CN103024040A - Method and system for processing repeated log in of webpage authentication user - Google Patents

Method and system for processing repeated log in of webpage authentication user Download PDF

Info

Publication number
CN103024040A
CN103024040A CN2012105396491A CN201210539649A CN103024040A CN 103024040 A CN103024040 A CN 103024040A CN 2012105396491 A CN2012105396491 A CN 2012105396491A CN 201210539649 A CN201210539649 A CN 201210539649A CN 103024040 A CN103024040 A CN 103024040A
Authority
CN
China
Prior art keywords
user
certified
online
portal server
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2012105396491A
Other languages
Chinese (zh)
Other versions
CN103024040B (en
Inventor
阳外玲
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ruijie Networks Co Ltd
Original Assignee
Fujian Star Net Communication Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fujian Star Net Communication Co Ltd filed Critical Fujian Star Net Communication Co Ltd
Priority to CN201210539649.1A priority Critical patent/CN103024040B/en
Publication of CN103024040A publication Critical patent/CN103024040A/en
Application granted granted Critical
Publication of CN103024040B publication Critical patent/CN103024040B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention provides a method and a system for processing repeated log in of a webpage authentication user. The method includes that a portal server receives information of the user to be authenticated and transmitted by a client and determines whether the user to be authenticated is on line or not according to online user information stored by the portal server and state of the user to be authenticated and stored by an access controller AC. The portal server returns an authentication success webpage to the client through the AC on yes judgment and transmits the information of the user to be authenticated to an authentication server through the AC on no judgment to enable the authentication server to authenticate the user to be authenticated. The method for processing repeated log in of the webpage authentication user utilizes the portable server to judge the online user information stored by the portal server and the state of the user to be authenticated and stored by the AC to determine whether the user to be authenticated is on line or not to conduct corresponding operation. The method avoids repeated log in of the user, reduces processing flow of the server and ensures normal operation of the system.

Description

Process the method and system of webpage authenticated user repeat logon
Technical field
The present invention relates to network communications technology, relate in particular to the method and system of a kind of processing webpage (being called for short web) authenticated user repeat logon.
Background technology
Along with the expansion with number of network users of developing rapidly of internet, the webpage identity validation technology arises at the historic moment.The webpage authentication is a kind of identity identifying method that the authority of customer access network is controlled, and this authentication method does not need the client certificate software of user installation special use, uses common browser software just can carry out authentication.
When unauthenticated user used the browser online, access device can be forced the browser access particular station, and this particular station is generally portal server.When the user need to access other Internet resources beyond the portal server, just must carry out authentication at portal server by browser, only have to authenticate and just can use Internet resources by rear.When the webpage authentication offers convenience, also so that limited for the control dynamics of user behavior.Owing to can open a plurality of browser authentication login pages at same portable terminal, carry out repeat logon, this will cause the confusion of user's logging status in the access device, thereby cause operational uncertain consequence.
In the prior art, mainly contain following two kinds for the solution of user's repeat logon: a kind of is in the situation that the user is online, and login can force the primary login of user to be rolled off the production line again, then again again login of user; Another kind is to allow the user to carry out repeat logon, but carries out alarm and force users rolls off the production line after the repeat logon success, then requires the user again to login.These two kinds of methods all lay particular emphasis on the processing after the repeat logon of user, and all need the user again to login, and have increased the handling process of server.
Summary of the invention
First aspect of the present invention provides a kind of method of processing webpage authenticated user repeat logon, in order to reduce the handling process of server.
Another aspect of the present invention provides a kind of portal server, and the problem that exists when processing webpage authenticated user repeat logon in order to solve prior art has reduced the handling process of server.
Another aspect of the present invention provides a kind of webpage Verification System, and the problem that exists when processing webpage authenticated user repeat logon in order to solve prior art has reduced the handling process of server.
First aspect of the present invention provides a kind of method of processing webpage authenticated user repeat logon.
Aforesaid method comprises: portal server receives the user's to be certified of client transmission information;
The described user's to be certified that the online user's that described portal server is preserved according to self information and access controller AC preserve state determines whether described user to be certified is online;
If so, described portal server by described AC to the described client return authentication success page;
If not, described portal server sends described user's to be certified information to certificate server by described AC, so that described certificate server authenticates described user to be certified.
Aforesaid method, wherein, the described user's to be certified that the online user's that described portal server is preserved according to self information and AC preserve state, determine whether described user to be certified comprises online:
Described portal server is searched described user's to be certified information in the online user's who self preserves information;
If do not find, described portal server determines that described user to be certified is not online;
If find, described portal server is inquired about the described user's to be certified of described AC preservation state, if the described user's to be certified that described AC preserves state is online, described portal server determines that described user to be certified is online; If the described user's to be certified that described AC preserves state is not for online, described portal server is deleted described user's to be certified information in the online user's who self preserves information, and determines that described user to be certified is not online.
Aforesaid method, wherein, the state that described portal server is inquired about the described user to be certified of described AC preservation comprises:
Described portal server sends status query request message to described AC, and described status query request message comprises described user's to be certified information, so that the described user's to be certified that described AC inquiry self is preserved state;
Described portal server receives the status poll feedback message from described AC, and described status poll feedback message comprises described user's to be certified state.
Further, aforesaid method, wherein, described portal server also comprises after described AC sends status query request message:
Described portal server starts timer;
If described timer does not then receive described status poll feedback message yet, return the described step that sends status query request message to described AC.
Further, aforesaid method wherein, is describedly returned describedly after described AC sends the step of status query request message, also comprises:
Described portal server records the transmission times of described status query request message;
If the transmission times of described status query request message is more than or equal to preset times, described portal server sends the warning of Network Abnormal to described client.
Further, aforesaid method, wherein, described certificate server also comprises after described user to be certified is authenticated:
If authentication success, described portal server increase described user's to be certified information in the online user's who self preserves information, described AC is updated to the described user's to be certified that self preserves state online.
Another aspect of the present invention provides a kind of portal server.
Aforesaid portal server wherein, comprising:
Receiving element is for the user's to be certified who receives the client transmission information;
Memory cell is for the information of preserving the online user;
Control unit is used for the online user's that preserves according to memory cell information and the described user's to be certified that access controller AC preserves state, determines whether described user to be certified is online;
Transmitting element, be used for when described user to be certified is online by described AC to the successful page of described client return authentication, when described user to be certified is not online, send described user's to be certified information to certificate server by described AC, so that described certificate server authenticates described user to be certified.
Aforesaid portal server, wherein, described control unit comprises:
First inquires about subelement, searches described user's to be certified information for the online user's who preserves at described portal server information;
The second inquiry subelement is for the described user's to be certified who inquires about described AC preservation state;
The judgement subelement when information that is used for the online user that preserves at described portal server does not find described user's to be certified information, determines that described user to be certified is not online; When the state that the information that is used for the online user that preserves at described portal server finds described user's to be certified information and the described user to be certified that described AC preserves is online, determine that described user to be certified is online; The state that the information that is used for the online user that preserves at described portal server finds described user's to be certified information and the described user to be certified that described AC preserves is for online the time, the described user's to be certified of deletion information in the online user's that described portal server is preserved information, and determine that described user to be certified is not online.
Aforesaid portal server, wherein, described the second inquiry subelement specifically is used for sending status query request message to described AC, described status query request message comprises described user's to be certified information, so that the described user's to be certified that described AC inquiry self is preserved state, described the second inquiry subelement also specifically is used for receiving the status poll feedback message from described AC, and described status poll feedback message comprises described user's to be certified state.
Further, aforesaid portal server, wherein, described the second inquiry subelement also is used for starting timer after described AC sends status query request message, if described timer does not then receive described status poll feedback message yet, again send status query request message to described AC.
Further, aforesaid portal server, wherein, described the second inquiry subelement also is used for recording the transmission times of described status query request message again described after described AC sends the step of status query request message;
When described judgement subelement also is used for transmission times in described status query request message more than or equal to preset times, the warning of sending Network Abnormal to described client.
Aforesaid portal server, wherein, described memory cell also is used for increasing described user's to be certified information in the online user's who self preserves information behind described user's authentication success to be certified.
Another aspect of the present invention provides a kind of webpage Verification System, wherein, comprising: the arbitrary portal server that provides of the present invention.
The method and system of processing webpage authenticated user repeat logon provided by the invention, the judgement of the online user's who self is preserved by portal server information and the user's to be certified that access controller AC preserves state, determine whether user to be certified is online, thereby operate accordingly, avoided user's repeat logon, reduce the handling process of server, and guaranteed the normal operation of system.
Description of drawings
The flow chart of the method for the processing webpage authenticated user repeat logon that Fig. 1 provides for the embodiment of the invention one;
The flow chart of the judgement user online status that Fig. 2 provides for the embodiment of the invention two;
The inquiry AC that Fig. 3 provides for the embodiment of the invention two goes up the flow chart of user online status;
The structural representation of the portal server that Fig. 4 provides for the embodiment of the invention three;
The structural representation of the control unit that Fig. 5 provides for the embodiment of the invention four;
The structural representation of the webpage Verification System that Fig. 6 provides for the embodiment of the invention five.
Embodiment
The flow chart of the method for the processing webpage authenticated user repeat logon that Fig. 1 provides for the embodiment of the invention one.As shown in Figure 1, the method for the present embodiment comprises:
Step 110: portal server receives the user's to be certified of client transmission information.
In this step, when the user need to pass through the browser access network, need at first carry out authentication by browser at portal server, only have authentication just can use Internet resources by rear.And this authentication needs client that user's authentication information is provided, and such as user name, password etc., and sends to portal server.Particularly, the user can fill in authentication information by a certification page on client, and submits to portal server through access controller AC etc.
Particularly, when client is passed through the browser access network, browser is initiated HTML (Hypertext Markup Language) (Hyper Text Transport Protocol, be called for short HTTP) request, for the user who authenticates, access controller AC can intercept and capture this user's HTTP request, and it is sent the HTTP redirection response, and Redirect Address is portal server.Client connects with portal server according to Redirect Address, and portal server is to client push webpage certification page.The user fills in authentication information and submits to portal server through access controller AC etc. at this authentication webpage.Portal server receives the user's to be certified of client transmission information.
Step 120: portal server judges whether user to be certified is online, if, execution in step 130, otherwise execution in step 140.
In this step, the user's to be certified that the online user's that portal server is preserved according to self information and access controller AC preserve state determines whether user to be certified is online.Particularly, owing to having set in advance online user's table in portal server, for the user of all authentication successs, portal server all can keep this user's relevant information to add in online user's table.Particularly, the relevant information of adding the user in online user's table to can comprise user's account, IP address, MAC Address, and user's authorization message, such as available duration via, utilizable flow etc.In addition, a user online status table is also arranged on access controller AC.
Particularly, when user on the portal server was not online, the upper user of AC was also online scarcely; And when the user was online on the portal server, the upper user of AC was but not necessarily online.Generally speaking, when the upper user offline of AC, can notify portal server, so that both upper users' presence is consistent; But when there being abnormal conditions, as when the upper user offline of AC and when notifying portal server, portal server is not owing to variously unusually receiving corresponding information, so that the user is still online on the portal server, will cause the inconsistent situation of state this moment, and residual user is namely arranged on the portal server; Or AC restarts, and do not have enough time to send notice to portal server, can cause also that online user's on the portal server is residual.
Therefore, the user online status on the AC has reflected user's time of day in real time.The user's to be certified that portal server can be preserved according to the online user's who self preserves information and access controller AC state determines whether user to be certified is online.
Step 130: if, portal server by AC to the client return authentication success page.
Particularly, if judge that user to be certified is online, then this user's the authentication information operating process that need not to authenticate again, but by portal server by AC directly to the client return authentication success page.Particularly, can form the relevant factor return authentication success page according to the information of self online user table by portal server, and the information of the authentication success page is consistent with authenticating first when reaching the standard grade.User's information can comprise user's account, IP address, MAC Address and user's authorization message in online user's table, such as available duration via, utilizable flow etc.
Step 140: if not, portal server sends user's to be certified information to certificate server by AC.
Particularly, if judge that user to be certified is not online, then portal server encapsulates user's authentication information, and sends to AC.AC receives the authentication information that portal server sends, and then initiates authentication request to certificate server, and comprises user's to be certified authentication information in this authentication request, authenticates so that certificate server is treated authenticated user.
The method of the processing webpage authenticated user repeat logon that the present embodiment provides, the judgement of the online user's who self is preserved by portal server information and the user's to be certified that access controller AC preserves state, determine whether user to be certified is online, thereby operate accordingly, avoided user's repeat logon, reduce the handling process of server, and guaranteed the normal operation of system.
The flow chart of the judgement user online status that Fig. 2 provides for the embodiment of the invention two.In the method for the processing webpage authenticated user repeat logon of the above-mentioned embodiment of the invention one shown in Figure 1, in step 120, can adopt the flow chart of the judgement user online status of the embodiment of the invention shown in Figure 2 two to judge.As shown in Figure 2, on the basis of above-described embodiment, the user's to be certified that the online user's that portal server is preserved according to self in the step 120 information and access controller AC preserve state, determine whether online concrete grammar can comprise user to be certified:
Step 121: portal server is searched user's to be certified information in the online user's who self preserves information.
Particularly, since in the online user that in portal server, the arranges table add in real time user profile of authentication success, receive the user's to be certified that client sends information when portal server after, portal server can be searched user's to be certified information in the online user's who self preserves information, see whether the user is online.
Step 122: if do not find, portal server determines that user to be certified is not online.
If portal server does not find user's to be certified information in the online user's who self preserves information, can confirm that then this user to be certified is not online.Particularly, because when user on the portal server is not online, the upper user of AC is also online scarcely, therefore, when portal server does not find user's to be certified information in the online user's who self preserves information, can confirm directly that this user to be certified is not online, and need not to continue to inquire about the User Status on the AC.
Step 123: if find, the user's to be certified that portal server inquiry AC preserves state.
Particularly, if portal server finds user's to be certified information in the online user's who self preserves information, can't determine that this user is just certain online, because, may be because network or other reasons, some user can occur and roll off the production line, but portal server is not received the user offline notice that is sent by AC, thus the information that makes some user of having rolled off the production line not deleted situation about falling also.Therefore, portal server will continue to inquire about the upper user's to be certified who preserves of AC state, confirms further whether this user to be certified is online.Wherein, the user online status on the AC can embody user's time of day.
Step 124: if the user's to be certified that AC preserves state is online, portal server determines that user to be certified is online.
Because the user's who preserves among the AC state is the real state of user, if then the user's to be certified of AC preservation state is online, can determine that then this user to be certified is necessarily online.
Step 125: if the user's to be certified that AC preserves state for not online, portal server deletion user's to be certified in the online user's who self preserves information information, and definite user to be certified is not online.
If the user's to be certified that AC preserves state can determine then that for not online this user is not online, simultaneously, portal server this user's to be certified of deletion in the online user's who self preserves information information.
The method of above-mentioned judgement user online status can make portal server obtain user's to be certified time of day, thereby online user is normally logged in, also avoid online user's repeat logon, reduced the handling process of server, and guaranteed the normal operation of system.
The inquiry AC that Fig. 3 provides for the embodiment of the invention two goes up the flow chart of user online status.In the method for the judgement user online status that the above-mentioned embodiment of the invention two shown in Figure 2 provides, in step 123, the inquiry AC that can adopt the embodiment of the invention shown in Figure 3 two to provide goes up the flow chart of user online status and judges.As shown in Figure 3, on the basis of above-described embodiment, further, the user's to be certified that portal server inquiry AC preserves in the step 123 state can comprise:
Step 310: portal server sends status query request message to AC.Particularly, the status query request message that portal server sends to AC can comprise user's to be certified information, so that the user's to be certified that the AC inquiry self is preserved state.
Step 320: portal server receives the status poll feedback message from AC.Particularly, the AC status poll feedback message that returns to portal server comprises user's to be certified state.Portal server receives the status poll feedback message from AC, knows namely whether this user to be certified is online.
Further, on the basis of above-described embodiment,, after sending status query request message, AC can also comprise at step 310 portal server:
Portal server starts timer.Particularly, system can preset a timer, and under normal circumstances, within the time that this timer is set, portal server can receive the status poll feedback message from AC.After portal server sent status query request message to AC, portal server started this timer.If timer does not then receive the status poll feedback message yet, then turn back to step 310, namely portal server continues to send status query request message to AC.
On the basis of above-described embodiment, further, then do not receive yet the status poll feedback message at timer, turn back to after the step 310, can also comprise:
The transmission times of portal server recording status inquiry request message;
If the transmission times of status query request message is more than or equal to preset times, portal server sends the warning of Network Abnormal to client.
Particularly, portal server can repeat to send status query request message to AC, but can not unconfinedly send.After the number of times of the status query request message that sends to AC of portal server record is more than or equal to default number of times, then portal server no longer sends status query request message to AC, but the warning of sending Network Abnormal to client, network failure appears in prompting user.And after waiting for that network is normal, the user re-starts login.
In above-described embodiment, the judgement of the online user's who self is preserved by portal server information and the user's to be certified that access controller AC preserves state, determine whether user to be certified is online, thereby operate accordingly, avoid user's repeat logon, thereby reduced the handling process of server.
Further, on the basis of above-described embodiment, treat after authenticated user authenticates at certificate server, also comprise:
If authentication success, portal server increase user's to be certified information in the online user's who self preserves information, AC is updated to the user's to be certified that self preserves state online.
Particularly, after portal server confirms that user to be certified is online, namely according to and AC between agreement, the user's to be certified that receives authentication information is encapsulated, and sends to AC; AC receives the authentication information that portal server sends, and then initiates authentication request to certificate server, and carries user's to be certified authentication information in this authentication request; Certificate server judges according to user's authentication information whether this user is legal, and to AC return authentication message as a result; Afterwards, AC returns to portal server with authentication result, by portal server according to authentication result pushing certification results page.Particularly, treat after authenticated user authenticates at certificate server, if user's authentication success, then portal server and AC online user's information of all self being preserved is upgraded, to guarantee the correct of user state information, be convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
The judgement of the online user's that above-described embodiment is preserved self by portal server information and the user's to be certified that access controller AC preserves state, determine whether user to be certified is online, thereby operate accordingly, avoid user's repeat logon, thereby reduced the handling process of server.And after user's authentication success, the renewal to portal server and the upper User Status of AC can guarantee the correct of user state information, is convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
The below comes the method for processing webpage authenticated user repeat logon of the present invention is described with a specific embodiment.
When client was passed through the browser access network, browser was at first initiated the HTTP request, and for the user who authenticates, access controller AC can intercept and capture this user's HTTP request, and it is sent HTTP redirection response, and Redirect Address is portal server.Client connects with portal server according to Redirect Address, and portal server is to client push webpage certification page.The user fills in authentication information and submits to portal server at this certification page.
After the user's to be certified that portal server reception client sends the information, at first in the online user's who self preserves information, search user's to be certified information.
If do not find, portal server determines that this user to be certified is not online, then encapsulated by the authentication information of portal server with the user, and send to AC.AC receives the authentication information that portal server sends, and then initiates authentication request to certificate server.Particularly, the information that comprises user to be certified in this authentication request.Certificate server judges according to the information of the validated user that system prestores whether user to be certified is legal, then to AC return authentication message as a result.AC returns to portal server with this authentication result, and by portal server to the client push authentication result page.Particularly, treat after authenticated user authenticates at certificate server, if user's authentication success, then portal server and AC online user's information of all self being preserved is upgraded, to guarantee the correct of user state information, be convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
If find, then portal server continues the user's to be certified of inquiry AC preservation state.Particularly, portal server can at first send status query request message to AC, inquires the presence of this user on AC.AC return state query feedback message illustrates to portal server whether this user is online on AC.If the user's to be certified that AC preserves state is online, then portal server determines that this user to be certified is online, directly to the client push authentication success page.If the user's to be certified that AC preserves state is not for online, then portal server is deleted this user's to be certified information in the online user's who self preserves information, and determine that user to be certified is not online, then the authentication information with the user that receives sends to AC, continues follow-up identifying procedure.
The judgement of the online user's that above-described embodiment is preserved self by portal server information and the user's to be certified that access controller AC preserves state, determine whether user to be certified is online, thereby operate accordingly, avoid user's repeat logon, thereby reduced the handling process of server.And after user's authentication success, the renewal to portal server and the upper User Status of AC can guarantee the correct of user state information, is convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
The structural representation of the portal server that Fig. 4 provides for the embodiment of the invention three.As shown in Figure 4, the portal server 400 of the present embodiment can comprise: receiving element 410, memory cell 420, control unit 430 and transmitting element 440.
Receiving element 410 is for the user's to be certified who receives the client transmission information.Particularly, when the user need to pass through the browser access network, need at first carry out authentication by browser at portal server 400, only have authentication just can use Internet resources by rear.And this authentication needs client that user's authentication information is provided, and such as user name, password etc., and sends to portal server 400.Particularly, the user can fill in authentication information by a certification page on client, and submits to portal server 400 through access controller AC etc.The receiving element 410 of portal server 400 receives the user's to be certified of client transmission information.
Memory cell 420 is for the information of preserving the online user.Particularly, this memory cell 420 all keeps interpolation to come in the user's of all authentication successs relevant information.Particularly, the relevant information of adding the user in the memory cell 420 to can comprise user's account, IP address, MAC Address, and user's authorization message, such as available duration via, utilizable flow etc.
Control unit 430 is used for the online user's that preserves according to memory cell 420 information and the user's to be certified that access controller AC preserves state, determines whether user to be certified is online.Particularly, on access controller AC, also preserve user's to be certified state, and the user online status on the AC has reflected user's time of day in real time.The online user's that control unit 430 can be preserved according to memory cell 420 information and the user's to be certified that access controller AC preserves state determine whether user to be certified is online.
Transmitting element 440, be used for when user to be certified is online by AC to the client return authentication success page, when user to be certified is not online, send user's to be certified information by AC to certificate server, authenticate so that certificate server is treated authenticated user.Particularly, if control unit 430 judges that user to be certified is online, then this user's the authentication information operating process that need not to authenticate again, but pass through AC directly to the client return authentication success page by transmitting element 440, and the information of this authentication success page is consistent when reaching the standard grade with first authentication.If control unit 430 judges that user to be certified is not online, then the transmitting element 440 of portal server 400 authenticates so that certificate server is treated authenticated user by AC sends information from user to be certified to certificate server.
The portal server that the present embodiment provides, the judgement of the user's to be certified who the online user's that is kept at memory cell information and access controller AC is preserved by control unit state, determine whether user to be certified is online, thereby operate accordingly, reduced the handling process of server.
The structural representation of the control unit that Fig. 5 provides for the embodiment of the invention four.As shown in Figure 4 and Figure 5, the control unit 430 of portal server 400 can comprise: the first inquiry subelement 431, the second inquiry subelements 432 and judgement subelement 433.
First inquires about subelement 431, searches user's to be certified information for the online user's who preserves in the memory cell 420 of portal server 400 information.Particularly, since in the memory cell 420 in portal server 400 add in real time the user profile of authentication success, receive the user's to be certified that client sends information when the receiving element 410 of portal server 400 after, the first inquiry subelement 431 of control unit 430 can be searched user's to be certified information in the online user's that memory cell 420 is preserved information, see whether this user is online.
The second inquiry subelement 432 is for the user's to be certified who inquires about the AC preservation state.Particularly, because network or other reasons, the receiving element 410 that portal server 400 occurs is not possibly received the user offline notice that is sent by AC, and the information of some user of having rolled off the production line in the memory cell 420 of portal server 400 is not deleted to be fallen and make.Therefore, if the first inquiry subelement 431 finds user's to be certified information in the online user's that memory cell 420 is preserved information, at this moment, can't determine that this user is just certain online, the second inquiry subelement 432 of control unit 430 will continue to inquire about the upper user's to be certified who preserves of AC state, confirms further whether this user to be certified is online.
Judgement subelement 433 is used for determining whether the user is online.Particularly, can comprise: when the first inquiry subelement 431 does not find user's to be certified information in the online user's that the memory cell 420 of portal server 400 is preserved information, determine that user to be certified is not online; When the state that finds the user to be certified that user's to be certified information and the second inquiry subelement 432 preserve at inquiry AC at the first inquiry subelement 431 in the online user's that the memory cell 420 of portal server 400 is preserved information is online, determine that user to be certified is online; The state that finds the user to be certified that user's to be certified information and the second inquiry subelement 432 preserve at inquiry AC at the first inquiry subelement 431 in the online user's that the memory cell 420 of portal server 400 is preserved information is for online the time, deletion user's to be certified information in the online user's that the memory cell 420 of portal server 400 is preserved information, and determine that user to be certified is not online.
Further, on the basis of above-described embodiment, the second inquiry subelement 432 specifically is used for sending status query request message to AC, and this status query request message can comprise user's to be certified information, so that the user's to be certified that the AC inquiry self is preserved state.Further, the second inquiry subelement 432 is the concrete status poll feedback message that is used for receiving from AC also, and this status poll feedback message comprises user's to be certified state.The status poll feedback message that the second inquiry subelement 432 receives from AC knows namely whether this user to be certified is online.
Further, on the basis of above-described embodiment, the second inquiry subelement 432 also is used for start timer after AC sends status query request message, if timer does not then receive the status poll feedback message yet, again sends status query request message to AC.
Particularly, be preset with a timer in system, under normal circumstances, within the time that this timer is set, the second inquiry subelement 432 can receive the status poll feedback message from AC.When the second inquiry subelement 432 starts this timer after AC sends status query request message.If timer does not then receive the status poll feedback message yet, then the second inquiry subelement 432 sends status query request message to AC again.
Further, on the basis of above-described embodiment, the second inquiry subelement 432 also is used for again after AC sends status query request message, the transmission times of recording status inquiry request message; When judgement subelement 433 also is used for transmission times in status query request message more than or equal to preset times, the warning of sending Network Abnormal to client.
Particularly, the second inquiry subelement 432 can repeat to send status query request message to AC, but can not unconfinedly send.The number of times of the status query request message that sends to AC of judging the second inquiry subelement 432 records when judgement subelement 433 more than or equal to default number of times after, the second inquiry subelement 432 no longer sends status query request message to AC, but by the warning of sending Network Abnormal to client of judgement subelement 433, network failure appears in prompting user.
The portal server that above-described embodiment provides, the judgement of the user's to be certified that the first inquiry subelement by control unit and the second inquiry subelement are preserved the online user's that is kept at memory cell information and access controller AC state, determine whether user to be certified is online, thereby operate accordingly, avoid user's repeat logon, thereby reduced the handling process of server.
Further, on the basis of above-described embodiment, the portal server that the embodiment of the invention is protected, its memory cell 420 also is used for increasing user's to be certified information in the online user's who self preserves information behind user's authentication success to be certified.
Particularly, after the control unit 430 of portal server 400 confirmed that users to be certified are online, the user's to be certified who namely receiving element 410 is received by transmitting element 440 authentication information sent to AC; AC namely initiates authentication request to certificate server, carries user's to be certified authentication information in the authentication request; Certificate server judges according to user's authentication information whether this user is legal, and to AC return authentication message as a result; Afterwards, AC returns to authentication result the receiving element 410 of portal server 400, then by transmitting element 440 according to authentication result pushing certification results page.Particularly, treat after authenticated user authenticates at certificate server, if user's authentication success, then the memory cell 420 of portal server 400 increases user's to be certified information in the online user's who self preserves information, to guarantee the correct of user state information, be convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
The portal server that above-described embodiment provides, the judgement of the user's to be certified that the first inquiry subelement by control unit and the second inquiry subelement are preserved the online user's that is kept at memory cell information and access controller AC state, determine whether user to be certified is online, thereby operate accordingly, avoid user's repeat logon, thereby reduced the handling process of server.And after user's authentication success, the renewal of User Status can guarantee the correct of user state information in the online user's that memory cell self is preserved the information, is convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
The embodiment of the invention five also provides a kind of webpage Verification System.The structural representation of the webpage Verification System that Fig. 6 provides for the embodiment of the invention five, as shown in Figure 6, this webpage Verification System comprises the portal server 400 that above-mentioned any embodiment provides, and access controller AC500, certificate server 600 and client 700.Particularly, this portal server 400 can carry out interactive operation with access controller AC500, certificate server 600 and client 700, realizes user's webpage authentication, and can avoid user's repeat logon.Particularly, the structure of portal server and with the interactive relation of access controller AC500, certificate server 600 and client 700 can be referring to the associated description among Fig. 4 and the embodiment shown in Figure 5, the identifying procedure of webpage Verification System can referring to the associated description among Fig. 1, Fig. 2 and the embodiment shown in Figure 3, not repeat them here.
The webpage Verification System that the present embodiment provides, the first inquiry subelement of the control unit by portal server and the second inquiry subelement are to the judgement of the online user's of the memory cell that is kept at portal server information and the user's to be certified that access controller AC preserves state, determine whether user to be certified is online, thereby operate accordingly, avoid user's repeat logon, thereby reduced the handling process of server.And after user's authentication success, the renewal of User Status can guarantee the correct of user state information in the online user's that memory cell self is preserved the information, is convenient to next time to the inquiry of user state information and the operation that the user is authenticated.
One of ordinary skill in the art will appreciate that: all or part of step that realizes above-mentioned each embodiment of the method can be finished by the relevant hardware of program command.Aforesaid program can be stored in the computer read/write memory medium.This program is carried out the step that comprises above-mentioned each embodiment of the method when carrying out; And aforesaid storage medium comprises: the various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
It should be noted that at last: above each embodiment is not intended to limit only in order to technical scheme of the present invention to be described; Although with reference to aforementioned each embodiment the present invention is had been described in detail, those of ordinary skill in the art is to be understood that: it still can be made amendment to the technical scheme that aforementioned each embodiment puts down in writing, and perhaps some or all of technical characterictic wherein is equal to replacement; And these modifications or replacement do not make the essence of appropriate technical solution break away from the scope of various embodiments of the present invention technical scheme.

Claims (13)

1. a method of processing webpage authenticated user repeat logon is characterized in that, comprising:
Portal server receives the user's to be certified of client transmission information;
The described user's to be certified that the online user's that described portal server is preserved according to self information and access controller AC preserve state determines whether described user to be certified is online;
If so, described portal server by described AC to the described client return authentication success page;
If not, described portal server sends described user's to be certified information to certificate server by described AC, so that described certificate server authenticates described user to be certified.
2. method according to claim 1 is characterized in that, the described user's to be certified that the online user's that described portal server is preserved according to self information and AC preserve state determines whether described user to be certified comprises online:
Described portal server is searched described user's to be certified information in the online user's who self preserves information;
If do not find, described portal server determines that described user to be certified is not online;
If find, described portal server is inquired about the described user's to be certified of described AC preservation state, if the described user's to be certified that described AC preserves state is online, described portal server determines that described user to be certified is online; If the described user's to be certified that described AC preserves state is not for online, described portal server is deleted described user's to be certified information in the online user's who self preserves information, and determines that described user to be certified is not online.
3. method according to claim 2 is characterized in that, the state that described portal server is inquired about the described user to be certified of described AC preservation comprises:
Described portal server sends status query request message to described AC, and described status query request message comprises described user's to be certified information, so that the described user's to be certified that described AC inquiry self is preserved state;
Described portal server receives the status poll feedback message from described AC, and described status poll feedback message comprises described user's to be certified state.
4. method according to claim 3 is characterized in that, described portal server also comprises after described AC sends status query request message:
Described portal server starts timer;
If described timer does not then receive described status poll feedback message yet, return the described step that sends status query request message to described AC.
5. method according to claim 4 is characterized in that, describedly returns describedly after described AC sends the step of status query request message, also comprises:
Described portal server records the transmission times of described status query request message;
If the transmission times of described status query request message is more than or equal to preset times, described portal server sends the warning of Network Abnormal to described client.
6. according to claim 1 to the described method of 5 any one, it is characterized in that, described certificate server also comprises after described user to be certified is authenticated:
If authentication success, described portal server increase described user's to be certified information in the online user's who self preserves information, described AC is updated to the described user's to be certified that self preserves state online.
7. a portal server is characterized in that, comprising:
Receiving element is for the user's to be certified who receives the client transmission information;
Memory cell is for the information of preserving the online user;
Control unit is used for the online user's that preserves according to memory cell information and the described user's to be certified that access controller AC preserves state, determines whether described user to be certified is online;
Transmitting element, be used for when described user to be certified is online by described AC to the successful page of described client return authentication, when described user to be certified is not online, send described user's to be certified information to certificate server by described AC, so that described certificate server authenticates described user to be certified.
8. portal server according to claim 7 is characterized in that, described control unit comprises:
First inquires about subelement, searches described user's to be certified information for the online user's who preserves at described portal server information;
The second inquiry subelement is for the described user's to be certified who inquires about described AC preservation state;
The judgement subelement when information that is used for the online user that preserves at described portal server does not find described user's to be certified information, determines that described user to be certified is not online; When the state that the information that is used for the online user that preserves at described portal server finds described user's to be certified information and the described user to be certified that described AC preserves is online, determine that described user to be certified is online; The state that the information that is used for the online user that preserves at described portal server finds described user's to be certified information and the described user to be certified that described AC preserves is for online the time, the described user's to be certified of deletion information in the online user's that described portal server is preserved information, and determine that described user to be certified is not online.
9. portal server according to claim 8 is characterized in that,
Described the second inquiry subelement specifically is used for sending status query request message to described AC, described status query request message comprises described user's to be certified information, so that the described user's to be certified that described AC inquiry self is preserved state, described the second inquiry subelement also specifically is used for receiving the status poll feedback message from described AC, and described status poll feedback message comprises described user's to be certified state.
10. portal server according to claim 9 is characterized in that,
Described the second inquiry subelement also is used for start timer after described AC sends status query request message, if described timer does not then receive described status poll feedback message yet, again sends status query request message to described AC.
11. portal server according to claim 10 is characterized in that,
Described the second inquiry subelement also is used for recording the transmission times of described status query request message again described after described AC sends the step of status query request message;
When described judgement subelement also is used for transmission times in described status query request message more than or equal to preset times, the warning of sending Network Abnormal to described client.
12. to the described portal server of 11 any one, it is characterized in that according to claim 7,
Described memory cell also is used for increasing described user's to be certified information in the online user's who self preserves information behind described user's authentication success to be certified.
13. a webpage Verification System is characterized in that, comprising: such as the described portal server of claim 7 to 12 any one.
CN201210539649.1A 2012-12-13 2012-12-13 The method and system of process webpage authenticated user repeat logon Active CN103024040B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210539649.1A CN103024040B (en) 2012-12-13 2012-12-13 The method and system of process webpage authenticated user repeat logon

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210539649.1A CN103024040B (en) 2012-12-13 2012-12-13 The method and system of process webpage authenticated user repeat logon

Publications (2)

Publication Number Publication Date
CN103024040A true CN103024040A (en) 2013-04-03
CN103024040B CN103024040B (en) 2015-11-25

Family

ID=47972164

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210539649.1A Active CN103024040B (en) 2012-12-13 2012-12-13 The method and system of process webpage authenticated user repeat logon

Country Status (1)

Country Link
CN (1) CN103024040B (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103856562A (en) * 2014-02-26 2014-06-11 福建星网视易信息系统有限公司 Terminal state cache method and device under http protocol
WO2014173335A1 (en) * 2013-09-04 2014-10-30 中兴通讯股份有限公司 Portal authentication method, broadband network gateway (bng), portal server and system
CN105848149A (en) * 2016-05-13 2016-08-10 上海斐讯数据通信技术有限公司 Wireless local area network safety authentication method
CN105933302A (en) * 2016-04-14 2016-09-07 北京思特奇信息技术股份有限公司 Repeated job number login method and system
CN107680414A (en) * 2017-11-09 2018-02-09 佛山市海科云筹信息技术有限公司 Aircraft monitoring and managing method, device, storage medium and server
CN110166471A (en) * 2019-05-28 2019-08-23 杭州迪普科技股份有限公司 A kind of portal authentication method and device
CN110336807A (en) * 2019-06-28 2019-10-15 苏州浪潮智能科技有限公司 A kind of identity identifying method based on Web service, equipment and storage medium
CN114124452A (en) * 2018-05-18 2022-03-01 华为技术有限公司 Terminal authentication method, related equipment and authentication system

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101360021A (en) * 2008-10-14 2009-02-04 中国电信股份有限公司 Monitoring method and system for wireless wideband user status
US20090094050A1 (en) * 2001-05-18 2009-04-09 Nikon Corporation Electronic shop customer registration method
CN101557387A (en) * 2008-04-11 2009-10-14 北京亿企通信息技术有限公司 Method for dealing with repeat login
CN101771540A (en) * 2008-12-29 2010-07-07 中国移动通信集团公司 User authentication method, device and system
CN102082800A (en) * 2011-01-28 2011-06-01 浪潮(北京)电子信息产业有限公司 User request processing method and server

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090094050A1 (en) * 2001-05-18 2009-04-09 Nikon Corporation Electronic shop customer registration method
CN101557387A (en) * 2008-04-11 2009-10-14 北京亿企通信息技术有限公司 Method for dealing with repeat login
CN101360021A (en) * 2008-10-14 2009-02-04 中国电信股份有限公司 Monitoring method and system for wireless wideband user status
CN101771540A (en) * 2008-12-29 2010-07-07 中国移动通信集团公司 User authentication method, device and system
CN102082800A (en) * 2011-01-28 2011-06-01 浪潮(北京)电子信息产业有限公司 User request processing method and server

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014173335A1 (en) * 2013-09-04 2014-10-30 中兴通讯股份有限公司 Portal authentication method, broadband network gateway (bng), portal server and system
CN104426660A (en) * 2013-09-04 2015-03-18 中兴通讯股份有限公司 Portal authentication method, BNG (broadband network gateway), Portal server and Portal authentication system
US20160226849A1 (en) * 2013-09-04 2016-08-04 Zte Corporation Portal authentication method, broadband network gateway, portal server and system
CN103856562A (en) * 2014-02-26 2014-06-11 福建星网视易信息系统有限公司 Terminal state cache method and device under http protocol
CN105933302A (en) * 2016-04-14 2016-09-07 北京思特奇信息技术股份有限公司 Repeated job number login method and system
CN105848149A (en) * 2016-05-13 2016-08-10 上海斐讯数据通信技术有限公司 Wireless local area network safety authentication method
CN107680414A (en) * 2017-11-09 2018-02-09 佛山市海科云筹信息技术有限公司 Aircraft monitoring and managing method, device, storage medium and server
CN114124452A (en) * 2018-05-18 2022-03-01 华为技术有限公司 Terminal authentication method, related equipment and authentication system
CN114124452B (en) * 2018-05-18 2023-03-10 华为技术有限公司 Terminal authentication method, related equipment and authentication system
CN110166471A (en) * 2019-05-28 2019-08-23 杭州迪普科技股份有限公司 A kind of portal authentication method and device
CN110336807A (en) * 2019-06-28 2019-10-15 苏州浪潮智能科技有限公司 A kind of identity identifying method based on Web service, equipment and storage medium

Also Published As

Publication number Publication date
CN103024040B (en) 2015-11-25

Similar Documents

Publication Publication Date Title
CN103024040B (en) The method and system of process webpage authenticated user repeat logon
EP3457627B1 (en) Automatic login method and device between multiple websites
CN107172054B (en) Authority authentication method, device and system based on CAS
CN103020687B (en) Quick Response Code sharing method and system
CN110781482B (en) Login method, login device, computer equipment and storage medium
US8909705B2 (en) Method and system for use in providing network services interchange
CN104364762A (en) Systems and methods for controlling a local application through a web page
JPWO2007110951A1 (en) User confirmation apparatus, method and program
CN104917716A (en) Page security management method and device
CN104954330A (en) Method of accessing data resources, device and system
CN105162802B (en) Portal authentication method and certificate server
CN108259457B (en) WEB authentication method and device
CN105873053B (en) Method and system for embedding access authentication page into webpage and wireless access point
CN107196909A (en) Invitation registration method and device
CN108111486B (en) Method and device for avoiding repeated login
CN109218389A (en) The method, apparatus and storage medium and electronic equipment of processing business request
CN102065063A (en) WEB authentication device, system and method
CN104837134B (en) A kind of web authentication user login method, equipment and system
CN108924149B (en) Token-based identity validity verification method and system
CN104009999A (en) Method and device for preventing ARP cheating and network access server
KR102278660B1 (en) Passing authentication information through parameters
US10735399B2 (en) System, service providing apparatus, control method for system, and storage medium
CN112202813B (en) Network access method and device
CN104935562A (en) Information processing apparatus, information processing system and information processing method
JP2005157822A (en) Communication control device, application server, communication control method, and program

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C56 Change in the name or address of the patentee
CP01 Change in the name or title of a patent holder

Address after: Cangshan District of Fuzhou City, Fujian province 350002 Jinshan Road No. 618 Garden State Industrial Park building 19#

Patentee after: RUIJIE NETWORKS CO., LTD.

Address before: Cangshan District of Fuzhou City, Fujian province 350002 Jinshan Road No. 618 Garden State Industrial Park building 19#

Patentee before: Fujian Xingwangruijie Network Co., Ltd.