A kind of method of single-sign-on
Technical field
The present invention relates to a kind of Computer Applied Technology field, especially do not needing that goal systems is made any modification, do not need to login goal systems simply and rapidly under the prerequisite of independent certificate server yet, break through a kind of single-point logging method of traditional approach complexity.
Background technology
Along with the continuous upgrading of informatization, tax office operation system quantity constantly increases, and the complexity of system also more and more is difficult to control.This just needs to adopt the mode of single-sign-on that each operation system of tax office is incorporated in the unified element task platform, thereby realizes unified interface management, and operation flow is successive, promotes the service level of paying taxes.And traditional employing simulation URL realizes that the mode of single-sign-on need comprehensively analyze the login module of goal systems, as the composition of form fields, password encryption mode etc., goal systems complex analyses workload more is also big more, the speed of not only integrating is slow and have a lot of situations to realize, also can carry out extra verification as request source, Hidden field etc. as some system except that user name, password, these verifications must be carried out register in person by the user and could pass through; Can't handle the system that needs manual identified, need operating personnel to discern and correct typing as the check code at random of login page, otherwise can't land.These shortcomings have caused the developer to delay the integration of operation flow between system for realizing the single-sign-on cost plenty of time.
Summary of the invention
The objective of the invention is to overcome the deficiencies in the prior art, a kind of method of single-sign-on is provided.
Solving the technical scheme that its technical problem adopts is: the process of the user being logined each operation system of tax office is carried out labor, the login of the accurate analog subscriber of employing program is promptly opened login page, fills in identity information, is resolved processes such as identification check code and login, easy each operation system of tax office is incorporated in the unified element task platform of final realization, the business service function that can use each system to provide in platform specifically may further comprise the steps:
(1) process of analysis user login goal systems, comprise open login page, fill in identity information, fill in check code, login;
(2) by Apache Http server single-sign-on goal systems and element task platform are combined, utilize the reverse proxy function of Apache remote server to be mapped to the URL space of home server, home server is not to play the part of the role of acting server on the traditional sense but a mirror image showing as remote server, thereby realizes the free access of basic platform to the goal systems page;
(3) the register process of analog subscriber, according to the labor of the user being logined the goal systems process, use script to simulate this process of reproduction, comprise user's login account filled in and trigger its onblur () incident to the text box of appointment and obtain user state information; Fill in user login code and call password value after cryptographic algorithm calculates the encryption that need transmit on the backstage then;
(4) according to goal systems feature selecting carry pattern recognition program whether automatically, utilize pattern recognition program to resolve the identifying code that to fill in when the user logins, and the data that identify are filled in to the appointed area;
(5) login system, the data that system also needs the user is filled in before login are carried out verification or are carried out some parsing computings, utilizing script initiatively to trigger these incidents is that last login is prepared, and the click incident of last initiatively submission form or triggering login button is carried out system login.
Excellent effect of the present invention, method of the present invention are to login on the basis of the operating process of each operation system analysis and understanding user repeatedly, carry out motion analysis, design the process simulation of each step, finally realize each system of single-sign-on.This method has replaced traditional employing simulation URL to realize the mode of single-sign-on, having got around goal systems is the technology barriers that prevent that single-sign-on is provided with, simplified the process that goal systems is integrated into the element task platform, the core that the workload that has alleviated the developer is used for project with the time of saving is integration professional between different system.
Description of drawings
Accompanying drawing 1 is the general illustration of single-point logging method.
Description of reference numerals:
1. user, 2. element task platform, 3. process simulation process of user login, 4.Apache Http server, 5. goal systems
Accompanying drawing 2 is the single-point logging method flow chart.
Execution mode
Mainly employing program of the present invention is come the operating process of analog subscriber login goal systems, and key step is as follows:
(1) process of analysis user login goal systems.As open login page, fill in identity information, fill in check code, step such as login;
(2) by Apache Http server single-sign-on goal systems and element task platform are combined.Utilize the reverse proxy function of Apache remote server to be mapped to the URL space of home server, home server is not to play the part of the role of acting server on the traditional sense but a mirror image showing as remote server, thereby realizes the free access of basic platform to the goal systems page;
(3) the register process of analog subscriber.According to the labor of the user being logined the goal systems process, use script to simulate this process of reproduction.Trigger its onblur () incident to the text box of appointment and obtain user state information as user's login account is filled in; Filling in user login code calls cryptographic algorithm then and calculates password value after the encryption that need transmit on the backstage or the like;
(4) according to goal systems feature selecting carry pattern recognition program whether automatically.Utilize pattern recognition program to resolve the identifying code that to fill in when the user logins, and the data that identify are filled in to the appointed area;
(5) login system.The data that General System also needs the user is filled in before login are carried out verification or are carried out some parsing computings etc., and utilizing script initiatively to trigger these incidents is that last login is prepared.The click incident of last initiatively submission form or triggering login button is carried out system login.
Method of the present invention is that the process that the user logins each operation system of tax office is carried out labor, the login of the accurate analog subscriber of employing program is promptly opened login page, fills in identity information, is resolved processes such as identification check code and login, what final realization was easy the business service function that can use each system to provide in platform is provided each operation system of tax office in the unified element task platform.It is wider that the scope of application is compared in the simulation of the implementation method of this kind single-sign-on and traditional URL, process is simply quick, and the workload of cost is also less, can add new single-node login system easily, also can be transplanted to easily in other the project and go, have good practical value.