CN106453414B - Third party login authentication method, proxy server, client and system - Google Patents
Third party login authentication method, proxy server, client and system Download PDFInfo
- Publication number
- CN106453414B CN106453414B CN201611075637.2A CN201611075637A CN106453414B CN 106453414 B CN106453414 B CN 106453414B CN 201611075637 A CN201611075637 A CN 201611075637A CN 106453414 B CN106453414 B CN 106453414B
- Authority
- CN
- China
- Prior art keywords
- client
- authentication
- party platform
- proxy server
- target application
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0884—Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The present invention provides a kind of third party login authentication method, proxy server, client and systems, belong to data communication field, this method comprises: proxy server receives the request for the acquisition third-party platform authenticating address that client is initiated;It is searching acquisition registered in advance with the corresponding docking authentication information;The docking authentication information, the third-party platform authenticating address and proxy server address are sent to the client;Receive the authentication result information generated after responding the login authentication request that the client is sent, the login authentication request carries the target application identification information of the docking authentication information, proxy server address and the client, and the authentication result carries the target application identification information of the client;The authentication result is sent to the client by the target application identification information based on the client.This method can promote the efficiency of Third Party Authentication login.
Description
Technical field
The present invention relates to data communication fields, in particular to a kind of third party login authentication method, agency service
Device, client and system.
Background technique
Third Party Authentication logs in the login side as mobile applications prevalences such as website major on existing market and all kinds of APP
Formula brings great convenience during Website login or APP for user, avoids in traditional login mode, user
Login and next operation must just be can be carried out after new registration in new website or APP.But traditional third party
During certification logs in, in order to support Third Party Authentication to log in, website or APP need to log in platform application to Third Party Authentication in advance
Account and key are authenticated, brings great inconvenience to the supplier of website or APP.
Summary of the invention
In view of this, the embodiment of the present invention be designed to provide a kind of third party login authentication method, proxy server,
Client and system, to promote the efficiency of third party login certification.
In a first aspect, this method is applied to agency's clothes the embodiment of the invention provides a kind of third party login authentication method
Business device, comprising: proxy server receives the request for the acquisition third-party platform authenticating address that client is initiated;It searches registered in advance
The docking authentication information corresponding with the third-party platform obtained;The docking authentication information, the third-party platform are recognized
Card address and proxy server address are sent to the client;It receives the third-party platform and is responding the client transmission
Login authentication request after the authentication result information that generates, the login authentication request carries the docking authentication information, generation
The target application identification information of server address and the client is managed, the authentication result carries the mesh of the client
Mark application identification information;The authentication result is sent to the client by the target application identification information based on the client
End.
Second aspect, the embodiment of the invention provides a kind of third party login authentication method, this method is applied to client,
It include: the request for initiating to obtain third-party platform authenticating address to proxy server;It is registered in advance to obtain the proxy server
Docking authentication information corresponding with the third-party platform, the third-party platform authenticating address and the proxy server obtained
Location;Send login authentication request to the third-party platform, login authentication request carry the docking authentication information with
And the target application identification information of the client;Target application identification information based on the client, obtains the third
The authentication result generated after the request of login authentication described in square platform response.
The third aspect, the embodiment of the invention provides a kind of proxy servers, comprising: receiving unit, for receiving client
The request for the acquisition third-party platform authenticating address that end is initiated;Searching unit, for search acquisition registered in advance with described
The corresponding docking authentication information of tripartite's platform;Transmission unit, for authenticating the docking authentication information, the third-party platform
Address and proxy server address are sent to the client;The receiving unit is also used to receive the third-party platform and exists
The authentication result information generated after the login authentication request that the client is sent is responded, the login authentication request carries
The target application identification information of docking authentication information, proxy server address and the client is stated, the authentication result is taken
Target application identification information with the client;The transmission unit is also used to the target application based on the client
The authentication result is sent to the client by identification information.
Fourth aspect, the embodiment of the invention provides a kind of clients, comprising: acquiring unit is used for proxy server
Initiate the request of acquisition third-party platform authenticating address;The acquiring unit is also used to obtain the proxy server and infuses in advance
Docking authentication information corresponding with the third-party platform, the third-party platform authenticating address and the proxy server that volume obtains
Address;Transmission unit, for sending login authentication request to the third-party platform, the login authentication request carries described
Dock the target application identification information of authentication information and client;The acquiring unit is also used to based on the client
Target application identification information obtains the third-party platform and responds the authentication result generated after the login authentication request.
5th aspect, the embodiment of the invention provides a kind of third party login system, which includes above-mentioned fourth aspect
Client, destination application server and the above-mentioned third aspect proxy server;
The application server is used for, and Xiang Suoshu proxy server is registered, and is based on receiving client initiation
After the access request that third-party platform logs in, Xiang Suoshu client returns to proxy server address;And from the proxy server
The authentication result information of third-party platform is received, and the authentication result information is sent to the client.
Compared with prior art, the third party login authentication method of various embodiments of the present invention proposition, proxy server, client
End and system obtain proxy server in advance to the corresponding with the third-party platform of third-party platform registration acquisition by client
Authentication information is docked, then sends the mode that third-party platform carries out login authentication for the docking authentication information, so that the visitor
Family end does not need still the user of client can be allowed in the visitor to third-party platform login authentication information registered in advance in advance
It realizes that Third Party Authentication logs on the end of family, reduces client and need the Jin Erwei the third-party platform authentication registration account the step of
The application provider of client provides conveniently third party login and authenticates, and improves the efficiency of Third Party Authentication login.
Detailed description of the invention
The schematic diagram that Fig. 1 is server provided in an embodiment of the present invention, user terminal, third-party platform interact;
Fig. 2 is a kind of flow chart for third party login authentication method that first embodiment of the invention provides;
Fig. 3 is a kind of flow chart for third party login authentication method that second embodiment of the invention provides;
Fig. 4 is a kind of flow chart for third party login authentication method that third embodiment of the invention provides;
Fig. 5 is a kind of flow chart for third party login authentication method that fourth embodiment of the invention provides;
Fig. 6 is a kind of timing diagram for third party login Verification System that fifth embodiment of the invention provides;
Fig. 7 is a kind of structural block diagram for proxy server that sixth embodiment of the invention provides;
Fig. 8 is a kind of structural block diagram for proxy server that seventh embodiment of the invention provides;
Fig. 9 is a kind of structural block diagram for client that eighth embodiment of the invention provides;
Figure 10 is a kind of structural block diagram for client that ninth embodiment of the invention provides.
Specific embodiment
Below in conjunction with attached drawing in the embodiment of the present invention, technical solution in the embodiment of the present invention carries out clear, complete
Ground description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Usually exist
The component of the embodiment of the present invention described and illustrated in attached drawing can be arranged and be designed with a variety of different configurations herein.
As shown in Figure 1, being user terminal 100 provided in an embodiment of the present invention, proxy server 200, target application service
The schematic diagram mutually interacted between device 300 and third-party platform 400 by network 500.The proxy server 200 can
It is communicated to connect with being established by network 500 and one or more user terminals 100, to carry out data communication or interaction, certainly, generation
Data communication can also be carried out by network 500 and destination application server 300 by managing server 200.One or more user
Terminal 100 can be established by network 500 and third-party platform 400 and destination application server 300 and be communicated to connect, to carry out
Data communication or interaction.Third-party platform 400 can be established by network 500 and proxy server 200 and be communicated to connect, with into
Row data communication or interaction.The user terminal 100 can be PC (personal computer, PC), plate electricity
Brain, smart phone, personal digital assistant (personal digital assistant, PDA) etc..In the present embodiment, user
Client can be set in terminal 100, will be responsive to the acquisition third-party platform certification ground that third party login authentication event obtains
The request of location is sent to proxy server 200.The proxy server 200 can be network server, database server etc.,
Can in advance in major common third-party platform authentication registration account, with obtain third-party platform distribution verifying account and
Authentication secret.The third-party platform 400 is also possible to network server, data server etc., can carry out Third Party Authentication.
First embodiment
Fig. 2 is please referred to, Fig. 2 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party
Method is applied to proxy server.The described method includes:
Step S110: the request for the acquisition third-party platform authenticating address that client is initiated is received.
Wherein, client end response sends to proxy server after third party login authentication event and obtains third-party platform
The request of authenticating address.The third party login authentication event can be the user of the client in the process using client
In, the thing that is triggered when needing by application in third party login mode (such as QQ, microblogging, wechat etc.) Lai Denglu client
Part.The request is triggered by the user of client, is also possible to client triggering when being installed.It is appreciated that described ask
The identification information for carrying third-party platform is sought, so as to proxy server identification.For example, user wants to carry out by way of QQ
Tripartite logs in, then the request carries the identification information of third-party platform corresponding with QQ.
Step S120: the docking authentication information corresponding with the third-party platform of acquisition registered in advance is searched.Third party
Platform agent server, can and type common in multiple major applications in advance before third party login authentication event is triggered
Different third-party platform (such as with QQ, microblogging, the corresponding third-party platform such as wechat) is registered, to obtain described
The verifying account and authentication secret of tripartite's platform distribution, using these verifying accounts and authentication secret as docking authentication information
It is stored in local.
After proxy server receives the request of acquisition third-party platform authenticating address of client transmission, looked into locally
Look for the docking authentication information of corresponding third-party platform.It should be noted that the proxy server the third-party platform into
When row registration, the third-party platform is stored with the network address of the proxy server, and using proxy server address as
Loopback address, so that information relevant to the proxy server is sent to the proxy server.
Step S130: the docking authentication information, the third-party platform authenticating address and proxy server address are sent out
Give the client.
Step S140: receive what the third-party platform generated after responding the login authentication request that the client is sent
Authentication result information, the login authentication request carry the docking authentication information, proxy server address and the visitor
The target application identification information at family end, the authentication result carry the target application identification information of the client.
The third-party platform is received after responding the login authentication request that the client is sent, it is raw to execute authentication operation
At authentication result information.
The authentication result includes that third party login authenticates successfully or third party login authentification failure.Certainly, described to recognize
Card result also carries the target application identification information of the client, and the target application identification information of the client can be
The address of the client target application to be accessed, the third-party platform or the proxy server can be by described
The address of the client target application to be accessed sends information to the target application of the client.
It is sent to it is worth noting that the authentication result is based on the proxy server address by the third-party platform
The proxy server.
Step S150: the authentication result is sent to the visitor by the target application identification information based on the client
Family end.
A kind of third party login authentication method provided in an embodiment of the present invention, is receiving client by proxy server
When the request of the acquisition third-party platform authenticating address of transmission, the docking authentication information stored in advance is sent to client, visitor
Family end group sends login authentication request to third-party platform in docking authentication information, so that third-party platform is sent based on client
Login authentication request after generate authentication result information, and authentication result information is sent to proxy server, proxy server
Transmit verification result to client.So that client does not need in advance to third-party platform login authentication letter registered in advance
Breath can still allow the user of client to realize that Third Party Authentication logs on the client, reduce client and need in third
The step of Fang Pingtai authentication registration account, and then provide conveniently third party login for the application provider of client and recognize
Card improves the efficiency of Third Party Authentication login.
Second embodiment
Fig. 3 is please referred to, Fig. 3 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party
Method is applied to proxy server.The described method includes:
Step S210: the request for the acquisition third-party platform authenticating address that client is initiated is received.
Step S211: the parsing request for obtaining third-party platform authenticating address, the target for obtaining the client are answered
With identification information, the target application mark letter of the client is searched in pre-stored registered application identification information
Breath executes docking corresponding with the third-party platform certification letter for searching acquisition registered in advance if searched successfully
Breath.
The proxy server can respond the registration request of the client, and to client registers when is used
Target application identification information saved.When the proxy server is recognized in the acquisition third-party platform for receiving client initiation
When demonstrate,proving the request of address, the request for obtaining third-party platform authenticating address is parsed, the visitor for initiating the request is obtained
The target application identification information at family end.The proxy server searches institute in pre-stored registered application identification information
State the target application identification information of client.If searching successfully, indicate the target application of the client in the agency
Server is registered, then executes subsequent step;If lookup is unsuccessful, the request institute for obtaining third-party platform authenticating address is indicated
The target application of the client of carrying does not have the qualification for obtaining docking authentication information corresponding with third-party platform.
Step S220: the docking authentication information corresponding with the third-party platform of acquisition registered in advance is searched.
Step S230: the docking authentication information, the third-party platform authenticating address and proxy server address are sent out
Give the client.
Step S240: receive what the third-party platform generated after responding the login authentication request that the client is sent
Authentication result information, the login authentication request carry the docking authentication information, proxy server address and the visitor
The target application identification information at family end, the authentication result carry the target application identification information of the client.
Step S250: the authentication result is sent to the visitor by the target application identification information based on the client
Family end.
A kind of third party login authentication method provided in an embodiment of the present invention, is receiving client by proxy server
When the request of the acquisition third-party platform authenticating address of initiation, the target application mark for initiating the client of the request is obtained
Know information, and whether the target application identification information for searching the client is to have been registered on proxy server in advance
Application identification information, so that it is determined that whether the target application of client has acquisition corresponding with third-party platform docking certification
The qualification of information ensure that the application provider for client provides conveniently third party login certification, improve the
While the efficiency of tripartite's login authentication, the safety of client is also ensured.
3rd embodiment
Fig. 4 is please referred to, Fig. 4 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party
Method is applied to client.The described method includes:
Step S310: it initiates to obtain the request of third-party platform authenticating address to proxy server.
Certainly, client can be initiated to destination application server in advance after in response to third party login authentication event
Based on the access request of third-party platform certification, the proxy server address that the destination application server returns is received.
Proxy server address of the client based on return initiates to obtain third-party platform authenticating address to proxy server
Request.
In the present embodiment, third party login authentication event can use the client in user, and third party is selected to step on
Client is triggered when record certification.It is also possible to user when authenticating using other target application selection third party logins,
His target application triggers client.
Step S320: the docking corresponding with the third-party platform for obtaining proxy server acquisition registered in advance is recognized
Demonstrate,prove information, the third-party platform authenticating address and proxy server address.
As an implementation, client can receive the proxy server response acquisition third-party platform and recognize
Demonstrate,prove address request return, in the access authentication information of the proxy server acquisition registered in advance with the third-party platform
Corresponding target access authentication information.As another embodiment, it can be embedded in advance in the development process of client
The docking authentication information of proxy server acquisition registered in advance, or after client installs, so that it may to proxy server
Get the docking authentication information of proxy server acquisition registered in advance, so as in client in use in response to third
When square login authentication event, information needed locally directly can be being obtained, to promote the whole efficiency of third party login certification.Make
For a kind of embodiment, the client end response can first be sent to third-party platform pre- after third party login authentication event
First login authentication request, the preparatory login authentication request carry the client and step in advance to what third-party platform registration obtained
Authentication information is recorded, i.e. client is first registered to the third-party platform, to obtain authentication result.The authentication result includes recognizing
It demonstrate,proves successfully and authentification failure.Respond what the preparatory login authentication request returned when client receives the third-party platform
When authentication failure message, the request for obtaining third-party platform authenticating address is initiated to proxy server.When client receives institute
When stating third-party platform and responding the authentication success message that the preparatory login authentication request returns, process terminates.
S330: Xiang Suoshu third-party platform of step sends login authentication request, and the login authentication request carries described
Dock the target application identification information of authentication information and the client.
Wherein, the docking authentication information includes the third when proxy server is registered to the third-party platform
The verifying account and authentication secret of Fang Pingtai distribution, the target application identification information of the client are that the client will visit
The address for the target application asked.
Step S340: the target application identification information based on the client obtains the Third Party Authentication platform response
The authentication result generated after the login authentication request.
Since login authentication request carries the verifying account and authentication secret of third-party platform distribution, the third party
Platform can generate authentication result, the certification based on the verifying account and authentication secret after response login authentication request
As a result it is authenticated successfully or third party login authentification failure comprising third party login.
In addition, the login authentication request also carries the target application identification information of the client.
As an implementation, the authentication result that the client obtains, can be by the third-party platform base
It is transmitted directly in the target application identification information (i.e. the address of the client target application to be accessed) of the client described
Application server, then the client is sent to by the application server.A kind of third party provided in an embodiment of the present invention steps on
Authentication method is recorded, through client end response when third party login authentication event, it is flat to third party in advance to obtain proxy server
The docking authentication information corresponding with the third-party platform that platform registration obtains, then send third party for the docking authentication information and put down
Platform carries out the mode of login authentication, so that the client does not need in advance to third-party platform login authentication letter registered in advance
Breath can still allow the user of client to realize that third party login authenticates on the client, reduce client and need in third
The step of Fang Pingtai authentication registration account, and then provide conveniently third party login for the application provider of client and recognize
Card improves the efficiency of third party login certification.
Fourth embodiment
Fig. 5 is please referred to, Fig. 5 is a kind of flow chart of third party login authentication method provided in an embodiment of the present invention, the party
Method is applied to client.The described method includes:
Step S410: it initiates to obtain the request of third-party platform authenticating address to proxy server.
Step S420: the docking corresponding with the third-party platform for obtaining proxy server acquisition registered in advance is recognized
Demonstrate,prove information, the third-party platform authenticating address and proxy server address.
S430: Xiang Suoshu third-party platform of step sends login authentication request, and the login authentication request carries described
Dock the target application identification information of authentication information and the client.
Step S440: the target application identification information based on the client obtains the Third Party Authentication platform response
The authentication result generated after the login authentication request, the authentication result are sent to the application by the proxy server and take
Business device, then the client is sent to by the application server.
Likewise, the login authentication request carries the target application identification information of the client, the mesh of client
Mark application identification information can be the address of the target application of the client.
The authentication result is generated and is first sent to described after responding the login authentication request by the third-party platform
Proxy server.The authentication result that the client obtains, the target by the proxy server based on the client
Application identification information, i.e., the target application address of the described client are sent to the application server, then by the application service
Device is sent to the client.
As an implementation, the identification information of the client can also be the target application of the client in institute
Account title when proxy server is registered is stated, the proxy server is also based on the account title of the client
The verification result is sent to the client.
5th embodiment
A kind of third party login Verification System provided in an embodiment of the present invention, the system include client, target application clothes
Business device and proxy server.Fig. 6 is please referred to, the method applied to the system includes:
Step S510: the client initiates the visit authenticated based on the third-party platform to the destination application server
Ask request.
Step S520: the application server receives the access request, and sends proxy server to the client
Address.
Step S530: the client is initiated to obtain the request of third-party platform authenticating address to the proxy server.
Step S540: the docking corresponding with the third-party platform that the proxy server searches acquisition registered in advance is recognized
Demonstrate,prove information.
Step S550: the proxy server is by the docking authentication information, the third-party platform authenticating address and generation
Reason server address is sent to the client.
Step S560: the client sends login authentication request, the login authentication request to the third-party platform
Carry the target application identification information of the docking authentication information, the proxy server address and the client.
Step S570: the third-party platform generates certification knot after responding the login authentication request that the client is sent
The authentication result information is sent to the proxy server by fruit information.
Step S580: the proxy server receives the authentication result information, and the authentication result information is sent
To the application server.
Step S590: the application server receives the authentication result information, and the authentication result is sent to institute
State client.
Sixth embodiment
Fig. 7 is please referred to, Fig. 7 is a kind of structural block diagram of proxy server 600 provided in an embodiment of the present invention.It below will be right
Structural block diagram shown in Fig. 7 is illustrated, and shown proxy server 600 includes:
Receiving unit 610, the request of the acquisition third-party platform authenticating address for receiving client initiation;
Searching unit 620, for searching the docking authentication information corresponding with the third-party platform of acquisition registered in advance;
Transmission unit 630 is used for the docking authentication information, the third-party platform authenticating address and proxy server
Address is sent to the client;
Receiving unit 610 is also used to, and is received the third-party platform and is asked in the login authentication for responding the client transmission
The authentication result information generated after asking, the login authentication request carry the docking authentication information, proxy server address
And the target application identification information of the client, the authentication result carry the target application mark letter of the client
Breath;
Transmission unit 630 is also used to, and the target application identification information based on the client sends the authentication result
To the client.
The present embodiment realizes the process of respective function to each functional unit of proxy server 600, refers to above-mentioned Fig. 1 extremely
Content described in embodiment illustrated in fig. 6, details are not described herein again.
7th embodiment
Fig. 8 is please referred to, Fig. 8 is a kind of structural block diagram of proxy server 700 provided in an embodiment of the present invention.It below will be right
Structural block diagram shown in Fig. 8 is illustrated, and shown proxy server 700 includes:
Receiving unit 710, the request of the acquisition third-party platform authenticating address for receiving client initiation;
Searching unit 720 obtains the client for parsing the request for obtaining third-party platform authenticating address
Target application identification information searches the target application mark of the client in pre-stored registered application identification information
Know information, if searched successfully, executes the docking corresponding with the third-party platform for searching acquisition registered in advance and recognize
Demonstrate,prove information;
Searching unit 720 is also used to, and searches docking corresponding with the third-party platform certification letter of acquisition registered in advance
Breath;
Transmission unit 730 is used for the docking authentication information, the third-party platform authenticating address and proxy server
Address is sent to the client;
Receiving unit 710 is also used to, and is received the third-party platform and is asked in the login authentication for responding the client transmission
The authentication result information generated after asking, the login authentication request carry the docking authentication information, proxy server address
And the target application identification information of the client, the authentication result carry the target application mark letter of the client
Breath;
Transmission unit 730 is also used to, and the target application identification information based on the client sends the authentication result
To the client.
The present embodiment realizes the process of respective function to each functional unit of proxy server 700, refers to above-mentioned Fig. 1 extremely
Content described in embodiment illustrated in fig. 6, details are not described herein again.
8th embodiment
Fig. 9 is please referred to, Fig. 9 is a kind of structural block diagram of client 800 provided in an embodiment of the present invention.It below will be to Fig. 9
Shown in structural block diagram be illustrated, shown client 800 includes:
Unit 810 is initiated, for initiating the request of acquisition third-party platform authenticating address to proxy server;
Acquiring unit 820, for obtaining the corresponding with the third-party platform of proxy server acquisition registered in advance
Docking authentication information, the third-party platform authenticating address and proxy server address;
Transmission unit 830, for sending login authentication request to the third-party platform, the login authentication request is carried
There is the target application identification information of the docking authentication information and the client;
The acquiring unit 820 is also used to the target application identification information based on the client, obtains the third party
Authentication platform responds the authentication result generated after the login authentication request.
Wherein, as an implementation, the acquiring unit 820 may include receiving subelement 821, come for receiving
The certification generated from after the request of login authentication described in the received Third Party Authentication platform response of the destination application server
As a result, the authentication result responds life after the login authentication is requested received from the third-party platform by the proxy server
At and send, and the target application identification information based on the client carried in the authentication result received is sent to institute
State destination application server.
As another embodiment, the client 800 can also include receiving unit 840, for initiating unit
Before 810 initiate the request of acquisition third-party platform authenticating address to proxy server, it is based on to destination application server initiation
After the access request of third-party platform certification, the proxy server address that the destination application server returns is received.
The present embodiment realizes the process of respective function to each functional unit of client 800, refers to above-mentioned Fig. 1 to Fig. 6
Content described in illustrated embodiment, details are not described herein again.
9th embodiment
Figure 10 is please referred to, Figure 10 is the structural block diagram of client 900 provided in an embodiment of the present invention.It below will be to Figure 10 institute
The structural block diagram shown is illustrated, and shown client 900 includes:
Unit 910 is initiated, for initiating the request of acquisition third-party platform authenticating address to proxy server;
Acquiring unit 920, for obtaining the corresponding with the third-party platform of proxy server acquisition registered in advance
Docking authentication information, the third-party platform authenticating address and proxy server address;
Transmission unit 930, for sending login authentication request to the third-party platform, the login authentication request is carried
There is the target application identification information of the docking authentication information and the client;
Acquiring unit 920 is also used to, and is also used to the target application identification information based on the client, is obtained the third
Square authentication platform responds the authentication result generated after the login authentication request, and the authentication result is sent out by the proxy server
It send.
Wherein, as an implementation, the acquiring unit 920 may include receiving subelement 921, come for receiving
The certification generated from after the request of login authentication described in the received Third Party Authentication platform response of the destination application server
As a result, the authentication result responds life after the login authentication is requested received from the third-party platform by the proxy server
At and send, and the target application identification information based on the client carried in the authentication result received is sent to institute
State destination application server.
As another embodiment, the client 900 can also include receiving unit 940, for initiating unit
Before 910 initiate the request of acquisition third-party platform authenticating address to proxy server, it is based on to destination application server initiation
After the access request of third-party platform certification, the proxy server address that the destination application server returns is received.
The present embodiment realizes the process of respective function to each functional unit of client 900, refers to above-mentioned Fig. 1 to Fig. 6
Content described in illustrated embodiment, details are not described herein again.
In conclusion various embodiments of the present invention propose third party login authentication method, proxy server, client and be
System is rung by client and obtains the docking corresponding with the third-party platform that proxy server is obtained to third-party platform registration in advance
Authentication information, then the mode that third-party platform carries out login authentication is sent by the docking authentication information, so that the client
It does not need still the user of client can be allowed in the client to third-party platform login authentication information registered in advance in advance
Upper realization Third Party Authentication logs in, and reduces client and needs the third-party platform authentication registration account the step of, and then is client
The application provider at end provides conveniently third party login and authenticates, and improves the efficiency of Third Party Authentication login.
The above description is merely a specific embodiment, but scope of protection of the present invention is not limited thereto, any
Those familiar with the art in the technical scope disclosed by the present invention, can easily think of the change or the replacement, and should all contain
Lid is within protection scope of the present invention.Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (15)
1. a kind of third party login authentication method is applied to proxy server, which is characterized in that the described method includes:
Receive the request for the acquisition third-party platform authenticating address that client is initiated;
The request for obtaining third-party platform authenticating address is parsed, the target application identification information of the client is obtained,
In, the target application identification information is the address of the client target application to be accessed;
When finding the target application identification information of the client in pre-stored registered application identification information, look into
Look for the docking authentication information corresponding with the third-party platform of acquisition registered in advance, wherein the docking authentication information includes
The verifying account and authentication secret of proxy server third-party platform distribution when being registered to the third-party platform,
It is described it is registered refer to that client is registered in the proxy server in advance, it is described registered in advance to refer to the agency service
Device is registered in the third-party platform in advance;
The docking authentication information, the third-party platform authenticating address and proxy server address are sent to the client
End;
The authentication result information that the third-party platform generates after responding the login authentication request that the client is sent is received,
The login authentication request carries the target application of the docking authentication information, proxy server address and the client
Identification information, the authentication result carry the target application identification information of the client;
The authentication result is sent to the client by the target application identification information based on the client.
2. the method according to claim 1, wherein the docking authentication information includes to the third-party platform
The verifying account and authentication secret of the third-party platform distribution when registration.
3. the method according to claim 1, wherein the target application identification information of the client is the visitor
The address of the family end target application to be accessed.
4. a kind of third party login authentication method is applied to client, which is characterized in that the described method includes:
The request of acquisition third-party platform authenticating address is initiated to proxy server, so as to obtain described in proxy server parsing
The request for taking third-party platform authenticating address obtains the target application identification information of the client, has infused pre-stored
In the application identification information of volume when finding the target application identification information of the client, search acquisition registered in advance with institute
State the corresponding docking authentication information of third-party platform, wherein the target application identification information client will access
The address of target application;The docking authentication information include when the proxy server is registered to the third-party platform described in
Tripartite's platform distribution verifying account and authentication secret, it is described it is registered refer to client in advance the proxy server into
Row registration, it is described registered in advance to refer to that the proxy server is registered in the third-party platform in advance;
Obtain proxy server acquisition registered in advance docking authentication information corresponding with the third-party platform, described
Tripartite's platform authentication address and proxy server address;
Send login authentication request to the third-party platform, login authentication request carry the docking authentication information with
And the target application identification information of the client;
Target application identification information based on the client, after obtaining the third-party platform response login authentication request
The authentication result of generation.
5. according to the method described in claim 4, it is characterized in that, initiating to obtain third-party platform to proxy server described
Before the request of authenticating address, the method also includes;
After initiating the access request authenticated based on third-party platform to destination application server, the destination application server is received
The proxy server address of return.
6. according to the method described in claim 5, it is characterized in that, the acquisition third-party platform response login is recognized
The authentication result generated after card request, comprising:
It receives to respond after the login authentication is requested from the received third-party platform of the destination application server and generate
Authentication result, the authentication result responds the login authentication received from the third-party platform by the proxy server and asks
It generates and sends after asking, and is sent out based on the target application identification information of the client carried in the authentication result received
Give the destination application server.
7. according to the method described in claim 6, it is characterized in that, the docking authentication information include the proxy server to
The verifying account and authentication secret of third-party platform third-party platform distribution when registering;And/or
The target application identification information of the client is the address of the client target application to be accessed.
8. a kind of proxy server characterized by comprising
Receiving unit, the request of the acquisition third-party platform authenticating address for receiving client initiation;
Searching unit, for parsing the request for obtaining third-party platform authenticating address, the target for obtaining the client is answered
Use identification information;The target application mark letter of the client is found in pre-stored registered application identification information
When breath, the docking authentication information corresponding with the third-party platform of acquisition registered in advance is searched, wherein the target application mark
Know the address that information is the client target application to be accessed;The docking authentication information include the proxy server to
The verifying account and authentication secret of the third-party platform distribution when third-party platform is registered, it is described registered to refer to visitor
Family end is registered in the proxy server in advance, described registered in advance to refer to the proxy server in advance in the third
Fang Pingtai is registered;
Transmission unit, for sending out the docking authentication information, the third-party platform authenticating address and proxy server address
Give the client;
The receiving unit is also used to receive the third-party platform after responding the login authentication request that the client is sent
The authentication result information of generation, login authentication request carry the docking authentication information, proxy server address and
The target application identification information of the client, the authentication result carry the target application identification information of the client;
The transmission unit is also used to the target application identification information based on the client, the authentication result is sent to
The client.
9. proxy server according to claim 8, which is characterized in that the docking authentication information includes to the third
The verifying account and authentication secret of Fang Pingtai third-party platform distribution when registering.
10. proxy server according to claim 8, which is characterized in that the target application identification information of the client
For the address of the client target application to be accessed.
11. a kind of client characterized by comprising
Unit is initiated, for initiating the request of acquisition third-party platform authenticating address to proxy server, so that the agency takes
Business device parses the request for obtaining third-party platform authenticating address, obtains the target application identification information of the client;In
When finding the target application identification information of the client in pre-stored registered application identification information, search preparatory
Register the docking authentication information corresponding with the third-party platform obtained, wherein the target application identification information is described
The address of the client target application to be accessed;The docking authentication information includes that the proxy server is flat to the third party
The verifying account and authentication secret of the third-party platform distribution when platform is registered, it is described registered to refer to client in advance in institute
Proxy server is stated to be registered, it is described registered in advance to refer to that the proxy server is infused in the third-party platform in advance
Volume;
Acquiring unit, the docking corresponding with the third-party platform for obtaining proxy server acquisition registered in advance are recognized
Demonstrate,prove information, the third-party platform authenticating address and proxy server address;
Transmission unit, for sending login authentication request to the third-party platform, the login authentication request carries described
Dock the target application identification information of authentication information and client;
The acquiring unit is also used to the target application identification information based on the client, obtains the third-party platform and rings
The authentication result generated after answering the login authentication to request.
12. client according to claim 11, which is characterized in that the client further includes receiving unit, is used for
Before the initiation unit initiates the request of acquisition third-party platform authenticating address to proxy server, to destination application server
After initiating the access request authenticated based on third-party platform, with receiving the proxy server that the destination application server returns
Location.
13. client according to claim 12, which is characterized in that the acquiring unit includes:
Receiving subelement responds the login from the received third-party platform of the destination application server for receiving
The authentication result generated after certification request, the authentication result are responded by the proxy server received from the third-party platform
It is generated and sent after the login authentication request, and the target based on the client carried in the authentication result received
Application identification information is sent to the destination application server.
14. client according to claim 13, which is characterized in that the docking authentication information includes to the third party
The verifying account and authentication secret of platform third-party platform distribution when registering;And/or
The target application identification information of the client is the address of the client target application to be accessed.
15. a kind of third party login Verification System, which is characterized in that the system comprises any one of such as claim 11-14 institutes
Client, destination application server and such as described in any item proxy servers of claim 8-10 stated;
The application server is used for, and Xiang Suoshu proxy server is registered, and is initiated receiving client based on third
After the access request that Fang Pingtai is logged in, Xiang Suoshu client returns to proxy server address;And it is received from the proxy server
The authentication result information of third-party platform, and the authentication result information is sent to the client.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611075637.2A CN106453414B (en) | 2016-11-29 | 2016-11-29 | Third party login authentication method, proxy server, client and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611075637.2A CN106453414B (en) | 2016-11-29 | 2016-11-29 | Third party login authentication method, proxy server, client and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106453414A CN106453414A (en) | 2017-02-22 |
CN106453414B true CN106453414B (en) | 2019-11-19 |
Family
ID=58224098
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611075637.2A Active CN106453414B (en) | 2016-11-29 | 2016-11-29 | Third party login authentication method, proxy server, client and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106453414B (en) |
Families Citing this family (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106685998B (en) * | 2017-02-24 | 2020-02-07 | 浙江仟和网络科技有限公司 | SSO authentication method based on CAS unified authentication service middleware |
CN109063148A (en) * | 2018-08-07 | 2018-12-21 | 黑龙江阳光惠远信息技术有限公司 | A kind of related patents recommender system and recommended method based on third-party platform |
CN109819020B (en) * | 2019-01-03 | 2021-09-07 | 福建天泉教育科技有限公司 | Third-party platform login and docking method based on configuration and storage medium |
CN110069909B (en) * | 2019-04-29 | 2020-10-13 | 上海上湖信息技术有限公司 | Method and device for login of third-party system without secret |
CN111212083B (en) * | 2020-01-14 | 2022-08-02 | 北京思特奇信息技术股份有限公司 | Agent test and authorization management system and method |
CN112069474B (en) * | 2020-09-01 | 2023-05-19 | 中国联合网络通信集团有限公司 | Method for using and forgetting user data and third-party trusted server |
CN114338222B (en) * | 2022-01-11 | 2024-02-06 | 杭州弗兰科信息安全科技有限公司 | Key application method, system, device and server |
CN114553433B (en) * | 2022-02-15 | 2023-09-08 | 网易(杭州)网络有限公司 | Third party platform access method and device, electronic equipment and medium |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103051630A (en) * | 2012-12-21 | 2013-04-17 | 微梦创科网络科技(中国)有限公司 | Method, device and system for implementing authorization of third-party application based on open platform |
CN103685139A (en) * | 2012-08-30 | 2014-03-26 | 中兴通讯股份有限公司 | Authentication and authorization processing method and device |
CN106131079A (en) * | 2016-08-29 | 2016-11-16 | 腾讯科技(北京)有限公司 | A kind of authentication method, system and proxy server |
-
2016
- 2016-11-29 CN CN201611075637.2A patent/CN106453414B/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103685139A (en) * | 2012-08-30 | 2014-03-26 | 中兴通讯股份有限公司 | Authentication and authorization processing method and device |
CN103051630A (en) * | 2012-12-21 | 2013-04-17 | 微梦创科网络科技(中国)有限公司 | Method, device and system for implementing authorization of third-party application based on open platform |
CN106131079A (en) * | 2016-08-29 | 2016-11-16 | 腾讯科技(北京)有限公司 | A kind of authentication method, system and proxy server |
Also Published As
Publication number | Publication date |
---|---|
CN106453414A (en) | 2017-02-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106453414B (en) | Third party login authentication method, proxy server, client and system | |
CN103179098B (en) | A kind of password method for retrieving of network account and device | |
CN103023918B (en) | The mthods, systems and devices logged in are provided for multiple network services are unified | |
CN107070945B (en) | Identity login method and equipment | |
JP5719871B2 (en) | Method and apparatus for preventing phishing attacks | |
CN104092542B (en) | A kind of account login method, Apparatus and system | |
US8474014B2 (en) | Methods for the secure use of one-time passwords | |
EP3402136B1 (en) | Information interaction method, client and device | |
CN104540129B (en) | The registering and logging method and system of third-party application | |
CN105847245B (en) | Electronic mailbox login authentication method and device | |
US20200236105A1 (en) | Rich communication services security authentication system | |
EP2023262A2 (en) | Authentication system and authentication method | |
CN107241336B (en) | Identity verification method and device | |
CN102355509B (en) | Method and device for transmitting and receiving message according to mobile number in contact list | |
CN103001770B (en) | A kind of user rs authentication method, server and system | |
CN106470145B (en) | Instant messaging method and device | |
CN101426009A (en) | Identity management platform, service server, uniform login system and method | |
WO2017088634A1 (en) | Third-party application authentication method, authentication server, terminal and management server | |
CN107438054B (en) | Method and system for realizing menu information control based on public platform | |
US11165768B2 (en) | Technique for connecting to a service | |
CN106209816B (en) | A kind of web camera login method and system | |
CN103561063A (en) | Method and terminal for logging onto set top box | |
CN104270357A (en) | Service information sending method and device | |
CN104967525B (en) | Method and device that news is shared, system | |
CN104301285B (en) | Login method for web system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |