CN102710759A - Web server, business logging method and system - Google Patents

Web server, business logging method and system Download PDF

Info

Publication number
CN102710759A
CN102710759A CN2012101606058A CN201210160605A CN102710759A CN 102710759 A CN102710759 A CN 102710759A CN 2012101606058 A CN2012101606058 A CN 2012101606058A CN 201210160605 A CN201210160605 A CN 201210160605A CN 102710759 A CN102710759 A CN 102710759A
Authority
CN
China
Prior art keywords
account
business
web server
request information
binding
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2012101606058A
Other languages
Chinese (zh)
Other versions
CN102710759B (en
Inventor
张鹏
刘晓靖
杨瑞
胡尼亚
王志军
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN201210160605.8A priority Critical patent/CN102710759B/en
Publication of CN102710759A publication Critical patent/CN102710759A/en
Application granted granted Critical
Publication of CN102710759B publication Critical patent/CN102710759B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention discloses a Web server, a business logging method and a business logging system, wherein the business logging method comprises the steps of: obtaining a second logging request information for logging on a second business, wherein the second logging request information comprises a first account number for logging on a first business by a user; and if the second account number bound to the first account number is inquired according to the second logging request information, logging on the second business according to the inquired second account number. According to the logging method disclosed by the invention, the user can achieve one-key logging when the user skips to another business with an account number binding relationship from one business, so the user operation is simplified.

Description

Web server, professional login method and system
Technical field
The present invention relates to Internet technology, relate in particular to a kind of Web server, professional login method and system.
Background technology
Along with Internet development, the Internet offers the information that the user is become increasingly abundant.In Internet service was used, the user ran into from a service chaining through regular meeting and jumps to another professional situation.
In the existing internet, applications; Different Internet services are the providers that belong to different, so could use after a lot of Internet service needs the user in this business, login, promptly use one to login once at this business login interface when professional first as the user; When it jumps to another new business through link; New business is at first jumped out a login interface requirement user login, and the user waits for that background server carries out authentication to the information of its input behind its username and password of in this business, registering of new business login interface input, if authentication is passed through; Then return the page of new business, make the user can normally use new business to the user.
In the above-mentioned professional login method; The user when the current business redirect signs in to new business, all need import at every turn its new business log-on message so that the authentication again of the Web server of new business; Therefore; The register more complicated is loaded down with trivial details, and frequent input log-on message processing ease reveals user login information, thereby also has unsafe problems.
Summary of the invention
The present invention provides a kind of Web server, professional login method and system, between two Internet services, each other realizes a key login during redirect in order to make the user.
One aspect of the present invention provides a kind of method of professional login, comprising:
Obtain second landing request information of login second business, comprise in said second landing request information that the user logins first number of the account of first business;
If inquire second number of the account of binding, then login said second business according to said second number of the account that inquires with said first number of the account according to said second landing request information.
The present invention provides a kind of Web server on the other hand, comprising:
Acquisition module is used to obtain second landing request information of logining second business, comprises in said second landing request information that the user logins first number of the account of first business;
Processing module is used for then logining said second business according to said second number of the account that inquires if inquire second number of the account of binding with said first number of the account according to said second landing request information.
Another aspect of the invention provides a kind of professional login system, comprises first Web server of operation first business and second Web server of operation second business, and said second Web server is above-mentioned Web server.
Can know by technique scheme; The present invention has following beneficial effect: through obtaining second landing request information of login second business; And be mapped to second number of the account of binding with first number of the account according to first number of the account in second landing request information, make the user login second business thereby discern the user automatically, so the user is when professional redirect; Need not to import the log-on message of user in new business and can login new business; Not only simplify user login operation, can avoid the information leakage of user when the input log-on message again, improved user's safety of user information when the internet usage business is carried out professional redirect.
Description of drawings
Fig. 1 is the flow chart of the professional login method embodiment one of the present invention;
Fig. 2 is the flow chart that middle number of the account embodiment illustrated in fig. 1 is bound;
Fig. 3 is the flow chart of the professional login method embodiment two of the present invention;
Fig. 4 is the mutual signaling diagram between user and two business in the professional login method of the present invention;
Fig. 5 removes the mutual signaling diagram that number of the account is bound between two business for user among the present invention;
Fig. 6 is the structural representation of Web server embodiment one of the present invention;
Fig. 7 is the structural representation of Web server embodiment two of the present invention;
Fig. 8 is the structural representation of the professional login system embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is described in detail.
Fig. 1 is the flow chart of the professional login method embodiment one of the present invention, and as shown in Figure 1, the method for present embodiment comprises:
Step 101, obtain the second professional landing request information of login second, comprise in said second landing request information that the user logins first professional first number of the account.
In Internet service was used, a lot of websites all provided website links, so that the user is navigate to the business that other websites are used in other websites.When the user when an Internet service clickthrough jumps to another Internet service; The operation first first professional Web server will send landing request information to the operation second second professional Web server, so that second Web server supplies the user to use the second professional output according to this request.Internet service provider makes user security normally use its Internet service that provides, and its business that provides generally all needs the user to register login back to use, and when the user jumps to another when professional from a business through link, also needs login once more.Jump to the unsafe problems that another troublesome operation of logining once more when professional and user profile possibly cause for reducing the user from a business register; In the present embodiment; Operation two professional Web servers are bound the number of the account of user in two business; After user clicks on links, need not to carry out again other registers and can realize login; When it signs in to new business,, receive after first Web server triggers second landing request information of sending according to user's clicking operation so move the second second professional Web server because the number of the account of user in new business bind with number of the account in former business; Login the first first professional number of the account if inquire second number of the account that the user logins second business according to the user who carries in second landing request information; Think that promptly the user logins successfully in second business, thereby can remove the operation that the user imports log-on message once more from, realize key login.
Step 102, if inquire second number of the account of binding with said first number of the account according to said second landing request information, then login said second business according to said second number of the account that inquires.
After second Web server receives second landing request information, resolve the account information of user in the business of source wherein carry, according to the account information in the purpose business of the professional account information binding in this number of the account information searching and source to login.In the present embodiment; First number of the account in first business and second number of the account in second business are bound, so, when the user clicks the link of the business of second on the first professional page; First Web server triggers and sends second landing request information; And the user is logined the first first professional number of the account be carried in second landing request information, thereby second Web server is inquired about second number of the account of binding with first number of the account after receiving this information, realizes exempting to import when login second is professional the operation of log-on message; Both simplify user login operation, can avoid the information leakage of user when the input log-on message again.
In the present embodiment; If the user wants then to utilize the method for present embodiment can these a plurality of Internet services be bound in twos when a business jumps to another business, realizing key login between a plurality of Internet services, as first professional user's login account is bound with second professional login account and the 3rd professional login account respectively; The second professional login account is also bound with the 3rd professional login account; When clicking second service chaining on the Web page when the user is using first business, it can directly login second business of application, and it also can be clicked the 3rd service chaining and directly login the 3rd business of application; Login the professional user login information of purpose and need not to import it; Thereby realize key login, same, jump to first professional or the 3rd business from second business; Perhaps jump to first professional or second business from the 3rd business, also can key login.
For being implemented in redirect between a plurality of Internet services, which service source chain the professional Web server of purpose should be able to be known when receiving landing request information from fetches, thereby confirms second number of the account is obtained in inquiry from which binding relationship table.So; First Web server of first business is when the second second professional Web server sends logging request; The professional first corresponding service identification origin_A of in service identification that also need the user is current such as the present embodiment first is carried in second landing request information; So that second Web server inquires second number of the account of binding with said first number of the account according to this second landing request information in the corresponding binding relationship table of said first service identification; Service identification is carried in the landing request information, helps the purpose business and carry out fast query and login speed to improve the user to corresponding account number.
In practical application; For improving the fail safe of data communication in the professional jump procedure; Prevent that the situation of distorting, forge, intercepting and capturing from taking place; Need between the business to confirm a wildcard secret through certain way in advance,, guarantee the reliability of confidentiality, integrality and the Data Source of data so that data are carried out digital signature or encryption.Therefore first Web server after obtaining user's clicking operation or before; Can also will carry out safe handling to the data in second landing request information that sends to second Web server according to demand for security; As to first number of the account or first number of the account and the first professional corresponding identification information are carried out digital signature, perhaps with first number of the account and user's private data with the transmission of ciphertext form etc.When first number of the account is carried out digital signature; Also comprise first digital signature information in second landing request information that first Web server sends; Promptly first Web server utilizes the wildcard secret between first business and second business that first number of the account that is carried in the landing request information is carried out digital signature; Promptly the first number of the account account_A of user in first business carried out Hash and encrypt generation digital signature information signature through wildcard secret; And digital signature information signature also is carried in second landing request information; Thereby second Web server inquires before second number of the account of binding with said first number of the account according to said second landing request information; Also need verify with the integrality of affirmation data and the authenticity of user identity first number of the account, prevent that data from being distorted in transmission according to wildcard secret between said first business and said second business and the said first digital signature information signature.Be specially; After second Web server receives second landing request information; Wildcard secret according to first number of the account account_A that carries and preservation thereof uses identical Hash encryption mechanism to generate a signature value; And the first digital signature information signature that carries in this signature value and second landing request information compared, if the two is identical, can guarantee that then data are not distorted in transmission.If also carry first service identification of first business in second landing request information; Then its signing messages is to utilize wildcard secret that the first service identification origin_A and the first number of the account account_A are carried out the first digital signature information signature that Hash encryption generation is carried; And after second Web server receives solicited message; Carry out identical Hash encryption according to wildcard secret, the first service identification origin_A and the first number of the account account_A and obtain a signature value; And this signature value compared with the first digital signature information signature that carries, thereby confirm that the first number of the account account_A is the user account account_A in first business.Follow-up second Web server is inquired about second number of the account of obtaining with its binding according to first number of the account of having verified.Wherein, wildcard secret can be the encryption key of arranging in advance between the Internet service of two mutual trusts.
Other private datas that in landing request information, also comprise the user, during like additional datas such as user's Real Name, phone, ages, can be with first number of the account and private data with the transmission of ciphertext form to avoid user profile in transmission, to be stolen.During second landing request information that first Web server sends; Utilize wildcard secret that the transferred private data of user and first number of the account are carried out encryption and generate the first cipher-text information encryptdata; Thereby second Web server inquires according to said second landing request information before second number of the account of binding with said first number of the account, also need decipher the said first cipher-text information encryptdata according to the wildcard secret between said first business and said second business and obtain first number of the account expressly and other private datas.If also carry the first professional first corresponding service identification origin_A in second landing request information; Then second Web server can obtain the corresponding wildcard secret of this sign and carry out corresponding decryption oprerations according to the first service identification origin_A, thereby first number of the account that follow-up second Web server obtains according to deciphering is inquired about second number of the account of obtaining with its binding.Because first number of the account and private data transmit with the ciphertext form, its wildcard does not transmit in professional redirect, so, also can guarantee in professional redirect, can not reveal user's number of the account and privacy information.
In practical application, the user jumps to second business from first business first, perhaps jumps to first business from second business first, and the number of the account in two business is not bound two operations that business also need carry out the number of the account in the two is bound at this moment.
Fig. 2 is the flow chart that middle number of the account embodiment illustrated in fig. 1 is bound, and as shown in Figure 2, the number of the account bindings in the present embodiment comprises:
Step 201, obtain the second professional landing request information of login second, comprise in said second landing request information that the user logins first professional first number of the account.
Step 202, if do not inquire second number of the account of binding according to said second landing request information with said first number of the account; Then the Web page reorientation is arrived and bind the page, login second number of the account and second login password of said second business with the user who obtains user's input.
Step 203, login said second business, in second business, set up and store the binding relationship between said first number of the account and said second number of the account afterwards again according to said second number of the account and the second login key.
Step 204, send to the operation first first professional Web server and to bind announcement information; Said binding announcement information comprises said second number of the account and said first number of the account, so that the binding relationship between said second number of the account and said first number of the account is set up and stored to said first Web server.
In the present embodiment; After second Web server receives second landing request information of login second business; If do not inquire second number of the account of binding according to said second landing request information with said first number of the account; Then the Web page reorientation is arrived and bind the page; Login second number of the account and second login password of said second business with the user who obtains user's input, and login key according to said second number of the account and second and login said second business, in second business, set up and store the binding relationship between said first number of the account and said second number of the account afterwards again.Second Web server is after setting up and storing binding relationship; Also send and bind announcement information to the operation first first professional Web server; Said binding announcement information comprises said second number of the account and said first number of the account; So that the binding relationship between said second number of the account and said first number of the account is set up and stored to said first Web server; Thereby all store the binding relationship of first number of the account and second number of the account in first business and second business, wherein, bind the second service identification origin_B that can also comprise the said second professional correspondence in the announcement information; So that notify the source of first Web server notice, behind the binding relationship of setting up between said second number of the account and said first number of the account, said binding relationship is stored in said first Web server with the corresponding binding relationship table of the said second service identification origin_B in.
Bind in the announcement information and can also comprise digital signature information first number of the account and second number of the account; The perhaps digital signature information of second of the notice source professional corresponding second service identification origin_B, first number of the account and second number of the account is so that first Web server sets up and preserve the binding relationship between the first number of the account account_A and the said second number of the account account_B according to this signing messages checking back in first business.After in two business, all preserving binding relationship, follow-uply no matter jump to second and professionally still can both realize key login from second business, first business that jumps to from first business.Be no matter subsequent user is to sign in to second business through redirect; Still after logining second business through number of the account and login password mode; If want to sign in to first business through the link on the second Web page; Then directly clickthrough gets final product; Second Web server can be logined first landing request information of said first business to moving first professional first Web server transmission, comprise in said first landing request information that the user logins second number of the account of second business, so that said first Web server is logined said first business inquire first number of the account of binding with said second number of the account according to said first landing request information after.Can also comprise the second professional second corresponding service identification origin_B in first landing request information, so that first Web server is inquired about first number of the account of binding with said second number of the account in the corresponding binding relationship table of the second service identification origin_B.
According to the different security demand; Second Web server also can carry out safe handling to the data in first landing request information, promptly can also comprise in first landing request information being used for second digital signature information that said first Web server is verified said second number of the account; Second private data that also comprises the user in perhaps said first landing request information; And said second private data and said second number of the account are second cipher-text information, and said second cipher-text information is used for deciphering second number of the account and second private data that obtains plaintext by said first Web server.Wherein second private data can be identical or different with first private data, after first service server receives first landing request information, also adopts to carry out digital signature authentication with the similar method of above-mentioned second Web server or cleartext information is obtained in deciphering.Simultaneously; The present invention preserves the number of the account binding relationship of user in two business simultaneously in first business and second business; Independent authentication center's server can be set so that each business is carried out authentication, thereby provide the mode of a kind of " decentralization " to realize key login.
The binding relationship that number of the account in two business was set up and preserved to first Web server and second Web server in the present embodiment also can adopt other binding methods except that method shown in Figure 2, as long as make the number of the account in two business can mutual mapping according to landing request information.As between first Web server and second Web server not being mutual method the two foundation of realization of employing and storage binding relationship; But after the user logins first professional and second business respectively; The user and first Web server carry out alternately in first Web server, to set up and to store the binding relationship of number of the account in two business; And user and second Web server carry out alternately in second Web server, setting up and to store the binding relationship of number of the account in two business, and subsequent user also can realize a key login during redirect between two business.
Second Web server is through obtaining second landing request information of login second business in the present embodiment; And be mapped to second number of the account of binding according to first number of the account in second landing request information with first number of the account; Thereby discerning the user automatically makes the user login second business; Therefore the user need not to import the log-on message of user in new business and can login new business when professional redirect, has not only simplified user login operation; Can avoid the information leakage of user when the input log-on message again, improve user's safety of user information when the internet usage business is carried out professional redirect.
After user account was bound each other in two business, the user can also utilize a key to remove the previous binding relationship of setting up.
Fig. 3 is for the flow chart of the professional login method embodiment two of the present invention, and is as shown in Figure 3, and user's login has been set up after second business of binding relationship in the method for present embodiment, also comprises:
Step 301, obtain and remove between said first number of the account and said second number of the account separating of binding relationship and tie up solicited message.
After the user successfully logined second business, the user can click between first number of the account and second number of the account on the second professional page separating of binding relationship and tie up key assignments, and second Web server obtains this and separates and tie up the two binding relationship of preserving before can deleting after the solicited message.Wherein the user successfully logins second business, can be that redirect signs in to second business from first business, also can be the login of carrying out through second number of the account and the login password of input user in second business.
Step 302, tie up solicited message and delete binding relationship between said first number of the account and said second number of the account according to said separating.
Step 303, send to separate to the operation first first professional Web server and tie up announcement information; Said separating tied up announcement information and comprised said second number of the account, so that said first Web server is tied up first number of the account that announcement information obtains and said second number of the account is bound and logined the binding relationship between said first professional back said first number of the account of deletion and said second number of the account according to said separating.
Behind the binding relationship of its preservation of second Web server deletion; Also will separate the information of tying up notifies to first Web server; And carry second number of the account in the announcement information separating to tie up, so that first Web server, finds first number of the account of binding with second number of the account according to this announcement information; And the binding relationship of the two deleted, to realize the releasing of number of the account binding relationship in two business.After bind removing, the user during redirect, just need import its number of the account and login password in corresponding business respectively between two business.Certainly, two business can also adopt like above-mentioned method shown in Figure 2 according to user's binding demands and bind once more.Behind first Web server deletion binding relationship, can also it successfully be separated the notice of tying up and feed back to second Web server, so that second Web server will be separated and tie up successful information and notify to the user.Equally, also can comprise signing messages separating to tie up in the announcement information, separate the Web server of tying up announcement information and tie up in the announcement information data integrity and authenticity and verify separating so that receive this.
In the present embodiment; The user can be through removing the number of the account binding relationship of having set up through a key in setting up and preserve the professional page of number of the account binding relationship; Promptly second Web server is tied up solicited message through separating of binding relationship between said first number of the account of releasing obtaining the user and select and said second number of the account; Delete the binding relationship of its preservation; And send to separate to first Web server and tie up announcement information, thereby realize that separating of number of the account tied up in two business so that first Web server is deleted the binding relationship of its preservation.
Above-mentioned bindings of carrying out only occurs in when using for the first time; Later first business and second business all can directly be logined according to the binding relationship of having preserved; Same in operation at unbind; The user also only needs to trigger once, and first business and second business all can be deleted the binding relationship of both numbers of the account, thereby simple to operate, very easy to use.
Fig. 4 is the mutual signaling diagram between user and two business in the professional login method of the present invention; As shown in Figure 4; Login the A business with the user below or the B business is elaborated; Its operating procedure is specially: the user passes through its account_A in the A business of input and corresponding login password password_A, and the professional feedback user of A is logined successful information, and the user can normally use A professional.When the user wants that the B service chaining information on the professional page jumps to the B business through A; It is through clicking this link information; Jump to the B business; And service identification origin_A, account_A and the signing messages signature of the two that A is professional are carried at jump information; Promptly be carried at the landing request information described in the foregoing description, after the B business receives jump information, origin_A, account_A carried out integrity verification according to wildcard and signing messages signature between A business and the B business.If there has been the binding information of user account in A business and the B business in the B business, the B business is directly returned the login successful information to the user, thereby the user can normally use B professional; If there is not the binding information of user account in A business and the B business in the B business; Being that A is professional did not bind with the B business; The B business arrives the binding page with the Web page reorientation after obtaining jump request, promptly jumps out user's login interface, requires the user to import its account_B in the B business and corresponding login password password_B; It is professional that the user imports back login B; B is professional and bind according to the account_B of above-mentioned jump information with the account_A in the jump information and reception, and binding relationship is preserved, and to A professional send to bind notify; And origin_B, account_A, account_B and signing messages signature be carried at bind in the notice; The A business is carried out signature verification after receiving and binding notice, sets up and preserve the binding relationship of account_A and account_B through the back, and this sets up the operation in the frame of broken lines among process such as Fig. 4 of binding relationship.Operation afterwards is as the operation that has had the binding information of user account in A business and the B business in the B business; Be that the user can normally use B professional; And can jump to the A business through A service chaining one key of clicking on the professional page of B; Carry the professional relevant information of B, the binding relationship of its preservation of A service inquiry successfully can normally use A professional after the login.
Jumping to Tengxun's microblogging with Sina's microblogging below is that example describes:
1, the user uses the number of the account and the login password login of Sina at Sina's microblogging.
2, in the page of Sina, there is the link that jumps to Tengxun's microblogging; Service identification origin_sina and the account information sina_user of user in Sina's microblogging that Sina is arranged in the link; Possibly have information such as name, phone in addition, carry out safe handling when carrying out safe handling in advance and preserving information or the user clicks on links of safe handling again according to above-mentioned security processing.
3, the user clicks this link, jumps to Tengxun, and Tengxun can decipher data according to the safe handling mode that both sides arrange each other, obtains origin_sina and sina_user, perhaps also comprises other information.
If 4, this sina_user had not before been bound in Tengxun's judgement, then jump out Tengxun's login interface, require the user to use the login account QQ_user and the corresponding login password thereof of Tengxun, bind these two numbers of the account of sina_user and QQ_user then.
If 5 had bound, the number of the account QQ_user that Tengxun can be mapped in Tengxun from sina_user, the user directly logins Tengxun's microblogging, does not need to import once more Tengxun's number of the account.
Fig. 5 removes the mutual signaling diagram that number of the account is bound between two business for user among the present invention; As shown in Figure 5; After logining the A business with the user below, the number of the account binding relationship is elaborated in startup releasing A business and the B business, and its operating procedure is specially: the user is through importing the login password password_A of its account_A in the A business and correspondence; The professional feedback user login of A successful information, the user can normally use A professional.When the user want to remove A professional with the B business in during the number of the account binding relationship; Through click on the professional page of A with the B business in number of the account separate separating of tying up and tie up key assignments and can realize that separating of number of the account tied up in the two; I.e. request releasing and the professional binding of B, A business receive separating of user and tie up deletion foundation before and account_A that preserves and the binding relationship of account_B when asking, and will separate the B business that sends to of notifying of tying up simultaneously; And origin_A, account_A and signing messages signature be carried to separate tie up in the notice; The B business receive separate tie up notice after, after origin_A, account_A verified, account_B was obtained in inquiry according to account_A; And the binding relationship of the two deleted; To separate afterwards and tie up successful information and feed back to the A business, the A business will be separated and tied up successful information and feed back to the user, accomplish the user A professional with the B business in separating of number of the account binding tie up.
Fig. 6 is the structural representation of Web server embodiment one of the present invention; As shown in Figure 6; The Web server of present embodiment comprises: acquisition module 40 and processing module 41, wherein, acquisition module 40; Be used to obtain second landing request information of login second business, comprise in said second landing request information that the user logins first number of the account of first business; Processing module 41 is used for then logining said second business according to said second number of the account that inquires if inquire second number of the account of binding with said first number of the account according to said second landing request information.
Specifically; After the acquisition module 40 of Web server receives and jumps to second professional second landing request information from first business; Second number of the account that first number of the account with in second landing request information of the previous preservation of processing module 41 inquiries is bound; If inquire, then login second business according to second number of the account.
In the practical application; In second landing request information, can also comprise the first professional first corresponding service identification, so that processing module 41 inquires second number of the account of binding with said first number of the account according to said second landing request information in the corresponding binding relationship table of said first service identification; And can also comprise and be used for the digital signature information of the data security of second landing request information transmission or data are transmitted with the ciphertext form, thereby processing module 41 is verified or decryption processing according to the safe handling mode of data in second landing request information accordingly.
Present embodiment can be used for carrying out the technical scheme of above-mentioned embodiment shown in Figure 1, and its operation principle and the technique effect that reaches are similar, and concrete detailed content repeats no more.
Fig. 7 is the structural representation of Web server embodiment two of the present invention; As shown in Figure 7; The Web server of present embodiment is on the described embodiment of above-mentioned Fig. 6 basis; Further comprise: sending module 42, when being used for processing module 41 and not inquiring second number of the account of binding with first number of the account, send to the operation first first professional Web server and to bind announcement information; Said binding announcement information comprises said second number of the account and said first number of the account, so that the binding relationship between said second number of the account and said first number of the account is set up and stored to said first Web server.
In the present embodiment; After if acquisition module 40 receives second landing request information; Processing module 41 does not inquire second number of the account of binding with first number of the account; Then processing module 41 is also logined said second professional second number of the account and second password to binding the page to obtain the user with the Web page reorientation, and sets up and store the binding relationship between said first number of the account and said second number of the account after logining said second business according to said second number of the account and second login password.Simultaneously; The sending module 42 of Web server sends to the operation first first professional Web server and binds announcement information so that it also sets up and store the binding relationship between first number of the account and said second number of the account; After all setting up in two business and preserving binding relationship, follow-up, the user jumps to another when professional from a business; Just need not to import log-on message and just can login new business, thereby realize key login.
In the practical application; Sending module 42 in the present embodiment also is used for sending to the operation first first professional Web server first landing request information of said first business of login; Comprise in said first landing request information that the user logins second number of the account of second business; So that said first Web server is logined said first business inquire first number of the account of binding with said second number of the account according to said first landing request information after, promptly realize the process of first business that jumps to from second business.
When the user need remove the number of the account binding relationship of having preserved in two business, can tie up key assignments and get final product through clicking separating on arbitrary professional page.For two professional Web servers, its corresponding acquisition module 40 also is used to obtain to be removed between said first number of the account and said second number of the account separating of binding relationship and ties up solicited message; When acquisition module 40 receive user operation separate the request of tying up after; Processing module 41 also is used for tying up solicited message and deleting binding relationship between said first number of the account and said second number of the account according to said separating; Promptly realize of the releasing of second Web server to two number of the account binding relationships in second business; Sending module 42; Also be used for sending to separate to the operation first first professional Web server tying up announcement information, said separating tied up announcement information and comprised said second number of the account, so that said first Web server is tied up announcement information and deleted the binding relationship between said first number of the account and said second number of the account according to said separating; Even first Web server is to the releasing of two number of the account binding relationships in first business, thereby the number of the account binding is all removed in two business.
Present embodiment is on the basis that reaches above-mentioned technique effect embodiment illustrated in fig. 6; Also further realized key login in the follow-up redirect of user through setting up binding relationship; And the releasing of binding relationship also can be separated to tie up and is achieved through a key; Not only simplified user's operation, and the safety of user profile in helping operating.
Fig. 8 is the structural representation of the professional login system embodiment of the present invention; As shown in Figure 8; The system of present embodiment comprises: first Web server 50 of operation first business and second Web server 51 of operation second business, said second Web server is above-mentioned Fig. 6 or Web server embodiment illustrated in fig. 7.In the practical application; The user has dual mode when logining first business; A kind of is directly at its number of the account and login password in this business of login page data, and another kind is from other redirect login business that number of the account binds to be arranged with it, and the user account of the business that two Web servers move in the professional login system of present embodiment has binding relationship; When the user jumps to second when professional from first business; Perhaps jump to first when professional from second business, the Web server of current business only needs to send logging request to the professional corresponding Web server of the purpose of treating redirect, and the user account of current business in logging request, carrying;, can directly login by the professional Web server of purpose when receiving this logging request according to the number of the account that inquires; Thereby need not to let the user import log-on message once more, not only simplified user's operation, also help the safety of user profile.
Can also comprise a plurality of Web servers in the professional login system of present embodiment; These a plurality of Web servers are safeguarded the Web page of a plurality of Internet services; User account has binding relationship in the business of wherein any two Web servers operation; When jumping to another business from a business, also can realize key login.
One of ordinary skill in the art will appreciate that: all or part of step that realizes said method embodiment can be accomplished through the relevant hardware of program command; Aforesaid program can be stored in the computer read/write memory medium; This program the step that comprises said method embodiment when carrying out; And aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
What should explain at last is: above embodiment is only in order to technical scheme of the present invention to be described but not limit it; Although the present invention has been carried out detailed explanation with reference to preferred embodiment; Those of ordinary skill in the art is to be understood that: it still can make amendment or be equal to replacement technical scheme of the present invention, also can not make amended technical scheme break away from the spirit and the scope of technical scheme of the present invention and these are revised or be equal to replacement.

Claims (17)

1. the method for a professional login is characterized in that, comprising:
Obtain second landing request information of login second business, comprise in said second landing request information that the user logins first number of the account of first business;
If inquire second number of the account of binding, then login said second business according to said second number of the account that inquires with said first number of the account according to said second landing request information.
2. method according to claim 1 is characterized in that, also comprises the first professional first corresponding service identification in said second landing request information,
Correspondingly, inquire second number of the account of binding, be specially with said first number of the account according to said second landing request information:
In the corresponding binding relationship table of said first service identification, inquire second number of the account of binding according to said second landing request information with said first number of the account.
3. method according to claim 1 and 2 is characterized in that, also comprises first digital signature information in said second landing request information,
Correspondingly, inquire before second number of the account of binding, also comprise with said first number of the account according to said second landing request information:
Wildcard and said first digital signature information according between said first business and said second business are verified said first number of the account.
4. method according to claim 1 and 2 is characterized in that, also comprises user's first private data in said second landing request information, and said first private data and said first number of the account be first cipher-text information,
Correspondingly, inquire before second number of the account of binding, also comprise with said first number of the account according to said second landing request information:
Said first cipher-text information is deciphered first number of the account and first private data that obtains plaintext according to the wildcard between said first business and said second business.
5. method according to claim 1 and 2; It is characterized in that; If do not inquire second number of the account of binding according to said second landing request information with said first number of the account; Then the Web page reorientation is logined said second professional second number of the account and second login password to binding the page to obtain the user, and set up and store the binding relationship between said first number of the account and said second number of the account after logining said second business according to said second number of the account and the second login key;
Send the binding announcement information to the operation first first professional Web server; Said binding announcement information comprises said second number of the account and said first number of the account, so that the binding relationship between said second number of the account and said first number of the account is set up and stored to said first Web server.
6. method according to claim 5 is characterized in that, logins said second professionally or login after said second business according to said second number of the account and second login password according to said second number of the account that inquires, and also comprises:
Send first landing request information of said first business of login to the operation first first professional Web server; Comprise in said first landing request information that the user logins second number of the account of second business, so that said first Web server is logined said first business inquire first number of the account of binding with said second number of the account according to said first landing request information after.
7. method according to claim 6 is characterized in that, also comprises in said first landing request information being used for second digital signature information that said first Web server is verified said second number of the account; Perhaps
Second private data that also comprises the user in said first landing request information; And said second private data and said second number of the account are second cipher-text information, and said second cipher-text information is used for deciphering second number of the account and second private data that obtains plaintext by said first Web server.
8. method according to claim 6; It is characterized in that; Also comprise the second professional second corresponding service identification in said first landing request information, so that said first Web server is inquired about first number of the account of binding with said second number of the account in the corresponding binding relationship table of said second service identification.
9. method according to claim 5 is characterized in that, logins after said second business, also comprises:
Obtain and remove between said first number of the account and said second number of the account separating of binding relationship and tie up solicited message;
Tie up solicited message and delete binding relationship between said first number of the account and said second number of the account according to said separating;
Send to separate to the operation first first professional Web server and tie up announcement information; Said separating tied up announcement information and comprised said second number of the account, so that said first Web server is tied up first number of the account that announcement information obtains and said second number of the account is bound and logined the binding relationship between said first professional back said first number of the account of deletion and said second number of the account according to said separating.
10. a Web server is characterized in that, comprising:
Acquisition module is used to obtain second landing request information of logining second business, comprises in said second landing request information that the user logins first number of the account of first business;
Processing module is used for then logining said second business according to said second number of the account that inquires if inquire second number of the account of binding with said first number of the account according to said second landing request information.
11. server according to claim 10 is characterized in that, also comprises the first professional first corresponding service identification in said second landing request information,
Said processing module specifically is used for inquiring second number of the account of binding with said first number of the account according to said second landing request information at the corresponding binding relationship table of said first service identification.
12., it is characterized in that according to claim 10 or 11 described servers, also comprise first digital signature information in said second landing request information,
Said processing module also is used for according to wildcard and said first digital signature information between said first business and said second business said first number of the account being verified.
13., it is characterized in that according to claim 10 or 11 described servers, also comprise user's first private data in said second landing request information, and said first private data and said first number of the account be first cipher-text information,
Said processing module also is used for said first cipher-text information being deciphered first number of the account and first private data that obtains plaintext according to the wildcard between said first business and said second business.
14. according to claim 10 or 11 described servers; It is characterized in that; Said processing module; Also be used for as if do not inquire second number of the account of binding according to said second landing request information with said first number of the account; Then the Web page reorientation is logined said second professional second number of the account and second password to binding the page to obtain the user, and set up and store the binding relationship between said first number of the account and said second number of the account after logining said second business according to said second number of the account and second login password;
Said server also comprises:
Sending module; Be used for sending the binding announcement information to the operation first first professional Web server; Said binding announcement information comprises said second number of the account and said first number of the account, so that the binding relationship between said second number of the account and said first number of the account is set up and stored to said first Web server.
15. server according to claim 14; It is characterized in that; Said sending module also is used for sending to the operation first first professional Web server first landing request information of said first business of login; Comprise in said first landing request information that the user logins second number of the account of second business, so that said first Web server is logined said first business inquire first number of the account of binding with said second number of the account according to said first landing request information after.
16. server according to claim 14 is characterized in that, said acquisition module also is used to obtain and removes between said first number of the account and said second number of the account separating of binding relationship and tie up solicited message;
Said processing module also is used for tying up solicited message and deleting binding relationship between said first number of the account and said second number of the account according to said separating;
Said sending module; Also be used for sending to separate tying up announcement information to the operation first first professional Web server; Said separating tied up announcement information and comprised said second number of the account, so that said first Web server is tied up announcement information and deleted the binding relationship between said first number of the account and said second number of the account according to said separating.
17. a professional login system comprises first Web server of operation first business and second Web server of operation second business, it is characterized in that said second Web server is like each described Web server in the claim 10 ~ 16.
CN201210160605.8A 2012-05-22 2012-05-22 Web server, business logging method and system Active CN102710759B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210160605.8A CN102710759B (en) 2012-05-22 2012-05-22 Web server, business logging method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210160605.8A CN102710759B (en) 2012-05-22 2012-05-22 Web server, business logging method and system

Publications (2)

Publication Number Publication Date
CN102710759A true CN102710759A (en) 2012-10-03
CN102710759B CN102710759B (en) 2015-04-15

Family

ID=46903305

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210160605.8A Active CN102710759B (en) 2012-05-22 2012-05-22 Web server, business logging method and system

Country Status (1)

Country Link
CN (1) CN102710759B (en)

Cited By (28)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104092679A (en) * 2014-07-02 2014-10-08 百度在线网络技术(北京)有限公司 Method for logging in third-party site and server
CN104168262A (en) * 2014-07-02 2014-11-26 百度在线网络技术(北京)有限公司 Method and server for logging in third party site
CN104219251A (en) * 2014-09-26 2014-12-17 北京国双科技有限公司 Website data obtaining method and device
CN104636909A (en) * 2014-12-30 2015-05-20 北京奇虎科技有限公司 Account identification method and system and electronic equipment
CN104660557A (en) * 2013-11-19 2015-05-27 腾讯科技(深圳)有限公司 Operation processing method and device
CN105024975A (en) * 2014-04-23 2015-11-04 腾讯科技(北京)有限公司 Account number login method, device and system
CN105553942A (en) * 2015-12-08 2016-05-04 中国建设银行股份有限公司 Method and system of applying jump
CN105577619A (en) * 2014-10-15 2016-05-11 腾讯科技(深圳)有限公司 Method and system for logging in client and client
CN105592011A (en) * 2014-10-23 2016-05-18 阿里巴巴集团控股有限公司 Account login method and account login device
CN106209785A (en) * 2016-06-28 2016-12-07 浪潮电子信息产业股份有限公司 A kind of many accounts binding method, Apparatus and system
CN106302357A (en) * 2015-06-07 2017-01-04 盛趣信息技术(上海)有限公司 The ownership altering system of GID and application process thereof
CN106330918A (en) * 2016-08-26 2017-01-11 杭州迪普科技有限公司 Multi-system login method and device
CN106650387A (en) * 2015-11-03 2017-05-10 北大方正集团有限公司 Information processing method, information processing apparatus and terminal
CN107104923A (en) * 2016-02-22 2017-08-29 阿里巴巴集团控股有限公司 A kind of account binding and the method and device of business processing
CN107196898A (en) * 2017-03-14 2017-09-22 阿里巴巴集团控股有限公司 Account logon method, page display method, client and server
CN107528830A (en) * 2017-08-03 2017-12-29 携程旅游信息技术(上海)有限公司 account login method, system and storage medium
CN107688570A (en) * 2016-08-03 2018-02-13 腾讯科技(深圳)有限公司 A kind of page info processing method and system
CN107896216A (en) * 2017-11-24 2018-04-10 广东电网有限责任公司东莞供电局 A kind of key management, data encryption and identity identifying method towards electric power measuring instrument
CN109165498A (en) * 2018-08-01 2019-01-08 成都康赛信息技术有限公司 A kind of point-to-point uniform authentication method of decentralization formula
CN109525604A (en) * 2018-12-29 2019-03-26 乐蜜有限公司 A kind of method and relevant device of account binding
CN110351339A (en) * 2014-08-21 2019-10-18 阿里巴巴集团控股有限公司 Method for processing business, device and server
CN111104651A (en) * 2018-10-29 2020-05-05 中国移动通信集团云南有限公司 Method and device for inter-access among different application systems of multi-post user
CN111353136A (en) * 2020-03-04 2020-06-30 北京奇艺世纪科技有限公司 Method and device for processing operation request
CN113037764A (en) * 2021-03-19 2021-06-25 北京三快在线科技有限公司 System, method and device for executing service
CN109842616B (en) * 2018-12-29 2021-09-17 卓米私人有限公司 Account binding method and device and server
CN113852628A (en) * 2021-09-23 2021-12-28 武汉众邦银行股份有限公司 Decentralized single sign-on method, decentralized single sign-on device and storage medium
CN114301717A (en) * 2022-03-08 2022-04-08 苏州万店掌网络科技有限公司 Single sign-on method, device, equipment and storage medium
WO2022206287A1 (en) * 2021-03-30 2022-10-06 北京有竹居网络技术有限公司 Business service interaction method and apparatus, device, and storage medium

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107294917A (en) * 2016-03-31 2017-10-24 阿里巴巴集团控股有限公司 One kind trusts login method and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101557403A (en) * 2009-05-27 2009-10-14 阿里巴巴集团控股有限公司 Website login method, device and system
CN101697537A (en) * 2009-10-20 2010-04-21 宇龙计算机通信科技(深圳)有限公司 Access method for internet, system and mobile terminal
CN101872365A (en) * 2010-07-02 2010-10-27 苏州阔地网络科技有限公司 Method for realizing one-key login to other website on webpage
CN102238213A (en) * 2010-04-29 2011-11-09 腾讯科技(深圳)有限公司 Internet application login method and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101557403A (en) * 2009-05-27 2009-10-14 阿里巴巴集团控股有限公司 Website login method, device and system
CN101697537A (en) * 2009-10-20 2010-04-21 宇龙计算机通信科技(深圳)有限公司 Access method for internet, system and mobile terminal
CN102238213A (en) * 2010-04-29 2011-11-09 腾讯科技(深圳)有限公司 Internet application login method and system
CN101872365A (en) * 2010-07-02 2010-10-27 苏州阔地网络科技有限公司 Method for realizing one-key login to other website on webpage

Cited By (45)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104660557B (en) * 2013-11-19 2018-11-02 腾讯科技(深圳)有限公司 operation processing method and device
CN104660557A (en) * 2013-11-19 2015-05-27 腾讯科技(深圳)有限公司 Operation processing method and device
CN105024975B (en) * 2014-04-23 2019-02-26 腾讯科技(北京)有限公司 The method, apparatus and system that account logs in
CN105024975A (en) * 2014-04-23 2015-11-04 腾讯科技(北京)有限公司 Account number login method, device and system
CN104168262A (en) * 2014-07-02 2014-11-26 百度在线网络技术(北京)有限公司 Method and server for logging in third party site
CN104092679B (en) * 2014-07-02 2017-10-03 百度在线网络技术(北京)有限公司 Log in the method and server of third party's website
CN104168262B (en) * 2014-07-02 2017-08-18 百度在线网络技术(北京)有限公司 Log in the method and server of third party's website
CN104092679A (en) * 2014-07-02 2014-10-08 百度在线网络技术(北京)有限公司 Method for logging in third-party site and server
CN110351339A (en) * 2014-08-21 2019-10-18 阿里巴巴集团控股有限公司 Method for processing business, device and server
CN110351339B (en) * 2014-08-21 2022-05-27 创新先进技术有限公司 Service processing method and device and server
CN104219251A (en) * 2014-09-26 2014-12-17 北京国双科技有限公司 Website data obtaining method and device
CN105577619B (en) * 2014-10-15 2020-03-03 腾讯科技(深圳)有限公司 Client login method, client and system
CN105577619A (en) * 2014-10-15 2016-05-11 腾讯科技(深圳)有限公司 Method and system for logging in client and client
US11281762B2 (en) 2014-10-23 2022-03-22 Alibaba Group Holding Limited Method and apparatus for facilitating the login of an account
US10313327B2 (en) 2014-10-23 2019-06-04 Alibaba Group Holding Limited Method and apparatus for facilitating the login of an account
CN105592011B (en) * 2014-10-23 2019-12-24 阿里巴巴集团控股有限公司 Account login method and device
CN105592011A (en) * 2014-10-23 2016-05-18 阿里巴巴集团控股有限公司 Account login method and account login device
CN104636909A (en) * 2014-12-30 2015-05-20 北京奇虎科技有限公司 Account identification method and system and electronic equipment
CN106302357A (en) * 2015-06-07 2017-01-04 盛趣信息技术(上海)有限公司 The ownership altering system of GID and application process thereof
CN106650387A (en) * 2015-11-03 2017-05-10 北大方正集团有限公司 Information processing method, information processing apparatus and terminal
CN105553942A (en) * 2015-12-08 2016-05-04 中国建设银行股份有限公司 Method and system of applying jump
CN107104923A (en) * 2016-02-22 2017-08-29 阿里巴巴集团控股有限公司 A kind of account binding and the method and device of business processing
CN106209785A (en) * 2016-06-28 2016-12-07 浪潮电子信息产业股份有限公司 A kind of many accounts binding method, Apparatus and system
CN107688570B (en) * 2016-08-03 2021-04-30 腾讯科技(深圳)有限公司 Webpage information processing method and system
CN107688570A (en) * 2016-08-03 2018-02-13 腾讯科技(深圳)有限公司 A kind of page info processing method and system
CN106330918A (en) * 2016-08-26 2017-01-11 杭州迪普科技有限公司 Multi-system login method and device
CN107196898A (en) * 2017-03-14 2017-09-22 阿里巴巴集团控股有限公司 Account logon method, page display method, client and server
CN107196898B (en) * 2017-03-14 2020-07-03 阿里巴巴集团控股有限公司 Account login method, page display method, client and server
CN107528830A (en) * 2017-08-03 2017-12-29 携程旅游信息技术(上海)有限公司 account login method, system and storage medium
CN107528830B (en) * 2017-08-03 2020-04-10 携程旅游信息技术(上海)有限公司 Account login method, system and storage medium
CN107896216A (en) * 2017-11-24 2018-04-10 广东电网有限责任公司东莞供电局 A kind of key management, data encryption and identity identifying method towards electric power measuring instrument
CN109165498A (en) * 2018-08-01 2019-01-08 成都康赛信息技术有限公司 A kind of point-to-point uniform authentication method of decentralization formula
CN111104651A (en) * 2018-10-29 2020-05-05 中国移动通信集团云南有限公司 Method and device for inter-access among different application systems of multi-post user
CN109525604B (en) * 2018-12-29 2021-04-20 香港乐蜜有限公司 Account number binding method and related equipment
CN109842616B (en) * 2018-12-29 2021-09-17 卓米私人有限公司 Account binding method and device and server
CN109525604A (en) * 2018-12-29 2019-03-26 乐蜜有限公司 A kind of method and relevant device of account binding
CN111353136A (en) * 2020-03-04 2020-06-30 北京奇艺世纪科技有限公司 Method and device for processing operation request
CN111353136B (en) * 2020-03-04 2022-07-12 北京奇艺世纪科技有限公司 Method and device for processing operation request
CN113037764A (en) * 2021-03-19 2021-06-25 北京三快在线科技有限公司 System, method and device for executing service
CN113037764B (en) * 2021-03-19 2022-06-07 北京三快在线科技有限公司 System, method and device for executing service
WO2022206287A1 (en) * 2021-03-30 2022-10-06 北京有竹居网络技术有限公司 Business service interaction method and apparatus, device, and storage medium
CN113852628A (en) * 2021-09-23 2021-12-28 武汉众邦银行股份有限公司 Decentralized single sign-on method, decentralized single sign-on device and storage medium
CN113852628B (en) * 2021-09-23 2023-09-05 武汉众邦银行股份有限公司 Decentralizing single sign-on method, device and storage medium
CN114301717A (en) * 2022-03-08 2022-04-08 苏州万店掌网络科技有限公司 Single sign-on method, device, equipment and storage medium
CN114301717B (en) * 2022-03-08 2022-07-05 苏州万店掌网络科技有限公司 Single sign-on method, device, equipment and storage medium

Also Published As

Publication number Publication date
CN102710759B (en) 2015-04-15

Similar Documents

Publication Publication Date Title
CN102710759B (en) Web server, business logging method and system
CN109347835A (en) Information transferring method, client, server and computer readable storage medium
US10090998B2 (en) Multiple authority data security and access
RU2707715C2 (en) Dynamic secure communication network and protocol
CN103107889B (en) A kind of cloud computing environment data encryption storage system and method that can search for
CN104255009A (en) Systems and methods for segment integrity and authenticity for adaptive streaming
CN104580086A (en) Information transmission method, client side, server and system
CN101964791A (en) Communication authenticating system and method of client and WEB application
CN101964080A (en) Be used for file as method and the system thereof of fragments store on memory element
US20170371625A1 (en) Content delivery method
CN102143131B (en) User logout method and authentication server
CN102469080A (en) Method for pass user to realize safety login application client and system thereof
US20170171166A1 (en) Anti-hotlinking method and electronic device
CN105101183A (en) Method and system for protecting private contents at mobile terminal
CN103546432A (en) Method and system for realizing cross-domain jumping, browser and domain name servers
CN111885133A (en) Data processing method and device based on block chain and computer storage medium
CN103905399A (en) Account registration management method and apparatus
CN102916948A (en) Data safety processing method and device, and terminal
CN111131416A (en) Business service providing method and device, storage medium and electronic device
CN105354451A (en) Access authentication method and system
CN111770072B (en) Method and device for accessing function page through single sign-on
US11095620B1 (en) Secure method, system, and computer program product for exchange of data
Kim et al. Client‐Side Deduplication to Enhance Security and Reduce Communication Costs
CN112199622A (en) Page jump method, system and storage medium
CN102457561A (en) Data access method and equipment adopting same

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant