CN104426856A - Application login method, device and user equipment - Google Patents
Application login method, device and user equipment Download PDFInfo
- Publication number
- CN104426856A CN104426856A CN201310375374.7A CN201310375374A CN104426856A CN 104426856 A CN104426856 A CN 104426856A CN 201310375374 A CN201310375374 A CN 201310375374A CN 104426856 A CN104426856 A CN 104426856A
- Authority
- CN
- China
- Prior art keywords
- application
- agent application
- login
- agent
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0884—Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Stored Programmes (AREA)
Abstract
The invention relates to an application login method, an application login device and user equipment. The method comprises the following steps of: logging in an agent application through inputting user login information; obtaining login successful state information of the agent application; and logging in an agented application of the same user through utilizing the login successful state information and by means of the agent application. The application login device comprises a device for logging in the agent application through inputting the user login information, a device used for obtaining the login successful state information of the agent application, and a device for logging in the agented application of the same user through utilizing the login successful state information and by means of the agent application. The user equipment includes the agent application used for obtaining the login successful state information of the agent application after the logging in of the agent application which is realized through inputting the user login information, and logging in the agented application of the same user through utilizing the login successful state information, and the agented application which is used for performing logging in through utilizing the login successful state information and by means of the agent application after the agent application has been logged in and the login successful state information of the agent application is acquired.
Description
Technical field
The embodiments of the present invention relate generally to application, and especially, the embodiments of the present invention relate to application login method, device and subscriber equipment.
Background technology
Generally speaking, apply (application, app) to refer to specially for helping user to go to perform one or more relevant particular task and the software that designs.Desktop computer, laptop computer, flat computer and smart mobile phone etc. are all the important carriers being widely used for carrying application.Along with operating system and operational capability thereof are constantly developed and expand, exploitation side have developed more, more complicated application continuously.
May be used by multiple user due to application and the information relevant with its user and data may be stored in applying; therefore great majority application all can adopt protection mechanism to guarantee and only have suitable lattice user can use application or make different user cannot obtain information or the data of other users; wherein, login mechanism is one of protection mechanism the most common.
When using login mechanism, user needs before use application, take the modes such as input username and password to log in, and just normally can use application after successful login or utilize the information relevant with this user and data that store in application.
But, the terminal (especially mobile terminal) of carrying application carries out input operation more difficult, if user needs to use different application, will relate to and logging in for each application, this process is not only loaded down with trivial details but also be consuming time, thus causes user cannot obtain better Consumer's Experience.
Single-sign-on (single sign on, sso) typically refers to the different web sites for meeting some rule, only need log in the login that one of them website just can realize other websites.In personal computer, achieved the single-sign-on for different web sites based on cookie, its principle is that the cookie on personal computer is that this personal computer is public, just can realize as long as meet domain name rule.
Summary of the invention
But, for application, each application in terminal has privately owned cookie, this is equivalent to the privately owned term of each application, mutually cannot access cookie between application, therefore cannot adopt in personal computer and for the single sign on mechanism of website, the different application in terminal be logged in.Meanwhile, for the application in terminal, also need the problem of considering to prevent from forging application, thus cause more being difficult to realize the single-sign-on for application.
Therefore, realize the effective single-sign-on for application and there is good market prospects and objective market value.
Illustrative embodiments of the present invention relates to application login method, device and subscriber equipment.
According to the embodiment of the present invention, disclose a kind of application login method, the method comprises: by the application of input user login information login agent; What obtain this agent application logins successfully state information; And by this agent application utilize this login successfully state information log in same user by agent application.
Preferably, in the method, to this agent application of server log and this by agent application.
Preferably, in the method, whether correct by the signature of this agent application of this server authentication and this non-proxy application.
Preferably, in the method, by SDK call this agent application utilize this to login successfully state information logs in this same user this by agent application.
Preferably, in the method, whether this agent application is correct by the mutual certifying signature of this server with this SDK.
Preferably, in the method, this SDK verifies that whether this is correct by the signature of agent application.
According to the embodiment of the present invention, also disclose a kind of application entering device, this device comprises: for the device by the application of input user login information login agent; For obtaining the device logining successfully state information of this agent application; And for utilized by this agent application this login successfully state information log in same user by the device of agent application.
Preferably, in the apparatus, to this agent application of server log and this by agent application.
Preferably, in the apparatus, whether correct by the signature of this agent application of this server authentication and this non-proxy application.
Preferably, in the apparatus, by SDK call this agent application utilize this to login successfully state information logs in this same user this by agent application.
Preferably, in the apparatus, whether this agent application is correct by the mutual certifying signature of this server with this SDK.
Preferably, in the apparatus, this SDK verifies that whether this is correct by the signature of agent application.
According to the embodiment of the present invention, also disclose a kind of subscriber equipment, this subscriber equipment comprises: agent application, login successfully state information for what obtain this agent application after being logged in by input user login information, and utilize this login successfully state information log in same user by agent application; And this of this same user is by agent application, for logged in this agent application and obtain this agent application this login successfully state information after, utilize this to login successfully state information by this agent application and log in.
Preferably, in this subscriber equipment, to this agent application of server log and this by agent application.
Preferably, in this subscriber equipment, whether correct by the signature of this agent application of this server authentication and this non-proxy application.
Preferably, in this subscriber equipment, also comprise SDK, this SDK call this agent application utilize this to login successfully state information logs in this same user this by agent application.
Preferably, in this subscriber equipment, whether this agent application and this SDK pass through the mutual certifying signature of this server correct.
Preferably, in this subscriber equipment, this SDK verifies that whether this is correct by the signature of agent application.
Accompanying drawing explanation
By reference to the accompanying drawings and with reference to following detailed description, the feature of each execution mode of the present invention, advantage and other aspects will become more obvious, show some execution modes of the present invention by way of example, and not by way of limitation at this.In the accompanying drawings:
Fig. 1 is the flow chart of application login method 100 according to an illustrative embodiment of the invention;
Fig. 2 is the block diagram 200 being suitable for subscriber equipment for putting into practice illustrative embodiments of the present invention and server;
Fig. 3 is the block diagram of application entering device 300 according to an illustrative embodiment of the invention;
Fig. 4 is the schematic block diagram of the mobile terminal 400 be suitable for for putting into practice illustrative embodiments of the present invention; And
Fig. 5 is the schematic block diagram of the computer 500 be suitable for for putting into practice illustrative embodiments of the present invention.
Embodiment
Each illustrative embodiments of the present invention is described in detail below with reference to accompanying drawing.Flow chart in accompanying drawing and block diagram show the architectural framework in the cards of the method and apparatus according to various execution mode of the present invention, function and operation.It should be noted that, each square frame in flow chart or block diagram can represent a part for module, program segment or a code, and a part for described module, program segment or code can comprise the executable instruction of one or more logic function for realizing defined in each execution mode.Also it should be noted that at some as in alternative realization, the function marked in square frame also can according to being different from occurring in sequence of marking in accompanying drawing.Such as, in fact the square frame that two adjoining lands represent can perform substantially concurrently, or they also can perform according to contrary order sometimes, and this depends on involved function.Should be noted that equally, the combination of the square frame in each square frame in flow chart and/or block diagram and flow chart and/or block diagram, the special hardware based system of function or the operation put rules into practice can be used to realize, or the combination of specialized hardware and computer instruction can be used realize.
Should be appreciated that providing these illustrative embodiments is only used to enable those skilled in the art understand better and then realize the present invention, and not limit the scope of the invention by any way.
Application login method according to an illustrative embodiment of the invention and device mainly realize in a user device.Wherein, subscriber equipment includes but not limited to the electronic equipment of mobile phone, smart phone, desktop computer, portable computer, on knee or notebook, flat computer, pocket held computer, electrical equipment or other suitable type any.
According to an illustrative embodiment of the invention, be provided with various application in a user device, these application can comprise such as everybody client, other application based on Renren Network and any other application.When realizing application login method of the present invention and device, an application in subscriber equipment (such as, everybody client) will agent application be used as, this agent application acts on behalf of other application (such as, other are based on the application of Renren Network, be also referred to as by agent application) login behavior, thus realize agent application with by the single-sign-on of agent application.
According to some illustrative embodiments of the present invention, comprise open platform in a user device, this open platform releasing software development kit (SDK), this SDK is in order to the auxiliary function realizing single-sign-on.Therefore, can be understood as here in illustrative embodiments, carry out by agent application and open platform the function coordinating the single-sign-on realized in the present invention.
With the execution mode relating to agent application and open platform and carry out the function coordinating to realize single-sign-on, application login method of the present invention and device are described below.Should be appreciated that when simplifying, can without the need to open platform and SDK, but by means of only agent application being configured to the function realizing single-sign-on, and then realize application login method of the present invention and device.
See figures.1.and.2, wherein Fig. 1 is the flow chart of application login method 100 according to an illustrative embodiment of the invention, and Fig. 2 is the block diagram 200 being suitable for subscriber equipment for putting into practice illustrative embodiments of the present invention and server.
First with reference to Fig. 2, its subscriber equipment 210 shown in Block Diagrams 200 and server 220.Subscriber equipment 210 comprises everybody client 211, multiple application 212 and open platform 213; And open platform 213 comprises SDK 214.Everybody client 211 is in fact also an application.In an exemplary embodiment of the present invention embodiment, everybody is used as agent application at client 211, and other application 212 are by agent application.By the single-sign-on realizing everybody client 211 in subscriber equipment 210 and application 212 alternately of subscriber equipment 210 and server 220.
According to Fig. 1, in step S101, user use subscriber equipment with when server log agent application or before appropriate time (such as, when subscriber equipment is unlocked or subscriber equipment is connected to network), agent application and SDK are by the mutual certifying signature of server.
The main purpose of this step is prevent personation agent application or personation SDK and gain user profile (such as, username and password) by cheating by " fishing behavior ".Wherein, server end is considered to believable, and therefore agent application and SDK are by the mutual certifying signature of server.Wherein, the signature of agent application and SDK (Software Development Kit) for verifying the identity of agent application and SDK, required user login information (such as, username and password) when it is different from the application of user's login agent or other application.
Should be appreciated that step S101 is selectivity step.Credible or owing to being in without the need in the execution mode verified it in trusted context in agent application, only need by the signature of agent application by server authentication SDK in step S101.Credible or owing to being in without the need in the execution mode verified it in trusted context at SDK, only need by the signature of SDK by server authentication agent application in step S101.In agent application with SDK is all credible or owing to being in without the need in the execution mode verified them in trusted context, can without the need to the step of this certifying signature of step S101.
When the signature of agent application and SDK is all verified as credible in step S101, enter step S102.
Continue with reference to Fig. 1, in step s 102, also obtain to server log agent application and login successfully state information.
According to an illustrative embodiment of the invention, can come to server log agent application by using subscriber equipment to transmit the user login information corresponding with agent application to server, wherein the mode of typing user login information comprises input corresponding to various ways such as the username and password of agent application, voice typing and fingerprint typings.Correspondingly, the user login information of institute's typing can comprise username and password, voice and fingerprint etc.
According to an illustrative embodiment of the invention, server, after receiving user login information, verifies whether this user login information correctly mates with the agent application that will log in.When user login information does not correctly mate with agent application, the login of server refusal agent application, meanwhile, server can send it back to subscriber equipment and indicate the login of agent application to be rejected such information.When user login information correctly mates with agent application, agent application is by Successful login, and meanwhile, server sends to the agent application in subscriber equipment and logins successfully state information.This logins successfully state information can be called as ticket (ticket), its may be used for when meeting being logged in by agent application of some condition without the need to when typing user login information to server log by agent application.Login successfully in state information without the need to comprise login agent application time institute's typing user login information.Login successfully state information can be preserved by server in advance or such as use some algorithms to generate when agent application Successful login by server, such as, user login information (such as, user and password) according to user carries out MD5 digest to generate ticket.
According to an illustrative embodiment of the invention, after agent application receives and logins successfully state information, store logining successfully state information.Wherein agent application can be stored in agent application by logining successfully state information or outside agent application, if store login successfully state information and by other application or user's access or cannot obtain.
Should be appreciated that the login of application must not represent the private information allowing application access user.In some illustrative embodiments, when the private information of calling party is wished in application, also need to obtain mandate from server, i.e. authorization message.Obtaining and using with to login successfully state information similar of this authorization message, does not repeat them here.
According to some illustrative embodiments of the present invention, not needed as independent step by the mutual certifying signature of server as the agent application in the step S101 of optional step and SDK and do not need to occur before step S102 yet, but can occur in response to server log agent application.Now, step S101 can merge with step S102, thus makes to automatically carrying out agent application and SDK during server log agent application by the mutual certifying signature of server.
When agent application by Successful login and obtain login successfully state information after, enter step S103.
Continue, with reference to Fig. 1, in step s 103, when being logged in by agent application, to verify by the signature of agent application.According to an illustrative embodiment of the invention, owing to being correct by the signature verification of SDK in step S101, therefore the checking of being signed by agent application has been undertaken by SDK.
Should be appreciated that step S103 is selectivity step.Credible by agent application or owing to being in without the need in the execution mode verified it in trusted context, the step can signed by agent application without the need to this checking of step S103.
When being verified as correct by the signature of agent application in step s 103, enter step S104.
Continue with reference to Fig. 1, in step S104, utilized by agent application and login successfully state information to server log by agent application.
According to an illustrative embodiment of the invention, agent application is called by agent application by SDK.Wherein, SDK sends to agent application by by the signature of agent application, and agent application will be transmitted to by the signature of agent application server and utilize store login successfully state information to server log by agent application.
Be to be understood that, when simplifying, can without the need to SDK, but only by by agent application to agent application send signature with apply for log in, and agent application will be transmitted to by the signature of agent application server and utilization store login successfully state information to server log by agent application.
According to some illustrative embodiments of the present invention, also can be undertaken by server by the signature of agent application as the checking in the step S103 of optional step, and do not need occur as independent step and do not need to occur before step S104 yet, but server can be transmitted to occur by by the signature of agent application in response to agent application.Now, step S103 can merge with step S104, thus makes to be verified when being transmitted to server by the signature of agent application by the signature of agent application by server in agent application.
According to an illustrative embodiment of the invention, because object that single-sign-on is main makes same user different application on a user device to only needing during server log once to log in, therefore agent application and should be met them by the relation between agent application and all belong to same user, namely they use by same user.
Typically agent application and can be such as everybody client and based on the relation between everybody application, wherein everybody client is agent application by the relation between agent application, and being applied as by agent application based on everybody.Specifically, when there is multiple user and using a subscriber equipment, each user can publish after everybody client of finishing using, therefore when not publishing everybody client, the user application based on everybody is used to be the user using everybody client, therefore, utilizing application login method of the present invention, this user can being made when logging in everybody client without the need to logging in the application based on everybody respectively.Under this relation, everybody client can be interpreted as upper application and the application based on everybody be interpreted as the next application, in the listed situation of upper application, the next application can be logged in by upper application proxy without the need to again logging in.
Should be appreciated that agent application and be not limited to upper application as above and the next application by the relation between agent application.Such as, when the application based on everybody can log in when without the need to logging in everybody client use time, be sane level relation between multiple application based on everybody and same user logs in them time required user login information can be identical.Now, can make when one of them application is logged, this application is agent application, and the login of then other application is all acted on behalf of by this listed agent application and carried out, and without the need to logging in them respectively.
Be to be understood that, when being sane level relation between multiple application, the certain incidence relation of these application demand fulfillment just can carry out single-sign-on, these incidence relations include but not limited to that these application are issued by same company, these application are used by same user by same user installation and these application, but the incidence relation that wherein must meet is these application is used by same user.
In common application uses, an application can be used by multiple user, and user needs use application by logging in and obtain the data being specific to login user stored in application.According to some illustrative embodiments of the present invention, between multiple application for sane level relation and each application used by different users time, such as, there is application A, application B, application C and application D, the user wherein applying A is user A, user B and user C, the user of application B is user A, user B and user D, the user of application C is user A, user C and user D, the user of application D is user B, user C and user D, now, when applying A and to be logged in by user A and therefore as agent application, when attempting to log in application B or application C, logged-in user due to the application A as agent application is user A, therefore user comprise equally user A application B and application C can utilize application A login successfully state information by apply A logged in, the login user wherein applying B and application C is similarly user A.In the example present, because user A is not the user of application D, therefore user A has logged in application A this fact application A can not be made as the agent application of application D, and therefore applying D cannot by single-sign-on.
Wherein, determine whether the user of different application is whether same user or different application comprise same user and can such as be undertaken by being recorded the service condition of each application and user login information etc. by subscriber equipment backstage.Such as, when the user login information of the user of different application is consistent, can determine that the user of these different application is same users; Or, when different application includes the user with same user login information, can determine that these different application comprise the same user with this user login information.
In addition, when the use of subscriber equipment or different application is temporally or space strictly divides, the homogeneity of the user using different application can also easily be determined.Such as, when only being used by user A during limiting some and being applied in 0:00-11:59 and only used by user B during 12:00-23:59, just can be informed in the corresponding time by means of only the time should by user A or user B use application, thus make when being logged in by agent application, only can rely on and use the time of application to judge apply with the identity logs of which user.And for example, when when restriction, some is applied in and is only used by user A when subscriber equipment is in position to the east of city axis and only used by user B when subscriber equipment is in position to the west of city axis, then just can be informed in relevant position by means of only the position residing for subscriber equipment and should use application by user A or user B, thus make when being logged in by agent application, can only rely on the configuration of subscriber equipment to judge apply with the identity logs of which user.
According to an illustrative embodiment of the invention, agent application can be predetermined (such as, everybody client, namely, everybody client as upper application is determined in advance as agent application), also can be random (such as, based on everybody application, that is, the application based on everybody logged at first is confirmed as agent application).
According to some illustrative embodiments of the present invention, whether be predetermined for agent application, can difference be there is to the step of application login method according to an illustrative embodiment of the invention.
When agent application is predetermined (such as, everybody client), first must log in predetermined agent application could carry out single-sign-on to by agent application further.If do not have login agent apply but directly log in by agent application, then can there are two kinds of different steps flow charts:
First step flow process: when the login behavior presetting all application (agent application and by agent application) all has to pass through agent application to carry out, when attempting not having login agent to apply to log in by agent application, because now agent application does not login successfully state information, therefore will be failed by the login of agent application, server can be pointed out and be required that first login agent is applied.In first step flow process, be actually by agent application (such as, everybody client) as a transfer, all registers (comprising the register of agent application self) all need to utilize transfer (that is, agent application) to carry out.
Second step flow process: when preset can be departed from agent application by agent application and log in separately time, when attempting not having login agent to apply to log in by agent application, first detect agent application whether to log in, thus cannot utilize agent application to log in by agent application because agent application does not log in, so user login information (can be sent by agent application or send directly to server by by agent application) can be sent to log in server by agent application.This is not affected the non-logging status of agent application by the login of agent application, simultaneously, because agent application logs in not yet, therefore other still cannot be carried out single-sign-on by agent application by agent application and directly log in, but still need to log in respectively by sending user login information to server.
When agent application is not predetermined (such as, the application based on everybody), the application based on everybody logged at first will be confirmed as agent application.Register now comprises the following steps flow process: when logging in application A, first detect the application that can be used as agent application whether existing and logged in; When there is application (such as, application B) that can be used as agent application that logged in, application A is made to utilize as by agent application and login successfully state information to log in application A by application B in application B as agent application application B; When do not exist logged in can be used as the application of agent application time, system can point out user input application A user login information to log in directly to server; Application A after login using by as agent application for the register of application logged in after agency.
Reference Fig. 1 describes application login method according to an illustrative embodiment of the invention above.Be to be understood that, although describe the operation of the method according to particular order (step S101, step S102, step S103, step S104), but, this is not that requirement or hint must perform these operations according to this particular order, or must perform the result that all shown operation could realize expectation.On the contrary, the step described in flow chart can change execution sequence.Additionally or alternatively, some step can be omitted, multiple step be merged into a step and perform, and/or a step is decomposed into multiple step and perform.Such as, in some embodiments, step S101 and step S102 can perform according to random order or simultaneously, at least one step in step S101 and S103 can be omitted, step S101 and step S102 can be merged into a step to perform, and/or step S104 is decomposed into agent application receive log in performed by steps such as the step S104b of agent application to server log by the step S104a of the request of agent application and agent application.
Should be appreciated that the above application login method according to an illustrative embodiment of the invention described with reference to Fig. 1 relates generally to server log agent application with by agent application.But the present invention is not limited to log in server.In due course, the present invention can be applied to do not possess network function one-of-a-kind system log in application, its implementation with to server log application class seemingly, do not repeat them here.
With reference to Fig. 3, it is the block diagram of application entering device 300 according to an illustrative embodiment of the invention.
According to Fig. 3, application entering device 300 comprises agent application entering device 310, logins successfully state information obtaining means 320 and by agent application entering device 330.
Wherein, agent application entering device 310 is for applying by input user login information login agent; Logining successfully state information obtaining means 320 for what obtain agent application logins successfully state information; And by agent application entering device 330 for by agent application utilize login successfully state information log in same user by agent application.
Should be appreciated that the application entering device 300 shown in Fig. 3 and the agent application entering device 310 comprised thereof, login successfully state information obtaining means 320 and can be used for by agent application entering device 330 the application login method 100 implemented as depicted in figure 1.Therefore, the application entering device 300 shown in Fig. 3 can also comprise such as verifying agent application and/or the signature verification device 340 etc. by the signature of agent application.Wherein, agent application entering device 310, login successfully state information obtaining means 320, identical with reference to the content described in the application login method 100 described by Fig. 1 by the concrete operations of agent application entering device 330 and signature verification device 340 etc., therefore repeat no more.
It should be noted that illustrative embodiments of the present invention can be realized by the combination of hardware, software or software and hardware.Wherein, hardware components can utilize special logic to realize; Software section then can store in memory, and by suitable instruction execution system, such as microprocessor or special designs hardware perform.Those having ordinary skill in the art will appreciate that above-mentioned method and system can use computer executable instructions and/or be included in processor control routine to realize, such as, on the programmable memory of mounting medium, such as read-only memory (firmware) or the data medium of such as optics or electrical signal carrier of such as disk, CD or DVD-ROM, provide such code.System of the present invention and module thereof not only can be realized by the hardware circuit of the programmable hardware device of the semiconductor of such as very lagre scale integrated circuit (VLSIC) or gate array, such as logic chip, transistor etc. or such as field programmable gate array, programmable logic device etc., also with the software simulating such as performed by various types of processor, can also can be realized by the combination (such as firmware) of above-mentioned hardware circuit and software.
Although it should be noted that in the detailed description above some devices of the system that is referred to or sub-device, this division is only exemplary but not enforceable.In fact, according to an illustrative embodiment of the invention, the Characteristic and function of two or more devices above-described can be specialized in one apparatus, such as can by agent application entering device 310, login successfully state information obtaining means 320 and be combined into a processing unit to realize identical function.Otherwise, the Characteristic and function of an above-described device can Further Division for be specialized by multiple device, such as can be logged in being divided into by agent application entering device 330 apparatus for initiating 330a by agent application and be used for performing and performed 330b for what initiate to be logged in by agent application by being logged in by agent application of logging in of agent application.
Below with reference to Fig. 4, it illustrates the schematic block diagram specifically of the mobile terminal 400 be suitable for for putting into practice embodiment of the present invention.
According to exemplary embodiment of the present invention, mobile terminal 300 can use as subscriber equipment 210 usually.But, should be appreciated that the present invention does not get rid of situation about being used as server 220 by mobile terminal 300
In the example depicted in fig. 4, mobile terminal 400 is mobile devices with wireless communication ability.But, be appreciated that this is only exemplary and nonrestrictive.The mobile terminal of other types also easily can adopt embodiments of the present invention, the voice of such as portable digital-assistant (PDA), beep-pager, mobile computer, mobile TV, game station, laptop computer, camera, video tape recorder, GPS device and other types and text communication system.Fixed mobile terminal easily can use embodiments of the present invention equally.
Mobile terminal 400 comprises one or antenna 412, and it operationally communicates with receiver 416 with transmitter 414.Mobile terminal 400 also comprises processor 412 or other treatment elements, and it provides the signal going to transmitter 414 and the signal received from receiver 416 respectively.Signal comprises the signaling information of the air-interface standard according to suitable cellular system, and comprises user speech, the data of reception and/or the data of user's generation.In this regard, mobile terminal 400 can utilize one or more air-interface standard, communication protocol, modulation type and access style to operate.Exemplarily, mobile terminal 400 can operate according to any agreement in multiple first generation, the second generation, the third generation and/or forth generation communication protocol etc.Such as, mobile terminal 400 can operate according to the second generation (G) wireless communication protocol IS-136 (TDMA), GSM and IS-95 (CDMA), or operate according to the third generation (G) wireless communication protocol of such as UMTS, CDMA2000, WCDMA and TD-SCDMA, or operate according to forth generation (4G) wireless communication protocol and/or similar agreement.
Be appreciated that processor 412 comprises the circuit needed for the function realizing mobile terminal 400.Such as, processor 412 can comprise digital signal processor device, micro processor device, various analog to digital converter, digital to analog converter and other support circuit.The control of mobile terminal 400 and signal processing function distribute betwixt according to these equipment ability separately.Processor 412 can also be included in the function of modulating and before transmission, message and data being carried out to convolutional encoding and intertexture thus.Processor 412 can also comprise internal voice coder in addition, and can comprise internal data modem.In addition, processor 412 can comprise the function operated one or more software programs that can store in memory.Such as, processor 412 can operate linker, such as traditional Web browser.Linker can allow mobile terminal 400 such as to transmit and receive web content (such as location-based content and/or other web page contents) according to WAP (wireless application protocol) (WAP), HTML (Hypertext Markup Language) (HTTP) etc. then.
Mobile terminal 400 can also comprise user interface, and it such as can comprise earphone or loud speaker 424, ringer 422, microphone 426, display screen 428 and input interface 431, and all these equipment are all coupled to processor 412.Mobile terminal 400 can comprise keypad 430.Keypad 430 can comprise traditional numerical key (0-9) and relative keys (#, *), and for other keys of operating mobile terminal 400.Alternatively, keypad 430 can comprise traditional QWERTY arrangements of keypad.Keypad 430 can also comprise the various soft keys be associated with function.Mobile terminal 400 can also comprise camera model 436, for catching static state and/or dynamic image.
Especially, display screen 428 can comprise touch-screen and/or contiguous formula screen, user can by direct control screen operating mobile terminal 400.Now, display screen 428 serves as both input equipment and output equipment simultaneously.In such execution mode, input interface 431 can be configured for the input receiving user and provided on display screen 428 by such as common pen, special stylus and/or finger, comprises and gives directions input and gesture input.Processor 412 is configurable for detecting this type of input, and identifies the gesture of user.
In addition, mobile terminal 400 can comprise the interface equipment of such as joystick or other are for input interface.Mobile terminal 400 also comprises battery 434, such as vibrating battery group, for the various circuit supplies needed for operating mobile terminal 400, and provides mechanical oscillation as detecting output alternatively.
Mobile terminal 400 may further include Subscriber Identity Module (UIM) 438.UIM438 normally has the memory devices of internal processor.UIM438 such as can comprise subscriber identity module (SIM), Universal Integrated Circuit Card (UICC), Universal Subscriber Identity module (USIM), removable Subscriber Identity Module (R-UIM) etc.UIM438 stores the cell relevant to mobile subscriber usually.
Mobile terminal 400 can also have memory.Such as, mobile terminal 400 can comprise volatile memory 440, such as, comprise the volatile random access memory (RAM) of the cache area temporarily stored for data.Mobile terminal 400 can also comprise other nonvolatile memories 442, and it can be Embedded and/or moveable.Nonvolatile memory 442 additionally or alternatively can comprise such as EEPROM and flash memory etc.Memory can Arbitrary Term in multiple information segment of using of memory mobile terminal 400 and data, to realize the function of mobile terminal 400.Such as, memory 440 and 442 can be configured for the computer program instructions stored for realizing the application login method that composition graphs 1 above describes.
Should be appreciated that the structured flowchart described in Fig. 4 illustrates just to the object of example, instead of limitation of the scope of the invention.In some cases, can increase or reduce some equipment as the case may be.
Below with reference to Fig. 5, it illustrates the schematic block diagram of the computer system 500 be suitable for for putting into practice embodiment of the present invention.As shown in Figure 5, computer system 500 can comprise: CPU (CPU) 501, RAM (random access memory) 502, ROM (read-only memory) 503, system bus 504, hard disk controller 505, keyboard controller 506, serial interface controller 507, parallel interface controller 508, display controller 509, hard disk 510, keyboard 511, serial peripheral equipment 512, concurrent peripheral equipment 513 and display 514.In such devices, what be coupled with system bus 504 has CPU501, RAM502, ROM503, hard disk controller 505, keyboard controller 506, serialization controller 507, parallel controller 508 and display controller 509.Hard disk 510 is coupled with hard disk controller 505, keyboard 511 is coupled with keyboard controller 506, serial peripheral equipment 512 is coupled with serial interface controller 507, and concurrent peripheral equipment 513 is coupled with parallel interface controller 508, and display 514 is coupled with display controller 509.Should be appreciated that the structured flowchart described in Fig. 5 illustrates just to the object of example, instead of limitation of the scope of the invention.In some cases, can increase or reduce some equipment as the case may be.
Although describe the present invention with reference to some embodiments, should be appreciated that, the present invention is not limited to disclosed embodiment.The present invention is intended to be encompassed in the interior included various amendment of spirit and scope and the equivalent arrangements of claims.The scope of claims meets the most wide in range explanation, thus comprises all such amendments and equivalent structure and function.
Claims (18)
1. apply a login method, it is characterized in that:
By the application of input user login information login agent;
What obtain described agent application logins successfully state information; And
Login successfully described in being utilized by described agent application state information log in same user by agent application.
2. application login method according to claim 1, is characterized in that, to agent application described in server log and described by agent application.
3. whether application login method according to claim 2, is characterized in that, correct by the signature of agent application described in described server authentication and described non-proxy application.
4. application login method according to claim 2, is characterized in that, is called described in the utilization of described agent application login successfully the described by agent application of the described same user of state information login by SDK.
5. application login method according to claim 4, is characterized in that, whether described agent application and described SDK pass through the mutual certifying signature of described server correct.
6. application login method according to claim 4, is characterized in that, whether described SDK checking is described correct by the signature of agent application.
7. apply an entering device, it is characterized in that, comprising:
For the device by the application of input user login information login agent;
For obtaining the device logining successfully state information of described agent application; And
For login successfully described in being utilized by described agent application state information log in same user by the device of agent application.
8. application entering device according to claim 7, is characterized in that, to agent application described in server log and described by agent application.
9. whether application entering device according to claim 8, is characterized in that, correct by the signature of agent application described in described server authentication and described non-proxy application.
10. application entering device according to claim 8, is characterized in that, is called described in the utilization of described agent application login successfully the described by agent application of the described same user of state information login by SDK.
11. application entering devices according to claim 10, is characterized in that, whether described agent application and described SDK pass through the mutual certifying signature of described server correct.
12. application entering devices according to claim 10, is characterized in that, whether described SDK checking is described correct by the signature of agent application.
13. 1 kinds of subscriber equipmenies, is characterized in that, comprising:
Agent application, logins successfully state information for what obtain described agent application after being logged in by input user login information, and login successfully described in utilizing state information log in same user by agent application; And
Described same user's is described by agent application, for having logged in described agent application and after obtaining and logining successfully state information described in described agent application, having logined successfully state information log in by described agent application described in being utilized.
14. subscriber equipmenies according to claim 13, is characterized in that, to agent application described in server log and described by agent application.
Whether 15. subscriber equipmenies according to claim 14, is characterized in that, correct by the signature of agent application described in described server authentication and described non-proxy application.
16. subscriber equipmenies according to claim 14, is characterized in that, also comprise SDK, and described SDK calls described in the utilization of described agent application and logins successfully the described by agent application of the described same user of state information login.
17. subscriber equipmenies according to claim 16, is characterized in that, whether described agent application and described SDK pass through the mutual certifying signature of described server correct.
18. subscriber equipmenies according to claim 16, is characterized in that, whether described SDK checking is described correct by the signature of agent application.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310375374.7A CN104426856A (en) | 2013-08-22 | 2013-08-22 | Application login method, device and user equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310375374.7A CN104426856A (en) | 2013-08-22 | 2013-08-22 | Application login method, device and user equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104426856A true CN104426856A (en) | 2015-03-18 |
Family
ID=52974813
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310375374.7A Pending CN104426856A (en) | 2013-08-22 | 2013-08-22 | Application login method, device and user equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104426856A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105188060A (en) * | 2015-10-12 | 2015-12-23 | 深圳竹云科技有限公司 | Mobile terminal-oriented single sign-on (SSO) authentication method and system |
| CN111241499A (en) * | 2020-01-07 | 2020-06-05 | 腾讯科技(深圳)有限公司 | Application program login method, device, terminal and storage medium |
| CN111309929A (en) * | 2020-03-05 | 2020-06-19 | 刘云 | Standard term issuing and sharing system and method based on block chain technology |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102591705A (en) * | 2011-01-17 | 2012-07-18 | 腾讯科技(深圳)有限公司 | Open platform agent access method and open platform agent access device |
| US20130086210A1 (en) * | 2011-09-29 | 2013-04-04 | Oracle International Corporation | Mobile application, identity relationship management |
| CN103051630A (en) * | 2012-12-21 | 2013-04-17 | 微梦创科网络科技(中国)有限公司 | Method, device and system for implementing authorization of third-party application based on open platform |
| CN103188237A (en) * | 2011-12-30 | 2013-07-03 | 盛大计算机(上海)有限公司 | Single sign-on system and single sign-on method |
-
2013
- 2013-08-22 CN CN201310375374.7A patent/CN104426856A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102591705A (en) * | 2011-01-17 | 2012-07-18 | 腾讯科技(深圳)有限公司 | Open platform agent access method and open platform agent access device |
| US20130086210A1 (en) * | 2011-09-29 | 2013-04-04 | Oracle International Corporation | Mobile application, identity relationship management |
| CN103188237A (en) * | 2011-12-30 | 2013-07-03 | 盛大计算机(上海)有限公司 | Single sign-on system and single sign-on method |
| CN103051630A (en) * | 2012-12-21 | 2013-04-17 | 微梦创科网络科技(中国)有限公司 | Method, device and system for implementing authorization of third-party application based on open platform |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105188060A (en) * | 2015-10-12 | 2015-12-23 | 深圳竹云科技有限公司 | Mobile terminal-oriented single sign-on (SSO) authentication method and system |
| CN111241499A (en) * | 2020-01-07 | 2020-06-05 | 腾讯科技(深圳)有限公司 | Application program login method, device, terminal and storage medium |
| CN111309929A (en) * | 2020-03-05 | 2020-06-19 | 刘云 | Standard term issuing and sharing system and method based on block chain technology |
| CN111309929B (en) * | 2020-03-05 | 2023-07-14 | 江苏省中医院 | Standard term publishing and sharing system and method based on blockchain technology |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9923902B2 (en) | Remote processsing of mobile applications | |
| US20210120380A1 (en) | Providing access to applications with varying enrollment levels | |
| US9270758B2 (en) | System for mobile application notary service | |
| US8959608B2 (en) | Single sign-on for a native application and a web application on a mobile device | |
| AU2014321579B2 (en) | Securely authorizing access to remote resources | |
| KR101688548B1 (en) | Method, one or more computer-readable non-transitory storage media and a device, in particular relating to computing resources and/or mobile-device-based trust computing | |
| US9473945B1 (en) | Infrastructure for secure short message transmission | |
| CN108920366B (en) | Sub-application debugging method, device and system | |
| CN103858457A (en) | Multi-hop single sign-on (sso) for identity provider (idp) roaming/proxy | |
| US9380054B2 (en) | Application signing | |
| US20220021706A1 (en) | Network-Assisted Secure Data Access | |
| CN113938886B (en) | Identity authentication platform testing method, device, equipment and storage medium | |
| CN104011730A (en) | Security mechanism for external code | |
| US20170063857A1 (en) | Providing access to applications with varying enrollment levels | |
| CN106713315B (en) | Login method and device of plug-in application program | |
| US12003497B2 (en) | Website verification service | |
| CN104820794A (en) | Method and device for processing login data | |
| CN113821841B (en) | Resource management method, computing device and readable storage medium | |
| CN104426856A (en) | Application login method, device and user equipment | |
| US11539711B1 (en) | Content integrity processing on browser applications | |
| US20230171257A1 (en) | System and method for system access credential delegation | |
| CN112543194B (en) | Mobile terminal login method and device, computer equipment and storage medium | |
| US20230319025A1 (en) | Methods and systems for implementing unique session number sharing to ensure traceability | |
| Jensen | D4. 4 smartphone feasibility analysis | |
| CN113505397A (en) | Authorization method, server, system and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150318 |
|
| WD01 | Invention patent application deemed withdrawn after publication |