (en) * 2019-01-03 2021-09-07 福建天泉教育科技有限公司 Third-party platform login and docking method based on configuration and storage medium
CN110069909B (en) * 2019-04-29 2020-10-13 上海上湖信息技术有限公司 Method and device for login of third-party system without secret
CN111212083B (en) * 2020-01-14 2022-08-02 北京思特奇信息技术股份有限公司 Agent test and authorization management system and method
CN112069474B (en) * 2020-09-01 2023-05-19 中国联合网络通信集团有限公司 Method for using and forgetting user data and third-party trusted server
CN114338222B (en) * 2022-01-11 2024-02-06 杭州弗兰科信息安全科技有限公司 Key application method, system, device and server
CN114553433B (en) * 2022-02-15 2023-09-08 网易(杭州)网络有限公司 Third party platform access method and device, electronic equipment and medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103051630A (en) * 2012-12-21 2013-04-17 微梦创科网络科技(中国)有限公司 Method, device and system for implementing authorization of third-party application based on open platform
CN103685139A (en) * 2012-08-30 2014-03-26 中兴通讯股份有限公司 Authentication and authorization processing method and device
CN106131079A (en) * 2016-08-29 2016-11-16 腾讯科技(北京)有限公司 A kind of authentication method, system and proxy server

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103685139A (en) * 2012-08-30 2014-03-26 中兴通讯股份有限公司 Authentication and authorization processing method and device
CN103051630A (en) * 2012-12-21 2013-04-17 微梦创科网络科技(中国)有限公司 Method, device and system for implementing authorization of third-party application based on open platform
CN106131079A (en) * 2016-08-29 2016-11-16 腾讯科技(北京)有限公司 A kind of authentication method, system and proxy server

Also Published As

Publication number Publication date
CN106453414A (en) 2017-02-22

Similar Documents

Publication Publication Date Title
CN106453414B (en) Third party login authentication method, proxy server, client and system
CN103179098B (en) A kind of password method for retrieving of network account and device
CN103023918B (en) The mthods, systems and devices logged in are provided for multiple network services are unified
CN107070945B (en) Identity login method and equipment
JP5719871B2 (en) Method and apparatus for preventing phishing attacks
CN104092542B (en) A kind of account login method, Apparatus and system
US8474014B2 (en) Methods for the secure use of one-time passwords
EP3402136B1 (en) Information interaction method, client and device
CN104540129B (en) The registering and logging method and system of third-party application
CN105847245B (en) Electronic mailbox login authentication method and device
US20200236105A1 (en) Rich communication services security authentication system
EP2023262A2 (en) Authentication system and authentication method
CN107241336B (en) Identity verification method and device
CN102355509B (en) Method and device for transmitting and receiving message according to mobile number in contact list
CN103001770B (en) A kind of user rs authentication method, server and system
CN106470145B (en) Instant messaging method and device
CN101426009A (en) Identity management platform, service server, uniform login system and method
WO2017088634A1 (en) Third-party application authentication method, authentication server, terminal and management server
CN107438054B (en) Method and system for realizing menu information control based on public platform
US11165768B2 (en) Technique for connecting to a service
CN106209816B (en) A kind of web camera login method and system
CN103561063A (en) Method and terminal for logging onto set top box
CN104270357A (en) Service information sending method and device
CN104967525B (en) Method and device that news is shared, system
CN104301285B (en) Login method for web system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant