CN102710759B - Web server, business logging method and system - Google Patents
Web server, business logging method and system Download PDFInfo
- Publication number
- CN102710759B CN102710759B CN201210160605.8A CN201210160605A CN102710759B CN 102710759 B CN102710759 B CN 102710759B CN 201210160605 A CN201210160605 A CN 201210160605A CN 102710759 B CN102710759 B CN 102710759B
- Authority
- CN
- China
- Prior art keywords
- account
- business
- binding
- web server
- request information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 38
- 230000027455 binding Effects 0.000 claims abstract description 148
- 238000009739 binding Methods 0.000 claims abstract description 148
- 238000012545 processing Methods 0.000 claims description 18
- 238000012217 deletion Methods 0.000 claims description 2
- 230000037430 deletion Effects 0.000 claims description 2
- 230000005540 biological transmission Effects 0.000 description 10
- 244000097202 Rathbunia alamosensis Species 0.000 description 6
- 235000009776 Rathbunia alamosensis Nutrition 0.000 description 6
- 230000009191 jumping Effects 0.000 description 6
- 238000010586 diagram Methods 0.000 description 4
- 230000011664 signaling Effects 0.000 description 4
- 241001269238 Data Species 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000011017 operating method Methods 0.000 description 2
- 238000004321 preservation Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005242 forging Methods 0.000 description 1
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The invention discloses a Web server, a business logging method and a business logging system, wherein the business logging method comprises the steps of: obtaining a second logging request information for logging on a second business, wherein the second logging request information comprises a first account number for logging on a first business by a user; and if the second account number bound to the first account number is inquired according to the second logging request information, logging on the second business according to the inquired second account number. According to the logging method disclosed by the invention, the user can achieve one-key logging when the user skips to another business with an account number binding relationship from one business, so the user operation is simplified.
Description
Technical field
The present invention relates to Internet technology, particularly relate to a kind of Web server, business login method and system.
Background technology
Along with the development of the Internet, the Internet is supplied to the information that user is become increasingly abundant.In Internet service application, user often can run into the situation jumping to another business from a service chaining.
In existing internet, applications, different Internet service belongs to different providers, so a lot of Internet service could use after needing user to log in this business, namely log in once at this business login interface when user uses a business first, when it jumps to another new business by link, first new business jumped out a login interface requirement user and logged in, user waits for that after new business login interface inputs its username and password registered in this business background server carries out certification to its information inputted, if certification is passed through, the page of new business is then returned to user, make user normally can use new business.
In above-mentioned business login method, user all need to input when current business redirect signs in new business at every turn its new business log-on message to make the Web server certification again of new business, therefore, register more complicated is loaded down with trivial details, and input log-on message processing ease makes user login information reveal frequently, thus also there is unsafe problems.
Summary of the invention
The invention provides a kind of Web server, business login method and system, between two Internet services, during mutual redirect, realize a key in order to make user and log in.
A kind of method that one aspect of the present invention provides business to log in, comprising:
Obtain the second landing request information of login second business, described second landing request information comprises the first account that user logs in the first business;
If inquire second account of binding with described first account according to described second landing request information, then log in described second business according to described second account inquired.
The present invention provides a kind of Web server on the other hand, comprising:
Acquisition module, for obtaining the second landing request information of login second business, described second landing request information comprises the first account that user logs in the first business;
Processing module, if for inquiring second account of binding with described first account according to described second landing request information, then logs in described second business according to described second account inquired.
Another aspect of the invention provides a kind of business login system, and comprise the first Web server of operation first business and the second Web server of second business of operation, described second Web server is above-mentioned Web server.
As shown from the above technical solution, the present invention has following beneficial effect: by obtaining the second landing request information of login second business, and second account of binding with the first account is mapped to according to the first account in the second landing request information, thus automatically identify that user makes user log in the second business, therefore user is when business redirect, new business can be logged in without the need to inputting the log-on message of user in new business, not only simplify user login operation, the information leakage of user when inputting log-on message can be avoided again, improve the fail safe of user's user profile when using Internet service to carry out business redirect.
Accompanying drawing explanation
Fig. 1 is the flow chart of business login method embodiment one of the present invention;
Fig. 2 is the flow chart of middle account binding embodiment illustrated in fig. 1;
Fig. 3 is the flow chart of business login method embodiment two of the present invention;
Fig. 4 is the mutual signaling diagram in business login method of the present invention between user and two business;
Fig. 5 is the mutual signaling diagram that in the present invention, user removes account binding between two business;
Fig. 6 is the structural representation of Web server embodiment one of the present invention;
Fig. 7 is the structural representation of Web server embodiment two of the present invention;
Fig. 8 is the structural representation of business login system embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is described in detail.
Fig. 1 is the flow chart of business login method embodiment one of the present invention, and as shown in Figure 1, the method for the present embodiment comprises:
Second landing request information of step 101, acquisition login second business, described second landing request information comprises the first account that user logs in the first business.
In Internet service application, a lot of website all provides website links, so that user to be navigate to the business that other websites use other websites.When user jumps to another Internet service from an Internet service clickthrough, the first Web server running the first business will send landing request information to the second Web server of operation second business, exports the second business for user according to this request to make the second Web server.The Internet service that Invention service provider provides for making user security normally use it, its business provided uses after generally all needing user to register login, when user jumps to another business from a business by link, also needs again to log in.The unsafe problems that the troublesome operation again logged in when a business jumps to another business for minimizing user and user profile may cause register, in the present embodiment, the account of user in two business is bound by Web server that run two business, when realizing logging in without the need to carrying out other registers again after user clicks on links, when it signs in new business, because the account of user in new business is bound with the account in former business, so the second Web server of second business of operation receives the first Web server according to after the second landing request information of the clicking operation triggering transmission of user, if the first account logging in the first business according to the user carried in the second landing request information inquires the second account that user logs in the second business, namely think that user logins successfully in the second business, thus the operation that user inputs log-on message again can be removed from, realize a key to log in.
If step 102 inquires second account of binding with described first account according to described second landing request information, then log in described second business according to described second account inquired.
After second Web server receives the second landing request information, resolve the account information of user in the business of source of wherein carrying, search the account information in object business of binding with source business account information to log according to this account information.In the present embodiment, the first account in first business and the second account in the second business are bound, so, when user clicks the link of the second business on the first business page, first Web server triggers transmission second landing request information, and the first account user being logged in the first business is carried in the second landing request information, thus the second Web server carries out after receiving this information inquiring about second account of binding with the first account, the operation inputting log-on message is exempted from when realizing login the second business, both user login operation was simplified, the information leakage of user when inputting log-on message can be avoided again.
In the present embodiment, if user wants that realizing a key between multiple Internet service when a business jumps to another business logs in, then utilize the method for the present embodiment the plurality of Internet service can be bound between two, as user's login account of the first business is bound with the login account of the second business and the login account of the 3rd business respectively, the login account of the second business is also bound with the login account of the 3rd business, when Web page when user is in application the first business clicks the second service chaining, it directly can log in application second business, it also can be clicked the 3rd service chaining and directly log in application the 3rd business, and without the need to inputting the user login information that it logs in object business, thus realize a key login, equally, the first business or the 3rd business is jumped to from the second business, or jump to the first business or the second business from the 3rd business, also can log in by a key.
For realizing redirect between multiple Internet service, which service source chain the Web server of object business should be able to be known when receiving landing request information from fetches, thus determines to inquire about acquisition second account from which binding relationship table.So, first Web server of the first business is when sending logging request to the second Web server of the second business, the first as corresponding in the first business in the present embodiment for service identification current for user service identification origin_A is also needed to be carried in the second landing request information, so that the second Web server inquires second account of binding with described first account in the binding relationship table that described first service identification is corresponding according to this second landing request information, service identification is carried in landing request information, be conducive to object business to carry out quick search and log in speed to corresponding account to improve user.
In actual applications, for improving the fail safe of data communication in business jump procedure, prevent the situation generation of distorting, forging, intercepting and capturing, need between business to determine a wildcard secret by certain way in advance, to carry out digital signature or encryption to data, guarantee the reliability of the confidentiality of data, integrality and Data Source.Therefore the first Web server is after or before the clicking operation obtaining user, safe handling can also be carried out by the data sent in the second landing request information of the second Web server according to demand for security, as carried out digital signature to the first account or to the first account and identification information corresponding to the first business, or by the private data of the first account and user with ciphertext form transmission etc.When carrying out digital signature to the first account, the first digital signature information is also comprised in the second landing request information that first Web server sends, namely the first Web server utilizes the wildcard secret between the first business and the second business to carry out digital signature to the first account be carried in landing request information, namely by wildcard secret, Hash encryption is carried out to the first account account_A of user in the first business and generate digital signature information signature, and digital signature information signature is also carried in the second landing request information, thus the second Web server inquires second account of binding with described first account according to described second landing request information before, also need to verify to confirm the integrality of data and the authenticity of user identity according to the wildcard secret between described first business and described second business and described first digital signature information signature to the first account, data are prevented to be tampered in the transmission.Be specially, after second Web server receives the second landing request information, wildcard secret according to the first account account_A carried and preservation thereof uses identical Hash encryption mechanism to generate a signature value, and the first digital signature information signature carried in this signature value and the second landing request information is compared, if the two is identical, then can guarantee that data are not tampered in the transmission.If also carry the first service identification of the first business in the second landing request information, then its signing messages is utilize wildcard secret to carry out Hash encryption to the first service identification origin_A and the first account account_A to generate the first digital signature information signature carried, and after the second Web server receives solicited message, according to wildcard secret, first service identification origin_A and the first account account_A carries out identical Hash encryption and obtains a signature value, and this signature value and the first digital signature information signature carried are compared, thus confirm that the first account account_A is the user account account_A in the first business.Follow-up second Web server obtains the second account with its binding according to the first authenticated account inquiry.Wherein, wildcard secret can be the encryption key of arranging in advance between the Internet service of two mutual trusts.
When also comprising other private datas of user in landing request information, during the additional data such as Real Name, phone, age as user, can by the first account and private data with ciphertext form transmission to avoid user profile to be stolen in the transmission.During the second landing request information that the first Web server sends, wildcard secret is utilized to be encrypted generation first cipher-text information encryptdata to user's private data to be transmitted and the first account, thus the second Web server inquires second account of binding with described first account according to described second landing request information before, also need to be decrypted described first cipher-text information encryptdata according to the wildcard secret between described first business and described second business to obtain the first account expressly and other private datas.If the first service identification origin_A that first business that also carries in the second landing request information is corresponding, then the second Web server can obtain the wildcard secret of this mark correspondence according to the first service identification origin_A and carry out corresponding decryption oprerations, thus the first account inquiry that follow-up second Web server obtains according to deciphering obtains the second account with its binding.Because the first account and private data transmit with ciphertext form, its wildcard does not transmit in business redirect, so, also can ensure account and the privacy information that can not reveal user in business redirect.
In actual applications, user jumps to the second business from the first business first, or jumps to the first business from the second business first, and the account in two business is not bound, and at this moment two business also need the operation of carrying out the account in the two to carry out binding.
Fig. 2 is the flow chart of middle account binding embodiment illustrated in fig. 1, and as shown in Figure 2, the account bindings in the present embodiment comprises:
Second landing request information of step 201, acquisition login second business, described second landing request information comprises the first account that user logs in the first business.
If step 202 does not inquire second account of binding with described first account according to described second landing request information, then Web page is redirected to the binding page, logs in the second account and second login password of described second business with the user obtaining user's input.
Step 203, according to described second account and second log in key log in described second business, set up in the second business more afterwards and store the binding relationship between described first account and described second account.
Step 204, to operation first business first Web server send binding announcement information, described binding announcement information comprises described second account and described first account, sets up and store the binding relationship between described second account and described first account to make described first Web server.
In the present embodiment, after second Web server receives the second landing request information of login second business, if do not inquire second account of binding with described first account according to described second landing request information, then Web page is redirected to the binding page, the second account and second login password of described second business is logged in the user obtaining user's input, and log in described second business of key login according to described second account and second, set up in the second business more afterwards and store the binding relationship between described first account and described second account.Second Web server is being set up and after storing binding relationship, the first Web server also to operation first business sends binding announcement information, described binding announcement information comprises described second account and described first account, set up to make described first Web server and store the binding relationship between described second account and described first account, thus in the first business and the second business, all store the binding relationship of the first account and the second account, wherein, the second service identification origin_B corresponding to described second business can also be comprised in binding announcement information, so that notify the source of the first Web server notice, described binding relationship is stored in binding relationship table corresponding with described second service identification origin_B in described first Web server after setting up the binding relationship between described second account with described first account.
The digital signature information to the first account and the second account can also be comprised in binding announcement information, or the digital signature information of the second service identification origin_B, the first account and the second account that second business in notice source is corresponding, so that the first Web server is according to setting up in the first business after the checking of this signing messages and preserving the binding relationship between the first account account_A and described second account account_B.All preserve binding relationship in two business after, follow-uply no matter jump to the second business from the first business or jumping to the first business from the second business can both realize a key and log in.Namely no matter subsequent user is sign in the second business by redirect, or after logging in the second business by account and login password mode, the first business is signed in by the link in the second Web page if want, then can direct clickthrough, second Web server can send to the first Web server of operation first business the first landing request information logging in described first business, described first landing request information comprises the second account that user logs in the second business, described first business is logged in after inquiring first account of binding with described second account according to described first landing request information to make described first Web server.The second service identification origin_B that the second business is corresponding can also be comprised, so that first account of binding with described second account inquired about by the first Web server in the binding relationship table that the second service identification origin_B is corresponding in first landing request information.
According to different demands for security, second Web server also can carry out safe handling to the data in the first landing request information, namely can also comprise the second digital signature information verified described second account for described first Web server in the first landing request information; Or also comprise second private data of user in described first landing request information, and described second private data and described second account are the second cipher-text information, described second cipher-text information is used for being decrypted by described first Web server obtaining the second account expressly and the second private data.Wherein the second private data can be identical or different with the first private data, also adopts the method similar with above-mentioned second Web server to carry out digital signature authentication or decipher obtaining cleartext information after the first service server receives the first landing request information.Simultaneously, the present invention preserves the account binding relationship of user in two business in the first business and the second business simultaneously, independent authentication center's server can be set to carry out certification to each business, thus provide the mode of a kind of " decentralization " to realize a key login.
In the present embodiment, the first Web server and the second Web server are set up and in two business of preservation, the binding relationship of account also can adopt other binding methods except the method shown in Fig. 2, as long as enable the account in two business mutually map according to landing request information.Set up as not adopted mutual both method realizations between the first Web server and the second Web server and store binding relationship, but after user logs in the first business and the second business respectively, user and the first Web server carry out alternately to set up in the first Web server and to store the binding relationship of account in two business, and user and the second Web server carry out alternately to set up in the second Web server and to store the binding relationship of account in two business, subsequent user also can realize a key login between two business during redirect.
In the present embodiment, the second Web server is by obtaining the second landing request information of login second business, and second account of binding with the first account is mapped to according to the first account in the second landing request information, thus automatically identify that user makes user log in the second business, therefore user is when business redirect, new business can be logged in without the need to inputting the log-on message of user in new business, not only simplify user login operation, the information leakage of user when inputting log-on message can be avoided again, improve the fail safe of user's user profile when using Internet service to carry out business redirect.
After in two business, user account is bound mutually, user can also utilize a key to remove the binding relationship previously set up.
Fig. 3 is the flow chart of business login method embodiment two of the present invention, as shown in Figure 3, after in the method for the present embodiment, user logs in the second business of built vertical binding relationship, also comprises:
The solution that step 301, acquisition remove binding relationship between described first account and described second account ties up solicited message.
After user's Successful login second business, the solution that user can click binding relationship between the first account on the second business page and the second account ties up key assignments, the two binding relationship that the second Web server is preserved before obtaining and can deleting after this solution ties up solicited message.Wherein user's Successful login second business can be that redirect signs in the second business from the first business, also can be the login undertaken by second account of input user in the second business and login password.
Step 302, to tie up solicited message according to described solution and delete binding relationship between described first account and described second account.
Step 303, to operation first business first Web server send solution tie up announcement information, described solution is tied up announcement information and is comprised described second account, with make described first Web server according to described solution tie up announcement information obtain and described second account first account of binding log in described first business after delete binding relationship between described first account and described second account.
After its binding relationship preserved deleted by second Web server, also solution be tied up message notice to the first Web server, and tie up in announcement information in solution and carry the second account, to make the first Web server according to this announcement information, find first account of binding with the second account, and the binding relationship of the two is deleted, to realize the releasing of account binding relationship in two business.After binding is removed, user between two business during redirect, just needs to input respectively its account in corresponding business and login password.Certainly, two business can also adopt method as shown in Figure 2 above again to bind according to the binding demands of user.Its notice that successfully solution is tied up can also be fed back to the second Web server, to make the second Web server, solution be tied up successful information and inform to user after deleting binding relationship by the first Web server.Equally, tie up in announcement information in solution and also can comprise signing messages, data integrity and authenticity in announcement information are tied up to solution verify so that receive Web server that this solution ties up announcement information.
In the present embodiment, user can by removing by a key account binding relationship set up setting up and preserve in the business page of account binding relationship, namely the second Web server ties up solicited message by the solution obtaining binding relationship between described first account of releasing of user's selection and described second account, delete the binding relationship that it is preserved, and send solution to the first Web server and tie up announcement information and delete with the binding relationship making the first Web server and preserved, thus the solution realizing account in two business is tied up.
When above-mentioned bindings of carrying out only occurs in and uses for the first time, later first business and the second business all directly can log according to the binding relationship preserved, same in the operation at unbind, user also only need trigger once, first business and the second business all can delete the binding relationship of both accounts, thus simple to operate, very easy to use.
Fig. 4 is the mutual signaling diagram in business login method of the present invention between user and two business, as shown in Figure 4, A business is logged in below or B business is described in detail with user, its operating procedure is specially: user is by input its account_A in A business and the login password password_A of correspondence, A business feedback user logins successfully information, and user can normally use A business.When user wants to jump to B business by the B service chaining information on the A business page, it is by clicking this link information, jump to B business, and service identification origin_A, account_A of A business and the signing messages signature of the two are carried at jump information, namely the landing request information described in above-described embodiment is carried at, after B business receives jump information, according to the wildcard between A business and B business and signing messages signature, integrity verification is carried out to origin_A, account_A.If there has been the binding information of user account in A business and B business in B business, B business has returned directly to user the information of logining successfully, thus user can normally use B business, if there is not the binding information of user account in A business and B business in B business, namely A business and B business were not bound, Web page is redirected to the binding page after obtaining jump request by B business, namely user's login interface is jumped out, require that user inputs its account_B in B business and the login password password_B of correspondence, user inputs rear login B business, B business is also bound according to the account_B of above-mentioned jump information by the account_A in jump information and reception, and binding relationship is preserved, and send binding notice to A business, and by origin_B, account_A, account_B and signing messages signature is carried in binding notice, A business carries out signature verification after receiving binding notice, the binding relationship of account_A and account_B is preserved by rear foundation, this process setting up binding relationship is as the operation in dotted line frame in Fig. 4.Operation is afterwards as the operation of binding information having had user account in A business and B business in B business, namely user can normally use B business, and A business can be jumped to by A service chaining one key clicked on the B business page, carry the relevant information of B business, its binding relationship preserved of A service inquiry, can normally use A business after Successful login.
Jump to Tengxun's microblogging for Sina's microblogging to be below described:
1, user uses the account of Sina and login password to log at Sina's microblogging.
2, in the page of Sina, there is the link jumping to Tengxun's microblogging, the service identification origin_sina of link Zhong You Sina and the account information sina_user of user in Sina's microblogging, the information such as name, phone may be had in addition, when carrying out safe handling in advance according to above-mentioned security processing and preserve information or the user clicks on links of safe handling, carry out safe handling again.
3, user clicks this link, jumps to Tengxun, and the safe handling mode that Tengxun can arrange each other according to both sides, to data deciphering, obtains origin_sina and sina_user, or also comprises other information.
If 4, Tengxun judges previously not bind this sina_user, then jump out Tengxun's login interface, require that user uses the login account QQ_user of Tengxun and the login password of correspondence thereof, then bind these two accounts of sina_user and QQ_user.
If 5 bound, Tengxun can be mapped to account QQ_user in Tengxun from sina_user, and user directly logs in Tengxun's microblogging, does not need again to input Tengxun's account.
Fig. 5 is the mutual signaling diagram that in the present invention, user removes account binding between two business, as shown in Figure 5, after logging in A business with user below, start account binding relationship in releasing A business and B business to be described in detail, its operating procedure is specially: user is by input its account_A in A business and the login password password_A of correspondence, A business feedback user logins successfully information, and user can normally use A business.When user wants to remove account binding relationship in A business and B business, the A business page carries out solution that solution ties up with account in B business and tie up the solution that key assignments can realize account in the two by clicking and tie up, namely the binding with B business is removed in request, set up and the binding relationship of account_A and the account_B preserved before deleting when the solution that A business receives user ties up request, solution is tied up notice simultaneously and send to B business, and by origin_A, account_A and signing messages signature is carried at solution and ties up in notice, B business receives after solution ties up notice, to origin_A, after account_A verifies, account_B is obtained according to account_A inquiry, and the binding relationship of the two is deleted, afterwards solution is tied up successful information and feed back to A business, solution is tied up successful information and is fed back to user by A business, the solution of completing user account binding in A business and B business is tied up.
Fig. 6 is the structural representation of Web server embodiment one of the present invention, as shown in Figure 6, the Web server of the present embodiment comprises: acquisition module 40 and processing module 41, wherein, acquisition module 40, for obtaining the second landing request information of login second business, described second landing request information comprises the first account that user logs in the first business; Processing module 41, if for inquiring second account of binding with described first account according to described second landing request information, then logs in described second business according to described second account inquired.
Specifically, after the acquisition module 40 of Web server receives and jumps to the second landing request information of the second business from the first business, processing module 41 inquires about previous the second account of binding with the first account in the second landing request information that is that preserve, if inquire, then log in the second business according to the second account.
In practical application, the first service identification that the first business is corresponding can also be comprised in the second landing request information, in the binding relationship table that described first service identification is corresponding, inquire second account of binding with described first account according to described second landing request information to make processing module 41; And can also comprise for the digital signature information to the Security Data Transmission in the second landing request information or data be transmitted with ciphertext form, thus processing module 41 is verified or decryption processing accordingly according to the safe handling mode of data in the second landing request information.
The present embodiment can be used for the technical scheme performing the embodiment shown in above-mentioned Fig. 1, its operation principle and the technique effect reached similar, concrete detailed content repeats no more.
Fig. 7 is the structural representation of Web server embodiment two of the present invention, as shown in Figure 7, the Web server of the present embodiment is on the embodiment basis described in above-mentioned Fig. 6, further comprise: sending module 42, when not inquiring second account of binding with the first account for the treatment of module 41, the first Web server to operation first business sends binding announcement information, described binding announcement information comprises described second account and described first account, sets up and store the binding relationship between described second account and described first account to make described first Web server.
In the present embodiment, if after acquisition module 40 receives the second landing request information, processing module 41 does not inquire second account of binding with the first account, then Web page is also redirected to the binding page to obtain the second account and the second password that user logs in described second business by processing module 41, and sets up after logging in described second business according to described second account and the second login password and store the binding relationship between described first account and described second account.Simultaneously, the sending module 42 of Web server binds announcement information to make it also set up and to store the binding relationship between the first account and described second account to the first Web server transmission of operation first business, all to set up in two business and after preserving binding relationship, follow-up, when user jumps to another business from a business, just just can log in new business without the need to inputting log-on message, thus realize a key login.
In practical application, sending module 42 in the present embodiment also sends for the first Web server to operation first business the first landing request information logging in described first business, described first landing request information comprises the second account that user logs in the second business, log in described first business after inquiring first account of binding with described second account according to described first landing request information to make described first Web server, namely realize the process jumping to the first business from the second business.
When user needs the account binding relationship preserved in releasing two business, key assignments can be tied up by the solution clicked on arbitrary business page.For the Web server of two business, the acquisition module 40 of its correspondence also ties up solicited message for obtaining the solution removing binding relationship between described first account and described second account, after the solution receiving user operation when acquisition module 40 ties up request, processing module 41 also deletes binding relationship between described first account and described second account for tying up solicited message according to described solution, namely the releasing of the second Web server to two account binding relationships in the second business is realized, sending module 42, also tie up announcement information for sending solution to the first Web server of operation first business, described solution is tied up announcement information and is comprised described second account, the binding relationship between announcement information described first account of deletion and described second account is tied up according to described solution to make described first Web server, even if the first Web server is to the releasing of two account binding relationships in the first business, thus account binding is all removed in two business.
The present embodiment is on the basis reaching above-mentioned technique effect embodiment illustrated in fig. 6, also achieve a key login in the follow-up redirect of user further by setting up binding relationship, and the releasing of binding relationship is also tied up by a key solution and is achieved, not only simplify user operation, and be conducive to the safety of user profile in operation.
Fig. 8 is the structural representation of business login system embodiment of the present invention, as shown in Figure 8, the system of the present embodiment comprises: run the first Web server 50 of the first business and the second Web server 51 of second business of operation, described second Web server is above-mentioned Fig. 6 or Web server embodiment illustrated in fig. 7.In practical application, user has two kinds of modes when logging in the first business, a kind of is directly at its account in this business of login page data and login password, another kind is that redirect logs in from other business having account to bind with it, in the business login system of the present embodiment, the user account of the business of two Web server operations has binding relationship, when user jumps to the second business from the first business, or when jumping to the first business from the second business, the Web server of current business only need to treating the Web server transmission logging request that the object business of redirect is corresponding, and the user account of current business on carrying in logging request, directly can log according to the account inquired when the Web server of object business receives this logging request, thus without the need to allowing user again input log-on message, not only simplify user operation, also help the safety of user profile.
Multiple Web server can also be comprised in the business login system of the present embodiment, the Web page of multiple Internet service safeguarded by the plurality of Web server, wherein in the business run of any two Web servers, user account has binding relationship, when jumping to another business from a business, also can realize a key and logging in.
One of ordinary skill in the art will appreciate that: all or part of step realizing said method embodiment can have been come by the hardware that program command is relevant, aforesaid program can be stored in a computer read/write memory medium, this program, when performing, performs the step comprising said method embodiment; And aforesaid storage medium comprises: ROM, RAM, magnetic disc or CD etc. various can be program code stored medium.
It is last it is noted that above embodiment is only in order to illustrate technical scheme of the present invention but not to be limited, although with reference to preferred embodiment to invention has been detailed description, those of ordinary skill in the art is to be understood that: it still can be modified to technical scheme of the present invention or equivalent replacement, and these are revised or be equal to the spirit and scope that replacement also can not make amended technical scheme disengaging technical solution of the present invention.
Claims (15)
1. a method for business login, is characterized in that, comprising:
Obtain the second landing request information of login second business, described second landing request information comprises the first account that user logs in the first business;
If inquire second account of binding with described first account according to described second landing request information, then log in described second business according to described second account inquired;
If do not inquire second account of binding with described first account according to described second landing request information, then Web page is redirected to the binding page to obtain the second account and the second login password that user logs in described second business, and sets up after logging in described second business according to described second account and the second login password and store the binding relationship between described first account and described second account;
The first Web server to operation first business sends binding announcement information, described binding announcement information comprises described second account and described first account, sets up and store the binding relationship between described second account and described first account to make described first Web server.
2. method according to claim 1, is characterized in that, also comprises the first service identification that the first business is corresponding in described second landing request information,
Correspondingly, inquire second account of binding with described first account according to described second landing request information, be specially:
In the binding relationship table that described first service identification is corresponding, second account of binding with described first account is inquired according to described second landing request information.
3. method according to claim 1 and 2, is characterized in that, also comprises the first digital signature information in described second landing request information,
Correspondingly, before inquiring second account of binding with described first account according to described second landing request information, also comprise:
According to the wildcard between described first business and described second business and described first digital signature information, described first account is verified.
4. method according to claim 1 and 2, is characterized in that, also comprises first private data of user in described second landing request information, and described first private data and described first account are the first cipher-text information,
Correspondingly, before inquiring second account of binding with described first account according to described second landing request information, also comprise:
According to the wildcard between described first business and described second business, described first cipher-text information is decrypted to the first account and the first private data that obtain plaintext.
5. method according to claim 1, is characterized in that, after logging in described second business or logging in described second business according to described second account and the second login password, also comprises according to described second account inquired:
The first Web server to operation first business sends the first landing request information logging in described first business, described first landing request information comprises the second account that user logs in the second business, logs in described first business after inquiring first account of binding with described second account to make described first Web server according to described first landing request information.
6. method according to claim 5, is characterized in that, also comprises the second digital signature information verified described second account for described first Web server in described first landing request information; Or
Second private data of user is also comprised in described first landing request information, and described second private data and described second account are the second cipher-text information, described second cipher-text information is used for being decrypted by described first Web server obtaining the second account expressly and the second private data.
7. method according to claim 5, it is characterized in that, also comprise the second service identification that the second business is corresponding in described first landing request information, in the binding relationship table that described second service identification is corresponding, inquire about first account of binding with described second account to make described first Web server.
8. method according to claim 1, is characterized in that, after logging in described second business, also comprises:
Obtain the solution removing binding relationship between described first account and described second account and tie up solicited message;
Tie up solicited message according to described solution and delete binding relationship between described first account and described second account;
The first Web server to operation first business sends solution and ties up announcement information, described solution is tied up announcement information and is comprised described second account, with make described first Web server according to described solution tie up announcement information obtain and described second account first account of binding log in described first business after delete binding relationship between described first account and described second account.
9. a Web server, is characterized in that, comprising:
Acquisition module, for obtaining the second landing request information of login second business, described second landing request information comprises the first account that user logs in the first business;
Processing module, if for inquiring second account of binding with described first account according to described second landing request information, then logs in described second business according to described second account inquired;
Described processing module, if also for not inquiring second account of binding with described first account according to described second landing request information, then Web page is redirected to the binding page to obtain the second account and the second login password that user logs in described second business, and sets up after logging in described second business according to described second account and the second login password and store the binding relationship between described first account and described second account;
Described server also comprises:
Sending module, for sending binding announcement information to the first Web server of operation first business, described binding announcement information comprises described second account and described first account, sets up and store the binding relationship between described second account and described first account to make described first Web server.
10. server according to claim 9, is characterized in that, also comprises the first service identification that the first business is corresponding in described second landing request information,
Described processing module, specifically for inquiring second account of binding with described first account in the binding relationship table that described first service identification is corresponding according to described second landing request information.
11. servers according to claim 9 or 10, is characterized in that, also comprise the first digital signature information in described second landing request information,
Described processing module, also for verifying described first account according to the wildcard between described first business and described second business and described first digital signature information.
12. servers according to claim 9 or 10, it is characterized in that, also comprise first private data of user in described second landing request information, and described first private data and described first account are the first cipher-text information,
Described processing module, also for being decrypted the first account and the first private data that obtain plaintext to described first cipher-text information according to the wildcard between described first business and described second business.
13. servers according to claim 9, it is characterized in that, described sending module also sends for the first Web server to operation first business the first landing request information logging in described first business, described first landing request information comprises the second account that user logs in the second business, logs in described first business after inquiring first account of binding with described second account to make described first Web server according to described first landing request information.
14. servers according to claim 9, is characterized in that, described acquisition module, also tie up solicited message for obtaining the solution removing binding relationship between described first account and described second account;
Described processing module, also deletes binding relationship between described first account and described second account for tying up solicited message according to described solution;
Described sending module, also tie up announcement information for sending solution to the first Web server of operation first business, described solution is tied up announcement information and is comprised described second account, ties up the binding relationship between announcement information described first account of deletion and described second account to make described first Web server according to described solution.
15. 1 kinds of business login systems, comprise the first Web server of operation first business and the second Web server of second business of operation, it is characterized in that, described second Web server is the Web server such as according to any one of claim 9 ~ 14.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210160605.8A CN102710759B (en) | 2012-05-22 | 2012-05-22 | Web server, business logging method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210160605.8A CN102710759B (en) | 2012-05-22 | 2012-05-22 | Web server, business logging method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102710759A CN102710759A (en) | 2012-10-03 |
| CN102710759B true CN102710759B (en) | 2015-04-15 |
Family
ID=46903305
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210160605.8A Active CN102710759B (en) | 2012-05-22 | 2012-05-22 | Web server, business logging method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102710759B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107294917A (en) * | 2016-03-31 | 2017-10-24 | 阿里巴巴集团控股有限公司 | One kind trusts login method and device |
Families Citing this family (28)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104660557B (en) * | 2013-11-19 | 2018-11-02 | 腾讯科技(深圳)有限公司 | operation processing method and device |
| CN105024975B (en) * | 2014-04-23 | 2019-02-26 | 腾讯科技(北京)有限公司 | The method, apparatus and system that account logs in |
| CN104092679B (en) * | 2014-07-02 | 2017-10-03 | 百度在线网络技术(北京)有限公司 | Log in the method and server of third party's website |
| CN104168262B (en) * | 2014-07-02 | 2017-08-18 | 百度在线网络技术(北京)有限公司 | Log in the method and server of third party's website |
| CN110351339B (en) * | 2014-08-21 | 2022-05-27 | 创新先进技术有限公司 | Service processing method and device and server |
| CN104219251B (en) * | 2014-09-26 | 2018-02-23 | 北京国双科技有限公司 | The method and apparatus for obtaining website data |
| CN105577619B (en) * | 2014-10-15 | 2020-03-03 | 腾讯科技(深圳)有限公司 | Client login method, client and system |
| CN105592011B (en) | 2014-10-23 | 2019-12-24 | 阿里巴巴集团控股有限公司 | Account login method and device |
| CN104636909A (en) * | 2014-12-30 | 2015-05-20 | 北京奇虎科技有限公司 | Account identification method and system and electronic equipment |
| CN106302357B (en) * | 2015-06-07 | 2021-02-12 | 盛趣信息技术(上海)有限公司 | Attribution changing system of game account and application method thereof |
| CN106650387A (en) * | 2015-11-03 | 2017-05-10 | 北大方正集团有限公司 | Information processing method, information processing apparatus and terminal |
| CN105553942B (en) * | 2015-12-08 | 2019-07-02 | 中国建设银行股份有限公司 | Using the method and system jumped |
| CN107104923B (en) * | 2016-02-22 | 2020-09-08 | 阿里巴巴集团控股有限公司 | Account binding and service processing method and device |
| CN106209785A (en) * | 2016-06-28 | 2016-12-07 | 浪潮电子信息产业股份有限公司 | A kind of many accounts binding method, Apparatus and system |
| CN107688570B (en) * | 2016-08-03 | 2021-04-30 | 腾讯科技(深圳)有限公司 | Webpage information processing method and system |
| CN106330918A (en) * | 2016-08-26 | 2017-01-11 | 杭州迪普科技有限公司 | Multi-system login method and device |
| CN107196898B (en) * | 2017-03-14 | 2020-07-03 | 阿里巴巴集团控股有限公司 | Account login method, page display method, client and server |
| CN107528830B (en) * | 2017-08-03 | 2020-04-10 | 携程旅游信息技术(上海)有限公司 | Account login method, system and storage medium |
| CN107896216B (en) * | 2017-11-24 | 2019-11-26 | 广东电网有限责任公司东莞供电局 | A kind of key management, data encryption and the identity identifying method of electric power measuring instrument |
| CN109165498A (en) * | 2018-08-01 | 2019-01-08 | 成都康赛信息技术有限公司 | A kind of point-to-point uniform authentication method of decentralization formula |
| CN111104651A (en) * | 2018-10-29 | 2020-05-05 | 中国移动通信集团云南有限公司 | Method and device for inter-access among different application systems of multi-post user |
| CN109842616B (en) * | 2018-12-29 | 2021-09-17 | 卓米私人有限公司 | Account binding method and device and server |
| CN109525604B (en) * | 2018-12-29 | 2021-04-20 | 香港乐蜜有限公司 | Account number binding method and related equipment |
| CN111353136B (en) * | 2020-03-04 | 2022-07-12 | 北京奇艺世纪科技有限公司 | Method and device for processing operation request |
| CN113037764B (en) * | 2021-03-19 | 2022-06-07 | 北京三快在线科技有限公司 | System, method and device for executing service |
| CN113079085B (en) * | 2021-03-30 | 2023-01-10 | 北京有竹居网络技术有限公司 | Business service interaction method, business service interaction device, business service interaction equipment and storage medium |
| CN113852628B (en) * | 2021-09-23 | 2023-09-05 | 武汉众邦银行股份有限公司 | Decentralizing single sign-on method, device and storage medium |
| CN114301717B (en) * | 2022-03-08 | 2022-07-05 | 苏州万店掌网络科技有限公司 | Single sign-on method, device, equipment and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101557403A (en) * | 2009-05-27 | 2009-10-14 | 阿里巴巴集团控股有限公司 | Website login method, device and system |
| CN101697537A (en) * | 2009-10-20 | 2010-04-21 | 宇龙计算机通信科技(深圳)有限公司 | Access method for internet, system and mobile terminal |
| CN101872365A (en) * | 2010-07-02 | 2010-10-27 | 苏州阔地网络科技有限公司 | Method for realizing one-key login to other website on webpage |
| CN102238213A (en) * | 2010-04-29 | 2011-11-09 | 腾讯科技(深圳)有限公司 | Internet application login method and system |
-
2012
- 2012-05-22 CN CN201210160605.8A patent/CN102710759B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101557403A (en) * | 2009-05-27 | 2009-10-14 | 阿里巴巴集团控股有限公司 | Website login method, device and system |
| CN101697537A (en) * | 2009-10-20 | 2010-04-21 | 宇龙计算机通信科技(深圳)有限公司 | Access method for internet, system and mobile terminal |
| CN102238213A (en) * | 2010-04-29 | 2011-11-09 | 腾讯科技(深圳)有限公司 | Internet application login method and system |
| CN101872365A (en) * | 2010-07-02 | 2010-10-27 | 苏州阔地网络科技有限公司 | Method for realizing one-key login to other website on webpage |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107294917A (en) * | 2016-03-31 | 2017-10-24 | 阿里巴巴集团控股有限公司 | One kind trusts login method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102710759A (en) | 2012-10-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102710759B (en) | Web server, business logging method and system | |
| CN109347835A (en) | Information transferring method, client, server and computer readable storage medium | |
| CN102651739B (en) | Login validation method, system and IM server | |
| WO2016173199A1 (en) | Mobile application single sign-on method and device | |
| CN103905399B (en) | A kind of method and apparatus that account number logs in management | |
| CN102143131B (en) | User logout method and authentication server | |
| CN103237305B (en) | Password protection method for smart card on facing moving terminal | |
| CN109472130A (en) | Linux cipher management method, middle control machine, readable storage medium storing program for executing | |
| CN102469080A (en) | Method for pass user to realize safety login application client and system thereof | |
| CN103326859B (en) | System and method for safety certification based on catalog | |
| US10708326B2 (en) | Secure media casting bypassing mobile devices | |
| CN111131416A (en) | Business service providing method and device, storage medium and electronic device | |
| CN107920081A (en) | Login authentication method and device | |
| CN102209046A (en) | Network resource integration system and method | |
| CN104935435A (en) | Login methods, terminal and application server | |
| CN102833276A (en) | Webpage login system based on token | |
| CN111949958B (en) | Authorization authentication method and device in Oauth protocol | |
| CN114244508A (en) | Data encryption method, device, equipment and storage medium | |
| EP4274192A1 (en) | Access control method and apparatus, and network-side device, terminal and blockchain node | |
| CN105306435B (en) | A kind of binding method and system of information system account and wechat account | |
| CN104994498A (en) | Method and system for interaction between terminal application and mobile phone card application | |
| CN102006567B (en) | Push-message processing method and system and equipment for implementing push-message processing method | |
| CN112825521A (en) | Trusted identity management method, system, equipment and storage medium for block chain application | |
| CN112491777B (en) | Cross-block chain identity authentication method, computer equipment and readable storage medium | |
| CN113014556A (en) | Bank-enterprise communication system, communication method and electronic terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |