CN105471913B - A kind of client login method and system by shared region information - Google Patents
A kind of client login method and system by shared region information Download PDFInfo
- Publication number
- CN105471913B CN105471913B CN201511033990.XA CN201511033990A CN105471913B CN 105471913 B CN105471913 B CN 105471913B CN 201511033990 A CN201511033990 A CN 201511033990A CN 105471913 B CN105471913 B CN 105471913B
- Authority
- CN
- China
- Prior art keywords
- client
- server
- logging
- shared region
- control server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
Abstract
The present invention relates to a kind of client login methods by shared region information, include the following steps:First client sends logging request to client-server;The logging request of the first client is sent to control server by client-server;Control server verifies the logging request of first client, and logging on authentication token is sent if being verified to client-server;Logging on authentication token is sent to the first client by client-server;First client is written into after obtaining logging on authentication token in shared region;Second client obtains token vouchers in shared region, and control server is logged in by the token vouchers.Login mode through the invention may be implemented more station terminals and be logged in the same account, while be logged in without repeatedly inputting the modes such as account number cipher, keep user more convenient in operation, while also can guarantee the safety of login account.The invention further relates to a kind of login systems for realizing above-mentioned login method.
Description
Technical field
The present invention relates to a kind of client login method, especially a kind of client login side by shared region information
Method;The invention further relates to a kind of systems for realizing the above method.
Background technology
With the development of network technology and mobile terminal, in existing the login of more and more clients be not limited to PC
It holds, more and more users are transferred to mobile terminal from the ends PC and log in.Such as:IM instant communication clients or other answer
With.And these clients need user's input account and password to log in when logging in.
Since the mobile terminal of user is with increase, may be logged in sometimes for from two or more clients.Than
Such as:User may need to log in from two mobile phone terminals, or situations such as logged in simultaneously from a mobile phone terminal and a tablet computer.
In view of the above-mentioned problems, existing certain clients can support the ends PC to be stepped on simultaneously with mobile terminal simultaneously when logging in
Record.However, user needs to input account when logging in and password logs in again, namely need in two station terminals simultaneously
Input account and password are logged in.
However, since user needs to input account and password on two station terminals, it is operationally comparatively laborious.Meanwhile by
In needing in terminal while inputting account and password, the confidentiality and safety of account and password are insufficient.As it is possible that by
In the leakage of account and password, and criminal, when being logged on an other station terminal, user can not prevent immediately.
Invention content
The invention reside in the shortcomings that overcoming the prior art with it is insufficient, a kind of client by shared region information is provided and is stepped on
Recording method and system.
The present invention is realized by following technical solution:A kind of client login side by shared region information
Method includes the following steps:
First client sends logging request to client-server;
The logging request of the first client is sent to control server by client-server;
Control server verifies the logging request of first client, and logging on authentication is sent if being verified
Token is to client-server;
Logging on authentication token is sent to the first client by client-server;
First client is written into after obtaining logging on authentication token in shared region;
Second client obtains token vouchers in shared region, and control server is logged in by the token vouchers.
Compared with the prior art, the present invention is first passed through logs in client-server using the first client, then by client
Logging request is forwarded to control server and logged in by server.Then, the token information received is written the first client
In shared region.And at this point, the second client can by obtaining logging on authentication token in shared region, by this with
Card directly asks to log in control server.More station terminals may be implemented with the same account in login mode through the invention
It logs in, while being all not have to so repeatedly input account number cipher etc. by obtaining logging on authentication token in district-share information
Mode is logged in, and keeps user more convenient in operation, while also can guarantee the safety of login account.
As a further improvement on the present invention, the control server tests the logging request of first client
Card, sends logging on authentication token into the step of client-server if being verified, further comprising the steps of:If verification
Success, then logging request is forwarded in specified operation system by control server obtains data, and is back to client service
Device.In this step, the forwarding of data is further carried out by control server, can be logged in and correspond to according to the account of user
Operation system.
As a further improvement on the present invention, further include step:What the control server also logged in the first client
Permission is judged, determines that can user log in specified operation system according to different rights.In this step, further pass through
The permission of user is managed, the permission of the user is judged, if open corresponding operation system is to user.
As a further improvement on the present invention, further include step:The control server also carries out data by database
Storage extraction and handled by distributed caching.It in this step, can in order to accelerate the processing speed of control server
To be supported to control server by the way that database server and distributed cache server is arranged, the convenient storage to data
It deposits.
As a further improvement on the present invention, first client and the second client are all mobile client.
The present invention also provides a kind of client login systems by shared region information, including the first client,
Two clients, client-server and control server;
First client includes logging request module, for that will send logging request to client-server;
The client-server includes forwarding module, is serviced for the logging request of the first client to be sent to middle control
Device;
The control server includes authentication module, is verified for the logging request to first client, if testing
Card is by then sending logging on authentication token to client-server;
The forwarding module of the client-server is additionally operable to logging on authentication token being sent to the first client;
First client further includes logging on authentication writing module, for being written into after obtaining logging on authentication token
In shared region;
Second client includes acquisition module, for obtaining token vouchers, and second client in shared region
End further includes login module, for logging in control server by the token vouchers.
As a further improvement on the present invention, the control server further includes data forwarding module, is asked for that will log in
It asks to be forwarded in specified operation system and obtains data, and be back to client-server.
As a further improvement on the present invention, the control server further includes authority management module, for the first visitor
The permission that family end logs in is judged, determines that can user log in specified operation system according to different rights.
As a further improvement on the present invention, further include database server and distributed cache server, the middle control
Server also carries out the storage extraction of data by database and is handled by distributed caching.
As a further improvement on the present invention, first client and the second client are all mobile client.
In order to better understand and implement, the invention will now be described in detail with reference to the accompanying drawings.
Description of the drawings
Fig. 1 is the step flow chart of the client login method by shared region information of embodiment 1.
Fig. 2 is the connection block diagram of the client login system by shared region information of embodiment 1.
Fig. 3 is the step flow chart of the client login method by shared region information of embodiment 2.
Fig. 4 is the connection block diagram of the client login system by shared region information of embodiment 2.
Specific implementation mode
When in order to solve to carry out the same account login by two or more terminals in the prior art, Wu Fabao
The problem of demonstrate,proving the safety of its account the present invention provides a kind of client login method by shared region information and be
System.Embodiments of the present invention are introduced in detail below.
Embodiment 1
Referring to Fig. 1, it is flowed for the embodiment of the present invention 1 by the step of client login method of shared region information
Cheng Tu.
The present invention provides a kind of client login methods by shared region information, specifically include following steps:
S11:First client sends logging request to client-server.
S12:The logging request of the first client is sent to control server by client-server.
S13:Control server verifies the logging request of first client, sent if being verified login with
Token is demonstrate,proved to client-server.
S14:Logging on authentication token is sent to the first client by client-server.
S15:First client is written into after obtaining logging on authentication token in shared region.
S16:Second client obtains token vouchers in shared region, controls and services in being logged in by the token vouchers
Device.
Compared with the prior art, the present invention is first passed through logs in client-server using the first client, then by client
Logging request is forwarded to control server and logged in by server.Then, the token information received is written the first client
In shared region.And at this point, the second client can by obtaining logging on authentication token in shared region, by this with
Card directly asks to log in control server.More station terminals may be implemented with the same account in login mode through the invention
It logs in, while being all not have to so repeatedly input account number cipher etc. by obtaining logging on authentication token in district-share information
Mode is logged in, and keeps user more convenient in operation, while also can guarantee the safety of login account.
Referring to Fig. 2, its connection block diagram for the client login system by shared region information of the present invention.In order to
Realize above-mentioned method, the present invention also provides a kind of client login systems by shared region information, including the first visitor
Family end 11, the second client 12, client-server 13 and control server 14.
First client 11 includes logging request module, for that will send logging request to client-server 13.
The client-server 13 includes forwarding module, for the logging request of the first client 11 to be sent to middle control
Server 14.
The control server 14 includes authentication module, is verified for the logging request to first client, if
It is verified, sends logging on authentication token to client-server 13.
The forwarding module of the client-server 13 is additionally operable to logging on authentication token being sent to the first client 11.
First client 11 further includes logging on authentication writing module, for being write after obtaining logging on authentication token
Enter in shared region.
Second client 12 includes acquisition module, for obtaining token vouchers, and second visitor in shared region
Family end further includes login module, for logging in control server 14 by the token vouchers.
The course of work of the client login system of the present invention is briefly described below:
First, user is logged in by the first client.When logging in, first passes through logging request module and log in user
Information is sent to client-server, the log-on message is then forwarded to control server by client-server, by middle control
Server is verified.
When verification of the user information by the authentication module of control server, logging on authentication is sent by control server
Token is forwarded to the first client to client-server, then by client-server.At this point, the first client completes centering
Control the login of server.
Then, the first client preserves logging on authentication token to shared region.The second client can be from this at this time
Logging on authentication token is obtained in shared region, and is sent directly to control server and is logged in, and no longer needs to input account at this time
Password, to be logged in using same account in a real additionally now station terminal.
Embodiment 2
The present invention provides another kinds by the client login method of shared region information, specifically includes following step
Suddenly:
S21:First client sends logging request to client-server.
S22:The logging request of the first client is sent to control server by client-server.
S23:Control server verifies the logging request of first client, sent if being verified login with
Token is demonstrate,proved to client-server.
S24:Logging request is forwarded in specified operation system by control server obtains data, and is back to client
Server.The permission that the control server also logs in the first client judges, user's energy is determined according to different rights
It is no to log in specified operation system.Meanwhile the control server also carries out the storage extraction of data by database and passes through
Distributed caching is handled.
In this step, the forwarding of data is further carried out by control server, can be logged according to the account of user
Corresponding operation system.Meanwhile being further managed by the permission to user, the permission of the user is judged, is
The no corresponding operation system of opening is to user.Further for the processing speed for accelerating control server, also by the way that data are arranged
Library server and distributed cache server are supported control server, the convenient storage to data.
S25:Logging on authentication token is sent to the first client by client-server.
S26:First client is written into after obtaining logging on authentication token in shared region.
S27:Second client obtains token vouchers in shared region, controls and services in being logged in by the token vouchers
Device.
Further, the first client described in the present embodiment and the second client can be mobile client.
Compared with the prior art, the present invention is first passed through logs in client-server using the first client, then by client
Logging request is forwarded to control server and logged in by server.Then, the token information received is written the first client
In shared region.And at this point, the second client can by obtaining logging on authentication token in shared region, by this with
Card directly asks to log in control server.More station terminals may be implemented with the same account in login mode through the invention
It logs in, while being all not have to so repeatedly input account number cipher etc. by obtaining logging on authentication token in district-share information
Mode is logged in, and keeps user more convenient in operation, while also can guarantee the safety of login account.
The present invention also provides a kind of client login system by shared region information, including the first client 21,
Second client 22, client-server 23 and control server 24.
First client 21 includes logging request module, for that will send logging request to client-server.
The client-server 23 includes forwarding module, is taken for the logging request of the first client to be sent to middle control
Business device.
The control server 24 includes authentication module, is verified for the logging request to first client, if
It is verified, sends logging on authentication token to client-server.
Further, the control server 24 further includes data forwarding module and authority management module.The data forwarding
Module obtains data for logging request to be forwarded in specified operation system 25, and is back to client-server 23.Institute
Authority management module is stated, the permission for being logged in the first client judges, determines that can user step on according to different rights
The specified operation system 25 of record.
Further, further include database server 26 and distributed cache server 27.The control server also passes through
Database carries out the storage extraction of data and is handled by distributed caching.
In the present embodiment, the forwarding of data is carried out by control server, can be logged in and correspond to according to the account of user
Operation system.Meanwhile being further managed by the permission to user, the permission of the user is judged, if open
Corresponding operation system is put to user.Further for the processing speed for accelerating control server, also taken by the way that database is arranged
Business device and distributed cache server are supported control server, the convenient storage to data.
The forwarding module of the client-server 23 is additionally operable to logging on authentication token being sent to the first client.
First client 21 further includes logging on authentication writing module, for being write after obtaining logging on authentication token
Enter in shared region.
Second client 22 includes acquisition module, for obtaining token vouchers, and second visitor in shared region
Family end 22 further includes login module, for logging in control server 24 by the token vouchers.
Further, first client, 21 and second client 22 is all mobile client.
The course of work of the client login system of the present invention is briefly described below:
First, user is logged in by the first client.When logging in, first passes through logging request module and log in user
Information is sent to client-server, the log-on message is then forwarded to control server by client-server, by middle control
Server is verified.
When verification of the user information by the authentication module of control server, logging on authentication is sent by control server
Token is forwarded to the first client to client-server, then by client-server.At this point, the first client completes centering
Control the login of server.
At this point, the data forwarding module of the control server, logging request is forwarded in specified operation system and is obtained
Access evidence, and it is back to client-server.The first client of the authority management module pair log in permission judge, root
Determine that can user log in specified operation system according to different rights.In the case that if the data volume of processing is larger, also pass through institute
Database server is stated to carry out the storage extraction of data and handled by distributed cache server.
Then, the first client preserves logging on authentication token to shared region.The second client can be from this at this time
Logging on authentication token is obtained in shared region, and is sent directly to control server and is logged in, and no longer needs to input account at this time
Password, to be logged in using same account in a real additionally now station terminal.
The present invention is also equipped with other variant embodiments, such as:In logging in client, two visitors can be not limited to
Family end can also be that multiple client is carried out while being logged in.Then, the client is not necessarily limited to mobile client.
The invention is not limited in the above embodiments, if the various changes or deformation to the present invention do not depart from the present invention
Spirit and scope, if these changes and deformation belong within the scope of the claim and equivalent technologies of the present invention, then this hair
It is bright to be also intended to comprising these changes and deformation.
Claims (10)
1. a kind of client login method by shared region information includes the following steps:
First client sends logging request to client-server;
The logging request of the first client is sent to control server by client-server;
Control server verifies the logging request of first client, and logging on authentication token is sent if being verified
To client-server;
Logging on authentication token is sent to the first client by client-server;
First client is written into after obtaining logging on authentication token in shared region;
Second client obtains token vouchers in shared region, and control server is logged in by the token vouchers.
2. passing through the client login method of shared region information according to claim 1, it is characterised in that:The middle control clothes
Business device verifies the logging request of first client, and logging on authentication token is sent if being verified to client clothes
It is further comprising the steps of in the step of business device:If being proved to be successful, logging request is forwarded to specified business by control server
Data are obtained in system, and are back to client-server.
3. passing through the client login method of shared region information according to claim 2, it is characterised in that:It further include step
Suddenly:The permission that the control server also logs in the first client judges, determines that can user step on according to different rights
The specified operation system of record.
4. passing through the client login method of shared region information according to claim 3, it is characterised in that:It further include step
Suddenly:The control server also by database server carry out data storage extraction and by distributed cache server into
Row processing.
5. passing through the client login method of shared region information according to claim 4, it is characterised in that:First visitor
Family end and the second client are all mobile client.
6. a kind of client login system by shared region information, it is characterised in that:Including the first client, the second client
End, client-server and control server;
First client includes logging request module, for that will send logging request to client-server;
The client-server includes forwarding module, for the logging request of the first client to be sent to control server;
The control server includes authentication module, is verified for the logging request to first client, if verification is logical
It crosses, sends logging on authentication token to client-server;
The forwarding module of the client-server is additionally operable to logging on authentication token being sent to the first client;
First client further includes logging on authentication writing module, for obtain be written into after logging on authentication token it is shared
In region;
Second client includes acquisition module, and for obtaining token vouchers in shared region, and second client is also
Including login module, for logging in control server by the token vouchers.
7. passing through the client login system of shared region information according to claim 6, it is characterised in that:The middle control clothes
Business device further includes data forwarding module, obtains data for logging request to be forwarded in specified operation system, and be back to
Client-server.
8. passing through the client login system of shared region information according to claim 7, it is characterised in that:The middle control clothes
Business device further includes authority management module, and the permission for being logged in the first client judges, determines to use according to different rights
Can family log in specified operation system.
9. passing through the client login system of shared region information according to claim 8, it is characterised in that:Further include data
Library server and distributed cache server, the storage that the control server also carries out data by database server are extracted
It is handled with by distributed cache server.
10. passing through the client login system of shared region information according to claim 9, it is characterised in that:Described first
Client and the second client are all mobile client.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201511033990.XA CN105471913B (en) | 2015-12-31 | 2015-12-31 | A kind of client login method and system by shared region information |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201511033990.XA CN105471913B (en) | 2015-12-31 | 2015-12-31 | A kind of client login method and system by shared region information |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105471913A CN105471913A (en) | 2016-04-06 |
CN105471913B true CN105471913B (en) | 2018-07-13 |
Family
ID=55609183
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201511033990.XA Active CN105471913B (en) | 2015-12-31 | 2015-12-31 | A kind of client login method and system by shared region information |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105471913B (en) |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106412899B (en) * | 2016-10-11 | 2019-05-28 | 江苏电力信息技术有限公司 | A kind of network request method for saving mobile terminal flow |
CN107148011B (en) * | 2017-05-12 | 2021-02-26 | 腾讯科技(深圳)有限公司 | Method, device and system for executing target service |
CN108111486B (en) * | 2017-12-05 | 2021-06-08 | 北京天融信网络安全技术有限公司 | Method and device for avoiding repeated login |
CN108365958B (en) * | 2018-03-01 | 2021-06-29 | 广州南方人才资讯科技有限公司 | Account login verification method and device, computer equipment and storage medium |
KR20210049913A (en) * | 2018-09-03 | 2021-05-06 | 후아웨이 테크놀러지 컴퍼니 리미티드 | Login method, token sending method and device |
CN109272302A (en) * | 2018-10-16 | 2019-01-25 | 翟红鹰 | Management method, terminal and readable storage medium storing program for executing based on block chain technology |
CN112134780B (en) * | 2019-06-24 | 2022-09-13 | 腾讯科技(深圳)有限公司 | Information acquisition method and device, storage medium and electronic device |
CN113225188B (en) * | 2020-01-19 | 2023-09-22 | 华为技术有限公司 | Login authentication method, device and system |
CN114158046B (en) * | 2021-12-30 | 2024-04-23 | 支付宝(杭州)信息技术有限公司 | Method and device for realizing one-key login service |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104135494A (en) * | 2014-08-22 | 2014-11-05 | 北京京东尚科信息技术有限公司 | Same-account incredible terminal login method and system based on credible terminal |
CN104506492A (en) * | 2014-11-28 | 2015-04-08 | 北京奇艺世纪科技有限公司 | Method and device for account synchronization at multiple terminals |
CN104618389A (en) * | 2015-02-16 | 2015-05-13 | 北京技德科技有限公司 | Wireless login system and method based on mobile phone |
EP2940617A1 (en) * | 2012-12-27 | 2015-11-04 | Rowem Inc | System and method for secure login, and apparatus for same |
-
2015
- 2015-12-31 CN CN201511033990.XA patent/CN105471913B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2940617A1 (en) * | 2012-12-27 | 2015-11-04 | Rowem Inc | System and method for secure login, and apparatus for same |
CN104135494A (en) * | 2014-08-22 | 2014-11-05 | 北京京东尚科信息技术有限公司 | Same-account incredible terminal login method and system based on credible terminal |
CN104506492A (en) * | 2014-11-28 | 2015-04-08 | 北京奇艺世纪科技有限公司 | Method and device for account synchronization at multiple terminals |
CN104618389A (en) * | 2015-02-16 | 2015-05-13 | 北京技德科技有限公司 | Wireless login system and method based on mobile phone |
Also Published As
Publication number | Publication date |
---|---|
CN105471913A (en) | 2016-04-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105471913B (en) | A kind of client login method and system by shared region information | |
US11550895B2 (en) | Systems and mechanism to control the lifetime of an access token dynamically based on access token use | |
CN108989346B (en) | Third-party valid identity escrow agile authentication access method based on account hiding | |
US10552823B1 (en) | System and method for authentication of a mobile device | |
CN104967604B (en) | Login method and system | |
Lee et al. | An empirical study of wireless carrier authentication for {SIM} swaps | |
KR102321781B1 (en) | Processing electronic tokens | |
US20140075493A1 (en) | System and method for location-based protection of mobile data | |
CN102231716B (en) | Instant communication service login method | |
Yildirim et al. | A research on security vulnerabilities in online and mobile banking systems | |
US9787678B2 (en) | Multifactor authentication for mail server access | |
CN103973715B (en) | Cloud computing security system and method | |
CN107733838A (en) | A kind of mobile terminal client terminal identity identifying method, device and system | |
CN109150800A (en) | Login access method, system and storage medium | |
Crossman et al. | Study of authentication with IoT testbed | |
CN103220368B (en) | High in the clouds information sharing system and method | |
CN108965324A (en) | A kind of anti-brush method of short message verification code, terminal, server, equipment and medium | |
CN103905194A (en) | Identity traceability authentication method and system | |
CN103401686A (en) | User Internet identity authentication system and application method thereof | |
US11301847B1 (en) | Systems and methods for an authorized identification system | |
CN105164969B (en) | The recognition methods of instant communication client and identifying system | |
CN107645474A (en) | Log in the method for open platform and log in the device of open platform | |
RU2354066C2 (en) | Method and system for authentication of data processing system user | |
US20230246814A1 (en) | Data intermediary registry security | |
US20230196376A1 (en) | Multi-Factor User Authentication |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: 510535 3, 1 building, 90 ho he road, Luogang District, Guangzhou, Guangdong. Applicant after: Guangzhou Duoyi Network Co., Ltd. Address before: 510535 3, 1 building, 90 ho he road, Luogang District, Guangzhou, Guangdong. Applicant before: Guangzhou Baiyun Bio-Tech Co., Ltd. |
|
GR01 | Patent grant | ||
GR01 | Patent grant |