CN103001973B - Log-in control method based on Quick Response Code, system and device - Google Patents

Log-in control method based on Quick Response Code, system and device Download PDF

Info

Publication number
CN103001973B
CN103001973B CN201210576567.4A CN201210576567A CN103001973B CN 103001973 B CN103001973 B CN 103001973B CN 201210576567 A CN201210576567 A CN 201210576567A CN 103001973 B CN103001973 B CN 103001973B
Authority
CN
China
Prior art keywords
client
request
quick response
cloud server
response code
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201210576567.4A
Other languages
Chinese (zh)
Other versions
CN103001973A (en
Inventor
朱建庭
武林
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Baidu Netcom Science and Technology Co Ltd
Original Assignee
Beijing Baidu Netcom Science and Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Baidu Netcom Science and Technology Co Ltd filed Critical Beijing Baidu Netcom Science and Technology Co Ltd
Priority to CN201210576567.4A priority Critical patent/CN103001973B/en
Publication of CN103001973A publication Critical patent/CN103001973A/en
Application granted granted Critical
Publication of CN103001973B publication Critical patent/CN103001973B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Information Transfer Between Computers (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention proposes a kind of log-in control method based on Quick Response Code, including: the cloud server of Internet Service Provider receives the logging request that user is sent by the first client;Cloud server is logging request allocation identification string, and generates Quick Response Code;Quick Response Code is sent to the first client and shows by cloud server;Cloud server receives the second client and shoots and resolve that Quick Response Code rear address information in Quick Response Code sends acts on behalf of log on request;Cloud server carries out authentication according to acting on behalf of log on request to user;Cloud server receives the polling request of the first client or long connection request, and returns subscriber sign-in conversation information by the rear of authentication to the first client user.Present invention, avoiding user to log in and input the inconvenience brought in a large number, improve the security of account, running cost is low, and Consumer's Experience is good.The invention also discloses a kind of log-in control method based on Quick Response Code and a kind of cloud server.

Description

Log-in control method based on Quick Response Code, system and device
Technical field
The present invention relates to mobile interchange technical field, particularly to a kind of login controlling party based on Quick Response Code Method, system and device.
Background technology
Universal and the development of internet, brings substantial amounts of Internet Service Provider.A lot of Internet Service Providers Both providing login feature, some service just has permission acquisition after needing user to log in.
The basic implementation method of the logging in system by user that existing network service provides is as follows:
Step S1: when user asks to log in, by the FTP client FTP of network service, as browser end webpage to User shows a login interface.
Step S2: user inputs a user account information on login interface, including such as user name, mailbox One or more of address, account or cell-phone number, and the user cipher of correspondence, identifying code etc., some clothes Business provider is in order to add strong security, in addition it is also necessary to the identifying code of user's input system stochastic generation again, user is complete After becoming input, request logs in.
Step S3: content that user is inputted in login interface by the FTP client FTP of network service and interface In some other information of carrying be sent to the server end of network services and carry out login authentication.
Step S4: after received server-side to the logging request of user, the user account, close that user is provided The validity of the information such as code and identifying code is authenticated.
Step S5: if certification is passed through, then server end is that this user sets up a login sessions information and goes forward side by side Row record, returns to FTP client FTP by necessary session information simultaneously and caches.Afterwards, user passes through FTP client FTP all can carry this session information in user's request that server end is initiated, in order to server end Currently logged on user's identity is identified.If certification not over, then directly return to FTP client FTP Error message.
As described above, the logging in system by user of existing most of all-network services log in needs more User inputs.User at least inputs a user account and password in each login process, and some website is also Require user's input validation code.Wherein, a lot of network services in order to ensure the security of the information of user account, Need one relative complex password of user setup to ensure enough Cipher Strength, therefore user remember account, The cost of password is the highest, also can often occur forgetting the situation of account, password.And identifying code is typically by being System stochastic generation, Consumer's Experience is the most poor.Particularly with panel computer etc. without the mobile device of peripheral hardware keyboard, The substantial amounts of user of inputing to brings much inconvenience.
It addition, once user is strayed into fishing website and logs in, or equipment is infected by trojan horse, then input Account, password exist for the risk that is stolen, security also ratio is relatively low, sets especially for non-individual Standby, for network bar users, user information safety is the lowest.
Summary of the invention
It is contemplated that at least solve one of technical problem present in prior art.
To this end, it is an object of the present invention to propose a kind of log-in control method based on Quick Response Code.Method Avoid and user's landfall process inputs inconvenience in a large number that bring, improve the security of user account, operation Low cost, Consumer's Experience is good.
Second object of the present invention is to propose a kind of login control system based on Quick Response Code.
Third object of the present invention is to propose a kind of cloud server.
For reaching above-mentioned purpose, the embodiment of first aspect present invention proposes a kind of based on Quick Response Code step on Record control method, comprises the following steps: the cloud server of Internet Service Provider receives user by the The logging request that one client sends;Described cloud server is described logging request allocation identification string, and Address information according to described identification string and described cloud server generates Quick Response Code;Described cloud server Described Quick Response Code is sent to described first client and is shown by described first client;Described It is described that cloud server receives that the second client shoots and resolve in the backward Quick Response Code of described Quick Response Code What address information sent acts on behalf of log on request, and wherein, described log on request of acting on behalf of includes the body of described user Part information;Described cloud server carries out authentication according to described log on request of acting on behalf of to described user; Described cloud server receives the polling request of described first client or long connection request, and in described use Family returns subscriber sign-in conversation information by backward described first client of authentication.
Log-in control method based on Quick Response Code according to embodiments of the present invention, the first client sends and logs in After request, the two-dimension code image that display cloud server sends, the second client resolve the first client Two-dimension code image and send agent logs request, cloud server authentication success after the first client Termination receives subscriber sign-in conversation information.The function of abundant second client of this method and resources advantage, no Need user to log in every time and all input associated user's name, password, reduce the running cost of the login of user, carry Risen Consumer's Experience, simple also reduce efficiently simultaneously go fishing, wooden horse snatches password equivalent risk, guarantee User account security.
In one embodiment of the invention, described first client after receiving described Quick Response Code, Periodically sending polling request or long connection request to described cloud server, wherein, described poll please Ask or long connection request includes described identification string.
In one embodiment of the invention, described log on request of acting on behalf of includes described identification string.
In one embodiment of the invention, also include: described agency is logged in by described cloud server please Identification string and identity information in asking are authenticated, if described identification string or identity information are invalid, then and institute State cloud server and return error message to described second client.
In one embodiment of the invention, also include: described cloud server judge whether storage have with Described identification string is the data item of index, wherein, comprises subscriber sign-in conversation information in described data item; If it is determined that storage has the data item being index with described identification string, then return mistake to described second client False information;If it is determined that do not store the data item being index with described identification string, and according to described agency Log on request judges that described user by certification, then sets up corresponding data item with described identification string for index, And login successfully information to described second client return.
In one embodiment of the invention, subscriber sign-in conversation information is being returned to described first client Afterwards, also include: by the identification string in described data item and corresponding subscriber sign-in conversation information deletion.
In one embodiment of the invention, described second client is mobile terminal.
The embodiment of second aspect present invention proposes a kind of login control system based on Quick Response Code, including First client, the second client and cloud server.Wherein, described first client is for described Cloud server sends logging request, and receives the Quick Response Code of described cloud server transmission and show; Described cloud server is for for described logging request allocation identification string, and according to described identification string and described The address information of cloud server generates Quick Response Code, and sends described Quick Response Code to described first client, And according to the log on request of acting on behalf of of described second client transmission, described user is carried out authentication, connect Receive the polling request of described first client or long connection request, and described user by authentication it Backward described first client returns subscriber sign-in conversation information;Second client is for described first visitor The Quick Response Code that family end shows shoots, and to resolve described Quick Response Code rear in Quick Response Code described in Address information sends and acts on behalf of log on request, and wherein, described log on request of acting on behalf of includes the identity of described user Information.
Login control system based on Quick Response Code according to embodiments of the present invention, the first client sends and logs in After request, the two-dimension code image that display cloud server sends, the second client resolve the first client Two-dimension code image and send agent logs request, cloud server authentication success after the first client Termination receives subscriber sign-in conversation information.The function of abundant second client of native system and resources advantage, no Need user to log in every time and all input associated user's name, password, reduce the running cost of the login of user, carry Risen Consumer's Experience, simple also reduce efficiently simultaneously go fishing, wooden horse snatches password equivalent risk, guarantee User account security.
In one embodiment of the invention, described first client after receiving described Quick Response Code, Periodically sending polling request or long connection request to described cloud server, wherein, described poll please Ask or long connection request includes described identification string.
In one embodiment of the invention, described log on request of acting on behalf of includes described identification string.
In one embodiment of the invention, described cloud server is additionally operable to act on behalf of log on request to described In identification string and identity information be authenticated, and when described identification string or identity information are invalid to described Second client returns error message.
In one embodiment of the invention, described cloud server, be additionally operable to judge whether storage have with Described identification string is the data item of index, wherein, comprises subscriber sign-in conversation information in described data item, And judge storage have with described identification string be index data item time, to described second client return Error message, and judging not store with the data item that described identification string is index, and according to described generation When reason log on request judges described user by certification, set up corresponding data with described identification string for index , and login successfully information to described second client return.
In one embodiment of the invention, described cloud server, it is additionally operable to described first client After end returns subscriber sign-in conversation information, the identification string in described data item and corresponding user are logged in Session information is deleted.
In one embodiment of the invention, described second client is mobile terminal.
The embodiment of third aspect present invention proposes a kind of cloud server, including the first receiver module, Two-dimensional code generation module, the first sending module, the second receiver module, authentication module, the 3rd receiver module With the second sending module.
Wherein, the first receiver module is for receiving the logging request that user is sent by the first client;Two Dimension code generation module is for for described logging request allocation identification string, and according to described identification string and described cloud The address information of end server generates Quick Response Code;First sending module is for sending described Quick Response Code to institute State the first client and shown by described first client;Second receiver module is used for reception second Client shoots and resolves the agency that the rear described address information in Quick Response Code of described Quick Response Code sends Log on request, wherein, described log on request of acting on behalf of includes the identity information of described user;Authentication module is used According to described log on request of acting on behalf of, described user being carried out authentication;3rd receiver module is used for connecing Receive the polling request of described first client or long connection request;Second sending module is for described user Subscriber sign-in conversation information is returned by backward described first client of authentication.
Cloud server according to embodiments of the present invention receives the first client and sends logging request, and processes The agent logs request that second client sends, the rear of authentication success sends user to the first client Login sessions information.Take full advantage of function and the resources advantage of the second client, it is not necessary to user steps on every time Record all inputs associated user's name, password, reduces the running cost of the login of user, improves Consumer's Experience, Simple also reduce efficiently simultaneously gone fishing, wooden horse snatches password equivalent risk, has ensured user account safety Property.
In one embodiment of the invention, described polling request or long connection request include described mark Know string.
In one embodiment of the invention, described log on request of acting on behalf of includes described identification string.
In one embodiment of the invention, described authentication module is to the described mark acted on behalf of in log on request String and identity information are authenticated, if described identification string or identity information are invalid, the most described second sends Module is additionally operable to return error message to described second client.
In one embodiment of the invention, described authentication module is used for judging whether that storage has with described mark Know the string data item for index, wherein, described data item comprises subscriber sign-in conversation information, and sentencing When disconnected storage has with data item that described identification string is index, by described second sending module to described the Two clients return error message.
In one embodiment of the invention, also include: data item maintenance module is not for storing in judgement There is the data item being index with described identification string, and judge that described user is led to according to described log on request of acting on behalf of When crossing certification, set up corresponding data item with described identification string for index.
In one embodiment of the invention, described data item maintenance module is additionally operable to described first visitor After family end returns subscriber sign-in conversation information, the identification string in described data item and corresponding user are stepped on Record session information is deleted.
In one embodiment of the invention, described second client is mobile terminal.
The additional aspect of the present invention and advantage will part be given in the following description, and part will be retouched from following Become obvious in stating, or recognized by the practice of the present invention.
Accompanying drawing explanation
Above-mentioned and/or the additional aspect of the present invention and advantage are from combining the accompanying drawings below description to embodiment Will be apparent from easy to understand, wherein:
Fig. 1 is the flow chart of log-in control method based on Quick Response Code according to embodiments of the present invention;
Fig. 2 is the flow chart that the first customer end A is mutual with cloud server;
Fig. 3 is the flow chart that the second customer end B is mutual with cloud server;
Fig. 4 is the structural representation of login control system based on Quick Response Code according to embodiments of the present invention; With
Fig. 5 is the structural representation of cloud server according to embodiments of the present invention.
Detailed description of the invention
Embodiments of the invention are described below in detail, and the example of described embodiment is shown in the drawings, wherein certainly Begin to same or similar label eventually represent same or similar element or there is the element of same or like function. The embodiment described below with reference to accompanying drawing is exemplary, is only used for explaining the present invention, and is not understood that For limitation of the present invention.
Below with reference to Fig. 1, log-in control method based on Quick Response Code according to embodiments of the present invention, bag are described Include following steps:
Step S110: the cloud server of Internet Service Provider is received user and sent out by the first client The logging request sent.
Step S120: cloud server is logging request allocation identification string, and according to identification string and high in the clouds The address information of server generates Quick Response Code.
Step S130: Quick Response Code is sent to the first client and by the first client by cloud server Show.
Wherein, in one embodiment of the invention, the first client is after receiving Quick Response Code, all Phase property ground sends polling request or long connection request, wherein, polling request or long connection to cloud server Request includes identification string.
Step S140: cloud server receives the second client and shoots and resolve the backward two dimension of Quick Response Code What the address information in Ma sent acts on behalf of log on request, wherein, acts on behalf of log on request and includes the identity of user Information.
Wherein, act on behalf of log on request and can also include identification string.Second client is mobile terminal.
Step S150: cloud server carries out authentication according to acting on behalf of log on request to user.
In one embodiment of the invention, also include: the cloud server mark to acting on behalf of in log on request Knowing string and identity information is authenticated, if identification string or identity information are invalid, then cloud server is to the Two clients return error message.
In one embodiment of the invention, also include:
Step S151: the data item that it is index with identification string that cloud server judges whether to store, its In, data item comprises subscriber sign-in conversation information.
Step S152: if it is determined that storage has the data item being index with identification string, then to the second client End returns error message.
Step S153: if it is determined that do not store the data item being index with identification string, and according to agency Log on request judges that user by certification, is then that corresponding data item set up in index with identification string, and to the Two clients return and login successfully information.
Step S160: cloud server receives the polling request of the first client or long connection request, and Subscriber sign-in conversation information is returned by the rear of authentication to the first client user.
In one embodiment of the invention, after returning subscriber sign-in conversation information to the first client, Also include: by the identification string in data item and corresponding subscriber sign-in conversation information deletion.
Hand over cloud server with the first customer end A described in Fig. 2 and Fig. 3, the second customer end B below As a example by realizing mutually logging in and controlling, this method is explained, it is to be understood that following only go out alternately In example purpose, embodiments of the invention are not limited to this.Wherein log in by the first client in Fig. 2, Fig. 3 End A and the second customer end B have been worked in coordination with, and carry out realizing step below as a example by login process of user Introduce:
Step S210: user is carried with the identity access network services of A non logged-on user by the first customer end A For certain network service of business, the such as mhkc of certain website.Wherein A can be the equipment such as PC or notebook On certain client modules.
Step S220: user sends logging request by clicking on respective interface element to cloud server.As Click on login link or button sends logging request to cloud server.
Step S230: the cloud server of Internet Service Provider generates globally unique identification string RS, with And comprise the Quick Response Code QR of RS information.
Step S240: the data such as RS and QR are back to the first customer end A by cloud server.
Step S250: the first customer end A receives two-dimension code image, and carries out on user's login interface Display.
Step S260: the first customer end A will comprise the request of the data such as RS by poll or long connection simultaneously Technology, periodically sends to service end.By request return as a result, it is possible to determine whether user's base Logged in this Quick Response Code: if the information that cloud server returns shows that useful family has logged on, then Enter step S2310;Otherwise, the first customer end A is retained on user's login interface.
Step S270: user opens the login agent application program in the second customer end B.Wherein, log in Agent application has camera function and Quick Response Code scan recognition function.Second customer end B can be mobile Terminal.
Step S280: login agent application program scans the Quick Response Code in the first customer end A by camera Picture.
Step S290: resolved the RS letter obtained corresponding to this two-dimension code image by login agent application program Breath.
Step S2100: determine that user logs in the clothes accessed in the first customer end A with which kind of user identity Business.Wherein, user identity can be by user interactive or data cached the obtaining of reading service.As with Family interactive operation can be that user selects from the multiple user accounts being saved in locally stored system, Or receive account and the password of user's input.
Step S2110: send the agent logs including the data such as RS, subscriber identity information to cloud server Process request.Wherein, subscriber identity information includes that the session such as user name, password, or logged-in user is believed Breath.
Step S2120: cloud server receives agent logs request, is authenticated user identity.
Step S2130: cloud server judges the validity of RS and subscriber identity information.
Step S2140: if wherein any one data be judged invalid, then cloud server to second visitor The login agent application program of family end B returns error message.
Step S2150: if all effective, cloud server has existed with RS for index the most in judging, The key-value pair data item being value with subscriber sign-in conversation information (SESSION information).
Step S2160: if it is present cloud server returns error message to login agent application program.
Step S2170: receive cloud server if logged on agent application and return error message, Login agent application program carries out miscue, and guides user to re-start login.
Step S2180: if it does not exist, then User Status is set to logging status by cloud server.
Step S2190: create a login sessions comprising this subscriber identity information, preserves < RS, login sessions Information > key-value pair.
Step S2200: return to the second customer end B and login successfully information.
Step S2210: login agent application program receives cloud server return and logins successfully information.
Step S2220: cloud server receives the request comprising RS that the first customer end A sends.And Execution following steps:
Step S2230: judge RS validity.
Step S2240: if invalid, then cloud server returns error message.
Whether step S2250: if RS is effective, then judge to exist in system with RS for index, with Family login sessions information is the key-value pair of value.
Step S2260: if it does not exist, then return error message.
Step S2270: if key-value pair exists, then return subscriber sign-in conversation information to the first customer end A.
Step S2280: meanwhile, cloud server can select after returning login sessions information, by RS Data and<RS, subscriber sign-in conversation information>key-value pair cancel.Thus avoid the session information of user by other people Obtain, it is ensured that the security of user data.
Step S2290: the first customer end A receives the information that service end returns.
Step S2300: if receive is error message, then again initiating network to cloud server please Ask.
Step S2310: if receiving subscriber sign-in conversation information, then store this by login sessions information In the respective stored space of module, and user is redirected back to the network service accessed before.If receiving Being subscriber sign-in conversation information, illustrate that existing subscriber logs in based on this Quick Response Code, therefore user can obtain institute The data accessed.
Log-in control method based on Quick Response Code according to embodiments of the present invention, when the first client is initiated to step on During record request, cloud server return Quick Response Code, the second client resolving and initiate agent logs please Ask, after cloud server certification user identity, initiate response to the first client.Should by the second client Shooting and Quick Response Code by program resolve, and take full advantage of function and the resources advantage of the second client, no Need user to log in every time and all input associated user's name, password, thus the operation reducing the login of user becomes This, improve Consumer's Experience simultaneously.This method is simply efficient, and also reduce gone fishing, wooden horse is stolen Password equivalent risk, has ensured user account security.、
Describe a kind of based on Quick Response Code login according to embodiments of the present invention below with reference to Fig. 4 and control system System 100, including the first client the 110, second client 120 and cloud server 130.
Wherein, the first client 110 is for sending logging request to cloud server 130, and receives Cloud server 130 send Quick Response Code and show;Cloud server 130 is for distributing for logging request Identification string, and generate Quick Response Code according to the address information of identification string and cloud server 130, and by two dimension Code sends to the first client 110, and acts on behalf of log on request pair according to what the second client 120 sent User carries out authentication, receives the polling request of the first client 110 or long connection request, and with Family returns subscriber sign-in conversation information by backward first client 110 of authentication;Second client 120 for shooting the Quick Response Code of the first client 110 display, and to after resolving Quick Response Code Address information in Quick Response Code sends and acts on behalf of log on request, wherein, acts on behalf of log on request and includes user's Identity information.
In one embodiment of the invention, the first client 110 after receiving Quick Response Code, the cycle Property ground send polling request or long connection request to cloud server 130, wherein, polling request or long even Connect and request includes identification string.
Wherein, act on behalf of log on request and can include identification string.Second client 120 can be mobile terminal.
In one embodiment of the invention, cloud server 130 is additionally operable to acting on behalf of in log on request Identification string and identity information are authenticated, and when identification string or identity information are invalid to the second client 120 return error message.
In one embodiment of the invention, cloud server 130 is additionally operable to judge whether that storage has with mark Know the string data item for index, wherein, data item comprises subscriber sign-in conversation information, and is judging When storage has with data item that identification string is index, return error message to the second client 120, and Judge not store the data item being index with identification string, and judge that user passes through according to acting on behalf of log on request During certification, set up corresponding data item with identification string for index, and return login to the second client 120 Successful information.
In one embodiment of the invention, cloud server 130 is additionally operable to the first client 110 After returning subscriber sign-in conversation information, by the identification string in data item and corresponding subscriber sign-in conversation letter Breath is deleted.
Realize alternately logging in cloud server 130 with first client the 110, second client 120 below As a example by control, native system is explained, it is to be understood that following mutual merely for example purpose, Embodiments of the invention are not limited to this.
Step S310: user is carried with the identity access network services of A non logged-on user by the first client 110 For certain network service of business, the such as mhkc of certain website.Wherein the first client 110 can be PC or Certain client modules on the equipment such as notebook.User is by clicking on respective interface element to cloud server 130 send logging request.Logging request is sent to cloud server 130 as clicked on login link or button.
Step S320: the cloud server 130 of Internet Service Provider generates globally unique identification string RS, And comprise the Quick Response Code QR of RS information.The data such as RS and QR are back to by cloud server 130 One client 110.
Step S330: the first client 110 receives two-dimension code image, and carries out on user's login interface Display.First client 110 will comprise the request of the data such as RS by poll or long interconnection technique simultaneously, Periodically send to service end.By request return as a result, it is possible to determine whether user based on this two Dimension code is logged in: if the information that cloud server 130 returns shows that useful family has logged on, then enter Enter step S380;Otherwise, the first client 110 is retained on user's login interface.
Step S340: user opens the login agent application program in the second client 120.Wherein, step on Record agent application has camera function and Quick Response Code scan recognition function.Second client 120 can be Mobile terminal.Login agent application program scans the two-dimension code image in the first client 110 by camera. The RS information obtained corresponding to this two-dimension code image is resolved by login agent application program.Login agent should Determine that user logs in the service accessed in the first client 110 with which kind of user identity by program.Wherein, User identity can be by user interactive or data cached the obtaining of reading service.Such as user interactive Can be that user selects from the multiple user accounts being saved in locally stored system, or receive user The account of input and password.Login agent application program sends to cloud server 130 and includes RS, user The agent logs of the data such as identity information processes request.Wherein, subscriber identity information includes such as user name, close Code, or the session information of logged-in user.
Step S350: cloud server 130 receives agent logs request, is authenticated user identity. Cloud server 130 judges the validity of RS and subscriber identity information.If wherein any one data quilt It is invalid to judge, then cloud server 130 returns mistake to the login agent application program of the second client 120 False information.If all effective, cloud server 130 has existed with RS for indexing the most in judging, with Family login sessions information (SESSION information) is the key-value pair data item of value.If it is present high in the clouds clothes Business device 130 returns error message to login agent application program.Receive if logged on agent application Cloud server 130 returns error message, and login agent application program carries out miscue, and guides use Family re-starts login.If it does not exist, then User Status is set to logging status by cloud server 130. Create a login sessions comprising this subscriber identity information, preserve<RS, login sessions information>key-value pair.To Second client 120 returns and logins successfully information.
Step S360: login agent application program receives cloud server 130 return and logins successfully information.
Step S370: cloud server 130 receives the request comprising RS that the first client 110 sends. And perform following steps:
Step S371: judge RS validity.
Step S372: if invalid, then cloud server 130 returns error message.
Whether step S373: if RS is effective, then judge to exist in system with RS for index, with user Login sessions information is the key-value pair of value.
Step S374: if it does not exist, then return error message.
Step S375: if key-value pair exists, then return subscriber sign-in conversation letter to the first client 110 Breath.
Step S376: meanwhile, cloud server 130 can select after returning login sessions information, will RS data and<RS, subscriber sign-in conversation information>key-value pair cancel.Thus avoid the session information of user by him People obtains, it is ensured that the security of user data.
Step S380: the first client 110 receives the information that service end returns.If the first client 110 receive is error message, then again initiate network request to cloud server 130.If first Client 110 receives subscriber sign-in conversation information, then login sessions information is stored the corresponding of this module In memory space, and user is redirected back to the network service accessed before.If receive is that user logs in Session information, illustrates that existing subscriber logs in based on this Quick Response Code, and therefore user can obtain accessed data.
Login control system based on Quick Response Code according to embodiments of the present invention, when the first client is initiated to step on During record request, cloud server return Quick Response Code, the second client resolving and initiate agent logs please Ask, after cloud server certification user identity, initiate response to the first client.Should by the second client Shooting and Quick Response Code by program resolve, and take full advantage of function and the resources advantage of the second client, no Need user to log in every time and all input associated user's name, password, thus the operation reducing the login of user becomes This, improve Consumer's Experience simultaneously.Native system makes landfall process simply efficient, and also reduces and fished Fish, wooden horse snatch password equivalent risk, have ensured user account security.
Below with reference to Fig. 5, a kind of cloud server 200 according to embodiments of the present invention is described, including first Receiver module 210, two-dimensional code generation module the 220, first sending module the 230, second receiver module 240, Authentication module the 250, the 3rd receiver module the 260, second sending module 270 and data item maintenance module 280.
Wherein, the first receiver module 210 is for receiving the logging request that user is sent by the first client; Two-dimensional code generation module 220 is for for logging request allocation identification string, and according to identification string and cloud service The address information of device generates Quick Response Code;First sending module 230 is for sending Quick Response Code to the first client Hold and shown by the first client;Second receiver module 240 is for receiving the second client shooting And resolve that Quick Response Code rear address information in Quick Response Code sends act on behalf of log on request, wherein, agency Log on request includes the identity information of user;Authentication module 250 is for according to acting on behalf of log on request to user Carry out authentication;3rd receiver module 260 is for receiving the polling request of the first client or long connection Request;Second sending module 270 is for returning use by the rear of authentication to the first client user Family login sessions information.
Wherein, polling request or long connection request can include identification string.Act on behalf of log on request permissible Including identification string.Second client can be mobile terminal.
In one embodiment of the invention, the authentication module 250 identification string to acting on behalf of in log on request and Identity information is authenticated, if identification string or identity information are invalid, then the second sending module 270 is also used In returning error message to the second client.
In one embodiment of the invention, authentication module 250 is used for judging whether that storage has with identification string For the data item of index, wherein, data item comprises subscriber sign-in conversation information, and is judging that storage has With identification string be index data item time, by the second sending module 270 to second client return mistake Information.
In one embodiment of the invention, also include: data item maintenance module 280 is for judging not Storage have with identification string be index data item, and according to act on behalf of log on request judge user by certification time, Corresponding data item is set up for index with identification string.
In one embodiment of the invention, data item maintenance module 280 is additionally operable to the first client After returning subscriber sign-in conversation information, by the identification string in data item and corresponding subscriber sign-in conversation letter Breath is deleted.
Control is logged in below with cloud server and the first client, concrete mutual realization of the second client one As a example by, cloud server according to embodiments of the present invention is explained, it is to be understood that following Mutual merely for example purpose, embodiments of the invention are not limited to this.
First receiver module 210 receives the logging request that user sends to cloud server.Quick Response Code generates Module 220 generates globally unique identification string RS, and comprises the Quick Response Code QR of RS information.First Send module 230 that the data such as RS and QR are back to the first client.
.Second client scans the two-dimension code image of the first client by camera.Resolve and obtain this two dimension Code RS information corresponding to picture, determine user with which kind of user identity logs in and visited in the first client The service asked.Send to cloud server and include that the agent logs process of the data such as RS, subscriber identity information please Ask.Wherein, subscriber identity information includes such as the session information of user name, password, or logged-in user.
Second receiver module 240 receives agent logs request, and user identity is carried out by authentication module 250 Certification.Authentication module 250 judges the validity of RS and subscriber identity information.If the most any one number Invalid according to being judged, the second sending module 270 returns mistake to the login agent application program of the second client False information.If all effective, authentication module 250 has existed with RS for index the most in judging, with user Login sessions information (SESSION information) is the key-value pair data item of value.If it is present second sends Module 270 returns error message to login agent application program.If it does not, authentication module 250 will User Status is set to logging status.Data item maintenance module 280 creates one and comprises this subscriber identity information Login sessions, preserves<RS, login sessions information>key-value pair.Return to the second client and login successfully information.
3rd receiver module 260, for receiving the polling request of the first client or long connection request, is asked RS information can be comprised.And performing following steps: authentication module 250 judges RS validity;If nothing Effect, then the second sending module 270 returns error message;If authentication module 250 judges that RS is effective, then Continue to judge whether system exists with RS for index, the key-value pair being value with subscriber sign-in conversation information; If it does not exist, then the second sending module 270 returns error message;If authentication module 250 judges key assignments To existence, then return subscriber sign-in conversation information to the first client;Meanwhile, data item maintenance module 280 Can select after returning login sessions information, by RS data and<RS, subscriber sign-in conversation information>key-value pair Cancel.Thus avoid the session information of user to be obtained by other people, it is ensured that the security of user data.
Cloud server according to embodiments of the present invention, receives the first client and initiates to return during logging request Return Quick Response Code, when the second visitor initiates agent logs request, after cloud server certification user identity, become Initiate response to the first client after merits and demerits, thus complete landfall process.This cloud server makes full use of The function of the second client and resources advantage, it is not necessary to user logs in every time and inputs associated user name, close Code, thus reduce the running cost of the login of user, improve Consumer's Experience simultaneously.Make landfall process Simple efficiently, and also reduce gone fishing, wooden horse snatches password equivalent risk, has ensured user account safety Property.
In the description of this specification, reference term " embodiment ", " some embodiments ", " example ", The description of " concrete example " or " some examples " etc. means to combine the concrete spy of this embodiment or example description Levy, structure, material or feature are contained at least one embodiment or the example of the present invention.In this theory In bright book, the schematic representation of above-mentioned term is not necessarily referring to identical embodiment or example.And, Specific features, structure, material or the feature described can be in any one or more embodiments or show Example combines in an appropriate manner.
Although an embodiment of the present invention has been shown and described, for those of ordinary skill in the art Speech, it is possible to understand that these embodiments can be carried out without departing from the principles and spirit of the present invention Multiple change, revising, replace and modification, the scope of the present invention is limited by claims and equivalent thereof.

Claims (16)

1. a log-in control method based on Quick Response Code, it is characterised in that comprise the following steps:
The cloud server of Internet Service Provider receives user please by the login that the first client sends Ask;
Described cloud server is described logging request allocation identification string, and according to described identification string and institute The address information stating cloud server generates Quick Response Code;
Described Quick Response Code is sent to described first client and by described first by described cloud server Client shows;
Described cloud server receives the second client and shoots and resolve the backward Quick Response Code of described Quick Response Code In described address information send act on behalf of log on request, wherein, described log on request of acting on behalf of includes institute State identification string and the identity information of described user;
Described cloud server carries out authentication according to described log on request of acting on behalf of to described user, its Described in cloud server the described identification string acted on behalf of in log on request and identity information are authenticated, If described identification string or identity information are invalid, the most described cloud server returns to described second client Return error message;And
The polling request of described cloud server described first client of reception or long connection request, and Described user returns subscriber sign-in conversation information by backward described first client of authentication.
2. log-in control method based on Quick Response Code as claimed in claim 1, it is characterised in that institute State the first client after receiving described Quick Response Code, periodically send to described cloud server Polling request or long connection request, wherein, include described in described polling request or long connection request Identification string.
3. the log-in control method based on Quick Response Code as described in any one of claim 1-2, its feature It is, also includes:
The data item that it is index with described identification string that described cloud server judges whether to store, wherein, Described data item comprises subscriber sign-in conversation information;
If it is determined that storage has the data item being index with described identification string, then to described second client Return error message;And
If it is determined that do not store the data item being index with described identification string, and step on according to described agency Land request judges that described user by certification, then sets up corresponding data item with described identification string for index, And login successfully information to described second client return.
4. log-in control method based on Quick Response Code as claimed in claim 3, it is characterised in that After described first client returns subscriber sign-in conversation information, also include:
By the identification string in described data item and corresponding subscriber sign-in conversation information deletion.
5. log-in control method based on Quick Response Code as claimed in claim 1, it is characterised in that institute Stating the second client is mobile terminal.
6. a login control system based on Quick Response Code, it is characterised in that include the first client, Second client and cloud server, wherein,
Described first client, for sending logging request to described cloud server, and receives institute State the Quick Response Code of cloud server transmission and show;
Described cloud server, for for described logging request allocation identification string, and according to described mark The address information of string and described cloud server generates Quick Response Code, and sends described Quick Response Code to described First client, and according to the log on request of acting on behalf of of described second client transmission, user is carried out body Part certification, receives the polling request of described first client or long connection request, and leads to described user Backward described first client crossing authentication returns to subscriber sign-in conversation information, wherein said high in the clouds Server is additionally operable to be authenticated the described identification string acted on behalf of in log on request and identity information, and Error message is returned to described second client when described identification string or identity information are invalid;And
Second client, shoots for the Quick Response Code that shows described first client, and to Log on request is acted on behalf of in the rear described address information transmission in Quick Response Code resolving described Quick Response Code, wherein, Described log on request of acting on behalf of includes described identification string and the identity information of described user.
7. login control system based on Quick Response Code as claimed in claim 6, it is characterised in that institute State the first client after receiving described Quick Response Code, periodically send to described cloud server Polling request or long connection request, wherein, include described in described polling request or long connection request Identification string.
8. login control system based on Quick Response Code as claimed in claim 6, it is characterised in that institute State cloud server, be additionally operable to judge whether to store the data item being index with described identification string, its In, described data item comprises subscriber sign-in conversation information, and is judging that storage has with described mark During the data item that string is index, return error message to described second client, and do not store in judgement There is the data item being index with described identification string, and judge described user according to described log on request of acting on behalf of During by certification, set up corresponding data item with described identification string for index, and to described second client End return logins successfully information.
9. login control system based on Quick Response Code as claimed in claim 8, it is characterised in that institute State cloud server, be additionally operable to after returning subscriber sign-in conversation information to described first client, By the identification string in described data item and corresponding subscriber sign-in conversation information deletion.
10. login control system based on Quick Response Code as claimed in claim 6, it is characterised in that Described second client is mobile terminal.
11. 1 kinds of cloud servers, it is characterised in that including:
First receiver module, for receiving the logging request that user is sent by the first client;
Two-dimensional code generation module, for for described logging request allocation identification string, and according to described mark The address information of string and described cloud server generates Quick Response Code;
First sending module, for sending described Quick Response Code to described first client and by described First client shows;
Second receiver module, shoots and resolves backward the two of described Quick Response Code for receiving the second client What the described address information in dimension code sent acts on behalf of log on request, wherein, described acts on behalf of log on request bag Include described identification string and the identity information of described user;
Authentication module, for described user being carried out authentication according to described log on request of acting on behalf of, its In, the described identification string acted on behalf of in log on request and identity information are authenticated by described authentication module;
3rd receiver module, for receiving the polling request of described first client or long connection request; And
Second sending module, for passing through the rear to described first client of authentication described user Return subscriber sign-in conversation information, and when described identification string or identity information are invalid, to described second Client returns error message.
12. cloud servers as claimed in claim 11, it is characterised in that described polling request or Long connection request includes described identification string.
13. cloud servers as claimed in claim 11, it is characterised in that described authentication module is used In judging whether to store the data item so that described identification string is index, wherein, bag in described data item Containing subscriber sign-in conversation information, and when judging that storage has with data item that described identification string is index, Error message is returned to described second client by described second sending module.
14. cloud servers as claimed in claim 11, it is characterised in that also include:
Data item maintenance module, for judge not store with described identification string be the data item indexed, And according to described act on behalf of log on request judge described user by certification time, with described identification string for index Set up corresponding data item.
15. cloud servers as claimed in claim 14, it is characterised in that described data item is safeguarded Module is additionally operable to after returning subscriber sign-in conversation information to described first client, by described data Identification string in Xiang and corresponding subscriber sign-in conversation information deletion.
16. cloud servers as claimed in claim 11, it is characterised in that described second client For mobile terminal.
CN201210576567.4A 2012-12-26 2012-12-26 Log-in control method based on Quick Response Code, system and device Active CN103001973B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210576567.4A CN103001973B (en) 2012-12-26 2012-12-26 Log-in control method based on Quick Response Code, system and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210576567.4A CN103001973B (en) 2012-12-26 2012-12-26 Log-in control method based on Quick Response Code, system and device

Publications (2)

Publication Number Publication Date
CN103001973A CN103001973A (en) 2013-03-27
CN103001973B true CN103001973B (en) 2016-08-31

Family

ID=47930117

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210576567.4A Active CN103001973B (en) 2012-12-26 2012-12-26 Log-in control method based on Quick Response Code, system and device

Country Status (1)

Country Link
CN (1) CN103001973B (en)

Families Citing this family (40)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103226882A (en) * 2013-05-08 2013-07-31 李旭阳 Self-service system based on WIFI and two-dimensional code application technology
CN103298147B (en) * 2013-05-30 2016-05-25 北京奇虎科技有限公司 Realize the methods, devices and systems at computing equipment side radio management mobile terminal
CN103281327B (en) * 2013-06-06 2016-06-15 百度在线网络技术(北京)有限公司 The method of many equipment secure log, system and cloud server
CN103257839A (en) * 2013-06-07 2013-08-21 百度在线网络技术(北京)有限公司 Cross-equipment display method, cross-equipment display system and mobile terminal
CN104253784B (en) 2013-06-25 2018-10-09 腾讯科技(深圳)有限公司 Method, system, third party's terminal and the interconnected server for logging in and authorizing
CN104092542B (en) * 2013-09-11 2016-08-10 腾讯科技(深圳)有限公司 A kind of account login method, Apparatus and system
CN103685311B (en) * 2013-12-27 2017-06-13 网易(杭州)网络有限公司 A kind of login validation method and equipment
CN103763102B (en) * 2013-12-31 2018-09-28 上海斐讯数据通信技术有限公司 A kind of wifi safety management systems and management method based on message push
CN103945380A (en) * 2014-04-10 2014-07-23 深圳市信锐网科技术有限公司 Method and system for network login authentication based on graphic code
CN103916400B (en) * 2014-04-17 2018-06-19 上海斐讯数据通信技术有限公司 A kind of user account management method and system
CN104378344B (en) 2014-05-26 2016-03-09 腾讯科技(深圳)有限公司 Log-on message transmission method, barcode scanning method and device, background server
CN105323063B (en) * 2014-06-13 2019-01-08 广州涌智信息科技有限公司 The auth method of mobile terminal and fixed intelligent terminal based on two dimensional code
CN105337946B (en) * 2014-08-13 2019-05-14 阿里巴巴集团控股有限公司 The method and apparatus of webpage fake certification
CN104135494B (en) * 2014-08-22 2017-09-22 北京京东尚科信息技术有限公司 A kind of same account untrusted terminal logs in method and system based on trusted terminal
CN104320703A (en) * 2014-10-30 2015-01-28 深圳市同洲电子股份有限公司 Method, device and system for logging in intelligent television terminal
CN104333562B (en) * 2014-11-27 2017-11-03 沈文策 Data pack transmission method and device
CN105763520A (en) * 2014-12-18 2016-07-13 阿里巴巴集团控股有限公司 Network account password recovery method and device, client terminal device and server
CN105871783A (en) * 2015-01-21 2016-08-17 上海墨百意信息科技有限公司 Method and device for logging in to web server
CN104881456A (en) * 2015-05-21 2015-09-02 深圳市衡泰信科技有限公司 Two-dimensional code login method and system based on golf simulation system
CN104901970B (en) * 2015-06-19 2018-07-03 广州密码科技有限公司 A kind of Quick Response Code login method, server and system
CN105404167A (en) * 2015-09-30 2016-03-16 北京清川科技有限公司 Cloud platform, two dimension-based intelligent household electrical appliance control system and method
CN106713225B (en) * 2015-11-12 2021-02-02 国民技术股份有限公司 Two-dimensional code device and system based on two-dimensional code authentication and operation method thereof
CN106936803B (en) * 2015-12-31 2020-12-29 亿阳安全技术有限公司 Two-dimensional code scanning authentication login method and related device
CN105975549A (en) * 2016-05-03 2016-09-28 立德高科(昆山)数码科技有限责任公司 Custom two-dimensional bar code recognition method based on web page
CN105933353B (en) * 2016-07-05 2019-05-17 北京万维星辰科技有限公司 The realization method and system of secure log
CN106874817A (en) 2016-07-27 2017-06-20 阿里巴巴集团控股有限公司 Two-dimensional code identification method, equipment and mobile terminal
CN107317808A (en) * 2017-06-22 2017-11-03 四川长虹电器股份有限公司 A kind of safety certifying method based on device pairing
CN109639622B (en) * 2017-10-09 2021-02-12 腾讯科技(深圳)有限公司 Offline application login method, terminal and server
CN108809969B (en) * 2018-05-30 2020-11-06 新华三技术有限公司 Authentication method, system and device
CN109861954B (en) * 2018-07-24 2021-12-10 西安新路网络科技有限公司 Authentication method, mobile terminal, PC (personal computer) terminal and auxiliary authentication server
CN109525583B (en) * 2018-11-26 2021-03-12 中国科学院数据与通信保护研究教育中心 False certificate detection method and system for third-party identity management providing service system
CN111125668A (en) * 2019-09-30 2020-05-08 武汉信安珞珈科技有限公司 Method and system for enhancing login security of Linux operating system based on mobile terminal
CN112688979B (en) 2019-10-17 2022-08-16 阿波罗智能技术(北京)有限公司 Unmanned vehicle remote login processing method, device, equipment and storage medium
CN110908660B (en) * 2019-11-21 2022-10-28 苏州达家迎信息技术有限公司 Two-dimensional code generation method and device, computer equipment and storage medium
CN111177690B (en) * 2019-12-31 2022-07-05 中国工商银行股份有限公司 Two-dimensional code scanning login method and device
CN111651746B (en) * 2020-06-01 2023-03-10 支付宝(杭州)信息技术有限公司 Login data processing method, device, equipment and system
CN112261011B (en) * 2020-09-30 2023-06-16 上海仲速网络科技股份有限公司 Cloud desktop authentication method based on two-dimensional code recognition
CN112989297A (en) * 2021-02-04 2021-06-18 金保信社保卡科技有限公司 Electronic social security card code scanning login application method and system
CN114422252A (en) * 2022-01-21 2022-04-29 中国农业银行股份有限公司 Identity authentication method and device
CN115665470B (en) * 2022-10-21 2024-07-09 四川长虹电器股份有限公司 Method for quick change of intelligent television through data migration

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101917408A (en) * 2010-07-23 2010-12-15 南昌大学 Mobile phone two-dimensional code electronic receipt method based on C/S framework
CN102461229A (en) * 2009-04-20 2012-05-16 欧特科尔有限公司 System and method for personal certification using a mobile device
CN102571803A (en) * 2012-01-19 2012-07-11 时代亿宝(北京)科技有限公司 Method and system for protecting account, preventing order from being tampered and preventing fishing attack based on graphical two-dimensional code
CN102685093A (en) * 2011-12-08 2012-09-19 陈易 Mobile-terminal-based identity authentication system and method
CN102769628A (en) * 2012-07-27 2012-11-07 腾讯科技(深圳)有限公司 Page login method and server

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102461229A (en) * 2009-04-20 2012-05-16 欧特科尔有限公司 System and method for personal certification using a mobile device
CN101917408A (en) * 2010-07-23 2010-12-15 南昌大学 Mobile phone two-dimensional code electronic receipt method based on C/S framework
CN102685093A (en) * 2011-12-08 2012-09-19 陈易 Mobile-terminal-based identity authentication system and method
CN102571803A (en) * 2012-01-19 2012-07-11 时代亿宝(北京)科技有限公司 Method and system for protecting account, preventing order from being tampered and preventing fishing attack based on graphical two-dimensional code
CN102769628A (en) * 2012-07-27 2012-11-07 腾讯科技(深圳)有限公司 Page login method and server

Also Published As

Publication number Publication date
CN103001973A (en) 2013-03-27

Similar Documents

Publication Publication Date Title
CN103001973B (en) Log-in control method based on Quick Response Code, system and device
CN103001975B (en) Log-in control method based on Quick Response Code, system and device
CN103067378B (en) Log-in control method based on Quick Response Code and system
CN103001974B (en) Log-in control method based on Quick Response Code, system and device
CN103023918B (en) The mthods, systems and devices logged in are provided for multiple network services are unified
CN103036902B (en) Log-in control method and system based on Quick Response Code
US9602484B2 (en) Online user account login method and a server system implementing the method
US9692747B2 (en) Authenticating linked accounts
CN108234505B (en) Account login method and system
CN104283843B (en) A kind of method, apparatus and system that user logs in
US9288194B2 (en) Authorization method, apparatus, and system
CN101072103B (en) Method and system for multi-account log-in instant communication software
CN104636392B (en) Carry out method, system, server and browser that recommendation information issues
CN103023919A (en) Two-dimensional code based login control method and two-dimensional code based login control system
CN106453414B (en) Third party login authentication method, proxy server, client and system
CN106254319B (en) Light application login control method and device
CN105025484B (en) Access the method and device of Wi-Fi Hotspot
US10341323B1 (en) Automated method for on demand multifactor authentication
US11405403B2 (en) Method and device, and server and terminal for processing network resource access
CN104618388B (en) Fast registration login method and corresponding resetting server, information server
CA2844888A1 (en) System and method of extending a host website
CN106209584B (en) User information processing method, client and server Internet-based
WO2009010958A2 (en) A system and method for providing asynchronous instant messaging over http
US20190268323A1 (en) On demand multifactor authentication
CN108173877A (en) For preventing the method and apparatus of fishing website

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant