CN108600203A - Secure Single Sign-on method based on Cookie and its unified certification service system - Google Patents
Secure Single Sign-on method based on Cookie and its unified certification service system Download PDFInfo
- Publication number
- CN108600203A CN108600203A CN201810321372.2A CN201810321372A CN108600203A CN 108600203 A CN108600203 A CN 108600203A CN 201810321372 A CN201810321372 A CN 201810321372A CN 108600203 A CN108600203 A CN 108600203A
- Authority
- CN
- China
- Prior art keywords
- user
- cookie
- unified certification
- voucher
- service system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a kind of single-point logging methods of Cookie, include the following steps:User sends logging request by client browser to service server;Service server is redirected to unified certification service system according to the logging request, and unified certification service system judges whether the service server carries the corresponding request voucher of the logging request;Cookie is written in the user credential by unified certification service system, and splices the user credential simultaneously to redirect address, and user credential is redirected to user requests webpage by service server, executes the logging request.The invention also discloses a kind of unified certification service systems based on Cookie single-sign-ons, including Parameter analysis of electrochemical module, account correction verification module, Cookie authentication modules, user credential generation module and return module.The present invention efficiently solves the problems such as cross-domain, distributed deployment, the differentiation of each application site pattern, and improve the safety of user authentication while realizing single-sign-on Core Feature.
Description
Technical field
The present invention relates to field of computer technology, especially a kind of Secure Single Sign-on method and its system based on Cookie
One identification service system.
Background technology
Single-sign-on (Single Sign On), referred to as SSO are the solutions that business event popular at present is integrated
One of scheme.What single-sign-on mainly solved is in multiple application sites, and user only needs a login authentication, so that it may to access
Request is exited in all related application websites, one of application site initiation, and other application website also nullifies login.Single-sign-on
It is simple to seem function, but during system combination, the demand of many personalizations can be encountered, such as different websites log in pattern requirement
Different and different website docking mode differences of different, different website development languages etc., these factors will lead to the system integration
Difficulty increases.Therefore traditional single-sign-on has the shortcomings that safety, stability and availability are low etc..
Invention content
To solve problems of the prior art, the purpose of the present invention is to propose to a kind of safe single-point based on Cookie
Login method and its unified certification service system, unified certification service system proposed by the present invention aim at single-sign-on core
While function, the problems such as cross-domain, distributed deployment, the differentiation of each application site pattern are solved, and improve the safety of user authentication
Property;And the system belongs to lightweight, have the characteristics that it is invasive to application site it is small, can flexible expansion, stability it is high.
To achieve the above object, the technical solution adopted by the present invention is:
A kind of single-point logging method based on Cookie, includes the following steps:
User sends logging request by client browser to service server;
Service server is redirected to unified certification service system according to the logging request, and unified certification service system is sentenced
Whether the service server that breaks carries the corresponding request voucher of the logging request:If not, unified certification service system is then direct
It is redirected to the corresponding login page of the logging request;If so, unified certification service system then verifies the request voucher, lead to
It crosses the request acquisition of credentials and corresponds to the raw information of logging request, and encryption is packaged to raw information and obtains user credential;
Cookie is written in the user credential by unified certification service system, and splices the user credential simultaneously to redirection
User credential is redirected to user requests webpage by service server, executes the logging request by address.
As a further improvement on the present invention, the unified certification service system judges that the service server does not carry institute
The corresponding request voucher of logging request is stated, and when user inputs account information by the login page and submits request to unification
When identification service system, whether unified certification service system calls background service to verify the account information legal:If so, then obtaining
Take the raw informations such as User ID and token as user credential;If not, being redirected directly to the corresponding log in page of the business
Face, and prompt account information mistake.
As a further improvement on the present invention, the unified certification service system judges that the service server has carried institute
The corresponding request voucher of logging request is stated, that is, it is cookie information to carry request voucher, shows the user in other business sites
In login status, unified certification service system will parse the corresponding Cookie of the request voucher:
If parsing is unsuccessful, it is redirected to the corresponding login page of the business;
If successfully resolved, judge whether the Cookie is expired:If so, then will be redirected to the corresponding log in page of the business
Face;If not, unified certification service system then calls background service to obtain User ID and generates token.
As a further improvement on the present invention, when whether unified certification service system calls background service verification account information
When legal, if it is more than 3 times that user, which inputs account information errors number, login page increases for preventing machine simulation from asking
Graphical verification code;If user inputs account information errors number again more than 5 times, within a certain period of time, the user account is limited
Logging request.
As a further improvement on the present invention, when the unified certification service system successfully obtains User ID and token etc.
When the raw information of user credential, the unified certification service system is using server-side key to User ID, traffic ID, token and mistake
The raw information of the user credentials such as time phase is packaged encryption and generates server-side user credential, and by the server-side user credential
Cookie is written;
Meanwhile also generation visitor is encrypted to the raw information of user credential using business key in unified certification service system
Family end subscriber voucher, and client user's voucher is spliced on loopback address;
Finally, client user's voucher is redirected to service server by unified certification service system according to loopback address,
Service server intercepts client user's voucher from redirect address, parses client user's voucher, and the use that will be parsed
Sess ion are written in family voucher, and return to the page of user's logging request.
As a further improvement on the present invention, when the service server parses client user's voucher, business service
Device carries business key request unified certification service systems and obtains the required key ciphertexts of decryption, and the key ciphertexts got are carried out
Decryption obtains decrypting required key, and service server is decrypted client user's voucher further according to the key of decryption gained.
The present invention also provides a kind of unified certification service system based on Cookie single-sign-ons, the unified certification services
System includes Parameter analysis of electrochemical module, account correction verification module, Cookie authentication modules, user credential generation module and returns to module;
Parameter analysis of electrochemical module, for working as, unified certification service system receives client browser or service server transmission is stepped on
When record request, required parameter is parsed, judges whether to carry the corresponding required parameter of the logging request:If not, calling
Return to module;If so, when required parameter includes user account information, account correction verification module is called;When required parameter includes phase
When closing cookie information, then Cookie authentication modules are called;
Account correction verification module, for when user is logged in by login page, being called according to user account and password
Background service obtains User ID and token if account number cipher is legal;
Cookie authentication modules, for when service server request voucher is Cookie, parsing Cookie and to obtaining
Parameter be decrypted, if successful decryption, judge whether Cookie expired using the parameter after decryption, if without expired,
Background service is called to obtain the corresponding User ID of the business and generate token information;
User credential generation module, for when user account information is legal or Cookie is not out of date, utilizing server-side key
To the user credentials raw information such as User ID, traffic ID, token and expired time be packaged encryption generate service end subscriber with
Card is packaged encryption to user credential raw information using business key and generates client user's voucher;
Return module, for into Cookie write service end subscriber voucher, splice client user on loopback address
Voucher and delete Cookie in Invalid parameter, and return to corresponding requested service server, if Parameter analysis of electrochemical module does not have
When getting request voucher or account verification or illegal Cookie verifications, then returns to module and be redirected directly to corresponding industry
The login page of business.
The beneficial effects of the invention are as follows:
Secure Single Sign-on method and its unified certification service system provided by the invention based on Cookie, by each business
Website login page is managed collectively, and enterprise-class tools' certification, single-sign-on are can be used for, and is realizing single-sign-on Core Feature
While, the problems such as cross-domain, distributed deployment, the differentiation of each application site pattern are efficiently solved, and improve user authentication
Safety, and the system belongs to lightweight, have it is invasive to application site it is small, can the spies such as flexible expansion, stability height
Point, and it is conducive to the system integration.
Description of the drawings
Fig. 1 is the flow diagram of the embodiment of the present invention.
Specific implementation mode
The embodiment of the present invention is described in detail below in conjunction with the accompanying drawings.
A kind of unified certification service system based on Cookie single-sign-ons, which includes parametric solution
It analyses module, account correction verification module, Cookie authentication modules, user credential generation module and returns to module;
Wherein, Parameter analysis of electrochemical module, for receiving client browser or service server when unified certification service system
When sending logging request, required parameter is parsed, judges whether required parameter is empty, if required parameter is sky, is called
Return to module;If required parameter is not sky, when required parameter includes user account information, account correction verification module is called;When asking
When parameter being asked to include related cookie information, then Cookie authentication modules are called;
Account correction verification module, for when user is logged in by login page, being called according to user account and password
Background service obtains User ID and token if account number cipher is legal;
Cookie authentication modules, for when service server request voucher is Cookie, parsing Cookie and to obtaining
Parameter be decrypted, if successful decryption, judge whether Cookie expired using the parameter after decryption, if without expired,
Background service is called to obtain the corresponding User ID of the business and generate token information;
User credential generation module, for when user account information is legal or Cookie is not out of date, utilizing server-side key
To the user credentials raw information such as User ID, traffic ID, token and expired time be packaged encryption generate service end subscriber with
Card is packaged encryption to user credential raw information using business key and generates client user's voucher;
Return module, for into Cookie write service end subscriber voucher, splice client user on loopback address
Voucher and delete Cookie in Invalid parameter, and return to corresponding requested service server, if Parameter analysis of electrochemical module does not have
When getting request voucher or account verification or illegal Cookie verifications, then returns to module and be redirected directly to corresponding industry
The login page of business.
The method workflow block diagram based on Cookie single-sign-ons is as shown in Figure 1 in the present invention:
When user sends logging request to a certain business site, service server carries request voucher and is redirected to unification
Verification System;
Centralized Authentication System receives request, and is parsed to request voucher by Parameter analysis of electrochemical module, judges business service
Whether device carries request voucher;
If service server does not carry request voucher, the corresponding log in page of the business site is redirected to by return module
Face;
When user by login page send logging request when, Parameter analysis of electrochemical module is judged as user account information, then by
Account correction verification module calls background service to obtain User ID and token;
If service server has carried request voucher, that is, it is cookie information to carry request voucher, then by Cookie certifications
Module calls background service to obtain User ID and token;
If the above process fails, the corresponding User ID of acquisition, the log in page of corresponding business is redirected to by return module
Face;If the above process successfully obtains corresponding User ID, by user credential generation module to User ID, traffic ID, token and expired
The user credentials raw information such as time is packaged encryption, generates server-side user credential and client user's voucher;
It returns in the server-side user credential write-in Cookie that module generates user credential generation module, client is used
Family voucher is spliced on loopback address, and deletes Invalid parameter in Cookie, returns to corresponding requested service server;
Service server intercepts client user's voucher from loopback address, and is parsed to client user's voucher.
Specific implementation mode of the invention above described embodiment only expresses, the description thereof is more specific and detailed, but simultaneously
Cannot the limitation to the scope of the claims of the present invention therefore be interpreted as.It should be pointed out that for those of ordinary skill in the art
For, without departing from the inventive concept of the premise, various modifications and improvements can be made, these belong to the guarantor of the present invention
Protect range.
Claims (7)
1. a kind of single-point logging method based on Cookie, which is characterized in that include the following steps:
User sends logging request by client browser to service server;
Service server is redirected to unified certification service system according to the logging request, and unified certification service system judges institute
State whether service server carries the corresponding request voucher of the logging request:If not, unified certification service system is then directly reset
To the corresponding login page of the logging request;If so, unified certification service system then verifies the request voucher, by this
Request acquisition of credentials corresponds to the raw information of logging request, and is packaged encryption to raw information and obtains user credential;
Cookie is written in the user credential by unified certification service system, and splices the user credential simultaneously to redirection ground
User credential is redirected to user requests webpage by service server, executes the logging request by location.
2. the single-point logging method according to claim 1 based on Cookie, which is characterized in that the unified certification service
System judges that the service server does not carry the corresponding request voucher of the logging request, and when user passes through the log in page
When face inputs account information and submits request to unified certification service system, unified certification service system calls background service verification
Whether the account information is legal:If so, then obtaining the raw informations such as User ID and token as user credential;If not, straight
It connects and is redirected to the corresponding login page of the business, and prompt account information mistake.
3. the single-point logging method according to claim 1 based on Cookie, which is characterized in that the unified certification service
System judges that the service server has carried the corresponding request voucher of the logging request, and unified certification service system will be to this
The corresponding Cookie of request voucher is parsed:
If parsing is unsuccessful, it is redirected to the corresponding login page of the business;
If successfully resolved, judge whether the Cookie is expired:If so, then will be redirected to the corresponding login page of the business;
If not, unified certification service system then calls background service to obtain User ID and generates token.
4. the single-point logging method according to claim 2 based on Cookie, which is characterized in that be when unified certification services
When whether system calls background service verification account information legal, if it is more than 3 times that user, which inputs account information errors number, log in
The page increases the graphical verification code for preventing machine simulation from asking;If user input account information errors number again more than 5 times,
Then within a certain period of time, the logging request of the user account is limited.
5. the single-point logging method according to claim 2 or 3 based on Cookie, which is characterized in that further include following step
Suddenly:
When the unified certification service system successfully obtains the raw information of the user credentials such as User ID and token, this is unified
Identification service system is using server-side key to the raw information of the user credentials such as User ID, traffic ID, token and expired time
It is packaged encryption and generates server-side user credential, and Cookie is written into the server-side user credential;
Meanwhile also generation client is encrypted to the raw information of user credential using business key in unified certification service system
User credential, and client user's voucher is spliced on loopback address;
Finally, client user's voucher is redirected to service server, business by unified certification service system according to loopback address
Server intercepts client user's voucher from redirect address, parses client user's voucher, and by the user parsed with
Card write-in sess ion, and return to the page of user's logging request.
6. the single-point logging method according to claim 5 based on Cookie, which is characterized in that when the service server
When parsing client user's voucher, service server carries business key request unified certification service systems and obtains needed for decryption
The key ciphertexts got are decrypted to obtain and decrypt required key by key ciphertexts, and service server is further according to decryption gained
Client user's voucher is decrypted in key.
7. a kind of unified certification service system based on Cookie single-sign-ons, which is characterized in that the unified certification service system
Including Parameter analysis of electrochemical module, account correction verification module, Cookie authentication modules, user credential generation module and return to module;
Parameter analysis of electrochemical module, for working as, unified certification service system receives client browser or service server sends to log in and ask
When asking, required parameter is parsed, judges whether to carry the corresponding required parameter of the logging request:It is returned if not, calling
Module;If so, when required parameter includes user account information, account correction verification module is called;When required parameter includes correlation
When cookie information, then Cookie authentication modules are called;
Account correction verification module, for when user is logged in by login page, backstage to be called according to user account and password
Service, if account number cipher is legal, obtains User ID and token;
Cookie authentication modules, for when service server request voucher is Cookie, parsing Cookie and the ginseng to acquisition
Number is decrypted, if successful decryption, judges whether Cookie is expired using the parameter after decryption, if without expired, calls
Background service obtains the corresponding User ID of the business and generates token information;
User credential generation module, for when user account information is legal or Cookie is not out of date, using server-side key to
The user credentials raw information such as family ID, traffic ID, token and expired time is packaged encryption and generates server-side user credential,
Encryption is packaged to user credential raw information using business key and generates client user's voucher;
Module is returned to, for write service end subscriber voucher, splicing client user's voucher on loopback address into Cookie
And Invalid parameter in Cookie is deleted, and corresponding requested service server is returned to, if Parameter analysis of electrochemical module does not obtain
When getting request voucher or account verification or illegal Cookie verifications, then returns to module and be redirected directly to corresponding business
Login page.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810321372.2A CN108600203B (en) | 2018-04-11 | 2018-04-11 | Cookie-based safe single sign-on method and unified authentication service system thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810321372.2A CN108600203B (en) | 2018-04-11 | 2018-04-11 | Cookie-based safe single sign-on method and unified authentication service system thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108600203A true CN108600203A (en) | 2018-09-28 |
| CN108600203B CN108600203B (en) | 2021-05-14 |
Family
ID=63621801
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810321372.2A Active CN108600203B (en) | 2018-04-11 | 2018-04-11 | Cookie-based safe single sign-on method and unified authentication service system thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108600203B (en) |
Cited By (29)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109462600A (en) * | 2018-12-13 | 2019-03-12 | 东软集团股份有限公司 | Access method, user equipment, login service device and the storage medium of application |
| CN109472123A (en) * | 2018-11-05 | 2019-03-15 | 用友网络科技股份有限公司 | A kind of cloud service integrates the method and system of third party's single-sign-on customer center |
| CN109815656A (en) * | 2018-12-11 | 2019-05-28 | 平安科技(深圳)有限公司 | Login authentication method, device, equipment and computer readable storage medium |
| CN109831408A (en) * | 2018-12-13 | 2019-05-31 | 平安万家医疗投资管理有限责任公司 | Single-sign-on subsystem publishes method and system |
| CN110113358A (en) * | 2019-05-24 | 2019-08-09 | 全知科技(杭州)有限责任公司 | A method of the operation account of application system of the identification based on single-sign-on |
| CN110381084A (en) * | 2019-08-07 | 2019-10-25 | 北京三快在线科技有限公司 | Single-node login system and method, storage medium and electronic equipment |
| CN110430205A (en) * | 2019-08-09 | 2019-11-08 | 深圳前海微众银行股份有限公司 | Single-point logging method, device, equipment and computer readable storage medium |
| CN110493183A (en) * | 2019-07-05 | 2019-11-22 | 深圳市邦健科技有限公司 | More accounts online simultaneously processing method, device, storage medium and equipment |
| CN110535652A (en) * | 2019-07-01 | 2019-12-03 | 广州昆仑科技有限公司 | A kind of system and method by each operation system data integration displaying and unified login |
| CN110572388A (en) * | 2019-09-05 | 2019-12-13 | 北京宝兰德软件股份有限公司 | method for connecting unified authentication server and unified authentication adapter |
| CN110602123A (en) * | 2019-09-21 | 2019-12-20 | 苏州浪潮智能科技有限公司 | Single-point certificate authentication system and method based on micro-service |
| CN110784450A (en) * | 2019-09-24 | 2020-02-11 | 云深互联(北京)科技有限公司 | Single sign-on method and device based on browser |
| CN111182030A (en) * | 2019-12-04 | 2020-05-19 | 北京健康之家科技有限公司 | Network service execution method and device |
| CN111209557A (en) * | 2019-12-24 | 2020-05-29 | 中移(杭州)信息技术有限公司 | Cross-domain single sign-on method and device, electronic equipment and storage medium |
| CN111245791A (en) * | 2019-12-31 | 2020-06-05 | 熵加网络科技(北京)有限公司 | Single sign-on method for realizing management and IT service through reverse proxy |
| CN111371811A (en) * | 2020-04-23 | 2020-07-03 | Oppo广东移动通信有限公司 | Resource calling method, resource calling device, client and service server |
| CN111835514A (en) * | 2020-07-23 | 2020-10-27 | 上海英方软件股份有限公司 | Method and system for realizing safe interaction of front-end and back-end separated data |
| CN112311769A (en) * | 2020-09-29 | 2021-02-02 | 新华三信息安全技术有限公司 | Method, system, electronic device and medium for security authentication |
| CN112446015A (en) * | 2020-12-01 | 2021-03-05 | 山东健康医疗大数据有限公司 | User login authentication method based on two-stage deployment |
| CN112511491A (en) * | 2020-10-30 | 2021-03-16 | 福建福诺移动通信技术有限公司 | Single point login method combining message queue under front-end and back-end separation mode |
| CN113067827A (en) * | 2021-03-25 | 2021-07-02 | 中国工商银行股份有限公司 | System unification authentication method and device |
| CN113329028A (en) * | 2021-06-17 | 2021-08-31 | 中国农业银行股份有限公司 | Cross-domain access method and device |
| CN113691485A (en) * | 2020-05-19 | 2021-11-23 | 北京神州泰岳软件股份有限公司 | Micro-service platform access method and related device thereof |
| CN113721922A (en) * | 2021-09-01 | 2021-11-30 | 中建电子信息技术有限公司 | Big data internet of things management system based on micro-service |
| CN113868689A (en) * | 2021-12-02 | 2021-12-31 | 飞狐信息技术(天津)有限公司 | Application method and device of background system |
| CN115134144A (en) * | 2022-06-28 | 2022-09-30 | 中国工商银行股份有限公司 | Enterprise-level business system authentication method, device and system |
| CN115250198A (en) * | 2022-07-04 | 2022-10-28 | 四川盘谷智慧医疗科技有限公司 | Information system and single sign-on integration method suitable for group type enterprises |
| CN116170174A (en) * | 2022-12-08 | 2023-05-26 | 北京远舢智能科技有限公司 | Login authentication method and device, electronic equipment and storage medium |
| CN116208378A (en) * | 2023-01-03 | 2023-06-02 | 学银通融(北京)教育科技有限公司 | Method, device and equipment for preventing user from logging in repeatedly |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102469075A (en) * | 2010-11-09 | 2012-05-23 | 中科正阳信息安全技术有限公司 | Integration authentication method based on WEB single sign on |
| CN102970296A (en) * | 2012-11-22 | 2013-03-13 | 网宿科技股份有限公司 | Intelligent website content capture-preventing method and system based on content delivery network |
| CN103179134A (en) * | 2013-04-19 | 2013-06-26 | 中国建设银行股份有限公司 | Single sign on method and system based on Cookie and application server thereof |
| CN104038503A (en) * | 2014-06-24 | 2014-09-10 | 北京奇虎科技有限公司 | Cross-site logging method, cross-site logging device and cross-site logging system |
| CN104320423A (en) * | 2014-11-19 | 2015-01-28 | 重庆邮电大学 | Single sign-on light weight implementation method based on Cookie |
| CN105337949A (en) * | 2014-08-13 | 2016-02-17 | 中国移动通信集团重庆有限公司 | SSO (Single Sign On) authentication method, web server, authentication center and token check center |
| US20170149766A1 (en) * | 2015-11-24 | 2017-05-25 | Red Hat, Inc. | Cross-domain single login |
| CN106790063A (en) * | 2016-12-20 | 2017-05-31 | 兴唐通信科技有限公司 | A kind of method of isomery WEB system single-sign-ons |
-
2018
- 2018-04-11 CN CN201810321372.2A patent/CN108600203B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102469075A (en) * | 2010-11-09 | 2012-05-23 | 中科正阳信息安全技术有限公司 | Integration authentication method based on WEB single sign on |
| CN102970296A (en) * | 2012-11-22 | 2013-03-13 | 网宿科技股份有限公司 | Intelligent website content capture-preventing method and system based on content delivery network |
| CN103179134A (en) * | 2013-04-19 | 2013-06-26 | 中国建设银行股份有限公司 | Single sign on method and system based on Cookie and application server thereof |
| CN104038503A (en) * | 2014-06-24 | 2014-09-10 | 北京奇虎科技有限公司 | Cross-site logging method, cross-site logging device and cross-site logging system |
| CN105337949A (en) * | 2014-08-13 | 2016-02-17 | 中国移动通信集团重庆有限公司 | SSO (Single Sign On) authentication method, web server, authentication center and token check center |
| CN104320423A (en) * | 2014-11-19 | 2015-01-28 | 重庆邮电大学 | Single sign-on light weight implementation method based on Cookie |
| US20170149766A1 (en) * | 2015-11-24 | 2017-05-25 | Red Hat, Inc. | Cross-domain single login |
| CN106790063A (en) * | 2016-12-20 | 2017-05-31 | 兴唐通信科技有限公司 | A kind of method of isomery WEB system single-sign-ons |
Cited By (38)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109472123A (en) * | 2018-11-05 | 2019-03-15 | 用友网络科技股份有限公司 | A kind of cloud service integrates the method and system of third party's single-sign-on customer center |
| CN109815656A (en) * | 2018-12-11 | 2019-05-28 | 平安科技(深圳)有限公司 | Login authentication method, device, equipment and computer readable storage medium |
| CN109462600A (en) * | 2018-12-13 | 2019-03-12 | 东软集团股份有限公司 | Access method, user equipment, login service device and the storage medium of application |
| CN109831408A (en) * | 2018-12-13 | 2019-05-31 | 平安万家医疗投资管理有限责任公司 | Single-sign-on subsystem publishes method and system |
| CN110113358A (en) * | 2019-05-24 | 2019-08-09 | 全知科技(杭州)有限责任公司 | A method of the operation account of application system of the identification based on single-sign-on |
| CN110113358B (en) * | 2019-05-24 | 2021-09-17 | 全知科技(杭州)有限责任公司 | Method for identifying operation account of application system based on single sign-on |
| CN110535652A (en) * | 2019-07-01 | 2019-12-03 | 广州昆仑科技有限公司 | A kind of system and method by each operation system data integration displaying and unified login |
| CN110493183A (en) * | 2019-07-05 | 2019-11-22 | 深圳市邦健科技有限公司 | More accounts online simultaneously processing method, device, storage medium and equipment |
| CN110381084A (en) * | 2019-08-07 | 2019-10-25 | 北京三快在线科技有限公司 | Single-node login system and method, storage medium and electronic equipment |
| CN110430205A (en) * | 2019-08-09 | 2019-11-08 | 深圳前海微众银行股份有限公司 | Single-point logging method, device, equipment and computer readable storage medium |
| CN110572388A (en) * | 2019-09-05 | 2019-12-13 | 北京宝兰德软件股份有限公司 | method for connecting unified authentication server and unified authentication adapter |
| CN110602123A (en) * | 2019-09-21 | 2019-12-20 | 苏州浪潮智能科技有限公司 | Single-point certificate authentication system and method based on micro-service |
| CN110784450A (en) * | 2019-09-24 | 2020-02-11 | 云深互联(北京)科技有限公司 | Single sign-on method and device based on browser |
| CN111182030B (en) * | 2019-12-04 | 2022-12-09 | 北京健康之家科技有限公司 | Network service execution method and device |
| CN111182030A (en) * | 2019-12-04 | 2020-05-19 | 北京健康之家科技有限公司 | Network service execution method and device |
| CN111209557A (en) * | 2019-12-24 | 2020-05-29 | 中移(杭州)信息技术有限公司 | Cross-domain single sign-on method and device, electronic equipment and storage medium |
| CN111245791A (en) * | 2019-12-31 | 2020-06-05 | 熵加网络科技(北京)有限公司 | Single sign-on method for realizing management and IT service through reverse proxy |
| CN111245791B (en) * | 2019-12-31 | 2021-11-16 | 北京升鑫网络科技有限公司 | Single sign-on method for realizing management and IT service through reverse proxy |
| CN111371811A (en) * | 2020-04-23 | 2020-07-03 | Oppo广东移动通信有限公司 | Resource calling method, resource calling device, client and service server |
| CN113691485A (en) * | 2020-05-19 | 2021-11-23 | 北京神州泰岳软件股份有限公司 | Micro-service platform access method and related device thereof |
| CN113691485B (en) * | 2020-05-19 | 2023-08-25 | 北京神州泰岳软件股份有限公司 | Micro-service platform access method and related device thereof |
| CN111835514A (en) * | 2020-07-23 | 2020-10-27 | 上海英方软件股份有限公司 | Method and system for realizing safe interaction of front-end and back-end separated data |
| CN112311769A (en) * | 2020-09-29 | 2021-02-02 | 新华三信息安全技术有限公司 | Method, system, electronic device and medium for security authentication |
| CN112511491B (en) * | 2020-10-30 | 2022-12-06 | 福建福诺移动通信技术有限公司 | Single point login method combining message queue under front-end and back-end separation mode |
| CN112511491A (en) * | 2020-10-30 | 2021-03-16 | 福建福诺移动通信技术有限公司 | Single point login method combining message queue under front-end and back-end separation mode |
| CN112446015A (en) * | 2020-12-01 | 2021-03-05 | 山东健康医疗大数据有限公司 | User login authentication method based on two-stage deployment |
| CN113067827A (en) * | 2021-03-25 | 2021-07-02 | 中国工商银行股份有限公司 | System unification authentication method and device |
| CN113329028B (en) * | 2021-06-17 | 2022-08-30 | 中国农业银行股份有限公司 | Cross-domain access method and device |
| CN113329028A (en) * | 2021-06-17 | 2021-08-31 | 中国农业银行股份有限公司 | Cross-domain access method and device |
| CN113721922A (en) * | 2021-09-01 | 2021-11-30 | 中建电子信息技术有限公司 | Big data internet of things management system based on micro-service |
| CN113868689A (en) * | 2021-12-02 | 2021-12-31 | 飞狐信息技术(天津)有限公司 | Application method and device of background system |
| CN113868689B (en) * | 2021-12-02 | 2022-03-01 | 飞狐信息技术(天津)有限公司 | Application method and device of background system |
| CN115134144A (en) * | 2022-06-28 | 2022-09-30 | 中国工商银行股份有限公司 | Enterprise-level business system authentication method, device and system |
| CN115250198A (en) * | 2022-07-04 | 2022-10-28 | 四川盘谷智慧医疗科技有限公司 | Information system and single sign-on integration method suitable for group type enterprises |
| CN116170174A (en) * | 2022-12-08 | 2023-05-26 | 北京远舢智能科技有限公司 | Login authentication method and device, electronic equipment and storage medium |
| CN116170174B (en) * | 2022-12-08 | 2024-04-12 | 北京远舢智能科技有限公司 | Login authentication method and device, electronic equipment and storage medium |
| CN116208378A (en) * | 2023-01-03 | 2023-06-02 | 学银通融(北京)教育科技有限公司 | Method, device and equipment for preventing user from logging in repeatedly |
| CN116208378B (en) * | 2023-01-03 | 2023-11-24 | 学银通融(北京)教育科技有限公司 | Method, device and equipment for preventing user from logging in repeatedly |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108600203B (en) | 2021-05-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108600203A (en) | Secure Single Sign-on method based on Cookie and its unified certification service system | |
| CN105871838B (en) | A kind of log-in control method and customer center platform of third party's account | |
| CN103139200B (en) | A kind of method of Web service single-sign-on | |
| CN107294916B (en) | Single-point logging method, single-sign-on terminal and single-node login system | |
| CN109981561A (en) | Monomer architecture system moves to the user authen method of micro services framework | |
| CN104767731B (en) | A kind of Restful move transactions system identity certification means of defence | |
| CN107786571A (en) | A kind of method of user's unified certification | |
| CN103475666B (en) | A kind of digital signature authentication method of Internet of Things resource | |
| CN111062023B (en) | Method and device for realizing single sign-on of multi-application system | |
| CN102469075A (en) | Integration authentication method based on WEB single sign on | |
| WO2016173199A1 (en) | Mobile application single sign-on method and device | |
| CN109672675A (en) | A kind of WEB authentication method of the cryptographic service middleware based on OAuth2.0 | |
| CN109495486B (en) | Single-page Web application integration CAS method based on JWT | |
| CN106302606B (en) | Across the application access method and device of one kind | |
| CN111131301A (en) | Unified authentication and authorization scheme | |
| CN113079175A (en) | Authorization system and method based on oauth2 protocol enhancement | |
| CN105141580B (en) | A kind of resource access control method based on the domain AD | |
| CN109150800A (en) | Login access method, system and storage medium | |
| CN106453396A (en) | Double token account login method and login verification device | |
| CN104580256A (en) | Method and device for logging in through user equipment and verifying user's identity | |
| CN106161348A (en) | A kind of method of single-sign-on, system and terminal | |
| CN106453352A (en) | Single-system multi-platform authentication method | |
| CN104579681B (en) | Identity authorization system between mutual trust application system | |
| CN109962892A (en) | A kind of authentication method and client, server logging in application | |
| CN112600674A (en) | User security authentication method and device for front-end and back-end separation system and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |