WO2018014881A1 - Interactive authentication method, device and system for internet protocol television (iptv) platform - Google Patents

Interactive authentication method, device and system for internet protocol television (iptv) platform Download PDF

Info

Publication number
WO2018014881A1
WO2018014881A1 PCT/CN2017/094069 CN2017094069W WO2018014881A1 WO 2018014881 A1 WO2018014881 A1 WO 2018014881A1 CN 2017094069 W CN2017094069 W CN 2017094069W WO 2018014881 A1 WO2018014881 A1 WO 2018014881A1
Authority
WO
WIPO (PCT)
Prior art keywords
database
authentication
user
information
authentication information
Prior art date
Application number
PCT/CN2017/094069
Other languages
French (fr)
Chinese (zh)
Inventor
高珍珠
刘宇
吴昊
刘会军
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2018014881A1 publication Critical patent/WO2018014881A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N17/00Diagnosis, testing or measuring for television systems or their details

Definitions

  • the present application relates to, but is not limited to, the field of communications, and in particular, to an authentication method, apparatus, and system for an interactive network television IPTV platform.
  • IPTV Internet Protocol Television
  • the traffic of the IPTV system has risen sharply, which is increasingly demanding the stability of the IPTV system.
  • the database back-end system has abnormal problems such as network failure and machine downtime, the back-end system needs to be able to provide services normally, so that the user is not aware. This makes the system increasingly important for emergency functions in these anomalies.
  • the IPTV back-end system In the case that the IPTV back-end system is normal, the IPTV user watches a movie or other program, and the set-top box needs to send an authentication request to the background system, and the background database will find whether the user has subscribed to the movie or program. If the user subscribes to the product associated with the movie or program, the authentication is returned successfully, and the set top box directly plays. If the user does not order a product associated with the movie or program, the authentication fails, and the background returns a list of available products for the user to order.
  • the set-top box initiates the order request, and the background system receives the order request and performs the order processing. After the order is successful, the user performs the viewing.
  • the order CDRs are generated in the background, and are sorted to the operator. The operator charges the user through the CDR.
  • IPTV systems use an associated database, which is a stand-alone deployment.
  • the database is abnormal or other reasons cause the service to be unavailable, the entire back-end system is unable to provide authentication and subscription services, and the user cannot watch the program.
  • the embodiment of the invention provides an authentication method, device and system for an interactive network television IPTV platform.
  • an authentication method for an interactive network television IPTV platform comprising: receiving an authentication request of a user when detecting that the first database of the IPTV platform is abnormal, wherein the The first database is configured to store authentication information used to authenticate the authentication request; obtain the authentication information from the second database, and authenticate the authentication request according to the authentication information .
  • the second database is a database stored in a distributed network node.
  • the authentication information includes: rights information of the user, where the rights information of the user is set to indicate that the user uses the specified product.
  • authenticating the authentication request according to the authentication information includes: querying, in the second database, the usage rights of the specified product according to the user information in the authentication request.
  • the method before detecting the first database abnormality of the IPTV platform, the method further includes: synchronizing the authentication information of the first database into the second database.
  • the second database further includes: a product list for ordering.
  • the subscription product list to the user
  • receiving a subscription request from the user wherein the subscription request is set to And requesting, by the designated product in the ordered product list, the correspondence between the product information of the specified product and the user as the authority information in the authentication information is saved in the second database.
  • the method further includes: synchronizing the authentication information in the second database into the first database when detecting that the first database returns to normal.
  • the method is applied to a distributed network node.
  • an authentication method for an interactive network television IPTV platform including: when the first database of the IPTV platform is abnormal, sending a user's profile to a network node where the second database is located a request for rights, wherein the first database is configured to store authentication information used to authenticate the authentication request; receive an authentication result, wherein the authentication result is based on the second database The obtained authentication information is obtained by authenticating the authentication request.
  • the network node is a distributed network node.
  • the authentication information includes rights information of the user, where the rights information of the user is set to indicate the user's use rights for the specified product.
  • Embodiments of the present invention further provide a computer readable storage medium storing computer executable instructions that are implemented when the computer executable instructions are executed.
  • an authentication device for an interactive network television IPTV platform which is applied to a distributed network node, and includes: a receiving module, configured to detect that the first database abnormality of the IPTV platform is abnormal Receiving, by the user, an authentication request, wherein the first database is configured to store authentication information used for authenticating the authentication request; and the authentication module is configured to obtain the template from the second database Right information, and authenticating the authentication request according to the authentication information.
  • the second database is a database stored in the distributed network node.
  • the authentication information includes: rights information of the user, where the rights information of the user is set to indicate that the user uses the specified product.
  • the device further includes: a first synchronization module, configured to synchronize the authentication information of the first database to the second before detecting the first database abnormality of the IPTV platform In the database.
  • a first synchronization module configured to synchronize the authentication information of the first database to the second before detecting the first database abnormality of the IPTV platform In the database.
  • the apparatus further includes: a second synchronization module, configured to synchronize the authentication information in the second database to the first database when detecting that the first database is restored to normal.
  • a second synchronization module configured to synchronize the authentication information in the second database to the first database when detecting that the first database is restored to normal.
  • an authentication device for an interactive network television IPTV platform comprising: a sending module, configured to go to a second database when the first database of the IPTV platform is abnormal
  • the distributed network node sends an authentication request of the user, where the first database is configured to store the authentication information used for authenticating the authentication request, and the receiving module is configured to receive the authentication result, where The authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
  • an authentication system for an interactive network television IPTV platform including a distributed network node and a set top box, wherein the distributed network node is configured to detect the IPTV platform
  • the first database is configured to store authentication information used to authenticate the authentication request; and obtain the authentication information from the second database, and the said authentication is performed according to the authentication information
  • the right request is for authentication
  • the set top box is configured to send an authentication request of the user to the distributed network node where the second database is located when the first database abnormality of the IPTV platform is abnormal; Receiving an authentication result, wherein the authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
  • a storage medium is also provided.
  • the storage medium is configured to store program code for performing the step of: receiving an authentication request of a user when the first database exception of the IPTV platform is detected, wherein the first database is configured to store the The right requesting authentication information used for authentication; obtaining the authentication information from the second database, and authenticating the authentication request according to the authentication information.
  • the storage medium is further configured to store program code for performing the step of querying the second database for usage rights of the specified product based on the user information in the authentication request.
  • the storage medium is further configured to store program code for performing the step of: synchronizing the authentication information of the first database to the first node before detecting the first database anomaly of the IPTV platform In the second database.
  • the storage medium is further configured to store program code for performing the steps of: presenting the ordered product list to the user; receiving a subscription request from the user, wherein the subscription request is set to request the The specified product in the product list is ordered; the corresponding information of the product information of the specified product and the user is saved as the authority information in the authentication information to the second database.
  • the storage medium is further configured to store program code for performing the step of: synchronizing the authentication information in the second database to the first database when detecting that the first database is restored to normal in.
  • a storage medium is also provided.
  • the storage medium is configured to store program code for performing a step of: transmitting, when the first database of the IPTV platform is abnormal, an authentication request of a user to a network node where the second database is located, wherein the first database setting And storing the authentication information used for authenticating the authentication request; receiving an authentication result, wherein the authentication result is according to the authentication information acquired from the second database The result of the authentication request for authentication.
  • the authentication request of the user is received and the authentication information obtained from the second database is used for authentication, so that when the first database is abnormal, the system
  • the user can still authenticate the user, that is, through the multi-point storage of the authentication information, the system can still provide the user with the authentication service when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience. Effect.
  • FIG. 1 is a network architecture diagram in accordance with an embodiment of the present invention.
  • FIG. 2 is a flowchart (1) of an authentication method of an IPTV platform according to an embodiment of the present invention
  • FIG. 3 is a flowchart of an authentication method of an IPTV platform according to an alternative embodiment of the present invention.
  • FIG. 4 is a flowchart (2) of an authentication method of an IPTV platform according to an embodiment of the present invention.
  • FIG. 5 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention.
  • FIG. 6 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention.
  • FIG. 7 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention.
  • FIG. 8 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention.
  • FIG. 9 is a schematic structural diagram of an IPTV networking according to an embodiment of the present invention.
  • the user When viewing a certain program, the user directly returns to the authentication by using an electronic program guide (EPG), and the user directly views the program, and no longer sends an authentication request to the IPTV background system.
  • EPG electronic program guide
  • the database is restored to normal, the user does not subscribe to the program, and when the user views the program again, the authentication fails, prompting the user to make a subscription, so that the user cannot watch the program for free again, which reduces the user experience.
  • FIG. 1 is a network architecture diagram according to an embodiment of the present invention.
  • the network architecture includes: a distributed network node 12 and a set top box 14, wherein The set top box 14 sends the user's authentication request to the distributed network node 12; the distributed network node 12 sends the user's authentication result to the set top box 14.
  • FIG. 2 is a flowchart (1) of an authentication method of an IPTV platform according to an embodiment of the present invention, as shown in FIG. 2, The process includes the following steps:
  • Step S202 when detecting that the first database abnormality of the IPTV platform is abnormal, receiving an authentication request of the user, where the first database is configured to store the authentication information used for authenticating the authentication request;
  • Step S204 Obtain authentication information from the second database, and authenticate the authentication request according to the authentication information.
  • the first database abnormality may be a state that the database cannot work normally caused by factors such as network failure, machine downtime, or excessive storage of data in the database, and when the first database abnormality of the IPTV platform is detected
  • the emergency state is started, and the emergency process and the detection process are pulled up.
  • the above detection process can be detected in a fixed cycle, such as detecting whether the first database is abnormal in 5 minutes.
  • the emergency state identifier is set for the first database, and the state of the first database is determined according to the value of the emergency state identifier. For example, when the value of the emergency state identifier is 1, the first database is abnormal, and when the value of the emergency state identifier is 0 indicates that the first database is normal. When the value of the emergency status indicator is 1, step S204 is performed.
  • the multi-point storage of the authentication information is realized, and the system can still provide the authentication service for the user when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience.
  • the foregoing second database is a database stored in a distributed network node.
  • the second database may be stored in a memory of the distributed network node or in a cache, and then may be omitted. Set up a new storage device to store the second database.
  • the foregoing second database may be preferentially stored in the cache, so as to be directly retrieved from the cache when the authentication information is invoked.
  • the foregoing authentication information includes: the user's rights information, where the user's rights information is set to indicate the user's use rights to the specified product.
  • the rights information may be the user.
  • the ordering relationship the ordering relationship records the user's order record for a particular product. Among them, the above products may be television programs or pay movies that require payment.
  • the foregoing operations for authenticating the authentication request according to the authentication information may be implemented by querying the usage rights of the specified product in the second database according to the user information in the authentication request.
  • the second database since the right information is stored in the second database, the second database may be queried according to the user information to query whether the user has subscribed to the designated product, and then the authentication for the user is implemented.
  • the hash consistent algorithm can be used for searching, but is not limited to this.
  • the method before detecting the first database abnormality of the IPTV platform, the method further performs the following operations: synchronizing the authentication information of the first database into the second database.
  • the synchronization process may be implemented by means of a timing task, that is, the authentication information of the first database is periodically synchronized to the second database, for example, the authentication information of the first database may be set at 1 am every day. Synchronize to the second database. The update of the second database is achieved through the above steps.
  • the second database may also include a list of ordered products.
  • the ordered product list is a list of products that the user can order, and the user can order according to the items (contents) recorded in the ordered product list.
  • the following operations may be performed: presenting a subscription product list to the user; receiving a subscription request from the user, wherein the subscription request is set to request a specified product in the ordered product list; and the correspondence between the product information of the specified product and the user is used as the authentication information
  • the permission information is saved to the second database.
  • the above order request may be a specific instruction, such as a selection instruction.
  • the ordered product list will be displayed through the set-top box for the user to order. After the order is successful, the order CDR will be generated and sorted to the operator, and the operator will charge the user through the CDR.
  • the authentication information in the second database is synchronized to the first database.
  • the above detection process may be repeated according to a certain period. For example, the detection may be performed every 3 seconds.
  • the above method can be applied to a distributed network node.
  • the distributed network node may be a logical virtual node, or may be a physical device in practice, such as a server or a service processor.
  • the foregoing method of the embodiment of the present invention can be applied to a distributed network node, so that the authentication information of the user in the single-point database is stored in multiple points, and the user's authentication information is saved through the distributed network node, and then When the database of the IPTV platform is abnormal, the user can also be authenticated, thereby avoiding the damage of the operator's interests and improving the effect of the user experience.
  • FIG. 3 is a flowchart of an authentication method of an IPTV platform according to an optional embodiment of the present invention. As shown in FIG. 3, the process includes the following steps:
  • Step S302 the distributed network node initiates a timing task, and synchronizes the authentication information of the user in the first database to the second database of the distributed network node at 1 am every day;
  • Step S304 when the first database is in a normal state, the distributed network node detecting process detects the communication with the first database every 5 minutes;
  • Step S306 when the first database is in a normal state, the user initiates an authentication request, and the distributed network node directly forwards the request to the first database, and performs user authentication in the first database.
  • Step S308 when the user authentication fails, the distributed network node presents the subscription product to the user. List, the user clicks the subscription, the set top box initiates the order request, and the distributed network node forwards the order request to the first database. After the first database is successfully processed, the order CDR is sent out, and the distributed network node synchronizes the current authentication information to In the first database, no order is placed;
  • Step S310 when the detecting process detects that the first database is in an abnormal state and cannot communicate, the distributed network node pulls up the emergency process and actively disconnects the connection with the first database;
  • Step S312 when the set top box initiates the authentication request, the distributed network node no longer forwards the authentication request to the first database according to the emergency status flag, but searches for the user authentication information by using a hash consistency algorithm in the second database. Permission information, if not ordered, return the ordered product list to the user for the user to order;
  • Step S314 the user clicks the subscription, the set top box initiates the order request, and the distributed network node receives the order request, and the emergency process performs the order according to the emergency status flag, and saves the correspondence between the product information of the product ordered by the user and the user as the authentication information.
  • the order is successful, and the order is placed at the same time;
  • Step S316 in the emergency state, the detecting process detects whether the first database is restored to normal every 3 s.
  • the distributed network node reconnects with the first database, and after the connection is successfully completed, the emergency is cancelled.
  • the time interval for detecting the state of the first database is detected to be 5 minutes;
  • Step S318, the distributed network node synchronizes the authentication message stored in the second database in the emergency to the first database, and after the synchronization succeeds, the emergency process and the detection process automatically exit;
  • step S320 the bill sorting server sorts the user's order bills to the operator in the emergency process, and the operator charges the user through the bill.
  • portions of the embodiments of the present invention that contribute substantially or to the prior art may be embodied in the form of a software product stored in a storage medium (eg, ROM/RAM, disk,
  • a storage medium eg, ROM/RAM, disk
  • the optical disc includes a number of instructions for causing a terminal device (which may be a cell phone, a computer, a server, or a network device, etc.) to perform the methods described in various embodiments of the present invention.
  • FIG. 4 is a flowchart (2) of an authentication method of an IPTV platform according to an embodiment of the present invention, as shown in FIG. The process includes the following steps:
  • Step S402 when the first database of the IPTV platform is abnormal, sending an authentication request of the user to the network node where the second database is located, where the first database is configured to store the authentication information used for authenticating the authentication request;
  • Step S404 Receive an authentication result, where the authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
  • the multi-point storage of the authentication information is realized, and the system can still provide the authentication service for the user when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience.
  • the network node may be a distributed network node, but is not limited thereto.
  • the authentication information may include rights information of the user, wherein the rights information of the user is set to indicate the user's usage rights for the specified product.
  • portions of the embodiments of the present invention that contribute substantially or to the prior art may be embodied in the form of a software product stored in a storage medium (eg, ROM/RAM, disk,
  • a storage medium eg, ROM/RAM, disk
  • the optical disc includes a number of instructions for causing a terminal device (which may be a cell phone, a computer, a server, or a network device, etc.) to perform the methods described in various embodiments of the present invention.
  • Embodiments of the present invention further provide a computer readable storage medium storing computer executable instructions that are implemented when the computer executable instructions are executed.
  • an authentication device for the IPTV platform is further provided, and the device is configured to implement the foregoing embodiments and optional implementation manners, and details are not described herein.
  • the term "module” may implement a combination of software and/or hardware of a predetermined function.
  • the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
  • FIG. 5 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention.
  • the apparatus includes: a receiving module 52, configured to: when detecting that the first database abnormality of the IPTV platform is abnormal, Receiving an authentication request of the user, wherein the first database is configured to store the authentication information used for authenticating the authentication request; the authentication module 54 is configured to obtain the authentication information from the second database, and according to the authentication The information authenticates the authentication request.
  • the second database may be a database stored in a distributed network node, but is not limited thereto.
  • the authentication information may include rights information of the user, where the rights information of the user is set to indicate the user's use rights for the specified product, but is not limited thereto.
  • FIG. 6 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention.
  • the apparatus includes all the modules shown in FIG.
  • the first synchronization module 62 is coupled to the receiving module 52, and is configured to synchronize the authentication information of the first database to the second database before detecting the first database abnormality of the IPTV platform.
  • FIG. 7 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention.
  • the apparatus includes all the modules shown in FIG.
  • the second synchronization module 72 is coupled to the authentication module 54 and configured to synchronize the authentication information in the second database to the first database when the first database is detected to be normal.
  • each of the above modules may be implemented by software or hardware.
  • the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the above modules are in any combination.
  • the forms are located in different processors.
  • an authentication device for an IPTV platform is further provided, and the device is configured to implement The above embodiments and optional embodiments have not been described again.
  • the term “module” may implement a combination of software and/or hardware of a predetermined function.
  • the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
  • FIG. 8 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention.
  • the apparatus includes: a sending module 82, configured to be in a first database abnormality of the IPTV platform, The distributed network node where the second database is located sends the authentication request of the user, where the first database is configured to store the authentication information used for authenticating the authentication request, and the receiving module 84 is configured to receive the authentication result, where The authentication result is a result obtained by authenticating the authentication request based on the authentication information acquired from the second database.
  • each of the above modules may be implemented by software or hardware.
  • the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the above modules are in any combination.
  • the forms are located in different processors.
  • an authentication system for an IPTV platform is further provided, where the system includes a distributed network node 12 and a set top box 14, wherein the distributed network node 12 is configured to detect when the first database abnormality of the IPTV platform is abnormal.
  • Receiving an authentication request of the user wherein the first database is configured to store authentication information used for authenticating the authentication request; and obtaining authentication information from the second database, and authenticating the request according to the authentication information Performing authentication;
  • the set top box 14 is configured to send an authentication request of the user to the distributed network node where the second database is located when the first database abnormality of the IPTV platform is abnormal; and receive the authentication result, wherein the authentication result is based on the The authentication information obtained in the second database is obtained by authenticating the authentication request.
  • FIG. 9 is a schematic structural diagram of an IPTV networking according to an embodiment of the present invention.
  • the networking includes: a database 92, a distributed network node 12, and an EPG 94, where The EPG 94 is coupled to a distributed network node 12, and all of the distributed network nodes 12 are coupled to the database 92.
  • the EPG 94 forwards the authentication request of the user sent by the set top box to the distributed network node 12, and when the distributed network node 12 determines that the database 92 is in an abnormal state, according to the cached authentication letter
  • the user authenticates the product specified by the user; when the distributed network node 12 determines that the database 92 is in a normal state, the user's authentication request is directly forwarded to the database 92, and the database 92 authenticates the product specified by the user.
  • each of the above modules may be implemented by software or hardware.
  • the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the above modules are in any combination.
  • the forms are located in different processors.
  • Embodiments of the present invention also provide a storage medium.
  • the foregoing storage medium may be configured to store program code for performing the following steps:
  • the first database is configured to store the authentication information used for authenticating the authentication request
  • the authentication information is obtained from the second database, and the authentication request is authenticated according to the authentication information.
  • the storage medium is further configured to store program code for performing the step of querying the usage rights of the specified product in the second database based on the user information in the authentication request.
  • the storage medium is further arranged to store program code for performing the step of synchronizing the authentication information of the first database into the second database.
  • the storage medium is further arranged to store program code for performing the following steps:
  • the correspondence between the product information of the specified product and the user is saved as the authority information in the authentication information to the second database.
  • the storage medium is further arranged to store program code for performing the step of synchronizing the authentication information in the second database into the first database when it is detected that the first database is restored to normal.
  • Embodiments of the present invention also provide a storage medium.
  • the foregoing storage medium may be configured to store program code for performing the following steps:
  • the user's authentication request is sent to the network node where the second database is located, where the first database is configured to store the authentication information used for authenticating the authentication request;
  • the authentication result is a result of authenticating the authentication request according to the authentication information acquired from the second database
  • the foregoing storage medium may include, but not limited to, a USB flash drive, a Read-Only Memory (ROM), a Random Access Memory (RAM), a mobile hard disk, and a magnetic memory.
  • ROM Read-Only Memory
  • RAM Random Access Memory
  • a mobile hard disk e.g., a hard disk
  • magnetic memory e.g., a hard disk
  • modules or steps of the embodiments of the present invention can be implemented by a general computing device, which can be concentrated on a single computing device or distributed in multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from The steps shown or described are performed sequentially, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated into a single integrated circuit module. Thus, embodiments of the invention are not limited to any specific combination of hardware and software.
  • computer storage medium includes volatile and nonvolatile, implemented in any method or technology for storing information, such as computer readable instructions, data structures, program modules or other data. Sex, removable and Non-removable media.
  • Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disc (DVD) or other optical disc storage, magnetic cartridge, magnetic tape, magnetic disk storage or other magnetic storage device, or may Any other medium used to store the desired information and that can be accessed by the computer.
  • communication media typically includes computer readable instructions, data structures, program modules, or other data in a modulated data signal, such as a carrier wave or other transport mechanism, and can include any information delivery media. .
  • the authentication request of the user is received and the authentication information obtained from the second database is used for authentication, so that when the first database is abnormal, the system
  • the user can still authenticate the user, that is, through the multi-point storage of the authentication information, the system can still provide the user with the authentication service when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience. Effect.

Landscapes

  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Multimedia (AREA)
  • Signal Processing (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
  • Storage Device Security (AREA)

Abstract

Embodiments of the present invention provide an interactive authentication method, device and system for an Internet Protocol television (IPTV) platform. The method comprises: upon detecting that a first database of an IPTV platform has an abnormality, receiving an authentication request of a user, wherein the first database is configured to store authentication information used for authentication with respect to the authentication request; acquiring the authentication information from a second database, and performing authentication with respect to the authentication request according to the authentication information. The present invention provides a user with an authentication service even when a database of an IPTV platform has an abnormality, preventing profit loss of a service provider and enhancing user experience.

Description

交互式网络电视IPTV平台的鉴权方法、装置及系统Authentication method, device and system for interactive network television IPTV platform 技术领域Technical field
本申请涉及但不限于通信领域,具体而言,涉及一种交互式网络电视IPTV平台的鉴权方法、装置及系统。The present application relates to, but is not limited to, the field of communications, and in particular, to an authentication method, apparatus, and system for an interactive network television IPTV platform.
背景技术Background technique
随着交互式网络电视(Internet Protocol Television,简称为IPTV)的发展,IPTV系统的业务量急剧上升,这对IPTV系统稳定性要求越来越高。当数据库后台系统出现网络故障、机器宕机等异常问题时,后台系统需要能够正常提供服务,让用户无感知。这使得系统对于这些异常情况时的应急功能变得越来越重要。With the development of Internet Protocol Television (IPTV), the traffic of the IPTV system has risen sharply, which is increasingly demanding the stability of the IPTV system. When the database back-end system has abnormal problems such as network failure and machine downtime, the back-end system needs to be able to provide services normally, so that the user is not aware. This makes the system increasingly important for emergency functions in these anomalies.
在IPTV后台系统正常的情况下,IPTV用户观看一部电影或者其他节目,机顶盒都需要向后台系统发送鉴权请求,后台数据库会查找用户是否订购过该电影或节目。若用户订购过关联该电影或节目的产品,那么返回鉴权成功,机顶盒直接进行播放。若用户未订购关联该电影或节目的产品,则鉴权失败,后台返回可订购产品列表,供用户订购。用户订购产品,机顶盒发起订购请求,后台系统接收到订购请求,进行订购处理,订购成功后,用户进行观看。同时后台生成订购话单,分拣给运营商,运营商通过话单再向用户收费。In the case that the IPTV back-end system is normal, the IPTV user watches a movie or other program, and the set-top box needs to send an authentication request to the background system, and the background database will find whether the user has subscribed to the movie or program. If the user subscribes to the product associated with the movie or program, the authentication is returned successfully, and the set top box directly plays. If the user does not order a product associated with the movie or program, the authentication fails, and the background returns a list of available products for the user to order. When the user orders the product, the set-top box initiates the order request, and the background system receives the order request and performs the order processing. After the order is successful, the user performs the viewing. At the same time, the order CDRs are generated in the background, and are sorted to the operator. The operator charges the user through the CDR.
然而,大部分IPTV系统使用的是关联数据库,这种数据库都是单机部署。当数据库异常或者其他原因导致无法提供服务时,整个后台系统瘫痪,无法提供鉴权和订购服务,用户无法观看节目。However, most IPTV systems use an associated database, which is a stand-alone deployment. When the database is abnormal or other reasons cause the service to be unavailable, the entire back-end system is unable to provide authentication and subscription services, and the user cannot watch the program.
发明内容Summary of the invention
以下是对本文详细描述的主题的概述。本概述并非是为了限制权利要求的保护范围。The following is an overview of the topics detailed in this document. This Summary is not intended to limit the scope of the claims.
本发明实施例提供了一种交互式网络电视IPTV平台的鉴权方法、装置及系统。 The embodiment of the invention provides an authentication method, device and system for an interactive network television IPTV platform.
根据本发明的一个实施例,提供了一种交互式网络电视IPTV平台的鉴权方法,包括:当检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权。According to an embodiment of the present invention, an authentication method for an interactive network television IPTV platform is provided, comprising: receiving an authentication request of a user when detecting that the first database of the IPTV platform is abnormal, wherein the The first database is configured to store authentication information used to authenticate the authentication request; obtain the authentication information from the second database, and authenticate the authentication request according to the authentication information .
可选地,所述第二数据库为分布式网络节点中存储的数据库。Optionally, the second database is a database stored in a distributed network node.
可选地,所述鉴权信息包括:所述用户的权限信息,其中,该用户的权限信息设置成指示所述用户对指定产品的使用权限。Optionally, the authentication information includes: rights information of the user, where the rights information of the user is set to indicate that the user uses the specified product.
可选地,依据所述鉴权信息对所述鉴权请求进行鉴权,包括:根据所述鉴权请求中的用户信息在所述第二数据库中查询所述指定产品的使用权限。Optionally, authenticating the authentication request according to the authentication information includes: querying, in the second database, the usage rights of the specified product according to the user information in the authentication request.
可选地,在检测到所述IPTV平台的所述第一数据库异常之前,所述方法还包括:同步所述第一数据库的所述鉴权信息到所述第二数据库中。Optionally, before detecting the first database abnormality of the IPTV platform, the method further includes: synchronizing the authentication information of the first database into the second database.
可选地,所述第二数据库中还包括:订购产品列表。Optionally, the second database further includes: a product list for ordering.
可选地,当确定所述用户不具有所述指定产品的使用权限后,包括:向所述用户呈现所述订购产品列表;接收来自所述用户的订购请求,其中,所述订购请求设置成请求所述订购产品列表中的所述指定产品;将所述指定产品的产品信息与所述用户的对应关系作为所述鉴权信息中的所述权限信息保存至所述第二数据库中。Optionally, after determining that the user does not have the usage right of the specified product, including: presenting the subscription product list to the user; receiving a subscription request from the user, wherein the subscription request is set to And requesting, by the designated product in the ordered product list, the correspondence between the product information of the specified product and the user as the authority information in the authentication information is saved in the second database.
可选地,所述方法还包括:当检测到所述第一数据库恢复正常时,同步所述第二数据库中的所述鉴权信息到所述第一数据库中。Optionally, the method further includes: synchronizing the authentication information in the second database into the first database when detecting that the first database returns to normal.
可选地,所述方法应用于分布式网络节点中。Optionally, the method is applied to a distributed network node.
根据本发明的另一实施例,提供了一种交互式网络电视IPTV平台的鉴权方法,包括:在所述IPTV平台的第一数据库异常时,向第二数据库所在的网络节点发送用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述鉴权请求进行鉴权得到的结果。According to another embodiment of the present invention, an authentication method for an interactive network television IPTV platform is provided, including: when the first database of the IPTV platform is abnormal, sending a user's profile to a network node where the second database is located a request for rights, wherein the first database is configured to store authentication information used to authenticate the authentication request; receive an authentication result, wherein the authentication result is based on the second database The obtained authentication information is obtained by authenticating the authentication request.
可选地,所述网络节点为分布式网络节点。 Optionally, the network node is a distributed network node.
可选地,所述鉴权信息包括所述用户的权限信息,其中,该用户的权限信息设置成指示所述用户对指定产品的使用权限。Optionally, the authentication information includes rights information of the user, where the rights information of the user is set to indicate the user's use rights for the specified product.
本发明实施例另外提供一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被执行时实现上述方法。Embodiments of the present invention further provide a computer readable storage medium storing computer executable instructions that are implemented when the computer executable instructions are executed.
根据本发明的另一实施例,提供了一种交互式网络电视IPTV平台的鉴权装置,应用于分布式网络节点,包括:接收模块,设置成当检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;鉴权模块,设置成从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权。According to another embodiment of the present invention, an authentication device for an interactive network television IPTV platform is provided, which is applied to a distributed network node, and includes: a receiving module, configured to detect that the first database abnormality of the IPTV platform is abnormal Receiving, by the user, an authentication request, wherein the first database is configured to store authentication information used for authenticating the authentication request; and the authentication module is configured to obtain the template from the second database Right information, and authenticating the authentication request according to the authentication information.
可选地,所述第二数据库为所述分布式网络节点中存储的数据库。Optionally, the second database is a database stored in the distributed network node.
可选地,所述鉴权信息包括:所述用户的权限信息,其中,该用户的权限信息设置成指示所述用户对指定产品的使用权限。Optionally, the authentication information includes: rights information of the user, where the rights information of the user is set to indicate that the user uses the specified product.
可选地,所述装置还包括:第一同步模块,设置成在检测到所述IPTV平台的所述第一数据库异常之前,同步所述第一数据库的所述鉴权信息到所述第二数据库中。Optionally, the device further includes: a first synchronization module, configured to synchronize the authentication information of the first database to the second before detecting the first database abnormality of the IPTV platform In the database.
可选地,所述装置还包括:第二同步模块,设置成当检测到所述第一数据库恢复正常时,同步所述第二数据库中的所述鉴权信息到所述第一数据库中。Optionally, the apparatus further includes: a second synchronization module, configured to synchronize the authentication information in the second database to the first database when detecting that the first database is restored to normal.
根据本发明的另一实施例,提供了一种交互式网络电视IPTV平台的鉴权装置,该装置包括:发送模块,设置成在所述IPTV平台的第一数据库异常时,向第二数据库所在的分布式网络节点发送用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;接收模块,设置成接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述鉴权请求进行鉴权得到的结果。According to another embodiment of the present invention, an authentication device for an interactive network television IPTV platform is provided, the device comprising: a sending module, configured to go to a second database when the first database of the IPTV platform is abnormal The distributed network node sends an authentication request of the user, where the first database is configured to store the authentication information used for authenticating the authentication request, and the receiving module is configured to receive the authentication result, where The authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
根据本发明的另一实施例,提供了一种交互式网络电视IPTV平台的鉴权系统,包括分布式网络节点和机顶盒,其中,所述分布式网络节点,设置成在检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其 中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;以及从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权;所述机顶盒,设置成在所述IPTV平台的所述第一数据库异常时,向所述第二数据库所在的所述分布式网络节点发送所述用户的鉴权请求;以及接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述鉴权请求进行鉴权得到的结果。According to another embodiment of the present invention, an authentication system for an interactive network television IPTV platform is provided, including a distributed network node and a set top box, wherein the distributed network node is configured to detect the IPTV platform Receiving a user's authentication request when the first database is abnormal, The first database is configured to store authentication information used to authenticate the authentication request; and obtain the authentication information from the second database, and the said authentication is performed according to the authentication information The right request is for authentication; the set top box is configured to send an authentication request of the user to the distributed network node where the second database is located when the first database abnormality of the IPTV platform is abnormal; Receiving an authentication result, wherein the authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
根据本发明的另一个实施例,还提供了一种存储介质。该存储介质设置为存储用于执行以下步骤的程序代码:当检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权。According to another embodiment of the present invention, a storage medium is also provided. The storage medium is configured to store program code for performing the step of: receiving an authentication request of a user when the first database exception of the IPTV platform is detected, wherein the first database is configured to store the The right requesting authentication information used for authentication; obtaining the authentication information from the second database, and authenticating the authentication request according to the authentication information.
可选地,存储介质还设置为存储用于执行以下步骤的程序代码:根据所述鉴权请求中的用户信息在所述第二数据库中查询所述指定产品的使用权限。Optionally, the storage medium is further configured to store program code for performing the step of querying the second database for usage rights of the specified product based on the user information in the authentication request.
可选地,存储介质还设置为存储用于执行以下步骤的程序代码:在检测到所述IPTV平台的所述第一数据库异常之前,同步所述第一数据库的所述鉴权信息到所述第二数据库中。Optionally, the storage medium is further configured to store program code for performing the step of: synchronizing the authentication information of the first database to the first node before detecting the first database anomaly of the IPTV platform In the second database.
可选地,存储介质还设置为存储用于执行以下步骤的程序代码:向所述用户呈现所述订购产品列表;接收来自所述用户的订购请求,其中,所述订购请求设置成请求所述订购产品列表中的所述指定产品;将所述指定产品的产品信息与所述用户的对应关系作为所述鉴权信息中的所述权限信息保存至所述第二数据库中。Optionally, the storage medium is further configured to store program code for performing the steps of: presenting the ordered product list to the user; receiving a subscription request from the user, wherein the subscription request is set to request the The specified product in the product list is ordered; the corresponding information of the product information of the specified product and the user is saved as the authority information in the authentication information to the second database.
可选地,存储介质还设置为存储用于执行以下步骤的程序代码:当检测到所述第一数据库恢复正常时,同步所述第二数据库中的所述鉴权信息到所述第一数据库中。Optionally, the storage medium is further configured to store program code for performing the step of: synchronizing the authentication information in the second database to the first database when detecting that the first database is restored to normal in.
根据本发明的另一个实施例,还提供了一种存储介质。该存储介质设置为存储用于执行以下步骤的程序代码:在所述IPTV平台的第一数据库异常时,向第二数据库所在的网络节点发送用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述 鉴权请求进行鉴权得到的结果。According to another embodiment of the present invention, a storage medium is also provided. The storage medium is configured to store program code for performing a step of: transmitting, when the first database of the IPTV platform is abnormal, an authentication request of a user to a network node where the second database is located, wherein the first database setting And storing the authentication information used for authenticating the authentication request; receiving an authentication result, wherein the authentication result is according to the authentication information acquired from the second database The result of the authentication request for authentication.
通过本发明的实施例,由于当检测到IPTV平台的第一数据库异常时,接收用户的鉴权请求并根据从第二数据库获取的鉴权信息进行鉴权,使得在第一数据库异常时,系统仍然可以对于用户进行鉴权,即通过对鉴权信息的多点存放,达到在IPTV平台数据库异常时系统仍然可以为用户提供鉴权服务,避免了运营商利益的受损和提高了用户体验度的效果。According to the embodiment of the present invention, when the first database abnormality of the IPTV platform is detected, the authentication request of the user is received and the authentication information obtained from the second database is used for authentication, so that when the first database is abnormal, the system The user can still authenticate the user, that is, through the multi-point storage of the authentication information, the system can still provide the user with the authentication service when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience. Effect.
在阅读并理解了附图和详细描述后,可以明白其他方面。Other aspects will be apparent upon reading and understanding the drawings and detailed description.
附图概述BRIEF abstract
此处所说明的附图用来提供对本发明实施例的进一步理解,构成本申请的一部分,本发明的示意性实施例及其说明用于解释本申请。在附图中:The accompanying drawings are intended to provide a further understanding of the embodiments of the invention In the drawing:
图1是根据本发明实施例的网络架构图;1 is a network architecture diagram in accordance with an embodiment of the present invention;
图2是根据本发明实施例的IPTV平台的鉴权方法的流程图(一);2 is a flowchart (1) of an authentication method of an IPTV platform according to an embodiment of the present invention;
图3是根据本发明可选实施例的IPTV平台的鉴权方法的流程图;3 is a flowchart of an authentication method of an IPTV platform according to an alternative embodiment of the present invention;
图4是根据本发明实施例的IPTV平台的鉴权方法的流程图(二);4 is a flowchart (2) of an authentication method of an IPTV platform according to an embodiment of the present invention;
图5是根据本发明实施例的IPTV平台的鉴权装置的结构框图(一);FIG. 5 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention; FIG.
图6是根据本发明可选实施例的IPTV平台的鉴权装置的结构框图(一);6 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention;
图7是根据本发明可选实施例的IPTV平台的鉴权装置的结构框图(二);7 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention;
图8是根据本发明实施例的IPTV平台的鉴权装置的结构框图(二);FIG. 8 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention; FIG.
图9是根据本发明实施例的IPTV组网的结构示意图。FIG. 9 is a schematic structural diagram of an IPTV networking according to an embodiment of the present invention.
本发明的实施方式Embodiments of the invention
下文中将参考附图并结合实施例来详细说明本申请。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。The present application will be described in detail below with reference to the drawings in conjunction with the embodiments. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict.
需要说明的是,本申请的说明书和权利要求书及上述附图中的术语“第一”、“第二”等是用于区别类似的对象,而不必用于描述特定的顺序或先后次序。 It should be noted that the terms "first", "second" and the like in the specification and claims of the present application and the above-mentioned drawings are used to distinguish similar objects, and are not necessarily used to describe a specific order or order.
用户在观看某个节目时,采用前台电子节目单(Electronic Program Guide,简称为EPG)直接返回鉴权通过,用户直接观看节目,同时不再向IPTV后台系统发送鉴权请求。这就导致了,尽管用户没有订购过该节目,也能免费观看,机顶盒不再发起订购请求,也就不会生成订购话单,使得运营商本来是要收费的节目无法进行收费,造成运营商利益受损。同时当数据库恢复正常时,由于用户实际上未订购该节目,用户再次观看该节目时,鉴权失败,提示用户进行订购,使得用户无法再次免费观看该节目,降低了用户的体验。When viewing a certain program, the user directly returns to the authentication by using an electronic program guide (EPG), and the user directly views the program, and no longer sends an authentication request to the IPTV background system. This leads to the fact that although the user has not subscribed to the program, it can watch it for free, and the set-top box no longer initiates the ordering request, and will not generate the ordering CDR, so that the operator may not be charged for the program that is originally charged, resulting in the operator. Damage to the interests of. At the same time, when the database is restored to normal, the user does not subscribe to the program, and when the user views the program again, the authentication fails, prompting the user to make a subscription, so that the user cannot watch the program for free again, which reduces the user experience.
实施例1Example 1
本申请实施例可以运行于图1所示的网络架构上,图1是根据本发明实施例的网络架构图,如图1所示,该网络架构包括:分布式网络节点12和机顶盒14,其中,机顶盒14向分布式网络节点12发送用户的鉴权请求;分布式网络节点12向机顶盒14发送该用户的鉴权结果。The embodiment of the present application can be run on the network architecture shown in FIG. 1. FIG. 1 is a network architecture diagram according to an embodiment of the present invention. As shown in FIG. 1, the network architecture includes: a distributed network node 12 and a set top box 14, wherein The set top box 14 sends the user's authentication request to the distributed network node 12; the distributed network node 12 sends the user's authentication result to the set top box 14.
在本实施例中提供了一种运行于上述网络架构的IPTV平台的鉴权方法,图2是根据本发明实施例的IPTV平台的鉴权方法的流程图(一),如图2所示,该流程包括如下步骤:In this embodiment, an authentication method of an IPTV platform running on the network architecture is provided. FIG. 2 is a flowchart (1) of an authentication method of an IPTV platform according to an embodiment of the present invention, as shown in FIG. 2, The process includes the following steps:
步骤S202,当检测到IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;Step S202, when detecting that the first database abnormality of the IPTV platform is abnormal, receiving an authentication request of the user, where the first database is configured to store the authentication information used for authenticating the authentication request;
步骤S204,从第二数据库中获取鉴权信息,并依据鉴权信息对鉴权请求进行鉴权。Step S204: Obtain authentication information from the second database, and authenticate the authentication request according to the authentication information.
可选地,在步骤S202中,上述第一数据库异常可以为由网络故障、机器宕机或者数据库存储数据过多等因素引起的数据库无法正常工作的状态,当检测到IPTV平台的第一数据库异常时,断开数据库连接,启动应急状态,拉起应急进程和检测进程。上述检测过程可以以固定的周期进行检测,如5分钟检测一次第一数据库是否异常。Optionally, in step S202, the first database abnormality may be a state that the database cannot work normally caused by factors such as network failure, machine downtime, or excessive storage of data in the database, and when the first database abnormality of the IPTV platform is detected When the database connection is disconnected, the emergency state is started, and the emergency process and the detection process are pulled up. The above detection process can be detected in a fixed cycle, such as detecting whether the first database is abnormal in 5 minutes.
可选地,为第一数据库设置应急状态标识,根据该应急状态标识的数值确定第一数据库的状态,如当应急状态标识的数值为1时表示第一数据库异常,当应急状态标识的数值为0时表示第一数据库正常。当应急状态标识的数值为1时执行步骤S204。 Optionally, the emergency state identifier is set for the first database, and the state of the first database is determined according to the value of the emergency state identifier. For example, when the value of the emergency state identifier is 1, the first database is abnormal, and when the value of the emergency state identifier is 0 indicates that the first database is normal. When the value of the emergency status indicator is 1, step S204 is performed.
通过上述步骤,实现了对于鉴权信息的多点存放,,达到在IPTV平台数据库异常时系统仍然可以为用户提供鉴权服务,避免了运营商利益的受损和提高了用户体验度的效果。Through the above steps, the multi-point storage of the authentication information is realized, and the system can still provide the authentication service for the user when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience.
在一个可选的实施例中,上述第二数据库为分布式网络节点中存储的数据库,在本实施例中,第二数据库可以存储在分布式网络节点的存储器中或者是缓存中,继而可以无需设置新的存储设备存储第二数据库。其中,为了提高鉴权效率,可以将上述第二数据库优先存储于缓存中,以便在调用鉴权信息时直接从缓存中调取。In an optional embodiment, the foregoing second database is a database stored in a distributed network node. In this embodiment, the second database may be stored in a memory of the distributed network node or in a cache, and then may be omitted. Set up a new storage device to store the second database. In order to improve the authentication efficiency, the foregoing second database may be preferentially stored in the cache, so as to be directly retrieved from the cache when the authentication information is invoked.
在一个可选的实施例中,上述鉴权信息包括:用户的权限信息,其中,该用户的权限信息设置成指示用户对指定产品的使用权限,在本实施例中,上述权限信息可以为用户的订购关系,该订购关系记载有该用户的对于某种特定产品的订购记录。其中,上述产品可以为需要付费的电视节目或者付费电影。In an optional embodiment, the foregoing authentication information includes: the user's rights information, where the user's rights information is set to indicate the user's use rights to the specified product. In this embodiment, the rights information may be the user. The ordering relationship, the ordering relationship records the user's order record for a particular product. Among them, the above products may be television programs or pay movies that require payment.
在一个可选的实施例中,上述依据鉴权信息对鉴权请求进行鉴权的操作可以通过以下方式实现:根据鉴权请求中的用户信息在第二数据库中查询指定产品的使用权限。在本实施例中,由于第二数据库中存储有权限信息,因此,可以根据用户信息在第二数据库中查询该用户是否订购过指定产品,继而实现对于上述用户的鉴权,其中,上述查找方式可以采用hash一致算法进行查找,但并不限于此。In an optional embodiment, the foregoing operations for authenticating the authentication request according to the authentication information may be implemented by querying the usage rights of the specified product in the second database according to the user information in the authentication request. In this embodiment, since the right information is stored in the second database, the second database may be queried according to the user information to query whether the user has subscribed to the designated product, and then the authentication for the user is implemented. The hash consistent algorithm can be used for searching, but is not limited to this.
在一个可选的实施例中,在检测到IPTV平台的第一数据库异常之前,上述方法还执行以下操作:同步第一数据库的鉴权信息到第二数据库中。在本实施例中,可以通过定时任务的方式实现上述同步过程,即定时将上述第一数据库的鉴权信息同步到第二数据库中,如可以设置每天凌晨1点将第一数据库的鉴权信息同步到第二数据库中。通过上述步骤实现了第二数据库的更新。In an optional embodiment, before detecting the first database abnormality of the IPTV platform, the method further performs the following operations: synchronizing the authentication information of the first database into the second database. In this embodiment, the synchronization process may be implemented by means of a timing task, that is, the authentication information of the first database is periodically synchronized to the second database, for example, the authentication information of the first database may be set at 1 am every day. Synchronize to the second database. The update of the second database is achieved through the above steps.
在一个可选的实施例中,第二数据库中还可以包括订购产品列表。该订购产品列表为用户可以订购的产品的列表,用户可以根据该订购产品列表的记载的条目(内容)进行订购。In an alternative embodiment, the second database may also include a list of ordered products. The ordered product list is a list of products that the user can order, and the user can order according to the items (contents) recorded in the ordered product list.
在一个可选的实施例中,当确定用户不具有指定产品的使用权限后,还 可以执行以下操作:向用户呈现订购产品列表;接收来自用户的订购请求,其中,订购请求设置成请求订购产品列表中的指定产品;将指定产品的产品信息与用户的对应关系作为鉴权信息中的权限信息保存至第二数据库中。在本实施例中,上述订购请求可以为特定的指令,如选择指令。订购产品列表会通过机顶盒进行展示,供用户进行订购,在订购成功后,会生成订购话单,分拣给运营商,运营商通过话单再向用户收费。In an optional embodiment, when it is determined that the user does not have the usage rights of the specified product, The following operations may be performed: presenting a subscription product list to the user; receiving a subscription request from the user, wherein the subscription request is set to request a specified product in the ordered product list; and the correspondence between the product information of the specified product and the user is used as the authentication information The permission information is saved to the second database. In this embodiment, the above order request may be a specific instruction, such as a selection instruction. The ordered product list will be displayed through the set-top box for the user to order. After the order is successful, the order CDR will be generated and sorted to the operator, and the operator will charge the user through the CDR.
在一个可选的实施例中,当检测到第一数据库恢复正常时,同步第二数据库中的鉴权信息到第一数据库中。在本实施例中,上述检测过程可以按照一定的周期重复进行,如,可以每隔3秒进行一次检测。通过上述的同步过程,实现了在第一数据库处于异常状态时,仍可以对第一数据库进行更新,这样,当第一数据库恢复后,第一数据库存储有最新的鉴权信息,使得用户在第一数据库异常期间订购的产品的产品信息可以保存在第一数据库中,防止用户重复订购同一产品,提高了用户的体验度。In an optional embodiment, when it is detected that the first database is restored to normal, the authentication information in the second database is synchronized to the first database. In this embodiment, the above detection process may be repeated according to a certain period. For example, the detection may be performed every 3 seconds. Through the above synchronization process, when the first database is in an abnormal state, the first database can still be updated, so that after the first database is restored, the first database stores the latest authentication information, so that the user is in the first The product information of the products ordered during a database abnormality can be saved in the first database, preventing the user from repeatedly ordering the same product, thereby improving the user experience.
在一个可选的实施例中,上述方法可以应用于分布式网络节点中。该分布式网络节点可以为逻辑上的虚拟节点,也可以为实际中的物理设备,如,服务器或业务处理器等。由于本发明实施例的上述方法可以应用于分布式网络节点中,因此实现了将单点数据库中用户的鉴权信息进行多点存放,通过分布式网络节点保存用户的鉴权信息,继而达到当IPTV平台的数据库异常时,也可以对用户进行鉴权,避免了运营商利益的受损和提高了用户体验度的效果。In an alternative embodiment, the above method can be applied to a distributed network node. The distributed network node may be a logical virtual node, or may be a physical device in practice, such as a server or a service processor. The foregoing method of the embodiment of the present invention can be applied to a distributed network node, so that the authentication information of the user in the single-point database is stored in multiple points, and the user's authentication information is saved through the distributed network node, and then When the database of the IPTV platform is abnormal, the user can also be authenticated, thereby avoiding the damage of the operator's interests and improving the effect of the user experience.
在一个可选的实施例中,图3是根据本发明可选实施例的IPTV平台的鉴权方法的流程图,如图3所示,该流程包括如下步骤:In an optional embodiment, FIG. 3 is a flowchart of an authentication method of an IPTV platform according to an optional embodiment of the present invention. As shown in FIG. 3, the process includes the following steps:
步骤S302,分布式网络节点发起定时任务,每天凌晨1点将第一数据库中的用户的鉴权信息同步到分布式网络节点的第二数据库中;Step S302, the distributed network node initiates a timing task, and synchronizes the authentication information of the user in the first database to the second database of the distributed network node at 1 am every day;
步骤S304,在第一数据库处于正常状态情况下,分布式网络节点检测进程每隔5分钟检测与第一数据库之间的通信情况;Step S304, when the first database is in a normal state, the distributed network node detecting process detects the communication with the first database every 5 minutes;
步骤S306,在第一数据库处于正常状态时,用户发起鉴权请求,分布式网络节点直接将该请求转发给第一数据库,在第一数据库中完成用户的鉴权;Step S306, when the first database is in a normal state, the user initiates an authentication request, and the distributed network node directly forwards the request to the first database, and performs user authentication in the first database.
步骤S308,当该用户鉴权失败,分布式网络节点向该用户呈现订购产品 列表,用户点击订购,机顶盒发起订购请求,分布式网络节点将订购请求转发给第一数据库,第一数据库处理成功后,出订购话单,同时分布式网络节点将本次的鉴权信息同步到第一数据库中,不出订购话单;Step S308, when the user authentication fails, the distributed network node presents the subscription product to the user. List, the user clicks the subscription, the set top box initiates the order request, and the distributed network node forwards the order request to the first database. After the first database is successfully processed, the order CDR is sent out, and the distributed network node synchronizes the current authentication information to In the first database, no order is placed;
步骤S310,当检测进程检测到第一数据库处于异常状态,无法进行通信时,分布式网络节点拉起应急进程,主动断开与第一数据库的连接;Step S310, when the detecting process detects that the first database is in an abnormal state and cannot communicate, the distributed network node pulls up the emergency process and actively disconnects the connection with the first database;
步骤S312,当机顶盒发起鉴权请求时,分布式网络节点根据应急状态标志,不再将鉴权请求转发给第一数据库,而是在第二数据库中通过hash一致算法,查找用户鉴权信息中的权限信息,若未订购,将订购产品列表返回给用户,供用户订购;Step S312, when the set top box initiates the authentication request, the distributed network node no longer forwards the authentication request to the first database according to the emergency status flag, but searches for the user authentication information by using a hash consistency algorithm in the second database. Permission information, if not ordered, return the ordered product list to the user for the user to order;
步骤S314,用户点击订购,机顶盒发起订购请求,分布式网络节点接收到订购请求,应急进程根据应急状态标志,进行订购,将用户订购产品的产品信息与用户的对应关系作为鉴权信息保存在第二数据库中,订购成功,同时出订购话单;Step S314, the user clicks the subscription, the set top box initiates the order request, and the distributed network node receives the order request, and the emergency process performs the order according to the emergency status flag, and saves the correspondence between the product information of the product ordered by the user and the user as the authentication information. In the second database, the order is successful, and the order is placed at the same time;
步骤S316,在应急状态下,检测进程每隔3s检测第一数据库是否恢复正常,当检测到第一数据库恢复正常时,分布式网络节点重新和第一数据库进行连接,连接成功过后,取消应急,同时将检测进程检测第一数据库状态的时间间隔调整为5分钟;Step S316, in the emergency state, the detecting process detects whether the first database is restored to normal every 3 s. When detecting that the first database is restored to normal, the distributed network node reconnects with the first database, and after the connection is successfully completed, the emergency is cancelled. At the same time, the time interval for detecting the state of the first database is detected to be 5 minutes;
步骤S318,分布式网络节点将应急时第二数据库存储的鉴权消息同步到第一数据库中,同步成功后,应急进程和检测进程自动退出;Step S318, the distributed network node synchronizes the authentication message stored in the second database in the emergency to the first database, and after the synchronization succeeds, the emergency process and the detection process automatically exit;
步骤S320,话单分拣服务器将分布式网络节点在应急过程中用户的订购话单分拣给运营商,运营商通过话单对用户进行收费。In step S320, the bill sorting server sorts the user's order bills to the operator in the emergency process, and the operator charges the user through the bill.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到根据上述实施例的方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本发明的实施例本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,或者网络设备等)执行本发明各个实施例所述的方法。 Through the description of the above embodiments, those skilled in the art can clearly understand that the method according to the above embodiment can be implemented by means of software plus a necessary general hardware platform, and of course, by hardware, but in many cases, the former is A better implementation. Based on such understanding, portions of the embodiments of the present invention that contribute substantially or to the prior art may be embodied in the form of a software product stored in a storage medium (eg, ROM/RAM, disk, The optical disc includes a number of instructions for causing a terminal device (which may be a cell phone, a computer, a server, or a network device, etc.) to perform the methods described in various embodiments of the present invention.
实施例2Example 2
在本实施例中提供了一种运行于上述网络架构的IPTV平台的鉴权方法,图4是根据本发明实施例的IPTV平台的鉴权方法的流程图(二),如图4所示,该流程包括如下步骤:In this embodiment, an authentication method of an IPTV platform running on the network architecture is provided. FIG. 4 is a flowchart (2) of an authentication method of an IPTV platform according to an embodiment of the present invention, as shown in FIG. The process includes the following steps:
步骤S402,在IPTV平台的第一数据库异常时,向第二数据库所在的网络节点发送用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;Step S402, when the first database of the IPTV platform is abnormal, sending an authentication request of the user to the network node where the second database is located, where the first database is configured to store the authentication information used for authenticating the authentication request;
步骤S404,接收鉴权结果,其中,鉴权结果为根据从第二数据库中获取的鉴权信息对鉴权请求进行鉴权得到的结果。Step S404: Receive an authentication result, where the authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
通过上述步骤,实现了对于鉴权信息的多点存放,达到在IPTV平台数据库异常时系统仍然可以为用户提供鉴权服务,避免了运营商利益的受损和提高了用户体验度的效果。Through the above steps, the multi-point storage of the authentication information is realized, and the system can still provide the authentication service for the user when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience.
在一个可选的实施例中,网络节点可以为分布式网络节点,但是并不限于此。In an alternative embodiment, the network node may be a distributed network node, but is not limited thereto.
在一个可选的实施例中,鉴权信息可以包括用户的权限信息,其中,该用户的权限信息设置成指示用户对指定产品的使用权限。In an optional embodiment, the authentication information may include rights information of the user, wherein the rights information of the user is set to indicate the user's usage rights for the specified product.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到根据上述实施例的方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本发明的实施例本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,或者网络设备等)执行本发明各个实施例所述的方法。Through the description of the above embodiments, those skilled in the art can clearly understand that the method according to the above embodiment can be implemented by means of software plus a necessary general hardware platform, and of course, by hardware, but in many cases, the former is A better implementation. Based on such understanding, portions of the embodiments of the present invention that contribute substantially or to the prior art may be embodied in the form of a software product stored in a storage medium (eg, ROM/RAM, disk, The optical disc includes a number of instructions for causing a terminal device (which may be a cell phone, a computer, a server, or a network device, etc.) to perform the methods described in various embodiments of the present invention.
本发明实施例另外提供一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被执行时实现上述方法。Embodiments of the present invention further provide a computer readable storage medium storing computer executable instructions that are implemented when the computer executable instructions are executed.
实施例3 Example 3
在本实施例中还提供了一种IPTV平台的鉴权装置,该装置设置成实现上述实施例及可选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。In this embodiment, an authentication device for the IPTV platform is further provided, and the device is configured to implement the foregoing embodiments and optional implementation manners, and details are not described herein. As used below, the term "module" may implement a combination of software and/or hardware of a predetermined function. Although the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
图5是根据本发明实施例的IPTV平台的鉴权装置的结构框图(一),如图5所示,该装置包括:接收模块52,设置成当检测到IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;鉴权模块54,设置成从第二数据库中获取鉴权信息,并依据鉴权信息对鉴权请求进行鉴权。FIG. 5 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention. As shown in FIG. 5, the apparatus includes: a receiving module 52, configured to: when detecting that the first database abnormality of the IPTV platform is abnormal, Receiving an authentication request of the user, wherein the first database is configured to store the authentication information used for authenticating the authentication request; the authentication module 54 is configured to obtain the authentication information from the second database, and according to the authentication The information authenticates the authentication request.
在一个可选的实施例中,第二数据库可以为分布式网络节点中存储的数据库,但是并不限于此。In an alternative embodiment, the second database may be a database stored in a distributed network node, but is not limited thereto.
在一个可选的实施例中,鉴权信息可以包括用户的权限信息,其中,该用户的权限信息设置成指示用户对指定产品的使用权限,但是并不限于此。In an optional embodiment, the authentication information may include rights information of the user, where the rights information of the user is set to indicate the user's use rights for the specified product, but is not limited thereto.
在一个可选的实施例中,图6是根据本发明可选实施例的IPTV平台的鉴权装置的结构框图(一),如图6所示,该装置除包括图5所示的所有模块外包括:第一同步模块62,耦合连接至接收模块52,设置成在检测到IPTV平台的第一数据库异常之前,同步第一数据库的鉴权信息到第二数据库中。In an optional embodiment, FIG. 6 is a structural block diagram (1) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention. As shown in FIG. 6, the apparatus includes all the modules shown in FIG. In addition, the first synchronization module 62 is coupled to the receiving module 52, and is configured to synchronize the authentication information of the first database to the second database before detecting the first database abnormality of the IPTV platform.
在一个可选的实施例中,图7是根据本发明可选实施例的IPTV平台的鉴权装置的结构框图(二),如图7所示,该装置除包括图6所示的所有模块外,还包括:第二同步模块72,耦合连接至鉴权模块54,设置成当检测到第一数据库恢复正常时,同步第二数据库中的鉴权信息到第一数据库中。In an optional embodiment, FIG. 7 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an alternative embodiment of the present invention. As shown in FIG. 7, the apparatus includes all the modules shown in FIG. In addition, the second synchronization module 72 is coupled to the authentication module 54 and configured to synchronize the authentication information in the second database to the first database when the first database is detected to be normal.
需要说明的是,上述各个模块是可以通过软件或硬件来实现的,对于后者,可以通过以下方式实现,但不限于此:上述模块均位于同一处理器中;或者,上述各个模块以任意组合的形式分别位于不同的处理器中。It should be noted that each of the above modules may be implemented by software or hardware. For the latter, the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the above modules are in any combination. The forms are located in different processors.
实施例4Example 4
在本实施例中还提供了一种IPTV平台的鉴权装置,该装置设置成实现 上述实施例及可选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。In this embodiment, an authentication device for an IPTV platform is further provided, and the device is configured to implement The above embodiments and optional embodiments have not been described again. As used below, the term "module" may implement a combination of software and/or hardware of a predetermined function. Although the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
图8是根据本发明实施例的IPTV平台的鉴权装置的结构框图(二),如图8所示,该装置包括:发送模块82,设置成在IPTV平台的第一数据库异常时,向第二数据库所在的分布式网络节点发送用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;接收模块84,设置成接收鉴权结果,其中,鉴权结果为根据从第二数据库中获取的鉴权信息对鉴权请求进行鉴权得到的结果。FIG. 8 is a structural block diagram (2) of an authentication apparatus of an IPTV platform according to an embodiment of the present invention. As shown in FIG. 8, the apparatus includes: a sending module 82, configured to be in a first database abnormality of the IPTV platform, The distributed network node where the second database is located sends the authentication request of the user, where the first database is configured to store the authentication information used for authenticating the authentication request, and the receiving module 84 is configured to receive the authentication result, where The authentication result is a result obtained by authenticating the authentication request based on the authentication information acquired from the second database.
需要说明的是,上述各个模块是可以通过软件或硬件来实现的,对于后者,可以通过以下方式实现,但不限于此:上述模块均位于同一处理器中;或者,上述各个模块以任意组合的形式分别位于不同的处理器中。It should be noted that each of the above modules may be implemented by software or hardware. For the latter, the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the above modules are in any combination. The forms are located in different processors.
实施例5Example 5
在本实施例中还提供了一种IPTV平台的鉴权系统,该系统包括分布式网络节点12和机顶盒14,其中,分布式网络节点12,设置成在检测到IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;以及从第二数据库中获取鉴权信息,并依据鉴权信息对鉴权请求进行鉴权;机顶盒14,设置成在IPTV平台的第一数据库异常时,向第二数据库所在的分布式网络节点发送用户的鉴权请求;以及接收鉴权结果,其中,鉴权结果为根据从第二数据库中获取的鉴权信息对鉴权请求进行鉴权得到的结果。In this embodiment, an authentication system for an IPTV platform is further provided, where the system includes a distributed network node 12 and a set top box 14, wherein the distributed network node 12 is configured to detect when the first database abnormality of the IPTV platform is abnormal. Receiving an authentication request of the user, wherein the first database is configured to store authentication information used for authenticating the authentication request; and obtaining authentication information from the second database, and authenticating the request according to the authentication information Performing authentication; the set top box 14 is configured to send an authentication request of the user to the distributed network node where the second database is located when the first database abnormality of the IPTV platform is abnormal; and receive the authentication result, wherein the authentication result is based on the The authentication information obtained in the second database is obtained by authenticating the authentication request.
在一个可选的实施例中,图9是根据本发明实施例的IPTV组网的结构示意图,如图9所示,该组网包括:数据库92,分布式网络节点12和EPG 94,其中,EPG 94与一个分布式网络节点12耦合连接,所有的分布式网络节点12均与数据库92耦合连接。In an optional embodiment, FIG. 9 is a schematic structural diagram of an IPTV networking according to an embodiment of the present invention. As shown in FIG. 9, the networking includes: a database 92, a distributed network node 12, and an EPG 94, where The EPG 94 is coupled to a distributed network node 12, and all of the distributed network nodes 12 are coupled to the database 92.
EPG 94转发机顶盒发送的用户的鉴权请求到分布式网络节点12中,当分布式网络节点12判断数据库92处于异常状态时,根据自身缓存的鉴权信 息对于用户指定的产品进行鉴权;当分布式网络节点12判断数据库92处于正常状态时,直接将用户的鉴权请求转发到数据库92中,并由数据库92对用户指定的产品进行鉴权。The EPG 94 forwards the authentication request of the user sent by the set top box to the distributed network node 12, and when the distributed network node 12 determines that the database 92 is in an abnormal state, according to the cached authentication letter The user authenticates the product specified by the user; when the distributed network node 12 determines that the database 92 is in a normal state, the user's authentication request is directly forwarded to the database 92, and the database 92 authenticates the product specified by the user.
需要说明的是,上述各个模块是可以通过软件或硬件来实现的,对于后者,可以通过以下方式实现,但不限于此:上述模块均位于同一处理器中;或者,上述各个模块以任意组合的形式分别位于不同的处理器中。It should be noted that each of the above modules may be implemented by software or hardware. For the latter, the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the above modules are in any combination. The forms are located in different processors.
实施例6Example 6
本发明的实施例还提供了一种存储介质。可选地,在本实施例中,上述存储介质可以被设置为存储用于执行以下步骤的程序代码:Embodiments of the present invention also provide a storage medium. Optionally, in the embodiment, the foregoing storage medium may be configured to store program code for performing the following steps:
当检测到IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;Receiving an authentication request of the user when detecting the first database abnormality of the IPTV platform, wherein the first database is configured to store the authentication information used for authenticating the authentication request;
从第二数据库中获取鉴权信息,并依据鉴权信息对鉴权请求进行鉴权。The authentication information is obtained from the second database, and the authentication request is authenticated according to the authentication information.
可选地,存储介质还被设置为存储用于执行以下步骤的程序代码:根据鉴权请求中的用户信息在第二数据库中查询指定产品的使用权限。Optionally, the storage medium is further configured to store program code for performing the step of querying the usage rights of the specified product in the second database based on the user information in the authentication request.
可选地,存储介质还被设置为存储用于执行以下步骤的程序代码:同步第一数据库的鉴权信息到第二数据库中。Optionally, the storage medium is further arranged to store program code for performing the step of synchronizing the authentication information of the first database into the second database.
可选地,存储介质还被设置为存储用于执行以下步骤的程序代码:Optionally, the storage medium is further arranged to store program code for performing the following steps:
向用户呈现订购产品列表;Presenting a list of ordered products to the user;
接收来自用户的订购请求,其中,订购请求设置成请求订购产品列表中的指定产品;Receiving a subscription request from a user, wherein the subscription request is set to request a designated product in the ordered product list;
将指定产品的产品信息与用户的对应关系作为鉴权信息中的权限信息保存至第二数据库中。The correspondence between the product information of the specified product and the user is saved as the authority information in the authentication information to the second database.
可选地,存储介质还被设置为存储用于执行以下步骤的程序代码:当检测到第一数据库恢复正常时,同步第二数据库中的鉴权信息到第一数据库中。Optionally, the storage medium is further arranged to store program code for performing the step of synchronizing the authentication information in the second database into the first database when it is detected that the first database is restored to normal.
本发明的实施例还提供了一种存储介质。可选地,在本实施例中,上述存储介质可以被设置为存储用于执行以下步骤的程序代码: Embodiments of the present invention also provide a storage medium. Optionally, in the embodiment, the foregoing storage medium may be configured to store program code for performing the following steps:
在IPTV平台的第一数据库异常时,向第二数据库所在的网络节点发送用户的鉴权请求,其中,第一数据库设置成存储对鉴权请求进行鉴权所使用的鉴权信息;When the first database of the IPTV platform is abnormal, the user's authentication request is sent to the network node where the second database is located, where the first database is configured to store the authentication information used for authenticating the authentication request;
接收鉴权结果,其中,鉴权结果为根据从第二数据库中获取的鉴权信息对鉴权请求进行鉴权得到的结果Receiving an authentication result, wherein the authentication result is a result of authenticating the authentication request according to the authentication information acquired from the second database
可选地,在本实施例中,上述存储介质可以包括但不限于:U盘、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、移动硬盘、磁碟或者光盘等各种可以存储程序代码的介质。Optionally, in this embodiment, the foregoing storage medium may include, but not limited to, a USB flash drive, a Read-Only Memory (ROM), a Random Access Memory (RAM), a mobile hard disk, and a magnetic memory. A variety of media that can store program code, such as a disc or a disc.
可选地,本实施例中的具体示例可以参考上述实施例及可选实施方式中所描述的示例,本实施例在此不再赘述。For example, the specific examples in this embodiment may refer to the examples described in the foregoing embodiments and the optional embodiments, and details are not described herein again.
显然,本领域的技术人员应该明白,上述的本发明实施例的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明实施例不限制于任何特定的硬件和软件结合。Obviously, those skilled in the art should understand that the above modules or steps of the embodiments of the present invention can be implemented by a general computing device, which can be concentrated on a single computing device or distributed in multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from The steps shown or described are performed sequentially, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated into a single integrated circuit module. Thus, embodiments of the invention are not limited to any specific combination of hardware and software.
本领域普通技术人员可以理解,上文中所公开方法中的全部或某些步骤、系统、装置中的功能模块/单元可以被实施为软件、固件、硬件及其适当的组合。在硬件实施方式中,在以上描述中提及的功能模块/单元之间的划分不一定对应于物理单元的划分;例如,一个物理组件可以具有多个功能,或者一个功能或步骤可以由若干物理组件合作执行。某些组件或者所有组件可以被实施为由处理器,如数字信号处理器或微处理器执行的软件,或者被实施为硬件,或者被实施为集成电路,如专用集成电路。这样的软件可以分布在计算机可读介质上,计算机可读介质可以包括计算机存储介质(或非暂时性介质)和通信介质(或暂时性介质)。如本领域普通技术人员公知的,术语计算机存储介质包括在用于存储信息(诸如计算机可读指令、数据结构、程序模块或其他数据)的任何方法或技术中实施的易失性和非易失性、可移除和 不可移除介质。计算机存储介质包括但不限于RAM、ROM、EEPROM、闪存或其他存储器技术、CD-ROM、数字多功能盘(DVD)或其他光盘存储、磁盒、磁带、磁盘存储或其他磁存储装置、或者可以用于存储期望的信息并且可以被计算机访问的任何其他的介质。此外,本领域普通技术人员公知的是,通信介质通常包含计算机可读指令、数据结构、程序模块或者诸如载波或其他传输机制之类的调制数据信号中的其他数据,并且可包括任何信息递送介质。Those of ordinary skill in the art will appreciate that all or some of the steps, systems, and functional blocks/units of the methods disclosed above may be implemented as software, firmware, hardware, and suitable combinations thereof. In a hardware implementation, the division between functional modules/units mentioned in the above description does not necessarily correspond to the division of physical units; for example, one physical component may have multiple functions, or one function or step may be composed of several physical The components work together. Some or all of the components may be implemented as software executed by a processor, such as a digital signal processor or microprocessor, or as hardware, or as an integrated circuit, such as an application specific integrated circuit. Such software may be distributed on a computer readable medium, which may include computer storage media (or non-transitory media) and communication media (or transitory media). As is well known to those of ordinary skill in the art, the term computer storage medium includes volatile and nonvolatile, implemented in any method or technology for storing information, such as computer readable instructions, data structures, program modules or other data. Sex, removable and Non-removable media. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disc (DVD) or other optical disc storage, magnetic cartridge, magnetic tape, magnetic disk storage or other magnetic storage device, or may Any other medium used to store the desired information and that can be accessed by the computer. Moreover, it is well known to those skilled in the art that communication media typically includes computer readable instructions, data structures, program modules, or other data in a modulated data signal, such as a carrier wave or other transport mechanism, and can include any information delivery media. .
以上所述仅为本发明的可选实施例而已,并不用于限制本申请,对于本领域的技术人员来说,本发明实施例可以有各种更改和变化。凡在本申请的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本申请的保护范围之内。The above description is only an alternative embodiment of the present invention, and is not intended to limit the present application. Various changes and modifications may be made to the embodiments of the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and principles of this application are intended to be included within the scope of the present application.
工业实用性Industrial applicability
通过本发明的实施例,由于当检测到IPTV平台的第一数据库异常时,接收用户的鉴权请求并根据从第二数据库获取的鉴权信息进行鉴权,使得在第一数据库异常时,系统仍然可以对于用户进行鉴权,即通过对鉴权信息的多点存放,达到在IPTV平台数据库异常时系统仍然可以为用户提供鉴权服务,避免了运营商利益的受损和提高了用户体验度的效果。 According to the embodiment of the present invention, when the first database abnormality of the IPTV platform is detected, the authentication request of the user is received and the authentication information obtained from the second database is used for authentication, so that when the first database is abnormal, the system The user can still authenticate the user, that is, through the multi-point storage of the authentication information, the system can still provide the user with the authentication service when the IPTV platform database is abnormal, thereby avoiding the damage of the operator's interests and improving the user experience. Effect.

Claims (19)

  1. 一种交互式网络电视IPTV平台的鉴权方法,包括:An authentication method for an interactive network television IPTV platform, comprising:
    当检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;Receiving an authentication request of the user when the first database abnormality of the IPTV platform is detected, wherein the first database is configured to store authentication information used for authenticating the authentication request;
    从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权。Obtaining the authentication information from the second database, and authenticating the authentication request according to the authentication information.
  2. 根据权利要求1所述的方法,其中,所述第二数据库为分布式网络节点中存储的数据库。The method of claim 1 wherein said second database is a database stored in a distributed network node.
  3. 根据权利要求1所述的方法,其中,所述鉴权信息包括:所述用户的权限信息,其中,所述用户的权限信息设置成指示所述用户对指定产品的使用权限。The method according to claim 1, wherein the authentication information comprises: rights information of the user, wherein the rights information of the user is set to indicate the user's use rights to the specified product.
  4. 根据权利要求3所述的方法,其中,依据所述鉴权信息对所述鉴权请求进行鉴权,包括:根据所述鉴权请求中的用户信息在所述第二数据库中查询所述指定产品的使用权限。The method according to claim 3, wherein authenticating the authentication request according to the authentication information comprises: querying the designation in the second database according to user information in the authentication request The right to use the product.
  5. 根据权利要求1或2所述的方法,在检测到所述IPTV平台的所述第一数据库异常之前,所述方法还包括:同步所述第一数据库的所述鉴权信息到所述第二数据库中。The method according to claim 1 or 2, before detecting the first database abnormality of the IPTV platform, the method further comprising: synchronizing the authentication information of the first database to the second In the database.
  6. 根据权利要求3所述的方法,所述第二数据库中还包括:订购产品列表。The method of claim 3, further comprising: ordering a product list in the second database.
  7. 根据权利要求6所述的方法,当确定所述用户不具有所述指定产品的使用权限后,所述方法还包括:The method according to claim 6, after determining that the user does not have the usage right of the specified product, the method further includes:
    向所述用户呈现所述订购产品列表;Presenting the ordered product list to the user;
    接收来自所述用户的订购请求,其中,所述订购请求设置成请求所述订购产品列表中的所述指定产品;Receiving a subscription request from the user, wherein the subscription request is set to request the specified product in the ordered product list;
    将所述指定产品的产品信息与所述用户的对应关系作为所述鉴权信息中的所述权限信息保存至所述第二数据库中。 The correspondence between the product information of the specified product and the user is saved as the authority information in the authentication information to the second database.
  8. 根据权利要求1所述的方法,所述方法还包括:当检测到所述第一数据库恢复正常时,同步所述第二数据库中的所述鉴权信息到所述第一数据库中。The method of claim 1, further comprising synchronizing the authentication information in the second database into the first database when detecting that the first database is back to normal.
  9. 根据权利要求1所述的方法,所述方法应用于分布式网络节点中。The method of claim 1 applied to a distributed network node.
  10. 一种交互式网络电视IPTV平台的鉴权方法,包括:An authentication method for an interactive network television IPTV platform, comprising:
    在所述IPTV平台的第一数据库异常时,向第二数据库所在的网络节点发送用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;And when the first database of the IPTV platform is abnormal, sending an authentication request of the user to the network node where the second database is located, where the first database is configured to store a template used for authenticating the authentication request. Right information
    接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述鉴权请求进行鉴权得到的结果。Receiving an authentication result, wherein the authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
  11. 根据权利要求10所述的方法,其中,所述网络节点为分布式网络节点。The method of claim 10 wherein said network node is a distributed network node.
  12. 根据权利要求10所述的方法,其中,所述鉴权信息包括:所述用户的权限信息,其中,所述用户的权限信息设置成指示所述用户对指定产品的使用权限。The method according to claim 10, wherein the authentication information comprises: rights information of the user, wherein the rights information of the user is set to indicate the user's right to use the specified product.
  13. 一种交互式网络电视IPTV平台的鉴权装置,应用于分布式网络节点,包括:An authentication device for an interactive network television IPTV platform, applied to a distributed network node, comprising:
    接收模块,设置成当检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;a receiving module, configured to receive an authentication request of the user when detecting that the first database abnormality of the IPTV platform is abnormal, wherein the first database is configured to store an authentication used to authenticate the authentication request information;
    鉴权模块,设置成从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权。The authentication module is configured to obtain the authentication information from the second database, and authenticate the authentication request according to the authentication information.
  14. 根据权利要求13所述的装置,其中,所述第二数据库为所述分布式网络节点中存储的数据库。The apparatus of claim 13 wherein said second database is a database stored in said distributed network node.
  15. 根据权利要求13所述的装置,其中,所述鉴权信息包括:所述用户的权限信息,其中,所述用户的权限信息设置成指示所述用户对指定产品的使用权限。The apparatus according to claim 13, wherein the authentication information comprises: rights information of the user, wherein the rights information of the user is set to indicate the user's right to use the specified product.
  16. 根据权利要求13或14所述的装置,所述装置还包括:第一同步模 块,设置成在检测到所述IPTV平台的所述第一数据库异常之前,同步所述第一数据库的所述鉴权信息到所述第二数据库中。The apparatus according to claim 13 or 14, further comprising: a first synchronization mode Blocking, configured to synchronize the authentication information of the first database to the second database before detecting the first database abnormality of the IPTV platform.
  17. 根据权利要求13所述的装置,所述装置还包括:第二同步模块,设置成当检测到所述第一数据库恢复正常时,同步所述第二数据库中的所述鉴权信息到所述第一数据库中。The apparatus according to claim 13, further comprising: a second synchronization module configured to synchronize said authentication information in said second database to said said first database when said first database is restored to normal In the first database.
  18. 一种交互式网络电视IPTV平台的鉴权装置,包括:An authentication device for an interactive network television IPTV platform, comprising:
    发送模块,设置成在所述IPTV平台的第一数据库异常时,向第二数据库所在的分布式网络节点发送用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;a sending module, configured to send an authentication request of the user to the distributed network node where the second database is located when the first database abnormality of the IPTV platform is abnormal, where the first database is configured to store the authentication request The authentication information used for authentication;
    接收模块,设置成接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述鉴权请求进行鉴权得到的结果。The receiving module is configured to receive an authentication result, where the authentication result is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
  19. 一种交互式网络电视IPTV平台的鉴权系统,包括分布式网络节点和机顶盒,其中,An authentication system for an interactive network television IPTV platform, comprising a distributed network node and a set top box, wherein
    所述分布式网络节点,设置成在检测到所述IPTV平台的第一数据库异常时,接收用户的鉴权请求,其中,所述第一数据库设置成存储对所述鉴权请求进行鉴权所使用的鉴权信息;以及从第二数据库中获取所述鉴权信息,并依据所述鉴权信息对所述鉴权请求进行鉴权;The distributed network node is configured to receive an authentication request of the user when the first database abnormality of the IPTV platform is detected, where the first database is configured to store an authentication request for the authentication request. The authentication information used; and obtaining the authentication information from the second database, and authenticating the authentication request according to the authentication information;
    所述机顶盒,设置成在所述IPTV平台的所述第一数据库异常时,向所述第二数据库所在的所述分布式网络节点发送所述用户的鉴权请求;以及接收鉴权结果,其中,所述鉴权结果为根据从所述第二数据库中获取的所述鉴权信息对所述鉴权请求进行鉴权得到的结果。 The set top box is configured to: when the first database of the IPTV platform is abnormal, send an authentication request of the user to the distributed network node where the second database is located; and receive an authentication result, where And the result of the authentication is a result obtained by authenticating the authentication request according to the authentication information acquired from the second database.
PCT/CN2017/094069 2016-07-22 2017-07-24 Interactive authentication method, device and system for internet protocol television (iptv) platform WO2018014881A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201610587334.2A CN107645658A (en) 2016-07-22 2016-07-22 Method for authenticating, the apparatus and system of IPTV IPTV platforms
CN201610587334.2 2016-07-22

Publications (1)

Publication Number Publication Date
WO2018014881A1 true WO2018014881A1 (en) 2018-01-25

Family

ID=60993028

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/094069 WO2018014881A1 (en) 2016-07-22 2017-07-24 Interactive authentication method, device and system for internet protocol television (iptv) platform

Country Status (2)

Country Link
CN (1) CN107645658A (en)
WO (1) WO2018014881A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113497974A (en) * 2020-03-18 2021-10-12 中国电信股份有限公司 State detection method, system and terminal

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110120881B (en) * 2018-02-07 2022-04-19 中兴通讯股份有限公司 Data synchronization method and device
CN109361952A (en) * 2018-12-14 2019-02-19 司马大大(北京)智能系统有限公司 Video management method, apparatus, system and electronic equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20090127573A (en) * 2008-06-09 2009-12-14 주식회사 케이티 Method and system of dual authentication service for seamless mobile telecommunication
CN101605238A (en) * 2009-07-01 2009-12-16 中兴通讯股份有限公司 A kind of IPTV business fault treatment method, Apparatus and system
WO2010081376A1 (en) * 2009-01-19 2010-07-22 深圳市同洲电子股份有限公司 Digital television management system and method
CN103124368A (en) * 2013-01-21 2013-05-29 中兴通讯股份有限公司 Fault processing method and fault processing device in IPTV (internet protocol television) system
CN105141418A (en) * 2014-05-26 2015-12-09 中国移动通信集团公司 Certificate authentication method and system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101047552B (en) * 2006-04-28 2011-06-08 华为技术有限公司 Distribution service management method, system and distribution type authorization method, and system
US8160133B2 (en) * 2008-06-03 2012-04-17 At&T Intellectual Property I, Lp Method and apparatus for encoding video streams
CN101742247B (en) * 2009-12-08 2011-11-30 中兴通讯股份有限公司 Method and system for interactive web TV service authentication and EPG server
CN104052719B (en) * 2013-03-14 2018-06-26 中兴通讯股份有限公司 A kind of method and system of the desktop cloud system authentication based on IPTV

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20090127573A (en) * 2008-06-09 2009-12-14 주식회사 케이티 Method and system of dual authentication service for seamless mobile telecommunication
WO2010081376A1 (en) * 2009-01-19 2010-07-22 深圳市同洲电子股份有限公司 Digital television management system and method
CN101605238A (en) * 2009-07-01 2009-12-16 中兴通讯股份有限公司 A kind of IPTV business fault treatment method, Apparatus and system
CN103124368A (en) * 2013-01-21 2013-05-29 中兴通讯股份有限公司 Fault processing method and fault processing device in IPTV (internet protocol television) system
CN105141418A (en) * 2014-05-26 2015-12-09 中国移动通信集团公司 Certificate authentication method and system

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113497974A (en) * 2020-03-18 2021-10-12 中国电信股份有限公司 State detection method, system and terminal
CN113497974B (en) * 2020-03-18 2023-03-31 中国电信股份有限公司 State detection method, system and terminal

Also Published As

Publication number Publication date
CN107645658A (en) 2018-01-30

Similar Documents

Publication Publication Date Title
US9407967B2 (en) System for provisioning media services
US10009342B2 (en) Authentication for over the top broadcast streaming using automated content recognition
US20180041893A1 (en) Method and system of multi-terminal mapping to a virtual sim card
WO2018014881A1 (en) Interactive authentication method, device and system for internet protocol television (iptv) platform
WO2018187274A1 (en) System and method for determining tv tune-in attribution
CN109982322B (en) Screen projection method, device, system and storage medium
AU2020202033A1 (en) System and method for providing advertising consistency
EP3210158B1 (en) Secure transmission
WO2021259291A1 (en) Charging platform-based charging method, electronic device, and storage medium
AU2020260569A1 (en) Verification method and device
US11716203B2 (en) Secure transmission
CN107197018B (en) Method and device for data synchronization between systems
CN112258184B (en) Method, apparatus, electronic device and readable storage medium for freezing blockchain network
WO2016180174A1 (en) Method and apparatus for synchronizing voice files
US9830207B2 (en) Message communication system and operation method thereof
CN114040143B (en) Method, system and equipment for IPTV service management
US10979766B2 (en) Content access device geolocation verification
CN117768873A (en) Terminal access method, server, terminal, electronic equipment and storage medium
CN114741683A (en) Access information processing method and device, computer equipment and storage medium
CN115470227A (en) Data updating method and device, electronic equipment and computer readable medium
CN113553158A (en) Data processing method and device, electronic equipment and storage medium
CN117215627A (en) Data interface management method, device and storage medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17830515

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17830515

Country of ref document: EP

Kind code of ref document: A1