CN107958551A - A kind of full channel remote centralized authoring system of the expansible bank of business - Google Patents

A kind of full channel remote centralized authoring system of the expansible bank of business Download PDF

Info

Publication number
CN107958551A
CN107958551A CN201711481389.6A CN201711481389A CN107958551A CN 107958551 A CN107958551 A CN 107958551A CN 201711481389 A CN201711481389 A CN 201711481389A CN 107958551 A CN107958551 A CN 107958551A
Authority
CN
China
Prior art keywords
transaction
authorization
core
mandate
business
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201711481389.6A
Other languages
Chinese (zh)
Other versions
CN107958551B (en
Inventor
陈茂
马胜蓝
林婉霞
吴金聪
王桐森
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
FUJIAN RURAL CREDIT YONHAP
Original Assignee
FUJIAN RURAL CREDIT YONHAP
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by FUJIAN RURAL CREDIT YONHAP filed Critical FUJIAN RURAL CREDIT YONHAP
Priority to CN201711481389.6A priority Critical patent/CN107958551B/en
Publication of CN107958551A publication Critical patent/CN107958551A/en
Application granted granted Critical
Publication of CN107958551B publication Critical patent/CN107958551B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • G07F19/211Software architecture within ATMs or in relation to the ATM network
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance

Abstract

The present invention provides a kind of business the expansible full channel remote centralized authoring system of bank, including application end and authorization location, and the application end includes client and page end, and the client is communicated by network with authorization location respectively with page end;The application end is used to record element of transaction, submits transaction request, and triggers mandate and judge to perform corresponding operating, when mandate is judged as remote authorization, element of transaction is transferred in a database in the form of rich text and is handled for authorization location;The authorization location carries out parsing reduction for obtaining the element of transaction from the database, authorisation process result is preserved after authorisation process, and feed back to corresponding application end and be shown, and by setting pre- verification and optimization authorization rule, realize unified authorization tupe, verify in advance expansible, authorization rule business is expansible.

