CN110933029A - Information synchronization method, device and equipment based on unified authentication - Google Patents

Information synchronization method, device and equipment based on unified authentication Download PDF

Info

Publication number
CN110933029A
CN110933029A CN201911018995.3A CN201911018995A CN110933029A CN 110933029 A CN110933029 A CN 110933029A CN 201911018995 A CN201911018995 A CN 201911018995A CN 110933029 A CN110933029 A CN 110933029A
Authority
CN
China
Prior art keywords
user
service system
unified authentication
authentication platform
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201911018995.3A
Other languages
Chinese (zh)
Other versions
CN110933029B (en
Inventor
陈龙
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou Dt Dream Technology Co Ltd
Original Assignee
Hangzhou Dt Dream Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou Dt Dream Technology Co Ltd filed Critical Hangzhou Dt Dream Technology Co Ltd
Priority to CN201911018995.3A priority Critical patent/CN110933029B/en
Publication of CN110933029A publication Critical patent/CN110933029A/en
Application granted granted Critical
Publication of CN110933029B publication Critical patent/CN110933029B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Abstract

The application provides a method, a device and equipment for information synchronization based on unified authentication, wherein the method comprises the following steps: sending a user identifier to the service system according to a first authentication request of the service system so that the service system acquires and stores user information according to the user identifier; receiving user supplementary information fed back by a service system when detecting that the user information does not meet a preset condition, updating the user information according to the user supplementary information, and sending a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state; and sending the user identification to the service system according to the second authentication request of the service system so that the service system acquires and updates the changed user information according to the user identification. Therefore, development cost and butt joint debugging cost are reduced, and the butt joint efficiency of the unified authentication system is improved.

Description

Information synchronization method, device and equipment based on unified authentication
Technical Field
The present application relates to the field of data transmission technologies, and in particular, to an information synchronization method, apparatus, and device based on unified authentication.
Background
The single sign-on refers to that in the environment of a multi-service system, a user can access other service systems after logging on one service system, that is, the user can obtain the trust of other service systems only by logging on once. In a project with a unified authentication function, management and maintenance of user information are usually realized based on a unified authentication platform, and when a user logs in a service system to handle services at present, the problems of incomplete user information data, insufficient authority, insufficient real-name authentication level and the like exist, and the user is required to update the user information on the unified authentication platform and synchronize the user information to the service system.
In the related art, for the user information change in each service scenario, the user information is usually synchronized to the service system through the data synchronization interface, and the development cost and the docking joint debugging cost of the scheme are high.
Disclosure of Invention
The present application is directed to solving, at least to some extent, one of the technical problems in the related art.
Therefore, a first objective of the present application is to provide an information synchronization method based on unified authentication, which can reduce development cost and docking joint debugging cost, and improve docking efficiency of a unified authentication system.
The second purpose of the present application is to propose another information synchronization method based on unified authentication.
A third objective of the present application is to provide an information synchronization apparatus based on unified authentication.
A fourth object of the present application is to provide another information synchronization apparatus based on unified authentication.
A fifth object of the present application is to propose a computer device.
A sixth object of the present application is to propose another computer device.
A seventh object of the present application is to propose a computer-readable storage medium.
An eighth object of the present application is to propose another computer-readable storage medium.
An embodiment of a first aspect of the present application provides an information synchronization method based on unified authentication, including:
sending a user identifier to a service system according to a first authentication request of the service system so that the service system acquires and stores user information according to the user identifier;
receiving user supplementary information fed back by the service system when detecting that the user information does not meet a preset condition, updating the user information according to the user supplementary information, and sending a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state;
and sending the user identification to the service system according to the second authentication request of the service system so that the service system acquires and updates the changed user information according to the user identification.
The embodiment of the second aspect of the present application provides another information synchronization method based on unified authentication, including:
sending a first authentication request to a unified authentication platform, receiving a user identifier fed back by the unified authentication platform according to the first authentication request, and requesting and storing user information to the unified authentication platform according to the user identifier;
receiving a logout request sent by the unified authentication platform, and logging out according to the logout request, wherein the logout request is sent by the unified authentication platform through a preset logout interface when user information changes;
and sending a second authentication request to the unified authentication platform, receiving the user identification fed back by the unified authentication platform according to the second authentication request, and requesting the changed user information from the unified authentication platform according to the user identification and storing the changed user information.
An embodiment of a third aspect of the present application provides an information synchronization apparatus based on unified authentication, including:
the first sending module is used for sending a user identifier to a service system according to a first authentication request of the service system so that the service system can acquire and store user information according to the user identifier;
the processing module is used for receiving user supplementary information fed back by the service system when the user information is detected not to meet a preset condition, updating the user information according to the user supplementary information, and sending a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state;
and the second sending module is used for sending the user identification to the service system according to a second authentication request of the service system so that the service system can acquire and update the changed user information according to the user identification.
An embodiment of a fourth aspect of the present application provides another information synchronization apparatus based on unified authentication, including:
the first acquisition module is used for sending a first authentication request to a unified authentication platform, receiving a user identifier fed back by the unified authentication platform according to the first authentication request, and requesting and storing user information to the unified authentication platform according to the user identifier;
the logout module is used for receiving a logout request sent by the unified authentication platform and logging out according to the logout request, wherein the logout request is sent by the unified authentication platform through a preset logout interface when user information changes;
and the second acquisition module is used for sending a second authentication request to the unified authentication platform, receiving the user identification fed back by the unified authentication platform according to the second authentication request, and requesting the changed user information to the unified authentication platform according to the user identification and storing the user information.
An embodiment of a fifth aspect of the present application provides a computer device, including a processor and a memory; wherein the processor executes a program corresponding to the executable program code by reading the executable program code stored in the memory, so as to implement the unified authentication based information synchronization method according to the embodiment of the first aspect.
An embodiment of a sixth aspect of the present application provides another computer device, comprising a processor and a memory; wherein the processor executes a program corresponding to the executable program code by reading the executable program code stored in the memory, so as to implement the unified authentication based information synchronization method according to the embodiment of the second aspect.
An embodiment of a seventh aspect of the present application provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the unified authentication-based information synchronization method according to the embodiment of the first aspect.
An eighth aspect of the present application provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the unified authentication-based information synchronization method according to the second aspect of the present application.
One embodiment in the above application has the following advantages or benefits: the unified authentication platform is adopted to send the user identification to the service system according to the first authentication request of the service system, so that the service system can acquire and store the user information according to the user identification. And then, the unified authentication platform receives user supplementary information fed back by the service system when the service system detects that the user information does not meet the preset condition, updates the user information according to the user supplementary information, and sends a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state. Further, the unified authentication platform sends the user identifier to the service system according to the second authentication request of the service system, so that the service system obtains and updates the changed user information according to the user identifier. Therefore, when the user information on the unified authentication platform side changes, the service system is informed to log out, the unified authentication platform does not log out, the service system further obtains the user information through single sign-on once again, user information synchronization is achieved, user information synchronization can be achieved through the existing log-out interface of the system, a data synchronization interface does not need to be developed independently, development cost and butt joint debugging cost are reduced, and unified authentication butt joint efficiency is improved.
Additional aspects and advantages of the present application will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the present application.
Drawings
Fig. 1 is a schematic flowchart of an information synchronization method based on unified authentication according to an embodiment of the present application;
fig. 2 is a schematic flowchart of another information synchronization method based on unified authentication according to an embodiment of the present application;
fig. 3 is a schematic flow chart of information synchronization provided in an embodiment of the present application;
fig. 4 is a schematic structural diagram of an information synchronization apparatus based on unified authentication according to an embodiment of the present disclosure;
fig. 5 is a schematic structural diagram of another information synchronization apparatus based on unified authentication according to an embodiment of the present application.
Detailed Description
Reference will now be made in detail to embodiments of the present application, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the drawings are exemplary and intended to be used for explaining the present application and should not be construed as limiting the present application.
The following describes a unified authentication-based information synchronization method, device and apparatus according to an embodiment of the present application with reference to the drawings.
Fig. 1 is a schematic flowchart of an information synchronization method based on unified authentication according to an embodiment of the present application, and as shown in fig. 1, the method includes:
step 101, sending a user identifier to a service system according to a first authentication request of the service system, so that the service system obtains and stores user information according to the user identifier.
In this embodiment, the execution subject is a unified authentication platform. Optionally, the service system sends a first authentication request to the unified authentication platform, the unified authentication platform sends a user identifier to the service system according to the received first authentication request, and the service system obtains and stores user information from the unified authentication platform according to the user identifier.
Next, the unified authentication platform sends the user identifier to the service system according to the first authentication request of the service system.
In an embodiment of the application, when a user accesses a service system, the service system detects whether the user has logged in the service system, and if the user has not logged in the service system, the service system sends a first authentication request to a unified authentication platform. The unified authentication platform receives the first authentication request and detects whether the user logs in the unified authentication platform or not, if the user is detected not to log in, the user is prompted to input an account password to complete login verification, a user identifier corresponding to the user is generated after the verification is successful, and the user identifier is returned to the service system; and if the user is detected to be logged in, returning a user identifier corresponding to the user to the service system. The form of the user identifier may include a combination of numbers, letters, and characters.
As an example, when a user accesses the service system a, the service system a detects that the user is not logged in, and sends a first authentication request to the unified authentication platform. And then, the unified authentication platform receives the first authentication request and detects that the user does not log in, prompts the user to input an account password, verifies the account password input by the user, generates a user identifier after the verification is successful, establishes a corresponding relation between the user identifier and the user, and further sends the user identifier to the service system A by the unified authentication platform.
As another example, after accessing the service system a, the user accesses the service system B, and the service system B detects that the user is not logged in, and sends a first authentication request to the unified authentication platform. And then, the unified authentication platform receives the first authentication request and detects that the user logs in, acquires a user identifier corresponding to the user according to the established corresponding relation, and further sends the user identifier to the service system B.
In this embodiment, the user information is stored on the unified authentication platform side, and when the user logs in the unified authentication platform, the user identifier corresponding to the user is generated, so as to establish the corresponding relationship between the user-user identifier-user information. And then, after receiving the user identification, the service system requests the unified authentication platform for user information corresponding to the user identification according to the user identification, and stores the user information in the service system. The user information may include a real-name authentication level, user personal information, user login information, and the like.
And 102, receiving user supplementary information fed back by the service system when the service system detects that the user information does not meet the preset condition, updating the user information according to the user supplementary information, and sending a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state.
In this embodiment, the service system obtains and stores user information according to the user identifier, and then completes user login, and detects whether the user information meets a preset condition, where the preset condition may be set as needed, for example, the preset condition may include that the user information is complete, and for example, the preset condition may include that the authentication level corresponding to the user information is greater than a preset level. And then, after acquiring and storing the user information, the service system detects whether the user information meets the preset condition, and if the user information does not meet the preset condition, the service system feeds back the user supplementary information to the unified authentication platform, so that the unified authentication platform updates the user information according to the user supplementary information. Further, the unified authentication platform learns that the user information is updated, and sends a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state.
As an example, the unified authentication platform receives the user supplementary information, and displays a user information page according to the user supplementary information to prompt the user to complete the user information on the page. And further, the unified authentication platform acquires the user identifier corresponding to the user information after learning that the user information is updated, and sends a login request carrying the user identifier to the logged-in service system through a preset login interface so that the service system logs out the corresponding user according to the user identifier, wherein the unified authentication platform keeps the user in a login state.
And 103, sending the user identifier to the service system according to the second authentication request of the service system, so that the service system acquires and updates the changed user information according to the user identifier.
In this embodiment, the service system sends a second authentication request to the unified authentication platform, the unified authentication platform sends a user identifier to the service system according to the received second authentication request, and the service system obtains and stores the changed user information from the unified authentication platform according to the user identifier.
As an example, after the service system a logs out, the user accesses the service system a again, and the service system a detects that the user is not logged in, sends a second authentication request to the unified authentication platform, and further, because the unified authentication platform maintains a login state in the above steps, the unified authentication platform receives the second authentication request and detects that the user is logged in, obtains a user identifier corresponding to the user according to the established corresponding relationship, and further, the unified authentication platform sends the user identifier to the service system a. Further, the service system A requests the unified authentication platform for the user information corresponding to the user identifier according to the user identifier, so that the changed user information is acquired and stored in the service system A, and therefore, the synchronization of the user information is realized.
In an embodiment of the application, the unified authentication platform may further receive a logout instruction, so as to perform a logout operation according to the logout instruction. If the unified authentication platform detects the logout instruction, a logout request is sent to each logged-in service system so as to log out each service system and log out the unified authentication platform.
It can be understood that, in the related art, a data synchronization interface is usually interfaced with each service system through the unified authentication platform, and the service system implements user information synchronization according to the data synchronization interface. However, this method requires each service system to interface with a data synchronization interface, and when processing data synchronization messages, it also needs to design a data synchronization mechanism to ensure that the display of the front-end page is consistent with the back-end, and the development cost and the docking joint debugging are high. In the embodiment, the user information flow can be automatically acquired in the single sign-on flow by utilizing the existing log-out interface and the service system of the system, the user information synchronization requirement is met, a data synchronization interface does not need to be separately developed, the development cost and the butt joint debugging cost are reduced, and the unified authentication butt joint efficiency is improved.
According to the information synchronization method based on unified authentication, the unified authentication platform sends the user identification to the service system according to the first authentication request of the service system, so that the service system obtains and stores the user information according to the user identification. And then, the unified authentication platform receives user supplementary information fed back by the service system when the service system detects that the user information does not meet the preset condition, updates the user information according to the user supplementary information, and sends a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state. Further, the unified authentication platform sends the user identifier to the service system according to the second authentication request of the service system, so that the service system obtains and updates the changed user information according to the user identifier. Therefore, when the user information on the unified authentication platform side changes, the service system is informed to log out, the unified authentication platform does not log out, the service system further obtains the user information through single sign-on once again, user information synchronization is achieved, user information synchronization can be achieved through the existing log-out interface of the system, a data synchronization interface does not need to be developed independently, development cost and butt joint debugging cost are reduced, and unified authentication butt joint efficiency is improved.
The information synchronization method based on unified authentication provided by the embodiment of the present application is described below by taking a service system side as an example.
Fig. 2 is a schematic flowchart of another information synchronization method based on unified authentication according to an embodiment of the present application, and as shown in fig. 2, the method includes:
step 201, sending a first authentication request to the unified authentication platform, receiving a user identifier fed back by the unified authentication platform according to the first authentication request, and requesting and storing user information from the unified authentication platform according to the user identifier.
In this embodiment, the execution subject is a service system. As an example, when a user accesses a service system, the service system detects that the user is not logged in, the service system sends a first authentication request to a unified authentication platform, the unified authentication platform sends a user identifier to the service system according to the received first authentication request, and the service system obtains and stores user information from the unified authentication platform according to the user identifier.
Optionally, the user information is stored on the unified authentication platform side, and when the user logs in the unified authentication platform, a user identifier corresponding to the user is generated, so as to establish a corresponding relationship between the user-user identifier-user information. And then, after receiving the user identification, the service system requests the unified authentication platform for user information corresponding to the user identification according to the user identification, and stores the user information in the service system. The form of the user identifier may include a combination of numbers, letters and characters, and the user information may include a real-name authentication level, user personal information, user login information, and the like.
In an embodiment of the application, the service system receives a user identifier fed back by the unified authentication platform, and establishes mapping between the user identifier and a session (session) according to the user identifier. And then, the service system receives the user information fed back by the unified authentication platform according to the user identification, and stores the user information in the session, thereby realizing the login of the service system.
Step 202, receiving a logout request sent by the unified authentication platform, and logging out according to the logout request, wherein the logout request is sent by the unified authentication platform through a preset logout interface when the user information changes.
In this embodiment, the service system receives a logout request sent by the unified authentication platform, and logs out according to the logout request.
As an example, the service system receives a logout request carrying a user identifier sent by the unified authentication platform, and further, the service system queries mapping according to the user identifier, so that a session corresponding to the user identifier is disabled, thereby implementing logout of the service system.
When the unified authentication platform learns that the user information is updated, the user identification corresponding to the user information is obtained, a login request carrying the user identification is sent to a logged-in service system through a preset login interface, so that the service system logs out the corresponding user according to the user identification, and the unified authentication platform keeps the user in a login state.
And 203, sending a second authentication request to the unified authentication platform, receiving a user identifier fed back by the unified authentication platform according to the second authentication request, requesting the changed user information from the unified authentication platform according to the user identifier, and storing the user information.
As an example, when the user accesses the service system again after the service system logs out, the service system detects that the user is not logged in, and the service system sends a second authentication request to the unified authentication platform. And the uniform authentication platform keeps a login state, acquires the user identifier corresponding to the user according to the received second authentication request and sends the user identifier to the service system, and the service system acquires and stores the changed user information from the uniform authentication platform according to the user identifier.
The information synchronization method based on the unified authentication of the embodiment of the application sends a first authentication request to the unified authentication platform through the service system, receives a user identifier fed back by the unified authentication platform according to the first authentication request, and requests the unified authentication platform for user information according to the user identifier and stores the user information. And then, the service system receives the logout request sent by the unified authentication platform and logs out according to the logout request. Further, the service system sends a second authentication request to the unified authentication platform, receives a user identifier fed back by the unified authentication platform according to the second authentication request, and requests the changed user information from the unified authentication platform according to the user identifier and stores the user information. Therefore, when the user information on the unified authentication platform side changes, the service system is informed to log out, the unified authentication platform does not log out, the service system further obtains the user information through single sign-on once again, user information synchronization is achieved, user information synchronization can be achieved through the existing log-out interface of the system, a data synchronization interface does not need to be developed independently, development cost and butt joint debugging cost are reduced, and unified authentication butt joint efficiency is improved.
Fig. 3 is a schematic flow chart of information synchronization according to an embodiment of the present disclosure.
Referring to fig. 3, the unified authentication platform interfaces business systems a and B. When a user accesses the service system B, the service system B detects that the user does not log in and sends an authentication request to the unified authentication platform, and the unified authentication platform prompts the user to input an account password to complete login verification when detecting that the user does not log in. And then unifying the authentication platform and returning the user identification to the service system B to complete authentication, and establishing the mapping between the user identification and the session of the system.
And the user accesses the service system A, the service system A detects that the user does not log in and sends an authentication request to the unified authentication platform, and the unified authentication platform detects that the user logs in and returns a user identifier to the service system A to finish authentication. Optionally, a temporary authorization code may be returned to the service system a by the unified authentication platform, and the service system a requests the user identifier from the unified authentication platform through the temporary authorization code, where the temporary authorization code is invalid after being used, which may improve security. And then, the service system A requests the user information according to the user identification and caches the user information. It should be noted that the implementation manner of obtaining the user identifier is also applicable to the service system B in this example, and is not described here again.
Further, when the service system a detects that the user authentication level is lower than the preset level or the user information is incomplete, the service system a guides the user to improve the user information. After the user information is perfected, the unified authentication platform detects the change of the user information, and informs the service systems A and B to log out according to a preset log-out interface, and at the moment, the unified authentication platform does not log out. And the service system acquires the user identification according to the login request and inquires a mapping table to disable the corresponding session.
When the user accesses the service system A again to handle the service, the service system detects that the user does not log in, and realizes single sign-on again through the unified authentication platform, and obtains the updated user information, thereby realizing the synchronization of the user information to each service system. Therefore, the user information synchronization can be realized by utilizing the existing log-out interface of the system, a data synchronization interface does not need to be developed independently, the development cost and the butt joint debugging cost are reduced, and the unified authentication butt joint efficiency is improved.
In order to implement the above embodiments, the present application further provides an information synchronization apparatus based on unified authentication.
Fig. 4 is a schematic structural diagram of an information synchronization apparatus based on unified authentication according to an embodiment of the present application, and as shown in fig. 4, the apparatus includes: a first sending module 10, a processing module 20 and a second sending module 30.
The first sending module 10 is configured to send a user identifier to the service system according to a first authentication request of the service system, so that the service system obtains and stores user information according to the user identifier.
The processing module 20 is configured to receive user supplementary information fed back by the service system when detecting that the user information does not satisfy the preset condition, update the user information according to the user supplementary information, and send a logout request to the service system through a preset logout interface to log out the service system, where the unified authentication platform maintains a login state.
The second sending module 30 is configured to send the user identifier to the service system according to the second authentication request of the service system, so that the service system obtains and updates the changed user information according to the user identifier.
Optionally, the first sending module 10 is specifically configured to: detecting whether a user logs in a unified authentication platform or not; if the user is detected not to log in, prompting the user to input an account password to complete login verification, generating a user identifier corresponding to the user after the verification is successful, and returning the user identifier to the service system; and if the user is detected to be logged in, returning a user identifier corresponding to the user to the service system.
The information synchronization device based on unified authentication sends the user identifier to the service system through the unified authentication platform according to the first authentication request of the service system, so that the service system obtains and stores the user information according to the user identifier. And then, the unified authentication platform receives user supplementary information fed back by the service system when the service system detects that the user information does not meet the preset condition, updates the user information according to the user supplementary information, and sends a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state. Further, the unified authentication platform sends the user identifier to the service system according to the second authentication request of the service system, so that the service system obtains and updates the changed user information according to the user identifier. Therefore, when the user information on the unified authentication platform side changes, the service system is informed to log out, the unified authentication platform does not log out, the service system further obtains the user information through single sign-on once again, user information synchronization is achieved, user information synchronization can be achieved through the existing log-out interface of the system, a data synchronization interface does not need to be developed independently, development cost and butt joint debugging cost are reduced, and unified authentication butt joint efficiency is improved.
Fig. 5 is a schematic structural diagram of another information synchronization apparatus based on unified authentication according to an embodiment of the present application, and as shown in fig. 5, the apparatus includes: a first obtaining module 40, a log-out module 50, and a second obtaining module 60.
And the first obtaining module 40 is configured to send a first authentication request to the unified authentication platform, receive a user identifier fed back by the unified authentication platform according to the first authentication request, and request and store user information from the unified authentication platform according to the user identifier.
And the logout module 50 is configured to receive a logout request sent by the unified authentication platform and logout according to the logout request, where the logout request is sent by the unified authentication platform through a preset logout interface when the user information changes.
And the second obtaining module 60 is configured to send a second authentication request to the unified authentication platform, receive a user identifier fed back by the unified authentication platform according to the second authentication request, request the changed user information from the unified authentication platform according to the user identifier, and store the user information.
As a possible implementation manner, the apparatus further includes: the generating module is used for establishing mapping between the user identification and the session; the first obtaining module 40 is specifically configured to: and receiving the user information fed back by the unified authentication platform according to the user identification, and storing the user information in the session. The second obtaining module 60 is specifically configured to: and receiving the changed user information fed back by the unified authentication platform according to the user identification, and storing the changed user information in the session.
Optionally, the logout module 50 is specifically configured to: receiving a login request carrying a user identifier sent by a unified authentication platform; and inquiring mapping according to the user identification to disable the session corresponding to the user identification.
It should be noted that, the explanation of the unified authentication-based information synchronization method in the foregoing embodiment is also applicable to the unified authentication-based information synchronization apparatus in this embodiment, and details are not repeated here.
The information synchronization device based on unified authentication sends a first authentication request to a unified authentication platform through a service system, receives a user identifier fed back by the unified authentication platform according to the first authentication request, and requests the unified authentication platform for user information according to the user identifier and stores the user information. And then, the service system receives the logout request sent by the unified authentication platform and logs out according to the logout request. Further, the service system sends a second authentication request to the unified authentication platform, receives a user identifier fed back by the unified authentication platform according to the second authentication request, and requests the changed user information from the unified authentication platform according to the user identifier and stores the user information. Therefore, when the user information on the unified authentication platform side changes, the service system is informed to log out, the unified authentication platform does not log out, the service system further obtains the user information through single sign-on once again, user information synchronization is achieved, user information synchronization can be achieved through the existing log-out interface of the system, a data synchronization interface does not need to be developed independently, development cost and butt joint debugging cost are reduced, and unified authentication butt joint efficiency is improved.
In order to implement the above embodiments, the present application also provides a computer device, including a processor and a memory; wherein, the processor executes the program corresponding to the executable program code by reading the executable program code stored in the memory, so as to implement the information synchronization method based on unified authentication as described in any one of the foregoing embodiments.
In order to implement the foregoing embodiments, the present application further proposes a computer program product, wherein when the instructions in the computer program product are executed by a processor, the information synchronization method based on unified authentication as described in any of the foregoing embodiments is implemented.
In order to implement the foregoing embodiments, the present application further proposes a computer-readable storage medium, on which a computer program is stored, which when executed by a processor implements the unified authentication-based information synchronization method according to any one of the foregoing embodiments.
In the description of the present application, it is to be understood that the terms "first", "second" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implying any number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include at least one such feature. In the description of the present application, "plurality" means at least two, e.g., two, three, etc., unless specifically limited otherwise.
In the description herein, reference to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the application. In this specification, the schematic representations of the terms used above are not necessarily intended to refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples. Furthermore, various embodiments or examples and features of different embodiments or examples described in this specification can be combined and combined by one skilled in the art without contradiction.
Although embodiments of the present application have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present application, and that variations, modifications, substitutions and alterations may be made to the above embodiments by those of ordinary skill in the art within the scope of the present application.

Claims (14)

1. An information synchronization method based on unified authentication is applied to a unified authentication platform, and the method comprises the following steps:
sending a user identifier to a service system according to a first authentication request of the service system so that the service system acquires and stores user information according to the user identifier;
receiving user supplementary information fed back by the service system when detecting that the user information does not meet a preset condition, updating the user information according to the user supplementary information, and sending a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state;
and sending the user identification to the service system according to the second authentication request of the service system so that the service system acquires and updates the changed user information according to the user identification.
2. The method of claim 1, wherein said sending a subscriber identity to a business system in accordance with a first authentication request of the business system comprises:
detecting whether a user logs in the unified authentication platform or not;
if the user is detected not to log in, prompting the user to input an account password to complete login verification, generating a user identifier corresponding to the user after verification is successful, and returning the user identifier to the service system;
and if the user is detected to be logged in, returning a user identifier corresponding to the user to the service system.
3. An information synchronization method based on unified authentication is characterized in that the method is applied to a service system and comprises the following steps:
sending a first authentication request to a unified authentication platform, receiving a user identifier fed back by the unified authentication platform according to the first authentication request, and requesting and storing user information to the unified authentication platform according to the user identifier;
receiving a logout request sent by the unified authentication platform, and logging out according to the logout request, wherein the logout request is sent by the unified authentication platform through a preset logout interface when user information changes;
and sending a second authentication request to the unified authentication platform, receiving the user identification fed back by the unified authentication platform according to the second authentication request, and requesting the changed user information from the unified authentication platform according to the user identification and storing the changed user information.
4. The method of claim 3, after receiving the user identifier fed back by the unified authentication platform according to the first authentication request, further comprising:
establishing mapping between the user identification and the session;
the requesting and storing user information from the unified authentication platform according to the user identifier includes:
and receiving the user information fed back by the unified authentication platform according to the user identification, and storing the user information in the session.
5. The method of claim 4, wherein the receiving a logout request sent by the unified authentication platform and logout according to the logout request comprises:
receiving a logout request which is sent by the unified authentication platform and carries the user identification;
and inquiring the mapping according to the user identification to disable the session corresponding to the user identification.
6. An information synchronization apparatus based on unified authentication, comprising:
the first sending module is used for sending a user identifier to a service system according to a first authentication request of the service system so that the service system can acquire and store user information according to the user identifier;
the processing module is used for receiving user supplementary information fed back by the service system when the user information is detected not to meet a preset condition, updating the user information according to the user supplementary information, and sending a logout request to the service system through a preset logout interface so as to log out the service system, wherein the unified authentication platform keeps a login state;
and the second sending module is used for sending the user identification to the service system according to a second authentication request of the service system so that the service system can acquire and update the changed user information according to the user identification.
7. The apparatus of claim 6, wherein the first sending module is specifically configured to:
detecting whether a user logs in the unified authentication platform or not;
if the user is detected not to log in, prompting the user to input an account password to complete login verification, generating a user identifier corresponding to the user after verification is successful, and returning the user identifier to the service system;
and if the user is detected to be logged in, returning a user identifier corresponding to the user to the service system.
8. An information synchronization apparatus based on unified authentication, comprising:
the first acquisition module is used for sending a first authentication request to a unified authentication platform, receiving a user identifier fed back by the unified authentication platform according to the first authentication request, and requesting and storing user information to the unified authentication platform according to the user identifier;
the logout module is used for receiving a logout request sent by the unified authentication platform and logging out according to the logout request, wherein the logout request is sent by the unified authentication platform through a preset logout interface when user information changes;
and the second acquisition module is used for sending a second authentication request to the unified authentication platform, receiving the user identification fed back by the unified authentication platform according to the second authentication request, and requesting the changed user information to the unified authentication platform according to the user identification and storing the user information.
9. The apparatus of claim 8, further comprising:
the generating module is used for establishing the mapping between the user identification and the session;
the first obtaining module is specifically configured to:
and receiving the user information fed back by the unified authentication platform according to the user identification, and storing the user information in the session.
10. The apparatus of claim 8, wherein the logout module is specifically configured to:
receiving a logout request which is sent by the unified authentication platform and carries the user identification;
and inquiring the mapping according to the user identification to disable the session corresponding to the user identification.
11. A computer device comprising a processor and a memory;
wherein the processor executes a program corresponding to the executable program code by reading the executable program code stored in the memory for implementing the unified authentication based information synchronization method as claimed in claim 1 or 2.
12. A computer device comprising a processor and a memory;
wherein the processor executes a program corresponding to the executable program code by reading the executable program code stored in the memory for implementing the unified authentication based information synchronization method according to any one of claims 3 to 5.
13. A computer-readable storage medium on which a computer program is stored, the program, when executed by a processor, implementing the unified authentication-based information synchronization method according to claim 1 or 2.
14. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, implements the unified authentication based information synchronization method according to any one of claims 3 to 5.
CN201911018995.3A 2019-10-24 2019-10-24 Information synchronization method, device and equipment based on unified authentication Active CN110933029B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911018995.3A CN110933029B (en) 2019-10-24 2019-10-24 Information synchronization method, device and equipment based on unified authentication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911018995.3A CN110933029B (en) 2019-10-24 2019-10-24 Information synchronization method, device and equipment based on unified authentication

Publications (2)

Publication Number Publication Date
CN110933029A true CN110933029A (en) 2020-03-27
CN110933029B CN110933029B (en) 2021-12-28

Family

ID=69849366

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911018995.3A Active CN110933029B (en) 2019-10-24 2019-10-24 Information synchronization method, device and equipment based on unified authentication

Country Status (1)

Country Link
CN (1) CN110933029B (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101262590A (en) * 2007-12-21 2008-09-10 深圳市同洲电子股份有限公司 Multi-service integration system, device and method
US20090217366A1 (en) * 2005-05-16 2009-08-27 Lenovo (Beijing) Limited Method For Implementing Unified Authentication
CN103188207A (en) * 2011-12-27 2013-07-03 北大方正集团有限公司 Cross-domain single sign-on realization method and system
CN104301316A (en) * 2014-10-13 2015-01-21 中国电子科技集团公司第二十八研究所 Single sign-on system and implementation method thereof
CN104410674A (en) * 2014-11-12 2015-03-11 国云科技股份有限公司 A WEB session synchronization method of a single sign on system
CN109787976A (en) * 2019-01-17 2019-05-21 深圳壹账通智能科技有限公司 Information updating method, device, computer equipment and storage medium

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090217366A1 (en) * 2005-05-16 2009-08-27 Lenovo (Beijing) Limited Method For Implementing Unified Authentication
CN101262590A (en) * 2007-12-21 2008-09-10 深圳市同洲电子股份有限公司 Multi-service integration system, device and method
CN103188207A (en) * 2011-12-27 2013-07-03 北大方正集团有限公司 Cross-domain single sign-on realization method and system
CN104301316A (en) * 2014-10-13 2015-01-21 中国电子科技集团公司第二十八研究所 Single sign-on system and implementation method thereof
CN104410674A (en) * 2014-11-12 2015-03-11 国云科技股份有限公司 A WEB session synchronization method of a single sign on system
CN109787976A (en) * 2019-01-17 2019-05-21 深圳壹账通智能科技有限公司 Information updating method, device, computer equipment and storage medium

Also Published As

Publication number Publication date
CN110933029B (en) 2021-12-28

Similar Documents

Publication Publication Date Title
CN109600306B (en) Method, device and storage medium for creating session
CN104834489B (en) A kind of method for sharing cloud printer and Cloud Server and cloud print system
US9021570B2 (en) System, control method therefor, service providing apparatus, relay apparatus and computer-readable medium
EP2249277B1 (en) Authentication device, authentication method, and authentication program with the method mounted thereon
CN101163010B (en) Method of authenticating request message and related equipment
US8938789B2 (en) Information processing system, method for controlling information processing system, and storage medium
US20100077467A1 (en) Authentication service for seamless application operation
US9178871B2 (en) Authentication and authorization method and system
US20050278384A1 (en) External authentication against a third-party directory
CN106790209B (en) Login authentication method and system
JP2010244100A (en) Authentication information management program, authentication information management apparatus, and authentication method
CN106375442B (en) Method and device for cross-platform management of equipment information
CN101741558A (en) Method for realizing uniform identity authentication
CN112367666B (en) Method, device and system for allowing pNF in 5G core network to pass NRF authentication cNF
CN111259356B (en) Authorization method, auxiliary authorization component, management server and computer readable medium
CN101908967B (en) Configuration method and system of Linux virtual server
CN102970308A (en) User authentication method and server
CN105208042A (en) Resource safety access method and system
CN111241523A (en) Authentication processing method, device, equipment and storage medium
US20150358505A1 (en) Imaging Device-Based User Authentication System and Methods
JP5678893B2 (en) Attribute information linkage providing system, access information management device, access information proxy management device, method, and program
CN101567879A (en) Method, server, equipment and system for treating terminal request
CN110933029B (en) Information synchronization method, device and equipment based on unified authentication
CN113378153B (en) Authentication method, first service device, second service device and terminal device
KR20210037722A (en) Authentication method, auxiliary authentication component, management server and computer readable medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant