JP2015118459A - Image formation device, information terminal, server device, data processing system, communication method for image formation device, communication method for information terminal, communication method for server device, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To establish security communication connection between an information terminal and a server device by utilizing identification information issued by the server device from the information terminal through an image formation device.SOLUTION: An image formation device communicates with an information terminal or a server device that manages a content. The image formation device establishes communication with the server device by using first identification information, and then receives a request for issuing second identification information allowing the information terminal to establish communication with the server device from the information terminal, and then performs the received request for acquiring the second identification information for the server device, and acquires the second identification information issued from the server device in responce to the request for issuing the second identification information, and responses the acquired second identification information to the image formation device.

Description

  The present invention relates to an image forming apparatus, an information terminal, a server apparatus, a data processing system, an image forming apparatus communication method, an information terminal communication method, a server apparatus communication method, and a program.

In recent years, with the generalization of the cloud, opportunities to create added value by linking multiple services are increasing. In addition, the client terminal is not limited to a PC, and a smartphone, tablet, or image forming apparatus can be connected to a cloud service, and the service can be accessed by a plurality of client terminals.
It is desired that services can be easily accessed by a plurality of client terminals and that security is ensured.

JP 2002-335239 A

In the prior art, when accessing another server authenticated from a client terminal, the authentication information is verified between the servers to reduce the number of times of authentication. However, when accessing from another client terminal, authentication is performed again. is necessary.
In addition, since security is ensured by establishing a trust relationship in order to verify authentication between a plurality of servers, the system configuration becomes complicated.

  The present invention has been made to solve the above-described problems, and an object of the present invention is to use an identification terminal issued by a server device from an information terminal via an image forming device, and It is to provide a mechanism that can establish a secure communication connection.

The image forming apparatus of the present invention that achieves the above object has the following configuration.
An image forming apparatus that communicates with an information terminal or a server apparatus that manages content, wherein communication establishing means that establishes communication with the server apparatus using first identification information; and Receiving means for receiving a second identification information issuance request for the information terminal to establish communication with the server device from the information terminal in a state in which the communication connection is established, and the first received by the receiving means Requesting means for making a request for acquisition of the second identification information to the server apparatus, and second identification information issued from the server apparatus in response to a request for issuing the second identification information by the requesting means. And a response unit that responds to the image forming apparatus with the second identification information acquired by the acquisition unit.

The information terminal of the present invention that achieves the above object has the following configuration.
An information terminal that communicates with an image forming apparatus that can communicate with a server device that manages content, based on log-in means for logging in to the image forming apparatus using predetermined authentication information, and user information of the logged-in information terminal First identification means for obtaining content transmission history information from the image forming apparatus, and second identification information for establishing communication with the server apparatus based on the transmission history information obtained by the first acquisition means Requesting means for requesting the image forming apparatus to issue, and the requesting means issues the server apparatus with the image forming apparatus establishing communication with the server apparatus using the first identification information. A second acquisition unit configured to acquire second identification information used by the information terminal from the image forming apparatus; and the second identification information acquired by the second acquisition unit. And communication establishing means for establishing communication with the server device to use, after establishing communication with the server apparatus, characterized in that it comprises a third acquiring means for acquiring contents from the server device.

The server device of the present invention that achieves the above object has the following configuration.
A server device that establishes communication with the image forming apparatus using the first identification information, the management unit for storing and managing the content received from the image forming apparatus in a storage device, and information logged into the image forming apparatus Acquisition means for acquiring a request for issuing second identification information for establishing communication with the terminal from the image forming apparatus; and the second identification information requested from the information terminal via the image forming apparatus. Generating means for generating second identification information for permitting communication with the user of the information terminal in accordance with the issue request; and sending means for sending the second identification information generated by the generating means to the image forming apparatus And communication establishment means for authenticating a connection request from the information terminal using the second identification information responded to the information terminal from the image forming apparatus and establishing communication. And features.

  According to the present invention, it is possible to establish a secure communication connection between an information terminal and a server device by using identification information issued by the server device from the information terminal via the image forming apparatus.

It is a figure which shows an example of a data processing system. It is a block diagram which shows the hardware of a resource server and an image forming apparatus. It is a figure which shows the module structure in a data processing system. It is a figure which shows the data table which a resource server memorize | stores in an external memory. 3 is a diagram illustrating a data table stored in an external memory by the image forming apparatus. FIG. It is a figure which shows the data table which a client terminal memorize | stores in an external memory. It is a figure which shows the example of UI which a client terminal displays a transmission history. It is a flowchart which shows the control method of a data processing system. It is a figure which shows the data table which a resource server memorize | stores in an external memory. It is a flowchart which shows the control method of a data processing system. It is a figure which shows the data table which a resource server memorize | stores in an external memory. 3 is a diagram illustrating a data table stored in an external memory by the image forming apparatus. FIG. It is a flowchart which shows the control method of a data processing system.

Next, the best mode for carrying out the present invention will be described with reference to the drawings.
<Description of system configuration>
[First Embodiment]

FIG. 1 is a diagram illustrating an example of a data processing system according to the present embodiment.
In FIG. 1, reference numeral 100 denotes a wide area network (WAN 100), and in the present invention, a World Wide Web (WWW) system is constructed. Reference numeral 101 denotes a local area network (LAN 101) for connecting each component.

A resource server 200 is provided with a resource service such as content management. Note that one or more resource services may be installed on one resource server. Reference numeral 300 denotes an image forming apparatus in which one or a plurality of resource service cooperation applications are installed. The user uses the resource service using these resource service cooperation applications.
Reference numeral 400 denotes a client terminal in which one or a plurality of resource service cooperation device applications are installed. The user uses the resource service using these resource service cooperation device applications.
The resource server 200, the image forming apparatus 300, and the client terminal 400 are connected via the WAN 100 and the LAN 101, respectively. The resource server 200, the image forming apparatus 300, and the client terminal 400 may be configured on individual LANs or may be configured on the same LAN. The resource server 200 performs token verification on the same server, but may be configured on another server. Here, the token is used as identification information used for establishing communication between devices.

FIG. 2 is a block diagram illustrating hardware of the resource server 200 and the image forming apparatus 300 illustrated in FIG. The information processing system according to the present embodiment is realized on a system including a server, a client terminal, and an image forming apparatus configured as shown in FIG. The hardware block diagram shown in FIG. 2 corresponds to the hardware block diagram of a general information processing apparatus, and the hardware configuration of the general information processing apparatus is applied to the resource server 200 of this embodiment. it can. The same applies to the client terminal 400 as well as the resource server 200.
The resource server 200 and the image forming apparatus 300 are communicably connected via the WAN 100 and the LAN 101. First, the configuration of the resource server 200 will be described.

In FIG. 2, a CPU 201 executes programs such as an OS and applications stored in a program ROM of a ROM 203 or loaded from an external memory 211 such as a hard disk (HD) into a RAM 202 and connected to a system bus 204. Control the block. Here, the OS is an abbreviation for an operating system running on a computer, and the operating system is hereinafter referred to as an OS. Processing of each sequence described later can be realized by executing this program.
The RAM 202 functions as a main memory, work area, and the like for the CPU 201. A keyboard controller (KBC) 205 controls key input from a keyboard 209 or a pointing device (not shown). A CRT controller (CRTC) 206 controls display on the CRT display 210. A disk controller (DKC) 207 controls data access in an external memory 211 such as a hard disk (HD) that stores various data. A network controller (NC) 208 executes communication control processing with the image forming apparatus 300 and other devices connected via the WAN 100 or the LAN 101.

  In all the descriptions below, unless otherwise specified, the hardware main body of execution in the server is the CPU 201, and the software main body is an application program installed in the external memory 211.

Next, the configuration of the image forming apparatus 300 will be described.
As shown in the figure, in the image forming apparatus 300, reference numeral 301 denotes a CPU of the image forming apparatus 300, which controls each block connected to the system bus 304 based on a control program stored in the ROM 302 or the external memory 303. The image signal generated by the processing of the CPU 301 is output as output information to the printing unit (image forming apparatus engine) 306 via the printing unit I / F 305. Further, the CPU 301 can perform communication processing with the resource server 200 via the input unit 307 and the network unit 310, and can notify the resource server 200 of information in the image forming apparatus 300.

  A program ROM in the ROM 302 stores a control program for the CPU 301 and the like. The font ROM in the ROM 302 stores font data used for generating output information. The data ROM in the ROM 302 stores information to be transmitted to and received from the resource server 200 in the case of an image forming apparatus that does not have an external memory 303 such as a hard disk.

  A RAM 308 is a RAM that functions as a main memory, a work area, and the like of the CPU 301, and is configured such that the memory capacity can be expanded by an optional RAM connected to an expansion port (not shown). The RAM 308 is used as an output information expansion area, environment data storage area, NVRAM, and the like.

  Access to the external memory 303 is controlled by a memory controller (MC) 309. The external memory 303 is connected as an option and stores font data, an emulation program, form data, and the like. The operation unit 311 includes a switch for operation and an LED display.

  In all the descriptions below, unless otherwise specified, the hardware main body of execution in the image forming apparatus is the CPU 301, and the software main body is an application program installed in the external memory 303.

  FIG. 3 is a diagram showing module configurations of the resource server 200, the image forming apparatus 300, and the client terminal 400 in the data processing system shown in FIG. The resource server 200, the image forming apparatus 300, and the client terminal 400 are the same as those in FIG. The resource server 200 has a resource server module 1200.

In FIG. 3, reference numeral 300 denotes an image forming apparatus. The CPU 301 controls each application by executing an OS stored in the ROM 302 or the external memory 303. Here, 1320 is the OS, and a real-time OS is generally used. However, a general-purpose OS such as Linux (registered trademark) may be used recently. Next, 1321 is a virtual machine, for example, Java (registered trademark) VM is well known. The virtual machine 1321 is a virtual application execution environment that operates as an application controlled by the OS.
Next, 1322 is an application management framework, which has a function of managing the life cycle of a management target application that operates in the application execution environment provided by the virtual machine 1321. The application management framework 1322 further includes an I / F for controlling a function for managing the life cycle of the application to be managed, and an I / F disclosure function for mediating processing requests between the applications. . The life cycle indicates the state of the application including installation, activation, stop, and uninstallation of the application.
The application management framework 1322 in the present embodiment will be described as OSGi (registered trademark) defined by the OSGi (Open Services Gateway initiative) alliance.
The one or more resource service cooperation device applications 1300 and the remote login application 1310 are various applications that operate in an application execution environment provided by the virtual machine 1321. These applications are life cycle managed by an application management framework 1322.

  Here, the resource service cooperation device application 1300 and the remote login application 1310 may be provided by the image forming apparatus by default, or may be installed later via the application management framework 1322.

  FIG. 4 is a diagram showing a data table stored in the external memory by the resource server 200 shown in FIG. Each of the data tables shown in FIGS. 4A and 4B can be stored not in the external memory of the resource server 200 but in another server configured to be communicable via the LAN 101.

  In FIG. 4A, reference numeral 2000 denotes a user management table 2000, which includes a user ID 2010 and a password 2011. The resource server 200 has a function of authenticating each user by verifying the information set of the user ID 2010 and the password 2011 and generating authentication information if they are correct.

  4B, the permission token management table 2100 includes a permission token ID 2110, a token type 2111, an expiration date 2120, a device ID 2112, a user ID 2113, and a sub token request device ID 2114. Details of the processing of the permission token management table 2100 will be described later.

FIG. 5 is a view for explaining a data table stored in the external memory by the image forming apparatus 300 shown in FIG.
FIG. 5A illustrates an image forming apparatus ID management table 3000 that can be referred to from the resource service cooperation device application 1300. The image forming apparatus ID management table 3000 includes an image forming apparatus ID 3010. The resource service cooperation device application 1300 transmits an image forming apparatus ID 3010 to identify the image forming apparatus when requesting a token from the resource server 200.

FIG. 5B shows a device user management table 3100 that can be referred to from the remote login application 1310. In this embodiment, the image forming apparatus 300 is described as being stored in the external memory. However, the image forming apparatus 300 may be configured by another server that can communicate via the LAN 101. The device user management table 3100 includes a device user ID 3110, a password 3111, and IC card information 3112.
The remote login application 1310 constitutes a screen (not shown) that accepts a user ID and password from the user using the input screen of the image forming apparatus 300. Then, it is verified whether the input user ID / password combination matches the device user ID 3110 / password 3111 combination, and if correct, each user is authenticated by generating a login context including information on the device user ID 3110. It has a function.
Further, the remote login application 1320 acquires IC card information from an IC card reader (not shown) connected to the image forming apparatus 300 and verifies whether the information matches the information in the IC card information 3112. If the verification with the information of the IC card information 3112 is correct, a function of authenticating each user can be provided by generating a login context including the information of the corresponding device user ID 3110. Here, the login context is an object in which information of the device user ID 3110 of the authenticated user is set. In addition, it is also possible to use a login context to set user attribute information, for example, information such as the domain to which the user belongs and the user's e-mail address.

FIG. 5C shows a resource server user management table 3200 that can be referred to and updated from the resource service cooperation device application 1300. The resource server user management table 3200 includes a device user ID 3210, a user ID 3211, and a password 3212.
The resource service cooperation device application 1300 manages that the user has accessed the resource server 200 via the resource service cooperation device application 1300. Specifically, the resource service cooperation device application 1300 stores the user ID, password, and device user ID input by the user who has accessed the resource server 200 in the resource server user management table 3200 in combination.

  FIG. 5D shows a resource server transmission history management table 3300 that can be referred to and updated from the resource service cooperation device application 1300. The resource server transmission history management table 3300 includes a device user ID 3310, a content name 3311, and a transmission destination 3312. The resource service cooperation device application 1300 manages the following information when data scanned by the image forming apparatus 300 is transmitted to the resource server 200. In particular,. The resource service cooperation device application 1300 stores in the resource server transmission history management table 3300 a combination of the device user ID, content name, and transmission destination that transmitted the scanned data. In addition to the data scanned by the image forming apparatus 300, setting data of the image forming apparatus 300 and the resource service cooperation device application 1300 may be stored when transmitted to the resource server 200.

  FIG. 5E illustrates a token management table 3400 that can be referred to and updated only from the resource service cooperation device application 1300. The token management table 3400 includes a device user ID 3410 and a permission token ID 3411. Details of the processing of the token management table 3400 will be described later.

  FIG. 5F shows a session management table 3500 that can be referred to and updated from the resource service cooperation device application 1300 and the remote login application 1310. The session management table 3500 includes a session ID 3510 and a device user ID 3511. Details of processing of the session management table 3500 will be described later.

FIG. 6 is a diagram showing a data table stored in the external memory by the client terminal 400 shown in FIG.
FIG. 6A shows a client ID management table 4000 that is configured to be referred to from the resource service cooperation client application 1400. The client ID management table 4000 includes a client ID 4010.
When making a resource request to the resource server 200, the resource service cooperation client application 1400 transmits a client ID 4010 to identify the client terminal. Alternatively, the resource service cooperation client application 1400 transmits a client ID 4010 to identify the client terminal when requesting a sub token from the resource service cooperation device application 1300.

  FIG. 6B shows a sub-token management table 4100 that can be referenced and updated only from the resource service cooperation client application 1400. The sub token management table 4100 includes a permitted token ID 4110, a token type 4111, and a device ID 4112. Details of the processing of the sub token management table 4100 will be described later.

FIG. 7 is a diagram illustrating a UI example in which the client terminal 400 illustrated in FIG. 1 displays a transmission history.
In FIG. 7, the transmission history management screen 5000 displays the transmission history acquired by the resource service cooperation client application 1400 from the resource service cooperation device application 1300, and prompts the user to select content to be acquired. The user can also operate to acquire resources via the displayed transmission history management screen 5000. The transmission history management screen 5000 includes a transmission history list 5100 and a resource acquisition button 5200. Details of the processing of the transmission history management screen 5000 will be described later.
Here, the sequence of the present embodiment related to resource acquisition from sub-token acquisition will be described with reference to FIG.

FIG. 8 is a flowchart showing a control method of the data processing system according to the present embodiment. In this example, the user logs in to the image forming apparatus 300, and then uses the resource service cooperation device application 1300 from the image forming apparatus 300 to log in to the resource server 200 and transmits one or more data. That is the premise.
At this time, the record of the authorization token ID “AT_0001” is recorded in the authorization token management table 2100, and the record of the device user ID “duid0001” is recorded in the resource server user management table 3200. Further, a record of the document name “document.doc” is recorded in the resource server transmission history management table 3300, and a record of “duid0001” is recorded in the device user ID of the token management table 3400.
When the user uses the resource service cooperation device application 1300 from the image forming apparatus 300, it is not necessary to use the sub token described in the present embodiment. Hereinafter, a method for controlling the data processing system including the client terminal 400, the image forming apparatus 300, and the resource server 200 will be described.

  First, the user accesses and logs in to the login means provided by the remote login application 1310 using the resource service cooperation client application 1400 (S1.1). Here, the user of the client terminal 400 logs in to the image forming apparatus using predetermined authentication information (such as user information including a user ID and a password).

Here, it is assumed that a user whose user ID is “duid0001” logs in. Then, the remote login application 1310 generates a login context and session including “duid0001” (S1.2), and responds to the resource service cooperation client application 1400 of the client terminal 400 (S1.3).
Here, the session issues a new session ID and registers “duid0001” as the device user ID in the device user ID 3511 of the session management table 3500 shown in FIG. Here, a session is used to identify a user who logs in to the image forming apparatus 300 from the client terminal 400, but another method may be used.
Further, when the user is logging in to the image forming apparatus 300, the login from the resource service cooperation client application 1400 may be suppressed. This is to prevent the latest information from being acquired from the resource server transmission history management table 3300 when logging in from the resource service cooperation client application 1400 before data transmission. This login suppression operation may be a method that can be changed by setting.

  If the login is successful, the user acquires a history with the resource service cooperation client application 1400. Then, the resource service cooperation client application 1400 requests the history transmitted to the resource server 200 to the resource service cooperation device application 1300 using the session ID (S1.4).

  The resource service cooperation device application 1300 of the image forming apparatus 300 acquires the contents of the device user ID 3511 using the session ID received from the session management table 3500 shown in FIG. Then, the transmission history is acquired using the content of the device user ID 3310 acquired from the resource server transmission history management table 3300 shown in FIG. 5D as a key and the content name 3311 and the transmission destination 3312 as a set. Then, the transmission history is returned to the resource service cooperation client application 1400 (S1.5).

The resource service cooperation client application 1400 displays the transmission destination 3312 and the content name 3311 of the acquired transmission history information in the transmission history list 5100 displayed on the UI screen of FIG. The user selects a resource to be acquired from the transmission history list 5100 and clicks the resource acquisition button 5200 to prompt the resource service cooperation client application 1400 to make a resource acquisition request.
In this case, a plurality of transmission history lists 5100 may be selected, or a method of prompting a resource acquisition request from a context menu or the like may be used.
The resource service cooperation client application 1400 acquires the client ID 4010 from the client ID management table 4000. Then, the resource service cooperation client application 1400 uses the session ID and client ID 4010 to make a sub token acquisition request to the resource service cooperation device application 1300 (S1.6). Here, the sub token acquisition request functions as a sub token issue request to the resource server 200.
The resource service cooperation device application 1300 that has received the sub-token acquisition request performs the following processing.

The resource service cooperation device application 1300 acquires the device user ID 3511 using the content of the session ID 3510 received from the session management table 3500 as a key. Then, the resource service cooperation device application 1300 acquires the token permitted token ID 3411 from the token management table 3400 shown in FIG. 5E using the contents of the device user ID 3410 as a key.
Further, the image forming apparatus ID management table 3000 acquires the image forming apparatus ID 3010, and uses the permission token ID, client ID, and image forming apparatus ID to make a sub token acquisition request to the resource server (S1.7).
The resource server 200 that has received the sub token acquisition request performs the following processing.

  The resource server 200 checks whether the permission token ID of the received token is registered in the permission token management table 2100. Further, whether the expiration date 2120 set in the record of the registered authorization token is within the range compared to the current date and time corresponding to the server locale, or whether the device ID 2112 is the same as the image forming apparatus ID is verified. (S1.8).

  If it is determined that there is no problem in the token verification, the resource server 200 generates a sub token (S1.9) and responds to the resource service cooperation device application 1300 (S1.10). Here, the sub token issues a new permission token ID, and the token type 2112 is registered in the sub token and the client terminal ID is registered in the device ID 2112 of the permission token management table 2100. At this time, the user ID of the record specified by the permission token ID received by the sub token acquisition request is taken over, and the device ID is set in the sub token request device ID 2114.

  The resource service cooperation device application 1300 that acquired the permission token ID of the sub token returns the permission token ID and image forming apparatus ID of the sub token to the resource service cooperation client application 1400 (S1.11).

Then, the resource service cooperation client application 1400 that has acquired the sub token sets the following IDs in the permission token ID 4110 and the device ID 4112 of the sub token management table 4100. Specifically, the resource service cooperation client application 1400 registers the permitted token ID and image forming apparatus ID of the received sub token, and sets the sub token in the token type 4111.
Then, a resource acquisition request is made to the resource server 200 using the permission token ID of the sub token, the client ID, the image forming apparatus ID, the transmission destination of the transmission history selected by the user in the transmission history list 5100, and the content name (S1. 12). This request corresponds to the client terminal 400 processing the communication connection request using the second identification information (sub token) issued from the resource server 200.

  Upon receiving the resource acquisition request from the client terminal 400, the resource server 200 verifies the permission token ID of the received sub token. Specifically, the resource server 200 verifies whether it is registered in the permission token management table 2100. Further, the resource server 200 verifies the token whether the device ID and the sub token request device ID set in the registered permission token record are the same as the received client ID and the image forming apparatus ID (S1. 13).

If the resource server 200 determines that access is permitted as a result of the verification, the resource corresponding to the transmission destination and the content name is returned to the resource service cooperation client application 1400 (S1.14), and the process is terminated.
As a result, after being established between the information terminal authenticated by the image forming apparatus and connected to the resource server that can be authenticated by the image forming apparatus and the first authentication information, the information terminal can use the second Authentication information can be issued. Then, the image forming apparatus sends the second authentication information issued from the resource server to the information terminal, so that the information terminal establishes authentication with the resource server using the second authentication information and acquires the content. Can build a system that can.
[Second Embodiment]
Hereinafter, the hardware configuration of the data processing system shown in the present embodiment is the same as that of the first embodiment. The module configuration and each data table in the data processing system are the same as those in the first embodiment. Hereinafter, differences from the first embodiment will be described.

  FIG. 9 is a diagram illustrating an example of a data table stored in the external memory by the resource server 200 illustrated in FIG. These data tables may be stored not in the external memory of the resource server 200 but in another server configured to be communicable via the LAN 101.

  The permission token management table 2100 shown in FIG. 9A includes a permission token ID 2110, a token type 2111, an expiration date 2120, a device ID 2112, a user ID 2113, a sub token request device ID 2114, and a restriction information ID 2115. Details of the processing of the permission token management table 2100 will be described later.

  FIG. 9B shows a content management table 2200, which includes a content ID 2210, a content path 2211, and a content type 2212. Details of processing of the content management table 2200 will be described later.

  FIG. 9C shows a restriction information management table 2300, which includes a restriction information ID 2310, a restriction type 2311, and restriction information 2312. Details of the processing of the restriction information management table 2300 will be described later. Here, the sequence of the present embodiment related to resource acquisition from sub-token acquisition will be described with reference to FIG.

FIG. 10 is a flowchart for explaining a control method of the data processing system according to the present embodiment. In this example, the same components as those described in the flowchart shown in FIG.
In this sequence, a user logs in to the image forming apparatus 300, and then uses the resource service cooperation device application 1300 from the image forming apparatus 300 to log in to the resource server 200 and transmits one or more data. That is the premise. At this time, the record of the authorization token ID “AT_0001” is recorded in the authorization token management table 2100, and the record of the device user ID “duid0001” is recorded in the resource server user management table 3200. Further, a record of the document name “document.doc” is recorded in the resource server transmission history management table 3300, and a record of “duid0001” is recorded in the device user ID of the token management table 3400.
When the user uses the resource service cooperation device application 1300 from the image forming apparatus 300, it is not necessary to use the sub token described in the present embodiment.

  First, the user uses the resource service cooperation client application 1400 to log in by accessing the login means provided by the remote login application 1310 (S2.1).

  Here, it is assumed that a user whose user ID is “duid0001” logs in. Then, the remote login application 1310 generates a login context and session including “duid0001” (S2.2), and responds to the resource service cooperation client application 1400 (S2.3). Here, the session issues a new session ID and registers dud0001 as the device user ID in the device user ID 3511 of the session management table. Here, a session is used to identify a user who logs in to the image forming apparatus 300 from the client terminal 400, but another method may be used.

  If the login is successful, the user acquires a history with the resource service cooperation client application 1400. Then, the resource service cooperation client application 1400 requests the history transmitted to the resource server 200 to the resource service cooperation device application 1300 using the session ID (S2.4).

  The resource service cooperation device application 1300 acquires the device user ID using the session ID received from the session management table 3500 as a key. Then, the resource service cooperation device application 1300 acquires the transmission history using the content user name 3310 and the transmission destination 3312 as a set with the device user ID acquired from the resource server transmission history management table 3300 as a key. Further, the resource service cooperation device application 1300 returns the acquired transmission history to the resource service cooperation client application 1400 of the client terminal 1400 (S2.5).

The resource service cooperation client application 1400 displays the transmission destination and content name of the acquired transmission history in the transmission history list 5100 displayed on the UI screen shown in FIG. The user selects a resource to be acquired from the transmission history list 5100 and clicks the resource acquisition button 5200 to prompt the resource service cooperation client application 1400 to make a resource acquisition request. In this case, a plurality of transmission history lists 5100 may be selected, or a method of prompting a resource acquisition request from a context menu or the like may be used.
The resource service cooperation client application 1400 acquires the client ID 4010 from the client ID management table 4000. Then, the resource service cooperation client application 1400 uses the session ID and client ID 4010 to make a sub token acquisition request to the resource service cooperation device application 1300 (S2.6). Here, the sub token acquisition request functions as a sub token issue request to the resource server 200. The resource service cooperation device application 1300 that has received the sub-token acquisition request performs the following processing.

  The device user ID is acquired using the session ID received from the session management table 3500 as a key, and the permitted token ID of the token is acquired from the token management table 3400 using the device user ID as a key. Also, the image forming apparatus ID 3010 is acquired from the image forming apparatus ID management table 3000, and a sub token acquisition request is sent to the resource server using the permission token ID, the client ID, the image forming apparatus ID, the received content name, and the transmission destination. Perform (S2.7). The resource server 200 that has received the sub token acquisition request performs the following processing.

  It is confirmed whether the permission token ID of the received token is registered in the permission token management table 2100. Further, whether the expiration date 2120 set in the record of the registered authorization token is within the range compared to the current date and time corresponding to the server locale, or whether the device ID 2112 is the same as the image forming apparatus ID is verified. (S2.8).

  If there is no problem in the token verification, the resource server 200 generates a sub token (S2.9), generates restriction information (S2.10), and responds to the resource service cooperation device application 1300 (S2.11).

  Here, the sub token issues a new permission token ID, and the token type 2112 is registered in the sub token and the client terminal ID is registered in the device ID 2112 of the permission token management table 2100. At this time, the user ID of the record specified by the permission token ID received by the sub token acquisition request is taken over, and the device ID is set in the sub token request device ID 2114.

  Further, the restriction information is newly issued as a restriction information ID, the restriction type 2311 is set in the content, and is registered in the restriction information management table 2300. At this time, the content ID 2210 is acquired in the restriction information 2312 using the transmission destination and content name received from the content management table 2200 as keys, and the acquired content ID is set. The issued restriction information ID is set in the restriction information ID 2115 of the permission token management table 2100.

  The resource service cooperation device application 1300 that acquired the permission token ID of the sub token responds to the resource service cooperation client application 1400 with the permission token ID and the image forming apparatus ID of the sub token. (S2.12)

  Then, the resource service cooperation client application 1400 that has acquired the sub token registers the permitted token ID and the image forming apparatus ID of the received sub token in the permitted token ID 4110 and the device ID 4112 of the sub token management table 4100, and stores them in the token type 4111. Set the sub token. Then, a resource acquisition request is made to the resource server 200 using the permission token ID of the sub token, the client ID, the image forming apparatus ID, the transmission destination of the transmission history selected by the user in the transmission history list 5100, and the content name (S2. 13).

Upon receiving the resource acquisition request, the resource server 200 verifies whether the permission token ID of the received sub token is registered in the permission token management table 2100. Further, the resource server 200 verifies whether the device ID and the sub token request device ID set in the registered permission token record are the same as the received client ID and the image forming apparatus ID (S2. 14).
Further, the resource server 200 acquires the restriction information ID from the permission token management table 2100 using the permission token ID as a key, and verifies the following restriction information (S2.15).

  The resource server 200 acquires the content ID using the restriction information ID acquired from the restriction information management table as a key. The resource server 200 acquires a content path from the content management table 2200 using the content ID as a key. The resource server 200 verifies whether the received transmission destination and the content name are the same as the acquired content path.

If the resource server 200 determines that access is permitted as a result of the verification, the resource server 200 responds to the resource service cooperation client application 1400 with a resource corresponding to the transmission destination and the content name (S2.16), and ends the processing. To do.
As a result, after being established between the information terminal authenticated by the image forming apparatus, a connection is made to the resource server that can be authenticated by the image forming apparatus and the first authentication information, and a restriction that the information terminal can use is given. The issued second authentication information can be issued.
[Third Embodiment]
Hereinafter, the hardware configuration of the data processing system shown in the present embodiment is the same as that of the first embodiment. The module configuration and each data table in the data processing system are the same as those in the first embodiment. Hereinafter, differences from the first embodiment and the second embodiment will be described.

  FIG. 11 is a diagram showing a data table stored in the external memory by the resource server 200 shown in FIG. These data tables may be stored not in the external memory of the resource server 200 but in another server configured to be communicable via the LAN 101.

  FIG. 11A shows a permission token management table 2100, which is a permission token ID 2110, a token type 2111, an expiration date 2120, a refresh token ID 2121, a refresh time limit 2122, a device ID 2112, a user ID 2113, a sub token request device ID 2114, and a restriction information ID 2115. , Scope 2116. Details of the processing of the permission token management table 2100 will be described later.

  FIG. 11B shows a restriction information management table 2300, which includes a restriction information ID 2310, a restriction type 2311, and restriction information 2312. Details of the processing of the restriction information management table 2300 will be described later.

  FIG. 11C shows a scope restriction management table 2400 which includes a scope 2410 and scope restriction information 2411. Details of the processing of the scope restriction management table 2400 will be described later.

FIG. 12 is a diagram illustrating an example of a data table stored in the external memory by the image forming apparatus 300 illustrated in FIG.
In FIG. 12, the token management table 3400 is configured so that it can be referred to and updated only from the resource service cooperation device application 1300. The token management table 3400 includes a device user ID 3410, a permission token ID 3411, and a refresh token ID 3420. Details of the processing of the token management table 3400 will be described later. Here, the sequence of this embodiment related to resource acquisition from sub-token acquisition will be described with reference to FIG.

FIG. 13 is a flowchart for explaining a control method of the data processing system according to the present embodiment. The same components as those described in the flowchart shown in FIG.
In this sequence, a user logs in to the image forming apparatus 300, and then uses the resource service cooperation device application 1300 from the image forming apparatus 300 to log in to the resource server 200 and transmits one or more data. That is the premise.
At this time, the record of the authorization token ID “AT_0001” is recorded in the authorization token management table 2100, and the record of the device user ID “duid0001” is recorded in the resource server user management table 3200. Further, a record of the document name “document.doc” is recorded in the resource server transmission history management table 3300, and a record of “duid0001” is recorded in the device user ID of the token management table 3400.
When the user uses the resource service cooperation device application 1300 from the image forming apparatus 300, it is not necessary to use the sub token described in the present embodiment.

  First, the user accesses and logs in to the login means provided by the remote login application 1310 using the resource service cooperation client application 1400 (S3.1).

  Here, it is assumed that a user whose user ID is “duid0001” logs in. Then, the remote login application 1310 generates a login context and session including “duid0001” (S3.2), and responds to the resource service cooperation client application 1400 (S3.3). Here, the session issues a new session ID and registers “duid0001” as the device user ID in the device user ID 3511 of the session management table. Here, a session is used to identify a user who logs in to the image forming apparatus 300 from the client terminal 400, but another method may be used.

  If the login is successful, the user acquires a history with the resource service cooperation client application 1400. Then, the resource service cooperation client application 1400 requests the history transmitted to the resource server 200 to the resource service cooperation device application 1300 using the session ID (S3.4).

  The resource service cooperation device application 1300 acquires the device user ID using the session ID received from the session management table 3500 as a key. Then, the resource service cooperation device application 1300 acquires the transmission history using the content user name 3310 and the transmission destination 3312 as a set with the device user ID acquired from the resource server transmission history management table 3300 as a key. Then, the resource service cooperation device application 1300 returns the acquired transmission history to the resource service cooperation client application 1400 (S3.5).

The resource service cooperation client application 1400 displays the transmission destination and content name of the acquired transmission history in the transmission history list 5100 displayed on the UI screen shown in FIG. The user selects a resource to be acquired from the transmission history list 5100 and clicks the resource acquisition button 5200 to prompt the resource service cooperation client application 1400 to make a resource acquisition request.
In this case, a plurality of transmission history lists 5100 may be selected, or a method of prompting a resource acquisition request from a context menu or the like may be used.
The resource service cooperation client application 1400 acquires the client ID 4010 from the client ID management table 4000. Then, the resource service cooperation client application 1400 makes a sub token acquisition request to the resource service cooperation device application 1300 using the session ID and the client ID 4010 (S3.6). Here, the sub token acquisition request functions as a sub token issue request to the resource server 200. Further, a scope may be specified in the sub token acquisition request. In the present embodiment, description will be made on the assumption that a scope already registered in the permission token management table 2100 is used as it is.
The resource service cooperation device application 1300 that has received the sub-token acquisition request performs the following processing.

  A device user ID is acquired using the session ID received from the session management table 3500 as a key, and a token permission token ID and a refresh token ID are acquired from the token management table 3400 using the device user ID as a key.

  Further, the image forming apparatus ID 3010 is acquired from the image forming apparatus ID management table 3000, and the permission token ID, the refresh token ID, the client ID, the image forming apparatus ID, the received content name, and the destination are sent to the resource server. A token acquisition request is made (S3.7). The resource server 200 that has received the sub token acquisition request performs the following processing.

  It is confirmed whether the permission token ID of the received token is registered in the permission token management table 2100. Further, whether the expiration date 2120 set in the record of the registered authorization token is within the range compared to the current date and time corresponding to the server locale, or whether the device ID 2112 is the same as the image forming apparatus ID is verified. (S3.8).

If the expiration date is not within the range, the resource server 200 verifies whether the refresh token ID 2121 set in the registered permission token record is the same as the refresh token ID. Furthermore, the resource server 200 verifies whether the refresh time limit 2122 is within the range compared to the current date and time corresponding to the server locale. When the resource server 200 determines that there is no problem in the verification of the refresh token ID, the resource server 200 refreshes the token.
Here, the refresh method may be a method of changing the expiration date of the record, or a method of issuing a new token ID and a refresh token ID and registering them in the permission token management table 2100.

  If there is no problem in token verification, the resource server 200 generates a sub token (S3.9), performs scope verification (S3.10), generates restriction information (S3.11), and resource service cooperation device application 1300. (S3.12).

Here, the sub token issues a new permission token ID, and the token type 2112 is registered in the sub token and the client terminal ID is registered in the device ID 2112 of the permission token management table 2100.
At this time, the user ID of the record specified by the permission token ID received by the sub token acquisition request is taken over, and the device ID is set to the sub token request device ID 2114 and the scope is set to the scope 2116. Then, the resource server 200 acquires the scope restriction information 2411 from the scope restriction management table 2400 using the scope as a key.

Furthermore, the resource server 200 issues a new restriction information ID, sets the restriction type 2311 as authority, and registers it in the restriction information management table 2300. At this time, read-only is set in the restriction information 2312. For the authority information, a method may be used in which a setting table is separately stored and acquired from there. The issued restriction information ID is set in the restriction information ID 2115 of the permission token management table 2100.
In the scope restriction information, the number of contents to be acquired may be restricted in addition to the authority.

  The resource service cooperation device application 1300 that acquired the permission token ID of the sub token returns the permission token ID and the image forming apparatus ID of the sub token to the resource service cooperation client application 1400 (S3.13).

Then, the resource service cooperation client application 1400 that has acquired the sub token registers the permitted token ID and the image forming apparatus ID of the received sub token in the permitted token ID 4110 and the device ID 4112 of the sub token management table 4100, and stores them in the token type 4111. Set the sub token.
Then, a resource acquisition request is made to the resource server 200 using the permission token ID of the sub token, the client ID, the image forming apparatus ID, the transmission destination of the transmission history selected by the user in the transmission history list 5100, and the content name (S3. 14).

Upon receipt of the resource acquisition request, the resource server 200 has the permission token ID of the received sub token registered in the permission token management table 2100 or the device ID and sub token set in the record of the registered permission token. The token is verified whether the requested device ID is the same as the received client ID and the image forming apparatus ID (S3.15).
Further, the resource server 200 acquires the restriction information ID from the permission token management table 2100 using the permission token ID as a key, and verifies the following restriction information (S3.16).

  The resource server 200 acquires authority information from the limit information 2312 using the limit information ID acquired from the limit information management table as a key. The resource server 200 verifies whether the received request does not exceed the case information. For example, it is verified whether the request is for overwriting data while the authority is read-only.

As a result of the verification, if it is determined that access is permitted, the resource server 200 responds to the resource service cooperation client application 1400 with a resource corresponding to the transmission destination and the content name (S3.17), and ends the process.
As a result, after being established between the information terminal authenticated by the image forming apparatus, a connection is made to the resource server that can be authenticated by the image forming apparatus and the first authentication information, and a restriction that the information terminal can use is given. Issued and verified second authentication information can be issued.

  Each process of the present invention can also be realized by executing software (program) acquired via a network or various storage media by a processing device (CPU, processor) such as a personal computer (computer).

  The present invention is not limited to the above embodiment, and various modifications (including organic combinations of the embodiments) are possible based on the spirit of the present invention, and these are excluded from the scope of the present invention. is not.

200 resource server 300 image forming apparatus 400 client terminal 1300 resource service cooperation device application 1310 remote login application 1400 resource service cooperation client application

Claims (10)

An image forming apparatus that communicates with an information terminal or a server apparatus that manages content,
Communication establishment means for establishing communication with the server device using first identification information;
Receiving means for receiving, from the information terminal, a request for issuing second identification information for the information terminal to establish communication with the server apparatus in a state where the communication establishing means has established a communication connection with the server apparatus; ,
Requesting means for requesting the server device to acquire the second identification information received by the receiving means;
In response to a request for issuing the second identification information by the request unit, an acquisition unit that acquires second identification information issued from the server device;
Response means for responding to the image forming apparatus with the second identification information acquired by the acquisition means;
An image forming apparatus comprising: An information terminal that communicates with an image forming apparatus capable of communicating with a server device that manages content,
Login means for logging in to the image forming apparatus using predetermined authentication information;
First acquisition means for acquiring content transmission history information from the image forming apparatus based on user information of the logged-in information terminal;
Request means for requesting the image forming apparatus to issue second identification information for establishing communication with the server apparatus based on transmission history information acquired by the first acquisition means;
In the state where the image forming apparatus establishes communication with the server apparatus using the first identification information by the request unit, the second identification information used by the information terminal issued from the server apparatus is formed in the image formation. Second acquisition means for acquiring from the device;
Communication establishment means for establishing communication with the server device using the second identification information acquired by the second acquisition means;
Third acquisition means for acquiring content from the server device after establishing communication with the server device;
An information terminal comprising: A server device that establishes communication with an image forming apparatus using first identification information,
Management means for storing and managing content received from the image forming apparatus in a storage device;
Obtaining means for obtaining from the image forming apparatus a request for issuing second identification information for establishing communication with an information terminal logged into the image forming apparatus;
Generating means for generating second identification information for permitting communication with a user of the information terminal in accordance with a request for issuing the second identification information requested from the information terminal via the image forming apparatus;
Sending means for sending the second identification information generated by the generating means to the image forming apparatus;
Communication establishment means for authenticating a connection request from the information terminal using the second identification information responded to the information terminal from the image forming apparatus and establishing communication;
A server device comprising: A server device that establishes communication with an image forming apparatus using first identification information,
Management means for storing and managing content received from the image forming apparatus in a storage device;
Obtaining means for obtaining from the image forming apparatus a request for issuing second identification information for establishing communication with an information terminal logged into the image forming apparatus;
Communicating with the information terminal, second identification information for permitting communication with the user of the information terminal in accordance with the request for issuing the second identification information requested from the information terminal via the image forming apparatus Generating means for generating restriction information for restricting,
Sending means for sending the second identification information generated by the generating means to the image forming apparatus;
Communication establishment means for authenticating a connection request from the information terminal using the second identification information and the restriction information sent from the image forming apparatus to the information terminal and establishing communication;
A server device comprising: A server device that establishes communication with an image forming apparatus using first identification information,
Management means for storing and managing content received from the image forming apparatus in a storage device;
Obtaining means for obtaining from the image forming apparatus a request for issuing second identification information for establishing communication with an information terminal logged into the image forming apparatus;
Communicating with the information terminal, second identification information for permitting communication with the user of the information terminal in accordance with the request for issuing the second identification information requested from the information terminal via the image forming apparatus Generating means for generating restriction information for restricting,
Verification means for verifying the second identification information generated by the generation means;
Sending means for sending the second identification information generated by the generating means and verified by the verification means to the image forming apparatus;
Communication establishment means for authenticating a connection request from the information terminal using the second identification information and the restriction information sent from the image forming apparatus to the information terminal and establishing communication;
A server device comprising:
A data processing system including an information terminal or an image forming apparatus that communicates with a server device that manages content,
The image forming apparatus includes:
Communication establishment means for establishing communication with the server device using first identification information;
Receiving means for receiving, from the information terminal, a request for issuing second identification information for the information terminal to establish communication with the server apparatus in a state where the communication establishing means has established a communication connection with the server apparatus; ,
Requesting means for requesting the server device to acquire the second identification information received by the receiving means;
In response to a request for issuing the second identification information by the request unit, an acquisition unit that acquires second identification information issued from the server device;
Response means for responding to the image forming apparatus with the second identification information acquired by the acquisition means;
The information terminal
Login means for logging in to the image forming apparatus using predetermined authentication information;
First acquisition means for acquiring content transmission history information from the image forming apparatus based on user information of the logged-in information terminal;
Request means for requesting the image forming apparatus to issue second identification information for establishing communication with the server apparatus based on transmission history information acquired by the first acquisition means;
In the state where the image forming apparatus establishes communication with the server apparatus using the first identification information by the request unit, the second identification information used by the information terminal issued from the server apparatus is formed in the image formation. Second acquisition means for acquiring from the device;
Communication establishment means for establishing communication with the server device using the second identification information acquired by the second acquisition means;
Third acquisition means for acquiring content from the server device after establishing communication with the server device;
With
The server device
Management means for storing and managing content received from the image forming apparatus in a storage device;
Obtaining means for obtaining from the image forming apparatus a request for issuing second identification information for establishing communication with an information terminal logged into the image forming apparatus;
Generating means for generating second identification information for permitting communication with a user of the information terminal in accordance with a request for issuing the second identification information requested from the information terminal via the image forming apparatus;
Sending means for sending the second identification information generated by the generating means to the image forming apparatus;
Communication establishment means for authenticating a connection request from the information terminal using the second identification information responded to the information terminal from the image forming apparatus and establishing communication;
A data processing system comprising:
A communication method of an image forming apparatus that communicates with an information terminal or a server device that manages content,
A communication establishment step of establishing communication with the server device using first identification information;
A receiving step of receiving, from the information terminal, a request for issuing second identification information for the information terminal to establish communication with the server device in a state where the communication establishing step has established a communication connection with the server device; ,
A requesting step for requesting the server device to acquire the second identification information received by the receiving step;
In response to a request for issuing the second identification information by the request step, an acquisition step of acquiring second identification information issued from the server device;
A response step of responding to the image forming apparatus with the second identification information acquired by the acquisition step;
A communication method for an image forming apparatus, comprising: An information terminal communication method for communicating with an image forming apparatus capable of communicating with a server device for managing content,
A login step of logging in to the image forming apparatus using predetermined authentication information;
A first acquisition step of acquiring content transmission history information from the image forming apparatus based on user information of the logged-in information terminal;
A requesting step for requesting the image forming apparatus to issue second identification information for establishing communication with the server device based on the transmission history information acquired by the first acquiring step;
In the state where the image forming apparatus establishes communication with the server apparatus using the first identification information by the requesting step, the second identification information used by the information terminal issued from the server apparatus is formed in the image formation. A second acquisition step of acquiring from the device;
A communication establishment step of establishing communication with the server device using the second identification information acquired by the second acquisition step;
A third acquisition step of acquiring content from the server device after establishing communication with the server device;
A communication method for an information terminal, comprising: A communication method of a server device that establishes communication with an image forming apparatus using first identification information,
A management step of storing and managing content received from the image forming apparatus in a storage device;
An acquisition step of acquiring, from the image forming apparatus, a request for issuing second identification information for establishing communication with an information terminal logged into the image forming apparatus;
Generating a second identification information for permitting communication with a user of the information terminal according to a request for issuing the second identification information requested from the information terminal via the image forming apparatus;
A sending step of sending the second identification information generated by the generating step to the image forming apparatus;
A communication establishment step of authenticating a connection request from the information terminal using the second identification information responded to the information terminal from the image forming apparatus and establishing communication;
A communication method for a server device, comprising:   6. A program for causing a computer to function as each means according to claim 1.

Images