Description

A kind of full channel remote centralized authoring system of the expansible bank of business
Technical field
The present invention relates to bank's remote authorization system, more particularly to the full channel remote centralized of bank that a kind of business is expansible Authoring system.
Background technology
Remote centralized authoring system is supported by network communication and camera technique, innovates banking mandate Working mould Formula, to backstage authorization center, reproduces site sales counter by the service set through determining to need remote authorization in business in authorization center Business situation, realize and mandate business efficiently carried out by authorization center teller to concentrate examination & verification and completes authorisation process, so that real Physical isolation of the existing foreground teller with authorizing teller, effectively reduces operational risk, human resources allocation optimization, solves mandate business The amount busy free time is uneven, lifts business processing efficiency, the overall goals increased customer satisfaction degree.
At present, remote centralized authoring system is primarily present following deficiency:
(1) lack unified licensing mode, since current technology is most of accessed using cabinet face mode, for The access underbraced of non-cabinet face channel (such as electronic channel) in following bank's transition.Existing literature is for example " on commercial silver The thinking of row remote authorization business, Chinese economy and trade (the 23rd phase) " and " bank make the transition medium-long range mandate business development and thinking, In China Financial Computer (the 6th phase) ", the possibility of the future full channel access of proposition, but particular technique is not realized thin Section is described, and needs to consider that power, electronics canal are personally instructed in original core system mandate, cabinet for such unified licensing mode The processing parallel mode of road mandate and the exception handling of authoring system.And a new channel is accessed it is necessary to open again (B/S, the access way of C/S model are different, and resolution interface mode is also different under C/S model for the access way that to send out a kind of new Deng), autgmentability is poor.Meanwhile authorized user role is single user role, it is impossible to accomplishes that single user is used in combination, is only capable of leading to Cross and constantly switch authority in the role of backstage configuration user.
(2) Lame delegation and repetitive endowment undertreatment.Particularly after full channel is accessed, warrant quantity will significantly increase Add, the complexity of authoring system processing is also higher to put forward effect and scaling concern, it is necessary to consider." bank makes the transition existing literature In the development and thinking of medium-long range mandate business, China Financial Computer (the 6th phase) ", it is proposed that all peel off authorization rule and arrive Authoring system, has certain transformation amount for the system of stripping, and the mandate of particularly core inner is also required to consider, but right It is relatively low in the referring to property of different bank.The core that the document proposes at the same time individually develops pre- verifying function, can be because constantly newly-increased Authorize checkout transaction and need the pre- verification (inquiry code) of largely exploitation, so that increase system variation amount, and in corresponding business When logical transaction changes, also need to change pre- check code on an equal basis to ensure that rule is consistent, autgmentability is poor for this.
(3) transaction interface key element mode is parsed in Interface Reduction, if system transmission bandwidth can be caused using sectional drawing mode Consume larger, and use and reconstruct original transaction interface, in each transaction interface change in factor, especially change feelings in resolution rules Under condition, the transaction interface to make mistake is easily reconstructed." banking runs remote authorization systematical design idea to existing literature, greatly The access of site is only spoken of by even Polytechnics ", and limitation uses webpage development, causes the access for client to there is office It is sex-limited, the consideration for high availability extension is not referred to yet;Chinese patent " the business of existing Application No. 200920307709.0 The server of storage service chain information is referred in industry bank remote authorization management system ", respectively receive storage voucher, check, Identity card, client's head portrait and mandate person and teller's voice, accounting information, but individually develop cumbersome, and it is confined to cabinet face Channel, is to conduct entire interface to rear end to carry out analytic uniform to this preferable method;Existing Application No. A kind of 201010233650.2 Chinese patent " bank teller terminal remote-authorization method, server and system " description is based on cabinet The authorization method of platform in front, key element displaying is traded using the trading screen information of collection teller terminal, this only in teller Using sectional drawing mode some can be caused to need overstriking the function such as especially to identify during end can not use.
(4) although authorization rule supports configuration, differentiated control pattern is the absence of, is especially continuously increased feelings in authorization rule It under condition, can cause to authorize key element, entry largely to repeat, cause to safeguard and the reduction on search efficiency.
The content of the invention
The technical problem to be solved in the present invention, is to provide a kind of expansible bank of business full channel remote centralized mandate System, realizes unified authorization tupe, verifies in advance expansible, and authorization rule business is expansible.
What the present invention was realized in:A kind of full channel remote centralized authoring system of the expansible bank of business, including Shen It please hold and authorization location, the application end include client and page end, the client is with page end respectively by network with awarding Quan Duan communicates;
The application end is used to record element of transaction, submits transaction request, and triggers mandate and judge to perform corresponding operating, When mandate is judged as remote authorization, element of transaction is transferred in a database in the form of rich text and is handled for authorization location;
The authorization location carries out parsing reduction for obtaining the element of transaction from the database, after authorisation process Preserve authorisation process as a result, and feed back to it is corresponding application end be shown.
Further, described " authorization location obtains element of transaction from the database and carries out parsing reduction " is specific For:If the element of transaction is generated by client, reduction display is carried out using homologous cabinet surface technology framework, if the friendship What easy key element was generated by page end, then reduction display, reduction exhibition of the authorization location to element of transaction are carried out using webpage connector Show including the information for wherein needing highlighted mark is marked.
Further, described " triggering, which authorizes, to be judged to perform corresponding operating " specifically includes:If " local to authorize ", then enter It is local to authorize, and after locally mandate passes through, submit core system book keeping operation;If " not authorizing ", then core system is directly submitted Book keeping operation;If " remote authorization ", then element of transaction is transferred in the form of rich text in a database and is handled for authorization location, and Core system book keeping operation is submitted in mandate after passing through.
Further, the authorization location is provided with exception processing module, and the exception processing module includes:
The handling result that an Authorization result query interface is authorized for the timing inquiry of application end is provided, if handling result is " fortune In row ", then illustrate the still untreated completion of authorization tasks, application end continues waiting for;If handling result is " mandate passes through ", automatically The transaction of application end is exited, " remote authorization passes through, if continues to submit in transaction interface prompting”;If handling result is " mandate is refused Absolutely ", then " definite " backed off after random application end is hit in application end pop-up refusal prompt message, application endpoint, application end is handed over by changing Submitted again after easy interface elements;If handling result is " turning local ", the local examination & verification interface of application end interface pop-up;If processing When being as a result " supervisor terminates ", then apply for end pop-up " authorized supervisor terminates this task " prompting printed words, application endpoint is hit " definite " backed off after random application end;
Task is discharged automatically when authorization location processing time is more than a preset value;
When choosing " passing through ", " refusal " or " turning local " button to report an error during authorization location operates, authorization tasks state is called Query interface, if task status is " authorize refusal ", " authorize and complete and (turn local) ", " authorize and complete ", " authorizing automatic terminate ", When " site cancellation " or " Central termination ", then the prompting application corresponding prompt message in end, and exit authorization location transaction;
Under authorization location normal handling conditions, when authorisation process result is fed back to corresponding application end, if application end is different Often close, then authorization location terminates this authorization tasks automatically.
Further, the system comprises pre- correction verification module:For carrying out upper core twice using identical book keeping operation message Request, verifies, the closing the transaction if refusal in advance specifically, being sent in first time transaction request during core system before execution transaction, if To merchandise successfully, then core system carries out account rollback, and triggering afterwards, which authorizes, to be judged, and after remote authorization terminates response message, Initiate to send core system to carry out core book keeping operation in second of transaction request, twice on send transaction request to core with different marks Distinguish, service message is identical, and the account flow of processing is identical.
Further, the transaction flow for including the remote centralized authoring system of pre- correction verification module is specially:At application end After submitting transaction request, first, built-in check is carried out, be sent to pre- verification before core is traded afterwards, specifically include:Core is handed over Easily start, into the sub- transaction program for authorizing transaction, affairs point is set, judges that checking prediction message for pre- verification, then sets shape State is licensing status, and performs account transaction, judges whether that account transaction has exception, if so, it is abnormality then to set state, When master control is judged as licensing status or abnormality, account transaction rollback is carried out, and in licensing status, then report is passed under forbidding Text, verifies in advance before completing core transaction;If being found in the pre- checking procedure, application end there are abnormal phenomenon, is closed the trade;
After pre- verification passes through, triggering, which authorizes, to be judged and to perform corresponding operating as follows:
If authorizing judging result to be authorized to be local, foreground mandate is carried out, then judges whether that backstage is merchandised, if need not Backstage is merchandised, then directly performs foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, is carried out The operation of core transaction under non-pre- verification:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs Point, judges checking prediction message for non-pre- verification, performs account transaction, judges whether account transaction is abnormal, and account is carried out if abnormal Transaction rollback, terminates flow, i.e. core transaction fails;Otherwise, if core transaction is normal, return continues to execute foreground and subsequently hands over Easy logic, completes transaction;
If it is no mandate to authorize judging result, judge whether that backstage is merchandised, if need not merchandise from the background, directly perform Foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, and the core carried out under non-pre- verification is handed over Easy operation:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges that checking prediction message is Non- pre- verification, performs account transaction, judges whether account transaction is abnormal, and account transaction rollback is carried out if abnormal, terminates flow, I.e. core transaction fails;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction logic, completes transaction;
If mandate judging result is remote authorization, judges whether that backstage is merchandised, if need not merchandise from the background, directly hold Row foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, carries out the core under non-pre- verification The operation of transaction:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges checking prediction message For non-pre- verification, account transaction is performed, judges whether account transaction is abnormal, and account transaction rollback is carried out if abnormal, terminates stream Journey, i.e. core transaction fail;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction logic, completes to hand over Easily.
Further, the system also includes user right configuration module, for unified to user right by administrator Multiple role-securities of unique user, are multiplexed by management temporarily, are realized quickly across role transforming and multiplexing, the authorization location Role includes mandate person and auditor, the role-security include for management end function menu, authorization location service processing function and Authoring system search access right.
Further, the system comprises authorization rule diversity module, key element, authorising conditional, mandate are authorized for designing Entry, authorize business and authorize the authorization rule pattern of this Pyatyi of version:
It is described to authorize key element as dimension most thin in authorization rule, to apply for the element of transaction at end, including account client property Matter and nature of account;
The authorising conditional is used to key element will be authorized to be enumerated in the rule of different condition;
The authorization entries are used for an authorization rule being combined into different authorising conditionals under some business, at the same time Examination & verification key element rule is authorized for class of business configuration is corresponding.
The mandate business is used to be collected all authorization entries under same class of business, forms one completely Service authorization rule;
The mandate version is used to be replicated for mandate business in version management, for personalized mandate business Separately maintain and realize that there is different authorization rules in bank's difference site for different business.
The invention has the advantages that:
1st, unified authorization tupe is realized, with reference to both of which (client access and the webpage termination of access system Enter), unified authorization tupe is devised, supports parsing to authorize interface elements and the mode of highlighted displaying key element, and carry For unified exception handling, by the pattern can convenient access multiple channel, realize the comprehensive empowerment management of bank;
2nd, verify in advance expansible, with reference to the flow of bank's remote centralized mandate, devise the pre- school of fidelity core billing and accounting system Pattern is tested, can be carried out fidelity account based on not increasing pre- check code newly and verify in advance, accounting processing after authorizing is reduced and fails Caused mandate invalid situation, the pattern not only improve effective mandate rate of mandate person, can also be handed over not changing core account Dynamic expansion increases the pre- verifying function of account transaction newly when easily;Wherein unified rights configure, and realize the flexible of the more authorities of a user Configuration, covers the power of class of business selection (mandate person or auditor), search access right (data granularity) and administration interface Limit.
3rd, authorization rule hierarchical pattern, devises the authorization rule pattern of Pyatyi, is divided into and authorizes key element, authorising conditional, awards Entry is weighed, authorize business and authorizes version.The mandate key element of relatively low granularity, authorising conditional ensure to carry out in different business Multiplexing, the mandate version of higher granularity can support the individual requirement of different site tellers so that authorization rule neither redundancy Business is expansible again.
Brief description of the drawings
The present invention is further illustrated in conjunction with the embodiments with reference to the accompanying drawings.
Fig. 1 is concentrated for present system medium-long range and is authorized communication relations figure.
Fig. 2 is a kind of transaction flow signal of the expansible full channel remote centralized authoring system of bank of business of the present invention Figure.
Fig. 3 is authority configuration flow diagram of the present invention.
Fig. 4 is present invention introduces pre- checking process schematic diagram.
Embodiment
A kind of expansible full channel remote centralized authoring system of bank of business of the present invention, including application end and authorization location, The application end includes client and page end, and the client is communicated by network with authorization location respectively with page end;
The application end is used to record element of transaction, submits transaction request, and triggers mandate and judge to perform corresponding operating, When mandate is judged as remote authorization, element of transaction is transferred in a database in the form of rich text and is handled for authorization location;
The authorization location carries out parsing reduction for obtaining the element of transaction from the database, after authorisation process Preserve authorisation process as a result, and feed back to it is corresponding application end be shown.
Preferably, described " authorization location obtains element of transaction from the database and carries out parsing reduction " is specially: If the element of transaction is generated by client, reduction display is carried out using homologous cabinet surface technology framework, if the transaction Key element is generated by page end, then carries out reduction display, reduction display of the authorization location to element of transaction using webpage connector Including the information for wherein needing highlighted mark is marked.
Preferably, " triggering, which authorizes, to be judged to perform corresponding operating " specifically includes:If " local to authorize ", then enter this Ground mandate, and after locally mandate passes through, submit core system book keeping operation;If " not authorizing ", then core system note is directly submitted Account;If " remote authorization ", then element of transaction is transferred in the form of rich text in a database and is handled for authorization location, and awarded Power submits core system book keeping operation after passing through.
Preferably, the authorization location is provided with exception processing module, the exception processing module includes:
The handling result that an Authorization result query interface is authorized for the timing inquiry of application end is provided, if handling result is " fortune In row ", then illustrate the still untreated completion of authorization tasks, application end continues waiting for;If handling result is " mandate passes through ", automatically The transaction of application end is exited, " remote authorization passes through, if continues to submit in transaction interface prompting”;If handling result is " mandate is refused Absolutely ", then " definite " backed off after random application end is hit in application end pop-up refusal prompt message, application endpoint, application end is handed over by changing Submitted again after easy interface elements;If handling result is " turning local ", the local examination & verification interface of application end interface pop-up;If processing When being as a result " supervisor terminates ", then apply for end pop-up " authorized supervisor terminates this task " prompting printed words, application endpoint is hit " definite " backed off after random application end;
Task is discharged automatically when authorization location processing time is more than a preset value;
When choosing " passing through ", " refusal " or " turning local " button to report an error during authorization location operates, authorization tasks state is called Query interface, if task status is " authorize refusal ", " authorize and complete and (turn local) ", " authorize and complete ", " authorizing automatic terminate ", When " site cancellation " or " Central termination ", then the prompting application corresponding prompt message in end, and exit authorization location transaction;
Under authorization location normal handling conditions, when authorisation process result is fed back to corresponding application end, if application end is different Often close, then authorization location terminates this authorization tasks automatically.
Preferably, the system comprises pre- correction verification module:For being carried out twice using identical book keeping operation message, upper core please Ask, verified in advance before execution transaction during core system specifically, being sent in first time transaction request, the closing the transaction if refusal, if handing over Easily success, then core system progress account rollback, triggering afterwards, which authorizes, to be judged, and after remote authorization terminates response message, hair Rise second of transaction request on send core system carry out core book keeping operation, twice on send transaction request to core with different logo areas Point, service message is identical, and the account flow of processing is identical.
Preferably, the system also includes user right configuration module, for being managed by the way that administrator is unified to user right Multiple role-securities of unique user, are multiplexed by reason temporarily, are realized quickly across role transforming and multiplexing, the authorization location angle Color includes mandate person and auditor, and the role-security includes for management end function menu, authorization location service processing function and awards Weigh system queries authority.
Preferably, the system comprises authorization rule diversity module, key element, authorising conditional, mandate bar are authorized for designing Mesh, authorize business and authorize the authorization rule pattern of this Pyatyi of version:
It is described to authorize key element as dimension most thin in authorization rule, to apply for the element of transaction at end, including account client property Matter and nature of account;
The authorising conditional is used to key element will be authorized to be enumerated in the rule of different condition;
The authorization entries are used for an authorization rule being combined into different authorising conditionals under some business, at the same time Examination & verification key element rule is authorized for class of business configuration is corresponding.
The mandate business is used to be collected all authorization entries under same class of business, forms one completely Service authorization rule;
The mandate version is used to be replicated for mandate business in version management, for personalized mandate business Separately maintain and realize that there is different authorization rules in bank's difference site for different business.
With reference to a specific embodiment, the present invention will be further described:
Can referring to Fig. 1, in remote centralized authoring system authorization location communication relations figure, the operation system in figure is this hair Bright application end, that is, initiate to need the side authorized, and Authorization System Under is the authoring system server-side and authorization location of the present invention, Workflow engine is the process management system of guarantee authorization flow normal operation intrinsic in authoring system, communicates preposition responsible solution The function such as third party's message is analysed, it with authorization location is interacted with socket communication, and authorization location is mainly responsible for task scheduling, at mandate Reason, business audit and mandate judge that authorization location is interface packets communication with workflow engine communication, and routing function is by authorization location Control, service bus connection authorization location can support channel to route by F5.
The transaction of present system substantially flow is verified in advance as shown in Fig. 2, by applying for that end is first traded submission, Mandate judgement is carried out after pre- verification passes through, if " local to authorize ", is then authorized into local, and after locally mandate passes through, Submit core system book keeping operation;If " not authorizing ", then core system book keeping operation is directly submitted;If " remote authorization ", then carry out remote Cheng Shouquan, and core system book keeping operation is submitted after mandate passes through.
Application end, that is, access system of the present invention, the access module at this application end are provided with client and (are held in face of such as cabinet and be System) and page end (such as electronic channel system), it is of the invention in authorization location use the technology unified with end system in face of counter cabinet Framework.
For two kinds of different access ways in remote authorization process, using unified authorization processing mode, only gone back in displaying When former in different ways, it is specific as follows:
After element of transaction has been recorded at application end, " submission " button is clicked on, triggering main control process flow judges to mandate;Wherein by interface Key element is all transferred to the database (i.e. authorization service database in Fig. 1) of remote centralized authoring system in the form of rich text In;
Authorization location obtains the application end interface elements retained in the database, for client access, then using oneself Homologous cabinet surface technology framework carry out reduction display (when end system initiates to authorize i.e. in face of cabinet, transaction interface be by end in face of cabinet System is shown, if authorization location is also cabinet plane system, then can use same technology frame when reducing transaction interface Frame realizes that the displaying without cross-system again parses);It is for page end access, then (similar using webpage connector The class such as webview browser plug-in) carry out reduction display;When authorization location carries out above-mentioned parsing transaction interface key element, for needing Highlight, the information of overstriking mark carries out special marking.
The present invention is additionally provided with exception processing module, due to being used authorization server as server-side, is applying End will include as follows according to unified exception handling, the abnormality processing pattern:
(1) after authorization location is handled successfully, processing mode when notice cabinet face fails:To prevent authorization location due to originals such as networks Because of the situation that notice application end fails, " awarding for authoring system offer is called in application end after authorization tasks are acquired using timing Weigh result queries interface " handling result authorized is inquired about, if handling result is " in operation ", to illustrate that authorization tasks are still untreated Complete, application end continues waiting for;If handling result is " mandate passes through ", the transaction of application end is automatically exited from, is carried in transaction interface Show that " remote authorization passes through, if continues to submit”;If handling result is " authorizing refusal ", in application end pop-up refusal prompting Information, application endpoint hit " definite " backed off after random application end, and application end is submitted again after can changing transaction interface key element;If processing knot Fruit is " turning local ", then applies for the local examination & verification interface of end interface pop-up;If handling result is " supervisor terminates ", apply for end bullet Go out " this task has been authorized to supervisor and has terminated " prompting printed words, application endpoint hits " definite " backed off after random application end;
(2) authorization location is handled successfully, and authorization location finds that application end is closed extremely at notice application end, and authorization location then can be certainly It is dynamic to terminate this authorization tasks;
(3) to prevent authorization tasks to be acquired, finishing time is long, and authorization location sets the post timeout mechanism of transaction, surpasses When after automatic release task;
(4) authorization location abnormality processing, when authorization location teller click " passing through ", " refusal ", " turning local " button report an error, needs Authorization tasks status inquiry interface is called, if task status is mandate refusal, authorizes and complete and (turn locally), authorize and complete, authorize The application corresponding prompt message in end is then prompted when automatic termination, site cancellation, Central termination, and exits authorization location transaction.
Due to it is traditional be come authorization decision with role, and changing role needs management level to examine, some of which particulate The authority of degree needs interim switching, inconvenient for operation, the user right configuration module that the present invention is set, as shown in figure 3, configuration pipe Reason person completes user right by user's permission configuration module and is managed collectively, and by configuring authority, synchronous user information is simultaneously initial Change, user can obtain the task of different rights according to different role authority afterwards, can also individually be changed by Configuration Management Officer Across user role authority, uses after refreshing, and main expertise divides into management end function menu, authorization location service processing function, with And authoring system search access right, wherein, user logins management end, and business dish is shown by serve a dish single authority of user's searching and managing Single, authorization location service processing function checks user right by functional interface, and inquiry business inquires about use when performing query logic Family authority acquiring respective queries result.Because the single role such as mandate person, auditor is it is possible that some period interior angle The task of color itself is unsaturated, therefore, user more authority configurations different from traditional role's configuration, can temporarily will be single Multiple role-securities of user are multiplexed, and are realized quickly across role transforming and multiplexing.
The present invention increases pre- correction verification module in unified authorization pattern to be included:Access system (applying for end) uses identical Message of keeping accounts carries out upper core request twice, send in transaction verified in advance before performing transaction during core for the first time, merchandise if refusal Terminate, if merchandising successfully, core carries out account rollback, and upper core request is distinguished with different marks twice, but service message Identical, the account flow of processing is identical;Access system (applying for end) is verified successfully receiving normal response message and then think pre-, Then initiate to authorize to judge;After remote authorization, access system (applying for end) terminates response message receiving remote authorization, then initiates Second of upper core system of merchandising, core book keeping operation;
Bank transaction execution flow chart is as shown in Figure 4 after introducing pre- verification:
After applying for that transaction request is submitted at end, first, it is (main to include to message data of itself etc. originally to carry out built-in check Groundization verifies, and such as carries out the verification that legalizes to identification card number), pre- verification before core is traded is sent to afterwards, is specifically included: Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges checking prediction message for pre- verification, then Setting state is licensing status, and performs account transaction, judges whether that account transaction has exception, if so, it is different then to set state Normal state, when master control is judged as licensing status or abnormality, carries out account transaction rollback, and in licensing status, then prohibit Message is only passed down, is verified in advance before completing core transaction;If being found in the pre- checking procedure, application end there are abnormal phenomenon, is tied Beam is merchandised;
After pre- verification passes through, triggering, which authorizes, to be judged and to perform corresponding operating as follows:
If authorizing judging result to be authorized to be local, foreground mandate is carried out, then judges whether that backstage is merchandised, if need not Backstage is merchandised, then directly performs foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, is carried out The operation of core transaction under non-pre- verification:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs Point, judges checking prediction message for non-pre- verification, performs account transaction, judges whether account transaction is abnormal, and account is carried out if abnormal Transaction rollback, terminates flow, i.e. core transaction fails;Otherwise, if core transaction is normal, return continues to execute foreground and subsequently hands over Easy logic, completes transaction;
If it is no mandate to authorize judging result, judge whether that backstage is merchandised, if need not merchandise from the background, directly perform Foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, and the core carried out under non-pre- verification is handed over Easy operation:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges that checking prediction message is Non- pre- verification, performs account transaction, judges whether account transaction is abnormal, and account transaction rollback is carried out if abnormal, terminates flow, I.e. core transaction fails;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction logic, completes transaction;
If mandate judging result is remote authorization, judges whether that backstage is merchandised, if need not merchandise from the background, directly hold Row foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, carries out the core under non-pre- verification The operation of transaction:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges checking prediction message For non-pre- verification, account transaction is performed, judges whether account transaction is abnormal, and account transaction rollback is carried out if abnormal, terminates stream Journey, i.e. core transaction fail;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction logic, completes to hand over Easily.
In this way, remote authorization system (i.e. authorization location) is lacked with access system (applying for end), interacting for core system, access System only need to be concerned about overall Authorization result after authoring system is called, and remote authorization system can also keep fabulous independence Property, also all only need to be concerned about Authorization result when any system accesses remote authorization system again, and in core system, it is Reduce the code development that verification is authorized during newly-increased transaction every time, it is ensured that the verification of account can move forward, using with original core Authorize transaction flow identical, but the account request of same account transaction message twice is initiated in access system.Core system increases Add remote authorization application mark, when mark is verifies in advance, core system can carry out rollback after executive program, during which find industry During business refusal information, just application system is returned to according to normal flow;When not being pre- check mark, then according to normal accounting process Perform, and for the mandate of core inner, original flow can be continued to use, and being skipped automatically in pre- verification prevents repetition from awarding Power, for this it is achieved that remote centralized mandate, core mandate, access system locally authorize three pattern coexist.
Judge not only to have supported that version was diversified to ensure to authorize, but also ensure that authorization rule can be maximumlly multiplexed, this hair Have also been devised the authorization rule pattern of Pyatyi in bright system, be divided into authorize key element, authorising conditional, authorization entries, mandate business and Version is authorized, the authorization rule pattern of this Pyatyi is illustrated:
Key element is authorized, the key element judged is needed in the most thin dimension in authorization rule, predominantly access system, with Exemplified by Send only Account, as shown in table 1, the mandate key element in Send only Account just includes Send only Account client property, nature of account Deng.
Table 1
Authorising conditional, mainly will authorize key element to be enumerated in the rule of different condition, as shown in table 2.
Table 2
Send only Account client's property It is equal to Save client Send only Account client property is equal to savings client
Send only Account client's property It is equal to To public client Send only Account client property is equal to public client
Send only Account client's property It is equal to Financial client Send only Account client property is equal to financial client
Send only Account client's property It is not equal to Save client Send only Account client property is not equal to savings client
Authorization entries, an authorization rule different authorising conditionals being combined under some business, due to not of the same trade or business Business can use identical authorising conditional, therefore higher durability and scalability are achieved that in authorization entries, such as the institute of table 3 The authorization entries shown.
Table 3
At the same time examination & verification key element rule is authorized also directed to class of business configuration is corresponding.
Mandate business, mandate business are to be collected all authorization entries under same class of business, and formation one is complete Whole service authorization rule.
Version is authorized, is replicated in version management for mandate business, is carried out for personalized mandate business independent Safeguard, it is possible to realize that there is different authorization rules in bank's difference site for different business.
When carrying out licensing mode judgement for authoring system, advised using the mandate of the class of business mandate version of corresponding mechanism Then.
The present invention devises unified authorization pattern first, the main body using remote centralized mandate as authorization service, there is provided complete The lower Interface Reduction of channel access, the verification of core high-fidelity, exception handling, improves the convenience for authorizing efficiency and access; The more privilege features of a user provided so that the work that user can be under more posies, reduces frequent switching configuration skills for occupation and make Into the low problem of work;The authorization rule differentiated control of offer, can maximally utilize and authorize key element, authorization entries, and energy Facilitate the personalized managerial ability for using, improving bank authorization of different institutions by version management.
Although the foregoing describing the embodiment of the present invention, those familiar with the art should manage Solution, we are merely exemplary described specific embodiment, rather than for the restriction to the scope of the present invention, are familiar with this The equivalent modification and change that the technical staff in field is made in the spirit according to the present invention, should all cover the present invention's In scope of the claimed protection.

Claims (8)

  1. A kind of 1. full channel remote centralized authoring system of the expansible bank of business, it is characterised in that:Including application end and mandate End, the application end include client and page end, and the client is led to by network and authorization location respectively with page end Letter;
    The application end is used to record element of transaction, submits transaction request, and triggers mandate and judge to perform corresponding operating, is authorizing When being judged as remote authorization, element of transaction is transferred in a database in the form of rich text and is handled for authorization location;
    The authorization location carries out parsing reduction for obtaining the element of transaction from the database, is preserved after authorisation process Authorisation process as a result, and feed back to it is corresponding application end be shown.
  2. 2. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 1, its feature exist In:Described " authorization location obtains element of transaction from the database and carries out parsing reduction " is specially:If the transaction will Element then carries out reduction display, if the element of transaction is by page end by client generation using homologous cabinet surface technology framework Generation, then reduction display is carried out using webpage connector, the authorization location includes to wherein needing the reduction display of element of transaction The information for highlighting mark is marked.
  3. 3. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 1, its feature exist In:" triggering, which authorizes, to be judged to perform corresponding operating " specifically includes:If " local to authorize ", then enter and locally authorize, and After local mandate passes through, core system book keeping operation is submitted;If " not authorizing ", then core system book keeping operation is directly submitted;If " long-range Authorize ", then element of transaction is transferred in the form of rich text in a database and is handled for authorization location, and submitted after mandate passes through Core system is kept accounts.
  4. 4. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 1, its feature exist In:The authorization location is provided with exception processing module, and the exception processing module includes:
    The handling result that an Authorization result query interface is authorized for the timing inquiry of application end is provided, if handling result is " operation In ", then illustrate the still untreated completion of authorization tasks, application end continues waiting for;If handling result is " mandate passes through ", move back automatically Go out to apply that end is merchandised, " remote authorization passes through, if continues to submit in transaction interface prompting”;If handling result is " mandate is refused Absolutely ", then " definite " backed off after random application end is hit in application end pop-up refusal prompt message, application endpoint, application end is handed over by changing Submitted again after easy interface elements;If handling result is " turning local ", the local examination & verification interface of application end interface pop-up;If processing When being as a result " supervisor terminates ", then apply for end pop-up " authorized supervisor terminates this task " prompting printed words, application endpoint is hit " definite " backed off after random application end;
    Task is discharged automatically when authorization location processing time is more than a preset value;
    When choosing " passing through ", " refusal " or " turning local " button to report an error during authorization location operates, authorization tasks status inquiry is called Interface, if task status is " authorizing refusal ", " authorize and complete and (turn local) ", " authorize and complete ", " authorizing automatic terminate ", " net When point cancellation " or " Central termination ", then the prompting application corresponding prompt message in end, and exit authorization location transaction;
    Under authorization location normal handling conditions, when authorisation process result is fed back to corresponding application end, if application end is closed extremely Close, then authorization location terminates this authorization tasks automatically.
  5. 5. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 1, its feature exist In:The system comprises pre- correction verification module:For carrying out upper core request twice using identical book keeping operation message, specifically, the Send in transaction request and verified in advance before performing transaction during core system, the closing the transaction if refusal, if merchandising successfully, core System carries out account rollback, and triggering afterwards, which authorizes, to be judged, and after remote authorization terminates response message, initiating second of transaction please Ask and send core system to carry out core book keeping operation, twice on send transaction request to core with different mark differentiations, service message phase Together, the account flow of processing is identical.
  6. 6. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 5, its feature exist In:The transaction flow for including the remote centralized authoring system of pre- correction verification module is specially:After transaction request being submitted at application end, First, built-in check is carried out, pre- verification before core is traded is sent to afterwards, specifically includes:Core transaction starts, into Authorize the sub- transaction program of transaction, affairs point is set, judge checking prediction message for pre- verification, then it is licensing status to set state, and Account transaction is performed, judges whether that account transaction has exception, if so, it is abnormality then to set state, master control is judged as authorizing When state or abnormality, account transaction rollback is carried out, and in licensing status, then message is passed under forbidding, core is completed and hands over Pre- verification before easily;If being found in the pre- checking procedure, application end there are abnormal phenomenon, is closed the trade;
    After pre- verification passes through, triggering, which authorizes, to be judged and to perform corresponding operating as follows:
    If authorizing judging result to be authorized to be local, foreground mandate is carried out, then judges whether that backstage is merchandised, if need not backstage Transaction, then directly perform foreground logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, is carried out non-pre- The operation of core transaction under verification:Core transaction starts, and into the sub- transaction program with mandate transaction, sets affairs point, Checking prediction message is judged for non-pre- verification, performs account transaction, judges whether account transaction is abnormal, and account affairs are carried out if abnormal Rollback, terminates flow, i.e. core transaction fails;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction and patrols Volume, complete transaction;
    If it is no mandate to authorize judging result, judge whether that backstage is merchandised, if need not merchandise from the background, directly perform foreground Logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, the core transaction under the non-pre- verification of progress Operation:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges checking prediction message to be non-pre- Verification, performs account transaction, judges whether account transaction is abnormal, and account transaction rollback is carried out if abnormal, terminates flow, i.e. core Heart Fail Transaction;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction logic, completes transaction;
    If mandate judging result is remote authorization, judge whether that backstage is merchandised, if need not merchandise from the background, before directly performing Platform logical transaction, completes transaction;If desired backstage is merchandised, then transaction is sent to core, carries out the core transaction under non-pre- verification Operation:Core transaction starts, and into the sub- transaction program for authorizing transaction, sets affairs point, judges checking prediction message to be non- Pre- verification, performs account transaction, judges whether account transaction is abnormal, and account transaction rollback is carried out if abnormal, terminates flow, i.e., Core transaction fails;Otherwise, if core transaction is normal, return continues to execute foreground subsequent transaction logic, completes transaction.
  7. 7. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 1, its feature exist In:, temporarily will be single for being managed collectively by administrator to user right the system also includes user right configuration module Multiple role-securities of user are multiplexed, and realization quickly includes mandate person across role transforming and multiplexing, the authorization location role And auditor, the role-security are included for management end function menu, authorization location service processing function and authoring system inquiry power Limit.
  8. 8. a kind of full channel remote centralized authoring system of the expansible bank of business according to claim 1, its feature exist In:The system comprises authorization rule diversity module, for design authorize key element, authorising conditional, authorization entries, authorize business and Authorize the authorization rule pattern of this Pyatyi of version:
    It is described that to authorize key element be most thin dimension in authorization rule, to apply for the element of transaction at end, including account client property and Nature of account;
    The authorising conditional is used to key element will be authorized to be enumerated in the rule of different condition;
    The authorization entries are used for an authorization rule being combined into different authorising conditionals under some business, are directed at the same time Class of business configuration is corresponding to authorize examination & verification key element rule.
    The mandate business is used to be collected all authorization entries under same class of business, forms a complete business Authorization rule;
    The mandate version is used to be replicated for mandate business in version management, is carried out for personalized mandate business Separately maintain and realize that there is different authorization rules in bank's difference site for different business.
CN201711481389.6A 2017-12-29 2017-12-29 Business-extensible bank full-channel remote centralized authorization system Active CN107958551B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201711481389.6A CN107958551B (en) 2017-12-29 2017-12-29 Business-extensible bank full-channel remote centralized authorization system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201711481389.6A CN107958551B (en) 2017-12-29 2017-12-29 Business-extensible bank full-channel remote centralized authorization system

Publications (2)

Publication Number Publication Date
CN107958551A true CN107958551A (en) 2018-04-24
CN107958551B CN107958551B (en) 2020-11-03

Family

ID=61957210

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201711481389.6A Active CN107958551B (en) 2017-12-29 2017-12-29 Business-extensible bank full-channel remote centralized authorization system

Country Status (1)

Country Link
CN (1) CN107958551B (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109447806A (en) * 2018-11-01 2019-03-08 中国银行股份有限公司 Front-end control method and device, storage medium and electronic equipment
CN110458705A (en) * 2019-08-15 2019-11-15 中国银行股份有限公司 A kind of processing system and method for authorization message
CN110971572A (en) * 2018-09-29 2020-04-07 北京华为数字技术有限公司 Authentication method, server and client
CN111178850A (en) * 2019-12-31 2020-05-19 中国银行股份有限公司 Transaction method, device and system
CN111951017A (en) * 2020-08-17 2020-11-17 中国银行股份有限公司 Counter transaction authorization method, system, computer equipment and readable storage medium
CN112396522A (en) * 2020-11-19 2021-02-23 中国建设银行股份有限公司 Transaction processing method and device
CN113297549A (en) * 2021-06-16 2021-08-24 中国农业银行股份有限公司 Authority control method, device, equipment and computer readable storage medium
CN115689706A (en) * 2022-10-21 2023-02-03 广州市玄武无线科技股份有限公司 One-stop type banking business signing system

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090265273A1 (en) * 2008-04-18 2009-10-22 Ncr Corporation Transaction authorization
CN201477682U (en) * 2009-08-10 2010-05-19 深圳市银之杰科技股份有限公司 Remote authorization management system of commercial bank
CN101877158A (en) * 2010-03-23 2010-11-03 苏州德融嘉信信用管理技术有限公司 Front service platform of bank and operation processing method thereof
CN101916477A (en) * 2010-07-19 2010-12-15 中国工商银行股份有限公司 Bank teller terminal remote-authorization method, server and system
CN201853288U (en) * 2010-10-09 2011-06-01 湖北泰信科技信息发展有限责任公司 Bank remote business authorization collector system
CN202373038U (en) * 2011-12-28 2012-08-08 郑州银盾科技有限公司 Concentrated authoring system of commercial banks
US8606696B1 (en) * 2012-09-11 2013-12-10 Simplexity, Inc. Assessing consumer purchase behavior in making a financial contract authorization decision
US20150032623A1 (en) * 2013-07-29 2015-01-29 Mastercard International Incorporated Systems and methods to enable payments in the absence of a point of sale device
CN107464098A (en) * 2017-08-10 2017-12-12 成都牵牛草信息技术有限公司 The checking method of form data operation

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090265273A1 (en) * 2008-04-18 2009-10-22 Ncr Corporation Transaction authorization
CN201477682U (en) * 2009-08-10 2010-05-19 深圳市银之杰科技股份有限公司 Remote authorization management system of commercial bank
CN101877158A (en) * 2010-03-23 2010-11-03 苏州德融嘉信信用管理技术有限公司 Front service platform of bank and operation processing method thereof
CN101916477A (en) * 2010-07-19 2010-12-15 中国工商银行股份有限公司 Bank teller terminal remote-authorization method, server and system
CN201853288U (en) * 2010-10-09 2011-06-01 湖北泰信科技信息发展有限责任公司 Bank remote business authorization collector system
CN202373038U (en) * 2011-12-28 2012-08-08 郑州银盾科技有限公司 Concentrated authoring system of commercial banks
US8606696B1 (en) * 2012-09-11 2013-12-10 Simplexity, Inc. Assessing consumer purchase behavior in making a financial contract authorization decision
US20150032623A1 (en) * 2013-07-29 2015-01-29 Mastercard International Incorporated Systems and methods to enable payments in the absence of a point of sale device
CN107464098A (en) * 2017-08-10 2017-12-12 成都牵牛草信息技术有限公司 The checking method of form data operation

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110971572A (en) * 2018-09-29 2020-04-07 北京华为数字技术有限公司 Authentication method, server and client
CN109447806A (en) * 2018-11-01 2019-03-08 中国银行股份有限公司 Front-end control method and device, storage medium and electronic equipment
CN109447806B (en) * 2018-11-01 2021-06-01 中国银行股份有限公司 Front-end control method and device, storage medium and electronic equipment
CN110458705A (en) * 2019-08-15 2019-11-15 中国银行股份有限公司 A kind of processing system and method for authorization message
CN111178850A (en) * 2019-12-31 2020-05-19 中国银行股份有限公司 Transaction method, device and system
CN111178850B (en) * 2019-12-31 2023-07-21 中国银行股份有限公司 Transaction method, device and system
CN111951017A (en) * 2020-08-17 2020-11-17 中国银行股份有限公司 Counter transaction authorization method, system, computer equipment and readable storage medium
CN111951017B (en) * 2020-08-17 2023-08-22 中国银行股份有限公司 Counter transaction authorization method, system, computer equipment and readable storage medium
CN112396522A (en) * 2020-11-19 2021-02-23 中国建设银行股份有限公司 Transaction processing method and device
CN113297549A (en) * 2021-06-16 2021-08-24 中国农业银行股份有限公司 Authority control method, device, equipment and computer readable storage medium
CN113297549B (en) * 2021-06-16 2024-03-05 中国农业银行股份有限公司 Authority control method, device, equipment and computer readable storage medium
CN115689706A (en) * 2022-10-21 2023-02-03 广州市玄武无线科技股份有限公司 One-stop type banking business signing system

Also Published As

Publication number Publication date
CN107958551B (en) 2020-11-03

Similar Documents

Publication Publication Date Title
CN107958551A (en) A kind of full channel remote centralized authoring system of the expansible bank of business
Venkatesh et al. Extending the two‐stage information systems continuance model: Incorporating UTAUT predictors and the role of context
CN106230787B (en) A kind of authentication method of membership information system for unified management
CN104933188B (en) A kind of data synchronous system and method in patent personalization storehouse
CN110084048B (en) Method for implementing bank unified user management
CN106485473A (en) Mobile approval information system and its information processing method
CN106685771A (en) Unified access method for all service channels of electric power marketing
CN110148034A (en) A kind of excellent device and method of online shopping system architecture
US20050114226A1 (en) Automated customer entitlement system for vendor services
CN107748985A (en) Network method of payment and network payment server
CN105760192B (en) Registration method and device for service module of system server
JP2006515439A (en) Method and system for processing credit card related transactions
CN104283901B (en) A kind of distributed live background service system and its method
DE102012112967A1 (en) online transaction system
CN103679967A (en) Self-service transaction terminal, front equipment and self-service terminal system
CN106875322A (en) A kind of network lottery drawing method and device
CN105956842A (en) Electronic membership card management method and device
TW200841260A (en) Verifying method for implementing management software
CN107977174A (en) Cloud print system and method based on wechat barcode scanning certification
CN109472439A (en) Credit estimation method, device, equipment and system
CN109598549A (en) A kind of Internet advertising put-on method and device
CN106126352A (en) The asynchronous method and device reporting and submitting information
DE112010004808T5 (en) Simultaneous execution of request processing and analysis of requirements
CN111784282A (en) Comprehensive management platform for intelligent venue
CN102165479A (en) Mobile banking architecture

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant