CN115643054A - Identity information verification method, device, server, medium and product - Google Patents

Identity information verification method, device, server, medium and product Download PDF

Info

Publication number
CN115643054A
CN115643054A CN202211206109.1A CN202211206109A CN115643054A CN 115643054 A CN115643054 A CN 115643054A CN 202211206109 A CN202211206109 A CN 202211206109A CN 115643054 A CN115643054 A CN 115643054A
Authority
CN
China
Prior art keywords
user
authentication
authentication request
embedded
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211206109.1A
Other languages
Chinese (zh)
Inventor
孙庆伟
王浩楠
潘腾
焦洋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Agricultural Bank of China
Original Assignee
Agricultural Bank of China
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Agricultural Bank of China filed Critical Agricultural Bank of China
Priority to CN202211206109.1A priority Critical patent/CN115643054A/en
Publication of CN115643054A publication Critical patent/CN115643054A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Information Transfer Between Computers (AREA)

Abstract

The application provides an identity information verification method, an identity information verification device, an identity information verification server, a medium and a product, which are applied to an embedded webpage server, wherein a webpage interface of the embedded webpage server is arranged in a menu bar of a corresponding embedded webpage of the embedded webpage server in the form of an Iframe label, and the identity information verification method comprises the following steps: receiving a user identity authentication request sent by an embedded webpage server; the user identity authentication request is generated by the embedded webpage server in response to the click operation of the user on the corresponding Iframe tag in the menu bar; judging whether the user identity authentication request is a first authentication request within a preset time period; if the user identity authentication request is determined not to be the first authentication request, determining a stored cookie authentication file corresponding to the user identity authentication request; and completing user identity authentication according to the cookie authentication file and the user identity authentication request. The method of the embodiment can improve the webpage access efficiency.

Description

Identity information verification method, device, server, medium and product
Technical Field
The present application relates to the field of data processing technologies, and in particular, to a method, an apparatus, a server, a medium, and a product for verifying identity information.
Background
The Iframe is an HTML (English is called as Hyper Text Markup Language, chinese is hypertext Markup Language) label, a frame and content of one webpage can be embedded into another webpage, the definition and flexibility of a page architecture level are improved, and complex page layout is effectively dealt with. The embedded webpage system is operated in the embedded webpage server, and the embedded webpage system is operated in the embedded webpage server.
Currently, when a user logs in an embedded webpage from the embedded webpage through a user terminal, authentication needs to be performed. When the identity authentication is carried out, the identity of the embedded webpage of the user is authenticated before, meanwhile, the proxy interface of the embedded webpage server is redirected to access, and the embedded webpage needs to be authenticated again at the identity authentication server. This method has the following problems: when the web page interface of the embedded web page is arranged in a certain menu bar of the embedded web page, if a user accesses the embedded web page after the authentication information of the embedded web page expires, the situation that the authentication needs to be re-verified due to the expiration of the authentication occurs, and the web page access efficiency is low.
Disclosure of Invention
The application provides an identity information verification method, an identity information verification device, a server, a medium and a product, which are used for solving the problem that when a webpage interface embedded in a webpage is arranged in a certain menu bar of the embedded webpage at present, if a user accesses the webpage after the identity verification information embedded in the webpage expires, the condition that the webpage needs to be verified again due to the expired identity verification occurs, and the webpage access efficiency is low.
The first aspect of the present application provides an identity information verification method, which is applied to an embedded web server, where a web interface of the embedded web server is arranged in a menu bar of an embedded web page corresponding to the embedded web server in the form of an Iframe tag, and the method includes:
receiving a user identity authentication request sent by an embedded webpage server; the user identity authentication request is generated by the embedded webpage server in response to the click operation of the user on the corresponding Iframe tag in the menu bar;
judging whether the user identity authentication request is a first authentication request within a preset time period;
if the user identity authentication request is determined not to be the first authentication request, determining a stored cookie authentication file corresponding to the user identity authentication request; the cookie authentication file is generated according to user login information of an embedded webpage in an embedded webpage server after the first authentication is passed;
and finishing user authentication according to the cookie authentication file and the user authentication request.
Further, as described above, if it is determined that the user authentication request is a first authentication request within a preset time period, the method further includes:
determining user account information and user password information in a user identity authentication request; the user identity authentication request comprises user account information and user password information corresponding to the embedded webpage server;
sending the user account information and the user password information to an identity authentication server;
receiving an authentication result fed back by the authentication server;
and carrying out corresponding processing according to the identity verification result.
Further, the method, as described above, performing corresponding processing according to the authentication result, includes:
if the authentication result is that the authentication is passed, generating and storing a corresponding cookie authentication file according to the user authentication request; the user identity authentication request also comprises user login information of an embedded webpage in the embedded webpage server;
and if the identity authentication result is that the identity authentication does not pass the authentication, feeding back the authentication result which does not pass the authentication to the embedded webpage server.
Further, as described above, the method further includes: a Token temporary Token corresponding to the user login information;
before determining the stored cookie authentication file corresponding to the user authentication request, the method further includes:
judging whether the Token temporary Token in the user identity authentication request is expired;
and if the Token temporary Token in the user authentication request is expired, executing the step of determining the stored cookie authentication file corresponding to the user authentication request.
Further, the method as described above, if the Token temporary Token in the user authentication request is not expired, then completing user authentication according to the cookie authentication file and the user authentication request, including:
and verifying whether the cookie verification file is matched with the user identity verification request and/or verifying the Token temporary Token to finish user identity verification.
Further, the method as described above, further comprising:
and in response to the quitting selection operation of the user on the embedded webpage, quitting the embedded webpage and deleting the stored cookie authentication file corresponding to the user authentication request.
The second aspect of the present application provides an identity information verifying apparatus, located in an embedded web server, where a web interface of the embedded web server is set in a menu bar of an embedded web page corresponding to the embedded web server in the form of an Iframe tag, the apparatus including:
the receiving module is used for receiving a user identity authentication request sent by the embedded webpage server; the user identity authentication request is generated by the embedded webpage server in response to the click operation of the user on the corresponding Iframe tag in the menu bar;
the judging module is used for judging whether the user identity authentication request is a first authentication request within a preset time period;
the determining module is used for determining a stored cookie authentication file corresponding to the user identity authentication request if the user identity authentication request is determined not to be the first authentication request; the cookie authentication file is generated according to user login information of an embedded webpage in the embedded webpage server after the first identity authentication is passed;
and the verification module is used for finishing user identity verification according to the cookie verification file and the user identity verification request.
Further, in the apparatus as described above, if it is determined that the user authentication request is a first authentication request within a preset time period, the authentication module is further configured to:
determining user account information and user password information in a user identity authentication request; the user identity authentication request comprises user account information and user password information corresponding to the embedded webpage server; sending the user account information and the user password information to an identity verification server; receiving an authentication result fed back by the authentication server; and carrying out corresponding processing according to the identity verification result.
Further, in the above apparatus, when the verification module performs corresponding processing according to the authentication result, the verification module is specifically configured to:
if the authentication result is that the authentication is passed, generating and storing a corresponding cookie authentication file according to the user authentication request; the user identity authentication request also comprises user login information of an embedded webpage in the embedded webpage server; and if the identity authentication result is that the identity authentication result does not pass the authentication, feeding back the authentication result which does not pass the authentication to the embedded webpage server.
Further, the apparatus as described above, the user authentication request further includes: a Token temporary Token corresponding to the user login information;
the determination module is further configured to:
judging whether the Token temporary Token in the user identity authentication request is expired; and if the Token temporary Token in the user authentication request is expired, executing the step of determining the stored cookie authentication file corresponding to the user authentication request.
Further, in the above apparatus, if the Token temporary Token in the user authentication request is not expired, the determining module is specifically configured to, when completing the user authentication according to the cookie authentication file and the user authentication request:
and verifying whether the cookie verification file is matched with the user identity verification request and/or verifying the Token temporary Token to finish user identity verification.
Further, the apparatus as described above, the apparatus further comprising:
and the deleting module is used for responding to the quitting selection operation of the user on the embedded webpage, quitting the embedded webpage and deleting the stored cookie authentication file corresponding to the user identity authentication request.
A third aspect of the present application provides an embedded web server, comprising: a memory and a processor;
the memory stores computer-executable instructions;
the processor executes computer-executable instructions stored by the memory to implement the identity information verification method of any one of the first aspect.
A fourth aspect of the present application provides a computer-readable storage medium, in which computer-executable instructions are stored, and the computer-executable instructions are executed by a processor to implement the identity information verification method according to any one of the first aspect.
A fifth aspect of the present application provides a computer program product comprising a computer program that, when executed by a processor, implements the identity information verification method of any one of the first aspects.
The application provides an identity information verification method, an identity information verification device, an identity information verification server, an identity information verification medium and an identity information verification product, which are applied to an embedded webpage server, wherein a webpage interface of the embedded webpage server is arranged in a menu bar of a corresponding embedded webpage of the embedded webpage server in an Iframe label mode, and the identity information verification method comprises the following steps: receiving a user identity authentication request sent by an embedded webpage server; the user identity authentication request is generated by the embedded webpage server in response to the click operation of the user on the corresponding Iframe tag in the menu bar; judging whether the user identity authentication request is a first authentication request within a preset time period; if the user identity authentication request is determined not to be the first authentication request, determining a stored cookie authentication file corresponding to the user identity authentication request; the cookie authentication file is generated according to user login information of an embedded webpage in the embedded webpage server after the first identity authentication is passed; and finishing user authentication according to the cookie authentication file and the user authentication request. In the method of the embodiment, when the embedded page is arranged in the menu bar of the embedded page, if the user authentication request is not the first authentication request, the cookie authentication file is adopted to perform user authentication on the user authentication request. By adopting the cookie authentication file, the user can still normally operate in a plurality of embedded pages under the menu bar when the Token temporary Token returned by the identity authentication server to the embedded server is expired, the condition that the authentication needs to be carried out again due to the expired identity authentication is avoided, and the webpage access efficiency is improved. Meanwhile, the situation that the user identity needs to be verified again when the Iframe label is cross-domain and different embedded pages are logged in each time can be avoided, and the identity verification time is effectively shortened.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present application and together with the description, serve to explain the principles of the application.
Fig. 1 is a scene diagram of an identity information verification method that can implement the embodiment of the present application;
fig. 2 is a first schematic flow chart of an identity information verification method provided in the present application;
fig. 3 is a schematic diagram of an embedded web menu bar of the identity information authentication method provided in the present application;
fig. 4 is a schematic flow chart of an identity information verification method provided in the present application;
fig. 5 is a first schematic structural diagram of an identity information verification apparatus provided in the present application;
fig. 6 is a schematic structural diagram of a second identity information verification apparatus provided in the present application;
fig. 7 is a schematic structural diagram of an embedded web server provided in the present application.
Specific embodiments of the present application have been shown by way of example in the drawings and will be described in more detail below. The drawings and written description are not intended to limit the scope of the inventive concepts in any manner, but rather to illustrate the concepts of the application by those skilled in the art with reference to specific embodiments.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. The following description refers to the accompanying drawings in which the same numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present application. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the application, as detailed in the appended claims.
In the technical scheme of the embodiment of the application, the processing of collection, storage, use, processing, transmission, provision, disclosure and the like of the personal information of the related user conforms to the regulations of related laws and regulations and does not violate the customs of public order.
It should be noted that the identity information verification method, apparatus, device, medium, and product of the present disclosure may be used in the technical field of data processing. But also in any field other than data processing, such as the financial field. The application fields of the identity information verification method, the identity information verification device, the identity information verification equipment, the identity information verification medium and the identity information verification product are not limited.
The technical solution of the present application will be described in detail below with specific examples. The following several specific embodiments may be combined with each other, and details of the same or similar concepts or processes may not be repeated in some embodiments. Embodiments of the present application will be described below with reference to the accompanying drawings.
For a clear understanding of the technical solutions of the present application, a detailed description of the prior art solutions will be given first. The Web (English is called World Wide Web in all, chinese is: global Wide area network), is a distributed graphic processing system which is based on hypertext and hypertext transfer protocol, global, dynamic interactive and cross-platform, is a network service established on the Internet, and provides a graphical and easy-to-access visual interface for a browser to search and browse information on the Internet. HTML is the core of developing web projects, as a markup language, an application under a standard universal markup language, a specification, a standard, marking parts of a web page to be displayed by markup symbols.
Iframe, as a tag in HTML, can load content or plug-ins from third parties. The method includes the steps that an Iframe is used for embedding a webpage into another webpage, the two webpages both need Token temporary Token verification, a Token of the embedded webpage is from a third-party mechanism, when the embedded webpage is opened and the Token needs to be verified, a user logs in through the third party and generates a Token by the third-party mechanism, the Token is transmitted to a client, the client sends the Token to the third party, specific contents of the embedded webpage can be browsed and edited after the embedded webpage passes verification, however, after the user logs in the embedded webpage, when the embedded webpage is not viewed, the Token effective time of the embedded webpage is reduced, the webpage is browsed after the embedded webpage Token effective time exceeds, and the condition that the webpage is browsed again and needs logging in occurs. Especially, when the web page interface of the embedded web page is arranged in a certain menu bar of the embedded web page, if the user accesses the web page after the identity authentication information of the embedded web page expires, the situation that the identity authentication expires and the authentication needs to be performed again occurs, which results in lower web page access efficiency
Therefore, aiming at the problem that in the prior art, if a user accesses the page after the identity authentication information of the embedded web page expires, the situation that the identity authentication expires and the web page needs to be re-authenticated occurs, so that the web page access efficiency is low.
Specifically, a user authentication request sent by the embedded web server is received. The user authentication request is generated by the embedded webpage server in response to the click operation of the user on the corresponding Iframe tag in the menu bar. And judging whether the user identity authentication request is a first authentication request within a preset time period. And if the user authentication request is determined not to be the first authentication request, determining the stored cookie authentication file corresponding to the user authentication request. The cookie authentication file is generated according to user login information of an embedded webpage in the embedded webpage server after the first authentication is passed. And finishing user authentication according to the cookie authentication file and the user authentication request.
The inventor provides the technical scheme of the application based on the creative discovery.
An application scenario of the identity information verification method provided in the embodiment of the present application is described below. As shown in fig. 1, 1 is an embedded web server, 2 is an embedded web server, and 3 is an authentication server. The network architecture of the application scenario corresponding to the identity information verification method provided by the embodiment of the application scenario comprises the following steps: an embedded web server 1, an embedded web server 2 and an authentication server 3.
Illustratively, the user first logs in to the embedded web page and then, through a clicking operation, clicks on the menu bar of the embedded web page in search of opening and accessing the embedded web page. At this time, the embedded web server 2 generates a user authentication request in response to a user clicking operation on a corresponding Iframe tag in the menu bar, which may also be referred to as a submenu, and sends the authentication request to the embedded web server 1. The embedded webpage server 1 judges whether the user authentication request is a first authentication request within a preset time period, and if the user authentication request is the first authentication request, user account information and user password information corresponding to the embedded webpage server 1 in the user authentication request are sent to the authentication server 3 so as to perform first authentication through the authentication server 3. Meanwhile, after the first authentication is passed, the user login information of the embedded webpage in the embedded webpage server 2 included in the user authentication request is stored in the cookie authentication file. And if the request is not the first authentication request, determining a stored cookie authentication file corresponding to the user identity authentication request. And finishing user authentication according to the cookie authentication file and the user authentication request.
The embodiments of the present application will be described with reference to the drawings attached to the specification.
Fig. 2 is a first schematic flow chart of the identity information verification method provided in the present application, and as shown in fig. 2, in this embodiment, an execution subject of the embodiment of the present application is an identity information verification device, and the identity information verification device may be integrated in an embedded web server. The method for verifying the identity information provided by the embodiment includes the following steps:
step S101, receiving a user identity authentication request sent by the embedded webpage server. The user identity authentication request is generated by the embedded webpage server in response to the clicking operation of the user on the corresponding Iframe label in the menu bar.
In this embodiment, the Iframe is an HTML tag, which is a form of an implementation frame, and can be used to split a web page structure to make some parts of the web page common, and the Iframe is more flexible, can be embedded anywhere in the web page, can be embedded into one web page file, and can be embedded into another web page file, and the method is simple.
The embedded webpage refers to a webpage embedded with a webpage, and the embedded webpage refers to a webpage embedded into another webpage through the Iframe.
Before logging in the embedded webpage, a user needs to log in the embedded webpage, and the embedded webpage server can record the user login information through a program of the embedded webpage server, such as through an embedded webpage system. When the user corresponds to the Iframe tag in the menu bar, the menu bar of the embedded webpage is as shown in fig. 3, the dotted line frame in the figure is the menu bar, and the filled grid in the dotted line frame represents the submenu embedded in the webpage, and can also be understood as the corresponding Iframe tag embedded in the webpage. When the user selects the sub-menu of the embedded webpage, the embedded webpage server generates a corresponding user authentication request according to the operation. If the user logs in the embedded page, the user account and the user password corresponding to the embedded page server and the user login information of the embedded page are included in the user identity authentication request.
The preset time period may be set according to actual needs, such as longer time, several years, or shorter time, several months, several days, etc. Meanwhile, a program for managing the login of the embedded page in the embedded page server is an embedded page system, and a program for managing the login of the embedded page in the embedded page server is an embedded page system. For ease of understanding, the description may be made using an embedded page server and an embedded page server. If the user does not click for the first time within the preset time period, the user identity authentication request is generally accompanied by user login information of the embedded webpage.
Step S102, judging whether the user identity authentication request is a first authentication request in a preset time period.
In this embodiment, when performing the identity authentication, it is necessary to determine whether the authentication is the first authentication or the non-first authentication, so as to perform the subsequent determination process.
Step S103, if it is determined that the user authentication request is not the first authentication request, determining a stored cookie authentication file corresponding to the user authentication request. The cookie authentication file is generated according to user login information of an embedded webpage in the embedded webpage server after the first authentication is passed.
In the embodiment, the stored cookie authentication file is generated after the first authentication, and the cookie authentication file can store the user login information of the embedded webpage, so that the user login information only needs to be authenticated through the cookie authentication file in the next authentication, the user account and the user password corresponding to the embedded webpage server do not need to be authenticated, and the authentication efficiency is improved.
And step S104, completing user identity authentication according to the cookie authentication file and the user identity authentication request.
In the case of non-first authentication, the user authentication request generally includes user login information of the embedded web page, so that direct authentication can be performed through the cookie authentication file.
An identity information verification method provided by an embodiment of the present application includes: and receiving a user identity authentication request sent by the embedded webpage server. The user identity authentication request is generated by the embedded webpage server in response to the clicking operation of the user on the corresponding Iframe label in the menu bar. And judging whether the user identity authentication request is a first authentication request within a preset time period. And if the user authentication request is determined not to be the first authentication request, determining the stored cookie authentication file corresponding to the user authentication request. The cookie authentication file is generated according to the user login information of the embedded webpage in the embedded webpage server after the first authentication is passed. And completing user authentication according to the cookie authentication file and the user authentication request.
In the method of the embodiment, when the embedded page is arranged in the menu bar of the embedded page, if the user authentication request is not the first authentication request, the cookie authentication file is adopted to authenticate the user identity of the user authentication request. By adopting the cookie authentication file, the user can still normally operate in a plurality of embedded pages under a menu bar when the Token temporary Token returned by the identity authentication server to the embedded server is expired, the condition that the authentication needs to be re-authenticated due to the expired identity authentication is avoided, and the webpage access efficiency is improved.
Meanwhile, when the Iframe tags cross the domain, for example, different Iframe tags are clicked, different embedded pages are opened, the identity needs to be re-verified each time, and the situation that the webpage loading speed is low exists.
Fig. 4 is a schematic flow chart of a second method for authenticating identity information provided by the present application, and as shown in fig. 4, the method for authenticating identity information provided by the present embodiment is further refined on the basis of the method for authenticating identity information provided by the previous embodiment of the present application. The method for verifying the identity information provided by the embodiment includes the following steps.
Step S201, receiving a user authentication request sent by the embedded web server.
The implementation manner of step S201 is similar to that of step S101 in the previous embodiment, and is not described in detail here.
Step S202, determining whether the user authentication request is a first authentication request within a preset time period, if so, performing step S205, and if not, performing step S203.
Step S203, determining a stored cookie authentication file corresponding to the user authentication request.
The implementation manner of step S203 is similar to that of step S103 in the previous embodiment, and is not described in detail here.
Optionally, in this embodiment, the user authentication request further includes: and the Token temporary Token corresponding to the user login information.
Before step S203, the method further includes:
and judging whether the Token temporary Token in the user identity authentication request is expired.
If the Token temporary Token in the user authentication request is expired, step S203 is executed.
If the Token temporary Token in the user authentication request is not expired, the authentication may be performed in a manner of authenticating the Token temporary Token, or the authentication may be continued through a cookie authentication file, which is specifically as follows:
and verifying whether the cookie verification file is matched with the user identity verification request and/or verifying the Token temporary Token to finish the user identity verification.
Tkon is a string of character strings generated by the server and can be used as a temporary Token requested by the user terminal, and Token can reduce the pressure of the server and reduce frequent database query. Through two verification modes, the verification diversity can be improved, the verification efficiency of Token is higher, and the verification efficiency can be further improved.
And S204, finishing user identity authentication according to the cookie authentication file and the user identity authentication request. Then, step S209 is performed.
The implementation manner of step 204 is similar to that of step 104 in the previous embodiment, and is not described in detail here.
Step S205, determining the user account information and the user password information in the user authentication request. The user identity authentication request comprises user account information and user password information corresponding to the embedded webpage server.
And step S206, sending the user account information and the user password information to an identity authentication server.
Step S207, receiving the authentication result fed back by the authentication server.
And step S208, performing corresponding processing according to the identity verification result. Then, step S209 is performed.
In this embodiment, the user account information and the user password information are used for authentication of an authentication server of a third party. Since the authentication embedded in the web server is usually supported by the authentication server, the authentication needs to be performed by the authentication server when the authentication is performed for the first time. After a user inputs an account password in an embedded system of an embedded webpage server, the embedded system sends an authentication request to a third-party authentication server, the authentication server can generate authentication information, the embedded webpage server calls an interface of the authentication server to judge whether the authentication information provided by the authentication server passes, and if the authentication information passes, the authentication can be passed and a page can be logged in.
Optionally, in this embodiment, step S208 may specifically be:
and if the authentication result is that the authentication is passed, generating and storing a corresponding cookie authentication file according to the user authentication request. The user authentication request also comprises user login information of the embedded webpage in the embedded webpage server.
And if the identity authentication result is that the identity authentication does not pass the authentication, feeding back the authentication result which does not pass the authentication to the embedded webpage server.
After receiving the verification result, the embedded webpage server can feed back a message of password error to the embedded webpage.
Step S209, in response to the exit selection operation of the user on the embedded web page, exits the embedded web page and deletes the stored cookie authentication file corresponding to the user authentication request.
In this embodiment, after the user exits from the embedded system of the embedded web server, for example, after the embedded web server selectively exits, the cookie authentication file is cleared, so that a situation that the embedded page opened after the current user logs in is login information of the previous user can be avoided.
According to the method, under the condition that the Iframe is cross-domain, user information does not need to be verified repeatedly, the user information generated after the user logs in is stored as the cookie verification file, the cookie verification file is cleared in time after the user logs out, other users do not influence logging in, and the page response speed is improved.
Fig. 5 is a first structural schematic diagram of the identity information verifying apparatus provided in the present application, as shown in fig. 5, in this embodiment, the identity information verifying apparatus 300 may be disposed in an embedded web server, a web interface of the embedded web server is disposed in a menu bar of an embedded web page corresponding to the embedded web server in the form of an Iframe tag, and the identity information verifying apparatus 300 includes:
the receiving module 301 is configured to receive a user authentication request sent by the embedded web server. The user identity authentication request is generated by the embedded webpage server in response to the clicking operation of the user on the corresponding Iframe label in the menu bar.
The determining module 302 is configured to determine whether the user authentication request is a first authentication request within a preset time period.
The determining module 303 is configured to determine a stored cookie authentication file corresponding to the user authentication request if it is determined that the user authentication request is not the first authentication request. The cookie authentication file is generated according to the user login information of the embedded webpage in the embedded webpage server after the first authentication is passed.
And the verification module 304 is configured to complete user authentication according to the cookie authentication file and the user authentication request.
The identity information verification apparatus provided in this embodiment may implement the technical solution of the method embodiment shown in fig. 2, and the implementation principle and technical effect of the identity information verification apparatus are similar to those of the method embodiment shown in fig. 2, which are not described in detail herein.
Fig. 6 is a schematic structural diagram of a second identity information verification apparatus provided in the present application, and as shown in fig. 6, the identity information verification apparatus provided in the present application further refines the identity information verification apparatus on the basis of the identity information verification apparatus provided in the previous embodiment, and for better explanation, the identity information verification apparatus of the present embodiment adopts the identity information verification apparatus 400 for exemplary explanation, and then the identity information verification apparatus 400 includes:
optionally, in this embodiment, if it is determined that the user authentication request is a first authentication request within a preset time period, the authentication module 304 is further configured to:
and determining user account information and user password information in the user authentication request. The user identity authentication request comprises user account information and user password information corresponding to the embedded webpage server. And sending the user account information and the user password information to an identity authentication server. And receiving an authentication result fed back by the authentication server. And carrying out corresponding processing according to the identity authentication result.
Optionally, in this embodiment, when performing corresponding processing according to the identity verification result, the verification module 304 is specifically configured to:
and if the authentication result is that the authentication is passed, generating and storing a corresponding cookie authentication file according to the user authentication request. The user authentication request also comprises user login information of the embedded webpage in the embedded webpage server. And if the identity authentication result is that the identity authentication does not pass the authentication, feeding back the authentication result which does not pass the authentication to the embedded webpage server.
Optionally, in this embodiment, the user authentication request further includes: and the Token temporary Token corresponding to the user login information.
The determining module 303 is further configured to:
and judging whether the Token temporary Token in the user authentication request is expired. And if the Token temporary Token in the user authentication request is expired, executing the step of determining the stored cookie authentication file corresponding to the user authentication request.
Optionally, in this embodiment, if the Token temporary Token in the user authentication request is not expired, the determining module 303 is specifically configured to, when completing the user authentication according to the cookie authentication file and the user authentication request:
and verifying whether the cookie verification file is matched with the user identity verification request and/or verifying the Token temporary Token to finish the user identity verification.
Optionally, in this embodiment, the identity information verifying apparatus 400 further includes:
and the deleting module 401 is configured to, in response to a quit selection operation of the user on the embedded web page, quit the embedded web page, and delete the stored cookie authentication file corresponding to the user authentication request.
The identity information verifying apparatus provided in this embodiment may implement the technical solutions of the method embodiments shown in fig. 2 to fig. 4, and the implementation principles and technical effects thereof are similar to those of the method embodiments shown in fig. 2 to fig. 4, and are not described in detail herein.
There is also provided, in accordance with an embodiment of the present application, an embedded web server, a computer-readable storage medium, and a computer program product.
As shown in fig. 7, fig. 7 is a schematic structural diagram of the embedded web server provided in the present application. Embedded web servers are intended for various forms of digital computers, such as laptops, desktops, workstations, personal digital assistants, blade servers, mainframes, and other suitable computers. The components shown herein, their connections and relationships, and their functions, are meant to be exemplary only, and are not meant to limit implementations of the applications described and/or claimed herein.
As shown in fig. 7, the embedded web server includes: a processor 501 and a memory 502. The various components are interconnected using different buses and may be mounted on a common motherboard or in other manners as desired. The processor may process instructions that are executed within the embedded web server.
Memory 502 is a non-transitory computer readable storage medium as provided herein. The memory stores instructions executable by the at least one processor to cause the at least one processor to perform the method for authenticating identity information provided herein. The non-transitory computer-readable storage medium of the present application stores computer instructions for causing a computer to perform the identity information verification method provided herein.
The memory 502, which is a non-transitory computer readable storage medium, may be used to store non-transitory software programs, non-transitory computer executable programs, and modules, such as program instructions/modules (e.g., the receiving module 301, the judging module 302, the determining module 303, and the verifying module 304 shown in fig. 5) corresponding to the identity information verifying method in the embodiment of the present application. The processor 501 executes various functional applications and data processing of the electronic device by running non-transitory software programs, instructions and modules stored in the memory 502, so as to implement the identity information verification method in the above method embodiment.
Meanwhile, the embodiment also provides a computer product, and when instructions in the computer product are executed by a processor of the electronic device, the electronic device is enabled to execute the identity information verification method of the embodiment.
Other embodiments of the present application will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the embodiments of the application following, in general, the principles of the embodiments of the application and including such departures from the present disclosure as come within known or customary practice within the art to which the embodiments of the application pertain.
It is to be understood that the embodiments of the present application are not limited to the precise arrangements described above and shown in the drawings, and that various modifications and changes may be made without departing from the scope thereof. The scope of the embodiments of the present application is limited only by the following claims.

Claims (10)

1. An identity information verification method is applied to an embedded webpage server, a webpage interface of the embedded webpage server is arranged in a menu bar of a corresponding embedded webpage of the embedded webpage server in the form of an Iframe label, and the method comprises the following steps:
receiving a user identity authentication request sent by an embedded webpage server; the user identity authentication request is generated by the embedded webpage server in response to the click operation of the user on the corresponding Iframe tag in the menu bar;
judging whether the user identity authentication request is a first authentication request within a preset time period;
if the user identity authentication request is determined not to be the first authentication request, determining a stored cookie authentication file corresponding to the user identity authentication request; the cookie authentication file is generated according to user login information of an embedded webpage in an embedded webpage server after the first authentication is passed;
and completing user identity authentication according to the cookie authentication file and the user identity authentication request.
2. The method according to claim 1, wherein if it is determined that the user authentication request is a first authentication request within a preset time period, the method further comprises:
determining user account information and user password information in a user identity authentication request; the user identity authentication request comprises user account information and user password information corresponding to the embedded webpage server;
sending the user account information and the user password information to an identity verification server;
receiving an authentication result fed back by the authentication server;
and carrying out corresponding processing according to the identity verification result.
3. The method according to claim 2, wherein the performing corresponding processing according to the authentication result comprises:
if the authentication result is that the authentication is passed, generating and storing a corresponding cookie authentication file according to the user authentication request; the user identity authentication request also comprises user login information of an embedded webpage in the embedded webpage server;
and if the identity authentication result is that the identity authentication does not pass the authentication, feeding back the authentication result which does not pass the authentication to the embedded webpage server.
4. The method of claim 3, wherein the user authentication request further comprises: a Token temporary Token corresponding to the user login information;
before determining the stored cookie authentication file corresponding to the user authentication request, the method further includes:
judging whether the Token temporary Token in the user identity authentication request is expired;
and if the Token temporary Token in the user authentication request is expired, executing the step of determining the stored cookie authentication file corresponding to the user authentication request.
5. The method of claim 4, wherein if the Token temporary Token in the user authentication request is not expired, the completing the user authentication according to the cookie authentication file and the user authentication request comprises:
and verifying whether the cookie verification file is matched with the user identity verification request and/or verifying the Token temporary Token to finish user identity verification.
6. The method of any one of claims 1 to 5, further comprising:
and in response to the exit selection operation of the user on the embedded webpage, exiting the embedded webpage and deleting the stored cookie authentication file corresponding to the user authentication request.
7. An identity information verification device, located in an embedded web server, wherein a web interface of the embedded web server is disposed in a menu bar of an embedded web corresponding to an embedded web page of the embedded web server in the form of an Iframe tag, the device comprising:
the receiving module is used for receiving a user identity authentication request sent by the embedded webpage server; the user identity authentication request is generated by the embedded webpage server in response to the clicking operation of the user on the corresponding Iframe label in the menu bar;
the judging module is used for judging whether the user identity authentication request is a first authentication request within a preset time period;
the determining module is used for determining a stored cookie authentication file corresponding to the user identity authentication request if the user identity authentication request is determined not to be the first authentication request; the cookie authentication file is generated according to user login information of an embedded webpage in the embedded webpage server after the first identity authentication is passed;
and the verification module is used for completing the user identity verification according to the cookie verification file and the user identity verification request.
8. An embedded web server, comprising: a memory and a processor;
the memory stores computer-executable instructions;
the processor executes computer-executable instructions stored by the memory to implement the identity information verification method of any one of claims 1 to 6.
9. A computer-readable storage medium having stored thereon computer-executable instructions for implementing the identity information verification method according to any one of claims 1 to 6 when executed by a processor.
10. A computer program product comprising a computer program, characterized in that the computer program, when being executed by a processor, carries out the method of identity information verification according to any one of claims 1 to 6.
CN202211206109.1A 2022-09-30 2022-09-30 Identity information verification method, device, server, medium and product Pending CN115643054A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211206109.1A CN115643054A (en) 2022-09-30 2022-09-30 Identity information verification method, device, server, medium and product

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211206109.1A CN115643054A (en) 2022-09-30 2022-09-30 Identity information verification method, device, server, medium and product

Publications (1)

Publication Number Publication Date
CN115643054A true CN115643054A (en) 2023-01-24

Family

ID=84941302

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211206109.1A Pending CN115643054A (en) 2022-09-30 2022-09-30 Identity information verification method, device, server, medium and product

Country Status (1)

Country Link
CN (1) CN115643054A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116633599A (en) * 2023-05-04 2023-08-22 杭州蓝鲸网络科技有限公司 Method, system and medium for verifying secure login of hand-tour client

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116633599A (en) * 2023-05-04 2023-08-22 杭州蓝鲸网络科技有限公司 Method, system and medium for verifying secure login of hand-tour client
CN116633599B (en) * 2023-05-04 2024-01-30 杭州蓝鲸网络科技有限公司 Method, system and medium for verifying secure login of hand-tour client

Similar Documents

Publication Publication Date Title
US9954841B2 (en) Distinguish valid users from bots, OCRs and third party solvers when presenting CAPTCHA
US10567407B2 (en) Method and system for detecting malicious web addresses
US9864671B1 (en) Systems and methods of live experimentation on content provided by a web site
US9459888B2 (en) Implementing browser based hypertext transfer protocol session storage
KR101145005B1 (en) Secure inter-module communication mechanism
US7881304B2 (en) Using distributed aspects to reorder online application workflows
US9684628B2 (en) Mechanism for inserting trustworthy parameters into AJAX via server-side proxy
US20090327421A1 (en) Cross domain interaction of a Web application
CN110602052A (en) Micro-service processing method and server
CN109829121B (en) Method and device for reporting click behavior data
US8103607B2 (en) System comprising a proxy server including a rules engine, a remote application server, and an aspect server for executing aspect services remotely
CN112583834B (en) Method and device for single sign-on through gateway
JP2022546073A (en) Connecting web publisher inventory to programmatic exchanges without third party cookies
CN109495553A (en) A kind of webpage display control method, system and Reverse Proxy
CN113347163A (en) Single sign-on method, device, equipment and medium
CN115643054A (en) Identity information verification method, device, server, medium and product
WO2020073374A1 (en) Advertisement anti-shielding method and device
CN113362173A (en) Anti-duplication mechanism verification method, anti-duplication mechanism verification system, electronic equipment and storage medium
CN111935092B (en) Information interaction method and device based on third-party application and electronic equipment
US9571555B2 (en) Methods circuits devices systems and associated computer executable code for web augmentation
CN105959278A (en) Method, device and system for calling VPN
US11716275B1 (en) Assistant for automatic generation of server load test scripts
US8180854B2 (en) Aspect services
CN111368231B (en) Method and device for testing heterogeneous redundancy architecture website
US20170244649A1 (en) Method of and a system for providing access to a file to a web resource

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination