CN103023918B - The mthods, systems and devices logged in are provided for multiple network services are unified - Google Patents

The mthods, systems and devices logged in are provided for multiple network services are unified Download PDF

Info

Publication number
CN103023918B
CN103023918B CN201210576422.4A CN201210576422A CN103023918B CN 103023918 B CN103023918 B CN 103023918B CN 201210576422 A CN201210576422 A CN 201210576422A CN 103023918 B CN103023918 B CN 103023918B
Authority
CN
China
Prior art keywords
described
client
user
cloud server
information
Prior art date
Application number
CN201210576422.4A
Other languages
Chinese (zh)
Other versions
CN103023918A (en
Inventor
朱建庭
Original Assignee
百度在线网络技术(北京)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 百度在线网络技术(北京)有限公司 filed Critical 百度在线网络技术(北京)有限公司
Priority to CN201210576422.4A priority Critical patent/CN103023918B/en
Publication of CN103023918A publication Critical patent/CN103023918A/en
Application granted granted Critical
Publication of CN103023918B publication Critical patent/CN103023918B/en

Links

Abstract

The present invention proposes a kind of method logged in for the unified offer of multiple network services, including: the cloud server of Internet Service Provider receives the logging request that user is sent by the first client;Cloud server generates Quick Response Code according to the identification code of the identification string distributed for logging request and webserver provider;Quick Response Code is sent to the first client and is shown by the first client by cloud server;Cloud server receives the second client and shoots and resolve the accounts information of the user sent after Quick Response Code;Cloud server carries out login authentication according to accounts information to the first client.The present invention provides unified Quick Response Code to log in for multiple webserver providers, reduces user and remembers cost, it is not necessary to logging in the most defeated log-on message, register low cost, Consumer's Experience is good, and user account security is good every time.The invention also discloses a kind of for the unified system providing login of multiple network services and a kind of cloud server.

Description

The mthods, systems and devices logged in are provided for multiple network services are unified

Technical field

The present invention relates to Internet technical field, unify offer particularly to one for multiple network services and step on The mthods, systems and devices of record.

Background technology

Universal and the development of internet, brings substantial amounts of Internet Service Provider.A lot of Internet Service Providers Both providing login feature, some service just has permission acquisition after needing user to log in.

The basic implementation method of the logging in system by user that existing network service provides is as follows:

Step S1: when user asks to log in, by the FTP client FTP of network service, as browser end webpage to User shows a login interface.

Step S2: user inputs a user account information on login interface, including such as user name, mailbox One or more of address, account or cell-phone number, and the user cipher of correspondence, identifying code etc., request is stepped on Record.

Step S3: content that user is inputted in login interface by the FTP client FTP of network service and interface In some other information of carrying be sent to the server end of network services and carry out login authentication.

Step S4: after received server-side to the logging request of user, the user account, close that user is provided The validity of the information such as code and identifying code is authenticated.

Step S5: if certification is passed through, then server end is that this user sets up a login sessions information and goes forward side by side Row record, returns to FTP client FTP by necessary session information simultaneously and caches.Afterwards, user passes through FTP client FTP all can carry this session information in user's request that server end is initiated, in order to server end Currently logged on user's identity is identified.If certification not over, then directly return to FTP client FTP Error message.

Most of users all can register respectively at multiple Internet Service Providers one or more user account with Just some services that these multiple Internet Service Providers are provided are used.A lot of users can use same user Name, password are registered, and to facilitate memory, but this behavior also brings along great risk.Wherein certain Internet Service Provider is because some reason have leaked user cipher, then user needs it to register Modify password at all-network service provider, to ensure account number safety.Some have the user of awareness of safety can At each Internet Service Provider, during register account number, different user names or password all can be set, A lot of network services, in order to ensure the security of user account information, need user setup one relative complex Password to ensure enough Cipher Strength, therefore user remember account, password cost the highest, also can be frequent There is forgetting the situation of account, password.Especially when the heterogeneous networks service that user is used gets more and more, Its memory user name, the cost of password also will be greatly increased, thus often occur forgetting that oneself services at certain User name in provider, the situation of password.Sometimes for account information of being memonic, some user may Can be at the various accounts of centralized recording oneself, password, it will be clear that once this part of document leaks, the institute of user User account, password is had the most all to will leak out.

Additionally, the logging in system by user of existing most of all-network service is required for user the most logged Journey at least inputs a user account and password, even if user has logged in this network on other equipment Service.Therefore some login process be entirely unnecessary.It addition, once user is strayed into fishing website and steps on Record, or equipment is infected by trojan horse, then the account of input, password exist for the risk being stolen, peace Full property also ratio is relatively low, for network bar users.

In order to solve this problem, some Internet Service Provider, as Tengxun's wechat, magnificence provide based on two dimension The login mechanism of code, this login mechanism is greatly improved user and logs in the experience of service and the peace of this provider Quan Xing, but premise is user need on the mobile hand-held device of oneself install this Internet Service Provider Mobile solution, when the heterogeneous networks service that user uses gets more and more, the auxiliary of installation completes Quick Response Code The Mobile solution of login process is also more and more, when needing to log in another equipment, is required for opening every time Different Mobile solution, this process extremely consumes resource, adds the burden of user, reduces operating body Test.

Summary of the invention

It is contemplated that at least solve one of technical problem present in prior art.

To this end, it is an object of the present invention to propose a kind of log in for unified offer of multiple network services Method.This method provides unified Quick Response Code to log in for multiple webserver providers, reduces user's memory Cost, it is not necessary to logging in the most defeated log-on message, register low cost, Consumer's Experience is good, user's account every time Number security is good.

Second object of the present invention be to propose a kind of for multiple network services unified provide log in be System.

Third object of the present invention is to propose a kind of cloud server.

For reaching above-mentioned purpose, the embodiment of first aspect present invention proposes a kind of for multiple network services The unified method providing login, comprises the following steps: the cloud server of Internet Service Provider receives to be used The logging request that family is sent by the first client;Described cloud server divides according to for described logging request The identification string joined and the identification code of described webserver provider generate Quick Response Code;Described cloud server Described Quick Response Code is sent to described first client and is shown by described first client;Described Cloud server receives the described user of transmission after the second client shoots and resolve described Quick Response Code Accounts information;Described cloud server carries out login according to described accounts information to described first client and tests Card.

The method for the unified offer login of multiple network services according to embodiments of the present invention is by accepting first The logging request of client generates Quick Response Code, and cloud server carries out login authentication after receiving log-on message. And just can support that the Quick Response Code of multiple website logs in by client application, user can be reduced and remember into This, it is not necessary to logging in the most defeated log-on message, register low cost, Consumer's Experience is good every time, also drops simultaneously Low gone fishing, wooden horse snatches password equivalent risk, improves user account security.

In one embodiment of the invention, wherein, described second client is preserved multiple network clothes The accounts information of business, described second client is according to the mark of described Internet Service Provider and described user Identity information obtain accounts information corresponding to described user.

In one embodiment of the invention, also include: described second client is from account management server The identity information described user couple of acquisition of the middle mark according to described Internet Service Provider and described user The accounts information answered, wherein, preserves the multiple network clothes of described user in described account management server The accounts information of business.User can be managed collectively the log-on message on each Internet Service Provider's website, Reduce the memory capacitance of user, more safe and convenient.

In one embodiment of the invention, the identity information of described user includes the fingerprint letter of described user One or more in breath, face characteristic information, session id information, voiceprint or retinal information.

In one embodiment of the invention, described second client or account management server are preserved The address of the cloud server of described Internet Service Provider, described second client is taken by described high in the clouds The address of business device sends the accounts information of described user to described cloud server.

In one embodiment of the invention, described Quick Response Code includes the address of described cloud server.

In one embodiment of the invention, after described first client shows described Quick Response Code, also Including: described first client sends inquiry by poll or long connected mode to described cloud server please Asking, wherein, described inquiry request includes described identification string;Described cloud server is according to described second After the accounts information that client sends judges that described user passes through login authentication, according to described inquiry request Login authentication result is returned to described first client.

In one embodiment of the invention, described second client is mobile terminal.

The embodiment of second aspect present invention proposes and a kind of logs in for unified offer of multiple network services System, including the first client, the second client and cloud server.Wherein, described first client For sending the logging request of user to the described cloud server of Internet Service Provider, and receive institute State the Quick Response Code of cloud server transmission and show;Described cloud server is for dividing for described logging request The identification code joining identification string and described webserver provider generates Quick Response Code, and is sent out by described Quick Response Code Deliver to described first client and shown by described first client, and receiving the second client The accounts information of the described user sent, and according to described accounts information, described first client is stepped on Record checking;Second client for shooting and resolve the Quick Response Code that described first client shows, and according to The described Quick Response Code resolved obtains the accounts information of described user, and is sent out by the accounts information of described user Deliver to described cloud server.

The system for the unified offer login of multiple network services according to embodiments of the present invention is by accepting first The logging request of client generates Quick Response Code, and cloud server carries out login authentication after receiving log-on message. This method can reduce user and remember cost, and just can support the two of multiple website by client application Dimension code logs in, it is not necessary to logging in the most defeated log-on message, register low cost, Consumer's Experience is good every time, with Time also reduce gone fishing, wooden horse snatches password equivalent risk, improves user account security.

In one embodiment of the invention, wherein, described second client is preserved multiple network clothes The accounts information of business, described second client is additionally operable to the mark according to described Internet Service Provider and institute The identity information stating user obtains accounts information corresponding to described user and according to described accounts information.

In one embodiment of the invention, also include: account management server, be used for managing described use The accounts information of the multiple network service at family, wherein, described second client is additionally operable to take from account management Mark according to described Internet Service Provider and the identity information described use of acquisition of described user in business device The accounts information that family is corresponding.User can be managed collectively the login on each Internet Service Provider's website Information, reduces the memory capacitance of user, more safe and convenient.

In one embodiment of the invention, the identity information of described user includes the fingerprint letter of described user One or more in breath, face characteristic information, session id information, voiceprint or retinal information.

In one embodiment of the invention, described second client or account management server are preserved The address of the cloud server of described Internet Service Provider, described second client is taken by described high in the clouds The address of business device sends the accounts information of described user to described cloud server.

In one embodiment of the invention, described Quick Response Code includes the address of described cloud server.

In one embodiment of the invention, described first client, it is additionally operable to by poll or long connection Mode sends inquiry request to described cloud server, and wherein, described inquiry request includes described identification string; Described cloud server, is additionally operable to the accounts information sending according to described second client and judges described use Family, by after login authentication, returns login authentication knot according to described inquiry request to described first client Really.

The embodiment of third aspect present invention proposes a kind of cloud server, including the first receiver module, Generation module, sending module, the second receiver module and login authentication module.First receiver module is used for connecing Receive the logging request that user is sent by the first client;Generation module is described logging request for basis The identification code of allocation identification string and described webserver provider generates Quick Response Code;Sending module is used for will Described Quick Response Code is sent to described first client and is shown by described first client;Second connects Receive module for receiving the described user of transmission after the second client shoots and resolve described Quick Response Code Accounts information;Login authentication module is for logging in described first client according to described accounts information Checking.

Cloud server according to embodiments of the present invention generates two by the logging request accepting the first client Dimension code, and receive second receiver module send log-on message after carry out login authentication.This cloud server Can help to reduce user and remember cost, and just can be supported the two dimension of multiple website by client application Code logs in, it is not necessary to logging in the most defeated log-on message, register low cost, Consumer's Experience is good, simultaneously every time Also reduce gone fishing, wooden horse snatches password equivalent risk, improves user account security.

In one embodiment of the invention, described second client or account management server are preserved The address of the cloud server of described Internet Service Provider, described second client is taken by described high in the clouds The address of business device sends the accounts information of described user to described cloud server.

In one embodiment of the invention, described Quick Response Code includes the address of described cloud server.

In one embodiment of the invention, described first receiver module, it is additionally operable to receive described first visitor The inquiry request that family end is sent to described cloud server by poll or long connected mode, wherein, described Inquiry request includes described identification string;Described login authentication module, is additionally operable to according to described second client After the accounts information that end sends judges that described user passes through login authentication, according to described inquiry request to institute State the first client and return login authentication result.

The additional aspect of the present invention and advantage will part be given in the following description, and part will be retouched from following Become obvious in stating, or recognized by the practice of the present invention.

Accompanying drawing explanation

Above-mentioned and/or the additional aspect of the present invention and advantage are from combining the accompanying drawings below description to embodiment Will be apparent from easy to understand, wherein:

Fig. 1 is the unified flow processs providing the method logged in of multiple network services according to embodiments of the present invention Figure;

Fig. 2 is that the unified structure providing the system logged in of multiple network services according to embodiments of the present invention is shown It is intended to;With

Fig. 3 is the structural representation of cloud server according to embodiments of the present invention.

Detailed description of the invention

Embodiments of the invention are described below in detail, and the example of described embodiment is shown in the drawings, wherein certainly Begin to same or similar label eventually represent same or similar element or there is the unit of same or like function Part.The embodiment described below with reference to accompanying drawing is exemplary, is only used for explaining the present invention, and can not It is interpreted as limitation of the present invention.

Below with reference to Fig. 1, logging in for unified offer of multiple network services according to embodiments of the present invention is described Method, comprise the following steps:

Step S110: the cloud server of Internet Service Provider is received user and sent out by the first client The logging request sent.

Step S120: cloud server carries according to the identification string and the webserver that distribute for logging request Identification code for business generates Quick Response Code.

Wherein, Quick Response Code includes the address of cloud server.

Step S130: Quick Response Code is sent to the first client and by the first client by cloud server Show.

In one embodiment of the invention, after the first client two-dimensional code display, also include:

Step S131: the first client sends inquiry by poll or long connected mode to cloud server Request, wherein, inquiry request includes identification string.

Step S132: at the accounts information sent according to the second client, cloud server judges that user is led to After crossing login authentication, return login authentication result according to inquiry request to the first client.

Step S140: cloud server receives the second client and shoots and resolve and send after Quick Response Code The accounts information of user.

In one embodiment of the invention, the second client is mobile terminal.

Wherein, in one embodiment of the invention, the second client is preserved multiple network service Accounts information, the second client obtains use according to the mark of Internet Service Provider and the identity information of user Accounts information that family is corresponding according to accounts information.The identity information of user can include the fingerprint letter of user One or more in breath, face characteristic information, session id information, voiceprint or retinal information. In one embodiment of the invention, if the identity information of user is session id information, the second visitor Family end to cloud server send for session id information, therefore cloud server end is except passing through Outside user name, password this accounts information identification user, it is also possible to according to the session id information of user Identify user, be that the first client generates a single session information, this single session id the most again It is one to one with user account

In one embodiment of the invention, the second client or account management server preserve network The address of the cloud server of service provider, the second client passes through the address of cloud server to high in the clouds Server sends the accounts information of user.

Step S150: cloud server carries out login authentication according to accounts information to the first client.

In one embodiment of the invention, after the first client shows described Quick Response Code, also include: First client sends inquiry request by poll or long connected mode to cloud server, wherein, and inquiry Request includes identification string;At the accounts information sent according to the second client, cloud server judges that user is led to After crossing login authentication, return login authentication result according to inquiry request to the first client.

Should be used for the present invention is explained with passbook according to embodiments of the present invention below, permissible Being understood by, passbook is not limited to this merely for example purpose, embodiments of the invention.Passbook is The Internet Service Provider of all support passbook is unified provides user account management function and based on Quick Response Code Login feature.Therefore, the Internet Service Provider of all support passbook needs to follow passbook The standard criterion that service provider is formulated, at its service end opening associated network interface, and its visitor The login module of family end is done corresponding support.

The second client that passbook is described below carries out account interpolation and management to account management server Flow process:

Step S210: user installs on its mobile hand-held device such as smart mobile phone, panel computer etc. and enters Passbook applies, and passbook application interacts with the server of passbook service provider, obtains The Internet Service Provider's list supported.

Step S220: user selects Internet Service Provider, and inputs registration at this Internet Service Provider The information of one or more accounts, general accounts information at least includes account, password two parts, and by defeated Enter information carry out and preserve.

Exclusive identification code SID corresponding with Internet Service Provider is key by the application of step S230:passbook, With one or more accounts informations of user's input for value, preserve with the data mode of key-value pair.Data are permissible It is saved in this locality after encryption, it is also possible to storage to cloud server, however it is necessary that and carry out security setting so that not Accessed by other application.

Step S240: user is by repeating step S220 and step S230, by user at each network service At provider, the account of registration is managed by passbook.Additionally, passbook additionally provides account The amendment of information and deletion.

The unified flow process logged in that provides of many network services of passbook is provided:

Step S310: user uses the first client request to log in and supports that the network service of passbook application carries Certain of the confession business A such as network service of mhkc, wherein the first client can be at the equipment such as PC or notebook On.By the destination service front-end module of Internet Service Provider A to the cloud service of this Internet Service Provider Device sends network request.

Step S320: cloud server is that described logging request generates globally unique random identification string RS, And one comprise the two of the information such as RS and this exclusive identification code SID corresponding to Internet Service Provider A Dimension code QR.

Step S330: before the data such as RS and QR are returned to the destination service of the first client by cloud server End module, the two-dimension code image received is shown by the destination service front-end module of the first client.

Step S340: user opens the second client installing passbok application, and wherein the second client can With on mobile hand-held device, the second client is taken in the target of the first client by camera scanning display Two-dimension code image on business front-end module, the triggering passbook following operation of application execution:

Step S341: scanning two-dimension code image, by being identified two-dimension code image, decoding, obtains two Dimension RS, SID information entrained by code.

Step S342: the account being the Internet Service Provider corresponding to the SID of key reading and saving with sid value Information, if not yet arranging accounts information for this Internet Service Provider before user, then allows user input account Family information, otherwise shows that user, from the multiple accounts arranged before, selects for user.

Step S343: by reading local profile or obtaining identification code alternately with passbook service end and be The network address for processing agent logs request corresponding to the Internet Service Provider of SID, then will The data such as RS, user account information are sent on this network address.

Step S350: after cloud server receives the agent logs request that passbook application is sent, enter Row RS and user account information validation verification, to corresponding to received accounts information after being verified User carry out login process, and the session information of RS and new login user is preserved one to one.

Additionally, when, after the destination service front-end module two-dimensional code display picture of the first client, the first client will The data such as RS are sent to destination service rear module by poll or long connected mode;Cloud server inquiry is No user has used this Quick Response Code to log in and return login authentication result.If cloud server returns corresponding Information display user have logged on, then enter the relevant user interface after user logs in, and otherwise the page rests on On present user interface.

After cloud server receives the inquiry request that corresponding front-end module sends, first judge that RS information has Effect property, if information is effective, then determines whether and RS subscriber sign-in conversation information accordingly, if deposited In the subscriber sign-in conversation information corresponding with RS, then login sessions information is returned to destination service front end mould Block, for identifying user's Quick Response Code based on RS already at logging status.

The method logged in for the unified offer of multiple network services according to embodiments of the present invention, only needs user to pacify The unified Mobile solution that Quick Response Code login feature is provided of dress, it is possible to be applied to relate in the product of login feature, User can be managed collectively the log-on message on each website, reduces user and remembers cost, and by one Individual application just can support that the Quick Response Code of multiple website logs in, it is not necessary to logs in the most defeated log-on message every time, steps on Record running cost low, Consumer's Experience is good, also reduce simultaneously gone fishing, wooden horse snatches password equivalent risk, carry Rise user account security.

Below with reference to Fig. 2, logging in for unified offer of multiple network services according to embodiments of the present invention is described System 100, including the first client the 110, second client 120 and cloud server 130.Its In, the first client is used for sending the logging request of user to the cloud server of Internet Service Provider, And receive the Quick Response Code of cloud server transmission and show;Cloud server is for distributing for logging request The identification code of identification string and webserver provider generates Quick Response Code, and sends Quick Response Code to the first visitor Family end is also shown by the first client, and receives the account letter of the user that the second client sends Breath, and according to accounts information, the first client is carried out login authentication;Second client is used for shooting and solving Analyse the Quick Response Code that the first client shows, and the accounts information of the Quick Response Code acquisition user according to parsing, with And the accounts information of user is sent to cloud server.

Wherein, preserving the accounts information of multiple network service in the second client, the second client is also used Obtain, with the identity information of user, the accounts information that user is corresponding in the mark according to Internet Service Provider And according to accounts information.

The identity information of user include the finger print information of user, face characteristic information, session id information, One or more in voiceprint or retinal information.In one embodiment of the invention, if used When the identity information at family is session id information, the second client to cloud server send for session id Information, therefore cloud server end is except passing through user name, password this accounts information identification user Outside, it is also possible to according to the session id information identification user of user, it is that the first client generates the most again One single session information, this single session id and user account are one to one

Wherein, Quick Response Code includes the address of cloud server.

In one embodiment of the invention, also include: account management server, for managing user's The accounts information of multiple network service, wherein, the second client is additionally operable to root from account management server Obtain, with the identity information of user, the accounts information that user is corresponding according to the mark of Internet Service Provider.

In one embodiment of the invention, the second client or account management server preserve network The address of the cloud server of service provider, the second client passes through the address of cloud server to high in the clouds Server sends the accounts information of user.

Additionally, in one embodiment of the invention, the first client is additionally operable to by poll or long connection Mode sends inquiry request to cloud server, and wherein, inquiry request includes identification string;Cloud server It is additionally operable to after the accounts information sent according to the second client judges that user is by login authentication, according to Inquiry request returns login authentication result to the first client.

Should be used for native system is explained with passbook according to embodiments of the present invention below, permissible Being understood by, passbook applies merely for example purpose, and embodiments of the invention are not limited to this.Passbook For Internet Service Provider's unified offer user account management function of all support passbook with based on two dimension The login feature of code.Therefore, the Internet Service Provider of all support passbook needs to follow passbook The standard criterion that service provider is formulated, at its service end opening associated network interface, and its visitor The login module of family end is done corresponding support.

In the account management server of passbook account is described below add and the flow process of management:

Step S410: user installs on its mobile hand-held device such as smart mobile phone, panel computer etc. and enters Passbook applies, and passbook application interacts with the server of passbook service provider, obtains The Internet Service Provider's list supported.

Step S420: user selects Internet Service Provider, and inputs registration at this Internet Service Provider The information of one or more accounts, general accounts information at least includes account, password two parts, account pipe Input information is carried out and preserves by reason server.

Step S430: exclusive identification code SID corresponding with Internet Service Provider is by account management server Key, with one or more accounts informations of user's input for value, preserves with the data mode of key-value pair.Data This locality can be saved in after encrypting, it is also possible to storage to cloud server, however it is necessary that carry out security setting with Do not accessed by other application.

Step S440: user is by repeating step S420 and step S430, and account management server is by user At each Internet Service Provider, the account of registration is managed by passbook.Additionally, account management Server can also be to the amendment of accounts information and deletion.

Passbook system is described below the unified flow process logged in that provides of multiple network service is provided:

Step S510: user uses the first client request to log in and supports that the network service of passbook application carries Certain of the confession business A such as network service of mhkc, wherein the first client can be at the equipment such as PC or notebook On.By the destination service front-end module of Internet Service Provider A to the cloud service of this Internet Service Provider Device sends network request.

Step S520: cloud server is that described logging request generates globally unique random identification string RS, And one comprise the two of the information such as RS and this exclusive identification code SID corresponding to Internet Service Provider A Dimension code QR.

Step S530: before the data such as RS and QR are returned to the destination service of the first client by cloud server End module, the two-dimension code image received is shown by the destination service front-end module of the first client.

Step S540: user opens the second client installing passbok application, and wherein the second client can With on mobile hand-held device, the second client is taken in the target of the first client by camera scanning display Two-dimension code image on business front-end module, the triggering passbook following operation of application execution:

Step S541: scanning two-dimension code image, by being identified two-dimension code image, decoding, obtains two Dimension RS, SID information entrained by code.

Step S542: the account being the Internet Service Provider corresponding to the SID of key reading and saving with sid value Information, if not yet arranging accounts information for this Internet Service Provider before user, then allows user input account Family information, otherwise shows that user, from the multiple accounts arranged before, selects for user.

Step S543: by reading local profile or obtaining identification code alternately with passbook service end and be The network address for processing agent logs request corresponding to the Internet Service Provider of SID, then will The data such as RS, user account information are sent on this network address.

Step S550: after cloud server receives the agent logs request that passbook application is sent, enter Row RS and user account information validation verification, to corresponding to received accounts information after being verified User carry out login process, and the session information of RS and new login user is preserved one to one.

Additionally, when, after the destination service front-end module two-dimensional code display picture of the first client, the first client will The data such as RS are sent to destination service rear module by poll or long connected mode;Cloud server inquiry is No user has used this Quick Response Code to log in and return login authentication result.If cloud server returns corresponding Information display user have logged on, then enter the relevant user interface after user logs in, and otherwise the page rests on On present user interface.

After cloud server receives the inquiry request that corresponding front-end module sends, first judge that RS information has Effect property, if information is effective, then determines whether and RS subscriber sign-in conversation information accordingly, if deposited In the subscriber sign-in conversation information corresponding with RS, then login sessions information is returned to destination service front end mould Block, for identifying user's Quick Response Code based on RS already at logging status.

The system for the unified offer login of multiple network services according to embodiments of the present invention only needs user to pacify The unified Mobile solution that Quick Response Code login feature is provided of dress, it is possible to be applied to relate in the product of login feature, User can be managed collectively the log-on message on each website, reduces user and remembers cost, and by one Individual application just can support that the Quick Response Code of multiple website logs in, it is not necessary to logs in the most defeated log-on message every time, steps on Record running cost low, Consumer's Experience is good, also reduce simultaneously gone fishing, wooden horse snatches password equivalent risk, carry Rise user account security.

Below with reference to Fig. 3, cloud server 200 according to embodiments of the present invention is described, including the first reception Module 210, generation module 220, sending module the 230, second receiver module 240 and login authentication mould Block 250.Wherein, the first receiver module is for receiving the logging request that user is sent by the first client; Generation module is for raw according to the identification code for logging request allocation identification string and webserver provider Become Quick Response Code;Sending module is for sending Quick Response Code to the first client and being carried out by the first client Display;Second receiver module is for receiving the user sent after the second client shoots and resolve Quick Response Code Accounts information;Login authentication module is for carrying out login authentication according to accounts information to the first client.

Wherein, Quick Response Code includes the address of cloud server.

In one embodiment of the invention, the second client or account management server preserve network The address of the cloud server of service provider, the second client passes through the address of cloud server to high in the clouds Server sends the accounts information of user.

In one embodiment of the invention, the first receiver module, it is additionally operable to receive the first client and passes through The inquiry request that poll or long connected mode send to cloud server, wherein, inquiry request includes mark String;Login authentication module, is additionally operable to the accounts information sending according to the second client and judges that user passes through After login authentication, return login authentication result according to inquiry request to the first client.

Should be used for this cloud server is explained with passbook according to embodiments of the present invention below Bright, it is to be understood that passbook applies merely for example purpose, and embodiments of the invention are not limited to this. Internet Service Provider that Passbook is all support passbook is unified provide user account management function and Login feature based on Quick Response Code.Therefore, the Internet Service Provider of all support passbook needs to follow The standard criterion that passbook service provider is formulated, at its service end opening associated network interface, And in the login module of its client, do corresponding support.

In the account management server of passbook account is described below add and the flow process of management:

User installs and enter passbook on its mobile hand-held device such as smart mobile phone, panel computer etc. should With, passbook application interacts with the server of passbook service provider, obtains the net supported Network service provider list.User selects Internet Service Provider, and inputs at this Internet Service Provider The information of one or more accounts of registration, general accounts information at least includes account, password two parts, will Input information carries out and preserves.Be key by exclusive identification code SID corresponding with Internet Service Provider, with One or more accounts informations of family input are value, preserve with the data mode of key-value pair.Data can be encrypted After be saved in this locality, it is also possible to storage to cloud server, however it is necessary that and carries out security setting so that not by it It applies access.User is by repeatedly preserving accounts information corresponding for different web sites, and user is at each At Internet Service Provider, the account of registration is managed by passbook.Further, it is also possible to account is believed The amendment of breath and deletion.

The flow process of multiple network service unified offer login is realized to cloud below by introducing passbook system End server 200 is illustrated, it is to be understood that following cloud server 200 is merely for showing Example purpose, embodiments of the invention are not limited to this.

User ask log in support passbook application Internet Service Provider A certain as mhkc network clothes Business, the first receiver module receives, and generation module is that described logging request generates globally unique random identification string RS, and one comprise the information such as RS and this exclusive identification code SID corresponding to Internet Service Provider A Quick Response Code QR.The data such as RS and QR are returned to the destination service front end of the first client by sending module Module.After second receiver module accepts the agent logs request comprising the data such as RS, user account information, Login authentication module carries out RS and user account information validation verification, to received after being verified User corresponding to accounts information carries out login process, and by the session information of RS and new login user one by one Corresponding carrying out preserves.

Additionally, when, after the first client two-dimensional code display picture, the first receiver module receives the first client and sends out That send comprises the data that RS etc. is sent by poll or long connected mode.Whether login authentication module polls is used Family has used this Quick Response Code to log in and return login authentication result.Corresponding letter is returned if logged on authentication module Breath display user have logged on, then enter the relevant user interface after user logs in, and otherwise the page rests on and works as In front user interface.

After first receiver module receives the inquiry request that corresponding front-end module sends, first judge RS information Validity, if information is effective, then determines whether and RS subscriber sign-in conversation information accordingly, if There is the subscriber sign-in conversation information corresponding with RS, then login sessions information is returned to destination service front end Module, for identifying user's Quick Response Code based on RS already at logging status.

Cloud server according to embodiments of the present invention can generate identifying code and be sent to client, and passes through The response of client carries out login authentication, so that user only can install unified offer two in client The Mobile solution of dimension code login feature, it is possible to be applied to relate in the product of login feature, reduce user Memory cost, user need not log in the most defeated log-on message every time, register low cost, and Consumer's Experience is good, Also reduce simultaneously gone fishing, wooden horse snatches password equivalent risk, improves user account security.

In the description of this specification, reference term " embodiment ", " some embodiments ", " example ", The description of " concrete example " or " some examples " etc. means to combine the concrete spy of this embodiment or example description Levy, structure, material or feature are contained at least one embodiment or the example of the present invention.In this theory In bright book, the schematic representation of above-mentioned term is not necessarily referring to identical embodiment or example.And, Specific features, structure, material or the feature described can be in any one or more embodiments or show Example combines in an appropriate manner.

Although an embodiment of the present invention has been shown and described, for those of ordinary skill in the art Speech, it is possible to understand that these embodiments can be carried out without departing from the principles and spirit of the present invention Multiple change, revising, replace and modification, the scope of the present invention is limited by claims and equivalent thereof.

Claims (15)

1. one kind provides, for multiple network services are unified, the method logged in, it is characterised in that comprise the following steps:
The cloud server of Internet Service Provider receives the logging request that user is sent by the first client;
Described cloud server generates Quick Response Code according to the identification code of the identification string distributed for described logging request and described Internet Service Provider;
Described Quick Response Code is sent to described first client and is shown by described first client by described cloud server;
Described cloud server receives the accounts information of the described user sent after the second client shoots and resolve described Quick Response Code, wherein, preserving the accounts information of multiple network service in described second client, described second client obtains, with the identity information of described user, the accounts information that described user is corresponding according to the identification code of described Internet Service Provider;And
Described cloud server carries out login authentication according to described accounts information to described first client.
2. provide, for multiple network services are unified, the method logged in as claimed in claim 1, it is characterized in that, the identity information of described user includes one or more in the finger print information of described user, face characteristic information, session id information, voiceprint or retinal information.
3. the method logged in for the unified offer of multiple network services as described in any one of claim 1-2, it is characterized in that, preserving the address of the cloud server of described Internet Service Provider in described second client, described second client sends the accounts information of described user by the address of described cloud server to described cloud server.
4. the method logged in for the unified offer of multiple network services as described in any one of claim 1-2, it is characterised in that described Quick Response Code includes the address of described cloud server.
5. the method logged in for the unified offer of multiple network services as described in any one of claim 1-2, it is characterised in that after described first client shows described Quick Response Code, also include:
Described first client sends inquiry request by poll or long connected mode to described cloud server, and wherein, described inquiry request includes described identification string;
Described cloud server, after the accounts information sent according to described second client judges that described user is by login authentication, returns login authentication result according to described inquiry request to described first client.
6. the method logged in for the unified offer of multiple network services as described in any one of claim 1-2, it is characterised in that described second client is mobile terminal.
7. one kind to be that multiple network services are unified provide the system logged in, it is characterised in that include the first client, the second client, cloud server, wherein,
Described first client, for sending the logging request of user to the described cloud server of Internet Service Provider, and receives the Quick Response Code of described cloud server transmission and shows;
Described cloud server, Quick Response Code is generated for the identification code for described logging request allocation identification string and described Internet Service Provider, and described Quick Response Code is sent to described first client and is shown by described first client, and the accounts information of the described user of reception the second client transmission, and according to described accounts information, described first client is carried out login authentication;And
Described second client, for shooting and resolve the Quick Response Code that described first client shows, and the accounts information of described user is obtained according to the described Quick Response Code resolved, and the accounts information of described user is sent to described cloud server, wherein, preserving the accounts information of multiple network service in described second client, the identification code that described second client is additionally operable to according to described Internet Service Provider obtains, with the identity information of described user, the accounts information that described user is corresponding.
8. provide, for multiple network services are unified, the system logged in as claimed in claim 7, it is characterized in that, the identity information of described user includes one or more in the finger print information of described user, face characteristic information, session id information, voiceprint or retinal information.
9. provide, for multiple network services are unified, the system logged in as claimed in claim 7, it is characterized in that, preserving the address of the cloud server of described Internet Service Provider in described second client, described second client sends the accounts information of described user by the address of described cloud server to described cloud server.
10. provide, for multiple network services are unified, the system logged in as claimed in claim 7, it is characterised in that described Quick Response Code includes the address of described cloud server.
11. provide, for multiple network services are unified, the system logged in as claimed in claim 7, it is characterised in that
Described first client, is additionally operable to send inquiry request by poll or long connected mode to described cloud server, and wherein, described inquiry request includes described identification string;
Described cloud server, is additionally operable to, after the accounts information sent according to described second client judges that described user is by login authentication, return login authentication result according to described inquiry request to described first client.
12. 1 kinds of cloud servers, it is characterised in that including:
First receiver module, for receiving the logging request that user is sent by the first client;
Generation module, for generating Quick Response Code according to the identification code for described logging request allocation identification string and Internet Service Provider;
Sending module, for sending described Quick Response Code to described first client and being shown by described first client;
Second receiver module, for the accounts information receiving the described user sent after the second client shoots and resolve described Quick Response Code, wherein, preserving the accounts information of multiple network service in described second client, described second client obtains, with the identity information of described user, the accounts information that described user is corresponding according to the identification code of described Internet Service Provider;And
Login authentication module, for carrying out login authentication according to described accounts information to described first client.
13. cloud servers as claimed in claim 12, it is characterized in that, preserving the address of the cloud server of described Internet Service Provider in described second client, described second client sends the accounts information of described user by the address of described cloud server to described cloud server.
14. cloud servers as claimed in claim 12, it is characterised in that described Quick Response Code includes the address of described cloud server.
15. cloud servers as claimed in claim 12, it is characterized in that, described first receiver module, be additionally operable to receive the inquiry request that described first client is sent to described cloud server by poll or long connected mode, wherein, described inquiry request includes described identification string;Described login authentication module, is additionally operable to, after the accounts information sent according to described second client judges that described user is by login authentication, return login authentication result according to described inquiry request to described first client.
CN201210576422.4A 2012-12-26 2012-12-26 The mthods, systems and devices logged in are provided for multiple network services are unified CN103023918B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210576422.4A CN103023918B (en) 2012-12-26 2012-12-26 The mthods, systems and devices logged in are provided for multiple network services are unified

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210576422.4A CN103023918B (en) 2012-12-26 2012-12-26 The mthods, systems and devices logged in are provided for multiple network services are unified

Publications (2)

Publication Number Publication Date
CN103023918A CN103023918A (en) 2013-04-03
CN103023918B true CN103023918B (en) 2016-08-31

Family

ID=47972049

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210576422.4A CN103023918B (en) 2012-12-26 2012-12-26 The mthods, systems and devices logged in are provided for multiple network services are unified

Country Status (1)

Country Link
CN (1) CN103023918B (en)

Families Citing this family (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103973652A (en) * 2013-02-01 2014-08-06 深圳市天时通科技有限公司 Login method and login system
CN104113838A (en) * 2013-04-19 2014-10-22 沈志松 Unified identity authentication method among WIFIs
CN107070945A (en) * 2013-06-19 2017-08-18 华为技术有限公司 Identity logs method and apparatus
CN104301199B (en) * 2013-07-17 2019-03-15 腾讯科技(深圳)有限公司 A kind of information processing method, apparatus and system
TWI482093B (en) * 2013-08-13 2015-04-21 Mitac Int Corp Mobile device management system and method thereof
CN104426962B (en) * 2013-08-29 2019-11-15 腾讯科技(深圳)有限公司 Method, binding server, terminal and the system of multiple terminals binding
CN104468108A (en) * 2013-09-18 2015-03-25 上海耕云供应链管理有限公司 User identity authentication system and user identity authentication method based on barcode
CN104519197A (en) * 2013-09-29 2015-04-15 腾讯科技(深圳)有限公司 User login method, user login device and terminal devices
CN104767714B (en) * 2014-01-03 2016-11-16 腾讯科技(深圳)有限公司 A kind of ID and the correlating method of user resources information, terminal and system
CN103795731B (en) * 2014-02-26 2017-10-03 北京京东尚科信息技术有限公司 A kind of user account login method
CN103944877A (en) * 2014-03-02 2014-07-23 王恩惠 Method and system for safely logging on bank website based on two-dimension code
CN103905206A (en) * 2014-04-03 2014-07-02 江苏先安科技有限公司 Cross-equipment and cross-application identity authentication method based on data image coding
CN105450416A (en) * 2014-09-01 2016-03-30 阿里巴巴集团控股有限公司 Security authentication method and apparatus
CN105468350B (en) * 2014-09-10 2019-03-01 阿里巴巴集团控股有限公司 The processing method and processing device of object tag
CN104394136A (en) * 2014-11-18 2015-03-04 浪潮(北京)电子信息产业有限公司 Authentication method and authentication device based on mobile phone
CN104506492B (en) * 2014-11-28 2018-04-13 北京奇艺世纪科技有限公司 A kind of method and device of multiple terminals account number synchronization
CN106330816B (en) * 2015-06-17 2019-09-27 北京神州泰岳软件股份有限公司 A kind of method and system logging in cloud desktop
CN104954506B (en) * 2015-06-19 2019-02-22 腾讯科技(北京)有限公司 A kind of account management method, terminal device and system
CN105162774B (en) * 2015-08-05 2018-08-24 深圳市方迪融信科技有限公司 Virtual machine entry method, the virtual machine entry method and device for terminal
CN105162775A (en) * 2015-08-05 2015-12-16 深圳市方迪科技股份有限公司 Logging method and device of virtual machine
CN105897716B (en) * 2016-04-12 2018-10-19 广东公诚设备资产服务有限公司 A kind of generation method of website log identifying code
CN105959297A (en) * 2016-06-23 2016-09-21 珠海市魅族科技有限公司 Quick login methods, terminal, smart device, and server
CN107241431A (en) * 2017-07-04 2017-10-10 深圳市青葡萄科技有限公司 The method and system of virtual desktop are logged in based on the barcode scanning that Quick Response Code is realized
CN107959680B (en) * 2017-11-30 2020-05-12 哈尔滨森美朴科技发展有限责任公司 Password-free registration login method and system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ES2381293B1 (en) * 2009-04-20 2012-11-07 Alter Core, S.L. System and method of personal accreditation through mobile device.
CN101917408A (en) * 2010-07-23 2010-12-15 南昌大学 Mobile phone two-dimensional code electronic receipt method based on C/S framework
CN102571803B (en) * 2012-01-19 2016-04-27 北京远鉴科技有限公司 A kind of graphic based Quick Response Code protection account, prevent order from distorting and the method and system of phishing attack
CN102769628B (en) * 2012-07-27 2014-03-26 腾讯科技(深圳)有限公司 Page login method and server

Also Published As

Publication number Publication date
CN103023918A (en) 2013-04-03

Similar Documents

Publication Publication Date Title
US10402854B2 (en) Authenticating users for accurate online audience measurement
US9774606B2 (en) Cross platform social networking authentication system
US10003667B2 (en) Profile and consent accrual
EP3047626B1 (en) Multiple resource servers with single, flexible, pluggable oauth server and oauth-protected restful oauth consent management service, and mobile application single sign on oauth service
US9641513B2 (en) Methods and systems for controlling mobile terminal access to a third-party server
US20180039770A1 (en) Multi-Factor Profile and Security Fingerprint Analysis
US8893293B1 (en) Elevating trust in user identity during RESTful authentication
US8955082B2 (en) Authenticating using cloud authentication
US10158489B2 (en) Password-less authentication for access management
CN106063219B (en) System and method for bio-identification consensus standard
US8793759B2 (en) Authentication collaboration system and ID provider device
US9098689B2 (en) Efficiently throttling user authentication
US8689311B2 (en) Cross-domain authentication
CN104025539B (en) The method and apparatus for promoting single-sign-on services
US8005970B2 (en) Systems and methods for managing a domain name registrant's social websites
JP5567011B2 (en) Method and service integration platform system for providing Internet services
CN103001973B (en) Log-in control method based on Quick Response Code, system and device
US7747746B2 (en) Providing authenticated access to multiple social websites
US7240192B1 (en) Combining a browser cache and cookies to improve the security of token-based authentication protocols
JP2013211020A (en) Method and apparatus for preventing phishing attacks
US7721322B2 (en) Enterprise service-to-service trust framework
US8141138B2 (en) Auditing correlated events using a secure web single sign-on login
TWI529556B (en) Identity authentication management device and method thereof
US8667579B2 (en) Methods, systems, and computer readable media for bridging user authentication, authorization, and access between web-based and telecom domains
EP2347612B1 (en) User authentication management

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant