CN105471913B - A kind of client login method and system by shared region information - Google Patents

A kind of client login method and system by shared region information Download PDF

Info

Publication number
CN105471913B
CN105471913B CN201511033990.XA CN201511033990A CN105471913B CN 105471913 B CN105471913 B CN 105471913B CN 201511033990 A CN201511033990 A CN 201511033990A CN 105471913 B CN105471913 B CN 105471913B
Authority
CN
China
Prior art keywords
client
server
logging
shared region
control server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201511033990.XA
Other languages
Chinese (zh)
Other versions
CN105471913A (en
Inventor
徐波
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangzhou Duoyi Network Co Ltd
Original Assignee
Guangzhou Duoyi Network Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangzhou Duoyi Network Co Ltd filed Critical Guangzhou Duoyi Network Co Ltd
Priority to CN201511033990.XA priority Critical patent/CN105471913B/en
Publication of CN105471913A publication Critical patent/CN105471913A/en
Application granted granted Critical
Publication of CN105471913B publication Critical patent/CN105471913B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)

Abstract

The present invention relates to a kind of client login methods by shared region information, include the following steps:First client sends logging request to client-server;The logging request of the first client is sent to control server by client-server;Control server verifies the logging request of first client, and logging on authentication token is sent if being verified to client-server;Logging on authentication token is sent to the first client by client-server;First client is written into after obtaining logging on authentication token in shared region;Second client obtains token vouchers in shared region, and control server is logged in by the token vouchers.Login mode through the invention may be implemented more station terminals and be logged in the same account, while be logged in without repeatedly inputting the modes such as account number cipher, keep user more convenient in operation, while also can guarantee the safety of login account.The invention further relates to a kind of login systems for realizing above-mentioned login method.

Description

A kind of client login method and system by shared region information
Technical field
The present invention relates to a kind of client login method, especially a kind of client login side by shared region information Method;The invention further relates to a kind of systems for realizing the above method.
Background technology
With the development of network technology and mobile terminal, in existing the login of more and more clients be not limited to PC It holds, more and more users are transferred to mobile terminal from the ends PC and log in.Such as:IM instant communication clients or other answer With.And these clients need user's input account and password to log in when logging in.
Since the mobile terminal of user is with increase, may be logged in sometimes for from two or more clients.Than Such as:User may need to log in from two mobile phone terminals, or situations such as logged in simultaneously from a mobile phone terminal and a tablet computer.
In view of the above-mentioned problems, existing certain clients can support the ends PC to be stepped on simultaneously with mobile terminal simultaneously when logging in Record.However, user needs to input account when logging in and password logs in again, namely need in two station terminals simultaneously Input account and password are logged in.
However, since user needs to input account and password on two station terminals, it is operationally comparatively laborious.Meanwhile by In needing in terminal while inputting account and password, the confidentiality and safety of account and password are insufficient.As it is possible that by In the leakage of account and password, and criminal, when being logged on an other station terminal, user can not prevent immediately.
Invention content
The invention reside in the shortcomings that overcoming the prior art with it is insufficient, a kind of client by shared region information is provided and is stepped on Recording method and system.
The present invention is realized by following technical solution:A kind of client login side by shared region information Method includes the following steps:
First client sends logging request to client-server;
The logging request of the first client is sent to control server by client-server;
Control server verifies the logging request of first client, and logging on authentication is sent if being verified Token is to client-server;
Logging on authentication token is sent to the first client by client-server;
First client is written into after obtaining logging on authentication token in shared region;
Second client obtains token vouchers in shared region, and control server is logged in by the token vouchers.
Compared with the prior art, the present invention is first passed through logs in client-server using the first client, then by client Logging request is forwarded to control server and logged in by server.Then, the token information received is written the first client In shared region.And at this point, the second client can by obtaining logging on authentication token in shared region, by this with Card directly asks to log in control server.More station terminals may be implemented with the same account in login mode through the invention It logs in, while being all not have to so repeatedly input account number cipher etc. by obtaining logging on authentication token in district-share information Mode is logged in, and keeps user more convenient in operation, while also can guarantee the safety of login account.
As a further improvement on the present invention, the control server tests the logging request of first client Card, sends logging on authentication token into the step of client-server if being verified, further comprising the steps of:If verification Success, then logging request is forwarded in specified operation system by control server obtains data, and is back to client service Device.In this step, the forwarding of data is further carried out by control server, can be logged in and correspond to according to the account of user Operation system.
As a further improvement on the present invention, further include step:What the control server also logged in the first client Permission is judged, determines that can user log in specified operation system according to different rights.In this step, further pass through The permission of user is managed, the permission of the user is judged, if open corresponding operation system is to user.
As a further improvement on the present invention, further include step:The control server also carries out data by database Storage extraction and handled by distributed caching.It in this step, can in order to accelerate the processing speed of control server To be supported to control server by the way that database server and distributed cache server is arranged, the convenient storage to data It deposits.
As a further improvement on the present invention, first client and the second client are all mobile client.
The present invention also provides a kind of client login systems by shared region information, including the first client, Two clients, client-server and control server;
First client includes logging request module, for that will send logging request to client-server;
The client-server includes forwarding module, is serviced for the logging request of the first client to be sent to middle control Device;
The control server includes authentication module, is verified for the logging request to first client, if testing Card is by then sending logging on authentication token to client-server;
The forwarding module of the client-server is additionally operable to logging on authentication token being sent to the first client;
First client further includes logging on authentication writing module, for being written into after obtaining logging on authentication token In shared region;
Second client includes acquisition module, for obtaining token vouchers, and second client in shared region End further includes login module, for logging in control server by the token vouchers.
As a further improvement on the present invention, the control server further includes data forwarding module, is asked for that will log in It asks to be forwarded in specified operation system and obtains data, and be back to client-server.
As a further improvement on the present invention, the control server further includes authority management module, for the first visitor The permission that family end logs in is judged, determines that can user log in specified operation system according to different rights.
As a further improvement on the present invention, further include database server and distributed cache server, the middle control Server also carries out the storage extraction of data by database and is handled by distributed caching.
As a further improvement on the present invention, first client and the second client are all mobile client.
In order to better understand and implement, the invention will now be described in detail with reference to the accompanying drawings.
Description of the drawings
Fig. 1 is the step flow chart of the client login method by shared region information of embodiment 1.
Fig. 2 is the connection block diagram of the client login system by shared region information of embodiment 1.
Fig. 3 is the step flow chart of the client login method by shared region information of embodiment 2.
Fig. 4 is the connection block diagram of the client login system by shared region information of embodiment 2.
Specific implementation mode
When in order to solve to carry out the same account login by two or more terminals in the prior art, Wu Fabao The problem of demonstrate,proving the safety of its account the present invention provides a kind of client login method by shared region information and be System.Embodiments of the present invention are introduced in detail below.
Embodiment 1
Referring to Fig. 1, it is flowed for the embodiment of the present invention 1 by the step of client login method of shared region information Cheng Tu.
The present invention provides a kind of client login methods by shared region information, specifically include following steps:
S11:First client sends logging request to client-server.
S12:The logging request of the first client is sent to control server by client-server.
S13:Control server verifies the logging request of first client, sent if being verified login with Token is demonstrate,proved to client-server.
S14:Logging on authentication token is sent to the first client by client-server.
S15:First client is written into after obtaining logging on authentication token in shared region.
S16:Second client obtains token vouchers in shared region, controls and services in being logged in by the token vouchers Device.
Compared with the prior art, the present invention is first passed through logs in client-server using the first client, then by client Logging request is forwarded to control server and logged in by server.Then, the token information received is written the first client In shared region.And at this point, the second client can by obtaining logging on authentication token in shared region, by this with Card directly asks to log in control server.More station terminals may be implemented with the same account in login mode through the invention It logs in, while being all not have to so repeatedly input account number cipher etc. by obtaining logging on authentication token in district-share information Mode is logged in, and keeps user more convenient in operation, while also can guarantee the safety of login account.
Referring to Fig. 2, its connection block diagram for the client login system by shared region information of the present invention.In order to Realize above-mentioned method, the present invention also provides a kind of client login systems by shared region information, including the first visitor Family end 11, the second client 12, client-server 13 and control server 14.
First client 11 includes logging request module, for that will send logging request to client-server 13.
The client-server 13 includes forwarding module, for the logging request of the first client 11 to be sent to middle control Server 14.
The control server 14 includes authentication module, is verified for the logging request to first client, if It is verified, sends logging on authentication token to client-server 13.
The forwarding module of the client-server 13 is additionally operable to logging on authentication token being sent to the first client 11.
First client 11 further includes logging on authentication writing module, for being write after obtaining logging on authentication token Enter in shared region.
Second client 12 includes acquisition module, for obtaining token vouchers, and second visitor in shared region Family end further includes login module, for logging in control server 14 by the token vouchers.
The course of work of the client login system of the present invention is briefly described below:
First, user is logged in by the first client.When logging in, first passes through logging request module and log in user Information is sent to client-server, the log-on message is then forwarded to control server by client-server, by middle control Server is verified.
When verification of the user information by the authentication module of control server, logging on authentication is sent by control server Token is forwarded to the first client to client-server, then by client-server.At this point, the first client completes centering Control the login of server.
Then, the first client preserves logging on authentication token to shared region.The second client can be from this at this time Logging on authentication token is obtained in shared region, and is sent directly to control server and is logged in, and no longer needs to input account at this time Password, to be logged in using same account in a real additionally now station terminal.
Embodiment 2
The present invention provides another kinds by the client login method of shared region information, specifically includes following step Suddenly:
S21:First client sends logging request to client-server.
S22:The logging request of the first client is sent to control server by client-server.
S23:Control server verifies the logging request of first client, sent if being verified login with Token is demonstrate,proved to client-server.
S24:Logging request is forwarded in specified operation system by control server obtains data, and is back to client Server.The permission that the control server also logs in the first client judges, user's energy is determined according to different rights It is no to log in specified operation system.Meanwhile the control server also carries out the storage extraction of data by database and passes through Distributed caching is handled.
In this step, the forwarding of data is further carried out by control server, can be logged according to the account of user Corresponding operation system.Meanwhile being further managed by the permission to user, the permission of the user is judged, is The no corresponding operation system of opening is to user.Further for the processing speed for accelerating control server, also by the way that data are arranged Library server and distributed cache server are supported control server, the convenient storage to data.
S25:Logging on authentication token is sent to the first client by client-server.
S26:First client is written into after obtaining logging on authentication token in shared region.
S27:Second client obtains token vouchers in shared region, controls and services in being logged in by the token vouchers Device.
Further, the first client described in the present embodiment and the second client can be mobile client.
Compared with the prior art, the present invention is first passed through logs in client-server using the first client, then by client Logging request is forwarded to control server and logged in by server.Then, the token information received is written the first client In shared region.And at this point, the second client can by obtaining logging on authentication token in shared region, by this with Card directly asks to log in control server.More station terminals may be implemented with the same account in login mode through the invention It logs in, while being all not have to so repeatedly input account number cipher etc. by obtaining logging on authentication token in district-share information Mode is logged in, and keeps user more convenient in operation, while also can guarantee the safety of login account.
The present invention also provides a kind of client login system by shared region information, including the first client 21, Second client 22, client-server 23 and control server 24.
First client 21 includes logging request module, for that will send logging request to client-server.
The client-server 23 includes forwarding module, is taken for the logging request of the first client to be sent to middle control Business device.
The control server 24 includes authentication module, is verified for the logging request to first client, if It is verified, sends logging on authentication token to client-server.
Further, the control server 24 further includes data forwarding module and authority management module.The data forwarding Module obtains data for logging request to be forwarded in specified operation system 25, and is back to client-server 23.Institute Authority management module is stated, the permission for being logged in the first client judges, determines that can user step on according to different rights The specified operation system 25 of record.
Further, further include database server 26 and distributed cache server 27.The control server also passes through Database carries out the storage extraction of data and is handled by distributed caching.
In the present embodiment, the forwarding of data is carried out by control server, can be logged in and correspond to according to the account of user Operation system.Meanwhile being further managed by the permission to user, the permission of the user is judged, if open Corresponding operation system is put to user.Further for the processing speed for accelerating control server, also taken by the way that database is arranged Business device and distributed cache server are supported control server, the convenient storage to data.
The forwarding module of the client-server 23 is additionally operable to logging on authentication token being sent to the first client.
First client 21 further includes logging on authentication writing module, for being write after obtaining logging on authentication token Enter in shared region.
Second client 22 includes acquisition module, for obtaining token vouchers, and second visitor in shared region Family end 22 further includes login module, for logging in control server 24 by the token vouchers.
Further, first client, 21 and second client 22 is all mobile client.
The course of work of the client login system of the present invention is briefly described below:
First, user is logged in by the first client.When logging in, first passes through logging request module and log in user Information is sent to client-server, the log-on message is then forwarded to control server by client-server, by middle control Server is verified.
When verification of the user information by the authentication module of control server, logging on authentication is sent by control server Token is forwarded to the first client to client-server, then by client-server.At this point, the first client completes centering Control the login of server.
At this point, the data forwarding module of the control server, logging request is forwarded in specified operation system and is obtained Access evidence, and it is back to client-server.The first client of the authority management module pair log in permission judge, root Determine that can user log in specified operation system according to different rights.In the case that if the data volume of processing is larger, also pass through institute Database server is stated to carry out the storage extraction of data and handled by distributed cache server.
Then, the first client preserves logging on authentication token to shared region.The second client can be from this at this time Logging on authentication token is obtained in shared region, and is sent directly to control server and is logged in, and no longer needs to input account at this time Password, to be logged in using same account in a real additionally now station terminal.
The present invention is also equipped with other variant embodiments, such as:In logging in client, two visitors can be not limited to Family end can also be that multiple client is carried out while being logged in.Then, the client is not necessarily limited to mobile client.
The invention is not limited in the above embodiments, if the various changes or deformation to the present invention do not depart from the present invention Spirit and scope, if these changes and deformation belong within the scope of the claim and equivalent technologies of the present invention, then this hair It is bright to be also intended to comprising these changes and deformation.

Claims (10)

1. a kind of client login method by shared region information includes the following steps:
First client sends logging request to client-server;
The logging request of the first client is sent to control server by client-server;
Control server verifies the logging request of first client, and logging on authentication token is sent if being verified To client-server;
Logging on authentication token is sent to the first client by client-server;
First client is written into after obtaining logging on authentication token in shared region;
Second client obtains token vouchers in shared region, and control server is logged in by the token vouchers.
2. passing through the client login method of shared region information according to claim 1, it is characterised in that:The middle control clothes Business device verifies the logging request of first client, and logging on authentication token is sent if being verified to client clothes It is further comprising the steps of in the step of business device:If being proved to be successful, logging request is forwarded to specified business by control server Data are obtained in system, and are back to client-server.
3. passing through the client login method of shared region information according to claim 2, it is characterised in that:It further include step Suddenly:The permission that the control server also logs in the first client judges, determines that can user step on according to different rights The specified operation system of record.
4. passing through the client login method of shared region information according to claim 3, it is characterised in that:It further include step Suddenly:The control server also by database server carry out data storage extraction and by distributed cache server into Row processing.
5. passing through the client login method of shared region information according to claim 4, it is characterised in that:First visitor Family end and the second client are all mobile client.
6. a kind of client login system by shared region information, it is characterised in that:Including the first client, the second client End, client-server and control server;
First client includes logging request module, for that will send logging request to client-server;
The client-server includes forwarding module, for the logging request of the first client to be sent to control server;
The control server includes authentication module, is verified for the logging request to first client, if verification is logical It crosses, sends logging on authentication token to client-server;
The forwarding module of the client-server is additionally operable to logging on authentication token being sent to the first client;
First client further includes logging on authentication writing module, for obtain be written into after logging on authentication token it is shared In region;
Second client includes acquisition module, and for obtaining token vouchers in shared region, and second client is also Including login module, for logging in control server by the token vouchers.
7. passing through the client login system of shared region information according to claim 6, it is characterised in that:The middle control clothes Business device further includes data forwarding module, obtains data for logging request to be forwarded in specified operation system, and be back to Client-server.
8. passing through the client login system of shared region information according to claim 7, it is characterised in that:The middle control clothes Business device further includes authority management module, and the permission for being logged in the first client judges, determines to use according to different rights Can family log in specified operation system.
9. passing through the client login system of shared region information according to claim 8, it is characterised in that:Further include data Library server and distributed cache server, the storage that the control server also carries out data by database server are extracted It is handled with by distributed cache server.
10. passing through the client login system of shared region information according to claim 9, it is characterised in that:Described first Client and the second client are all mobile client.
CN201511033990.XA 2015-12-31 2015-12-31 A kind of client login method and system by shared region information Active CN105471913B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201511033990.XA CN105471913B (en) 2015-12-31 2015-12-31 A kind of client login method and system by shared region information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201511033990.XA CN105471913B (en) 2015-12-31 2015-12-31 A kind of client login method and system by shared region information

Publications (2)

Publication Number Publication Date
CN105471913A CN105471913A (en) 2016-04-06
CN105471913B true CN105471913B (en) 2018-07-13

Family

ID=55609183

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201511033990.XA Active CN105471913B (en) 2015-12-31 2015-12-31 A kind of client login method and system by shared region information

Country Status (1)

Country Link
CN (1) CN105471913B (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106412899B (en) * 2016-10-11 2019-05-28 江苏电力信息技术有限公司 A kind of network request method for saving mobile terminal flow
CN107148011B (en) * 2017-05-12 2021-02-26 腾讯科技(深圳)有限公司 Method, device and system for executing target service
CN108111486B (en) * 2017-12-05 2021-06-08 北京天融信网络安全技术有限公司 Method and device for avoiding repeated login
CN108365958B (en) * 2018-03-01 2021-06-29 广州南方人才资讯科技有限公司 Account login verification method and device, computer equipment and storage medium
KR20210049913A (en) * 2018-09-03 2021-05-06 후아웨이 테크놀러지 컴퍼니 리미티드 Login method, token sending method and device
CN109272302A (en) * 2018-10-16 2019-01-25 翟红鹰 Management method, terminal and readable storage medium storing program for executing based on block chain technology
CN112134780B (en) * 2019-06-24 2022-09-13 腾讯科技(深圳)有限公司 Information acquisition method and device, storage medium and electronic device
CN113225188B (en) * 2020-01-19 2023-09-22 华为技术有限公司 Login authentication method, device and system
CN114158046B (en) * 2021-12-30 2024-04-23 支付宝(杭州)信息技术有限公司 Method and device for realizing one-key login service

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104135494A (en) * 2014-08-22 2014-11-05 北京京东尚科信息技术有限公司 Same-account incredible terminal login method and system based on credible terminal
CN104506492A (en) * 2014-11-28 2015-04-08 北京奇艺世纪科技有限公司 Method and device for account synchronization at multiple terminals
CN104618389A (en) * 2015-02-16 2015-05-13 北京技德科技有限公司 Wireless login system and method based on mobile phone
EP2940617A1 (en) * 2012-12-27 2015-11-04 Rowem Inc System and method for secure login, and apparatus for same

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2940617A1 (en) * 2012-12-27 2015-11-04 Rowem Inc System and method for secure login, and apparatus for same
CN104135494A (en) * 2014-08-22 2014-11-05 北京京东尚科信息技术有限公司 Same-account incredible terminal login method and system based on credible terminal
CN104506492A (en) * 2014-11-28 2015-04-08 北京奇艺世纪科技有限公司 Method and device for account synchronization at multiple terminals
CN104618389A (en) * 2015-02-16 2015-05-13 北京技德科技有限公司 Wireless login system and method based on mobile phone

Also Published As

Publication number Publication date
CN105471913A (en) 2016-04-06

Similar Documents

Publication Publication Date Title
CN105471913B (en) A kind of client login method and system by shared region information
US11550895B2 (en) Systems and mechanism to control the lifetime of an access token dynamically based on access token use
CN108989346B (en) Third-party valid identity escrow agile authentication access method based on account hiding
US10552823B1 (en) System and method for authentication of a mobile device
CN104967604B (en) Login method and system
Lee et al. An empirical study of wireless carrier authentication for {SIM} swaps
KR102321781B1 (en) Processing electronic tokens
US20140075493A1 (en) System and method for location-based protection of mobile data
CN102231716B (en) Instant communication service login method
Yildirim et al. A research on security vulnerabilities in online and mobile banking systems
US9787678B2 (en) Multifactor authentication for mail server access
CN103973715B (en) Cloud computing security system and method
CN107733838A (en) A kind of mobile terminal client terminal identity identifying method, device and system
CN109150800A (en) Login access method, system and storage medium
Crossman et al. Study of authentication with IoT testbed
CN103220368B (en) High in the clouds information sharing system and method
CN108965324A (en) A kind of anti-brush method of short message verification code, terminal, server, equipment and medium
CN103905194A (en) Identity traceability authentication method and system
CN103401686A (en) User Internet identity authentication system and application method thereof
US11301847B1 (en) Systems and methods for an authorized identification system
CN105164969B (en) The recognition methods of instant communication client and identifying system
CN107645474A (en) Log in the method for open platform and log in the device of open platform
RU2354066C2 (en) Method and system for authentication of data processing system user
US20230246814A1 (en) Data intermediary registry security
US20230196376A1 (en) Multi-Factor User Authentication

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information
CB02 Change of applicant information

Address after: 510535 3, 1 building, 90 ho he road, Luogang District, Guangzhou, Guangdong.

Applicant after: Guangzhou Duoyi Network Co., Ltd.

Address before: 510535 3, 1 building, 90 ho he road, Luogang District, Guangzhou, Guangdong.

Applicant before: Guangzhou Baiyun Bio-Tech Co., Ltd.

GR01 Patent grant
GR01 Patent grant