CN105933322B

CN105933322B - Plug-in services acquisition methods, plug-in services providing method and device

Info

Publication number: CN105933322B
Application number: CN201610375922.XA
Authority: CN
Inventors: 孟亚楠; 刘铁俊; 张鹏飞
Original assignee: Beijing Xiaomi Mobile Software Co Ltd; Beijing Smartmi Technology Co Ltd
Current assignee: Beijing Xiaomi Mobile Software Co Ltd; Beijing Smartmi Technology Co Ltd
Priority date: 2016-05-31
Filing date: 2016-05-31
Publication date: 2019-04-26
Anticipated expiration: 2036-05-31
Also published as: CN105933322A

Abstract

The disclosure discloses a kind of plug-in services acquisition methods, plug-in services providing method and device, belongs to the communications field.The described method includes: receiving the account number token and plug-in unit mark that client is sent, account number token is used to indicate that client to have the access authority of access service server, and plug-in unit mark is the mark of the plug-in unit in client；Plug-in unit, which is generated, according to plug-in unit mark and account number token identifies corresponding plug-in unit token；Plug-in unit token is sent to plug-in server corresponding to client and plug-in unit, the plug-in unit in client is used to obtain plug-in services from plug-in server according to plug-in unit token；Solve the problems, such as that the plug-in unit in client obtains plug-in services from service server and causes service server load heavier；Reach plug-in unit and plug-in services are obtained from plug-in server by plug-in unit token, namely reached service distributing into the corresponding plug-in server of plug-in unit, mitigates the effect of the load of service server.

Description

Plug-in services acquisition methods, plug-in services providing method and device

Technical field

This disclosure relates to the communications field, in particular to a kind of plug-in services acquisition methods, plug-in services providing method and dress It sets.

Background technique

Plug-in unit can be installed, client can also pass through other than itself available corresponding service in client Call plug-in unit to obtain the corresponding plug-in services of plug-in unit.Wherein, plug-in unit is a kind of application programming interfaces volume for following and centainly standardizing The program write out.

When client needs to obtain the corresponding plug-in services of plug-in unit, the corresponding business service of client access client Device, and corresponding plug-in services are obtained from service server.However when the plug-in unit in client is more, service server Load is heavier.

Summary of the invention

Obtain to solve the plug-in unit in client from service server plug-in services cause service server load compared with The problem of weight, the disclosure provide a kind of plug-in services acquisition methods, plug-in services providing method and device.The technical solution is such as Under:

According to the first aspect of the embodiments of the present disclosure, a kind of plug-in services acquisition methods are provided, are used in service server, This method comprises:

The account number token and plug-in unit mark that client is sent are received, account number token is for indicating that client has access business The access authority of server, plug-in unit mark are the marks of the plug-in unit in client；

Plug-in unit, which is generated, according to plug-in unit mark and account number token identifies corresponding plug-in unit token；

Plug-in unit token is sent to plug-in server corresponding to client and plug-in unit, the plug-in unit in client is used for basis Plug-in unit token obtains plug-in services from plug-in server.

Optionally, plug-in unit token is sent to plug-in server corresponding to plug-in unit, comprising:

Default corresponding relationship is inquired, plug-in server mark corresponding with plug-in unit mark is obtained；

It is identified according to plug-in server to plug-in server and sends plug-in unit token；

Wherein, default corresponding relationship includes the corresponding relationship between plug-in unit mark and plug-in server mark.

Optionally, this method further include:

Account number token is sent to account server；

The authentication result that account server returns is received, authentication result is after account server accounting checking command board is authenticated The information of transmission；

When authentication result expression authenticates successfully, execute corresponding according to plug-in unit mark and account number token generation plug-in unit mark The step of plug-in unit token.

According to the second aspect of an embodiment of the present disclosure, a kind of plug-in services acquisition methods are provided, are used in plug-in unit, this method Include:

Plug-in unit is obtained from the client at place according to plug-in unit mark and identifies corresponding plug-in unit token, and plug-in unit token is client Account number token and the plug-in unit mark for holding corresponding service server to be sent according to client generate and feed back to client, account number Token is used to indicate that client to have the access authority of access service server；

Plug-in services are obtained from plug-in server according to plug-in unit token.

Optionally, plug-in services are obtained from plug-in server according to plug-in unit token, comprising:

Service acquisition request is sent to plug-in server, service acquisition request is inserted for requesting to obtain from plug-in server Part service, service acquisition request in include at least plug-in unit token, plug-in server be used for plug-in unit token authentication success when, root It requests to provide plug-in services to plug-in unit according to service acquisition；

Receive the plug-in services that plug-in server provides.

According to the third aspect of an embodiment of the present disclosure, a kind of plug-in services providing method is provided, is used in plug-in server, This method comprises:

The plug-in unit token of service server transmission is received and stored, plug-in unit token is service server according to the visitor received The token corresponding with plug-in unit mark that account number token and the plug-in unit mark that family end is sent generate, account number token is for indicating client Access authority with access service server, plug-in unit mark are the mark for the plug-in unit for including in client；

The plug-in unit token that plug-in unit is sent is received, is provided according to the plug-in unit token of storage and the plug-in unit token received for plug-in unit Plug-in services, the plug-in unit token that plug-in unit is sent is plug-in unit obtained from the client at place according to the plug-in unit of plug-in unit mark with insert Part identifies corresponding plug-in unit token, and the plug-in unit token in client is the token for the service server feedback that client receives.

Optionally, the plug-in unit token that plug-in unit is sent is received, is according to the plug-in unit token of storage and the plug-in unit token received Plug-in unit provides plug-in services, comprising:

The service acquisition request that plug-in unit is sent is received, service acquisition request is used for request plug-in services, service acquisition Plug-in unit token is included at least in request；

The plug-in unit token received is authenticated according to the plug-in unit token of storage；

When authenticating successfully, plug-in services are provided for plug-in unit.

According to a fourth aspect of embodiments of the present disclosure, a kind of plug-in services acquisition device is provided, which includes:

First receiving module is configured as receiving the account number token of client transmission and plug-in unit mark, account number token is used for Indicate that client has the access authority of access service server, plug-in unit mark is the mark of the plug-in unit in client；

Generation module is configured as being identified according to plug-in unit and account number token generates plug-in unit and identifies corresponding plug-in unit token；

Plug-in unit token sending module is configured as sending plug-in unit order to plug-in server corresponding to client and plug-in unit Board, the plug-in unit in client are used to obtain plug-in services from plug-in server according to plug-in unit token.

Optionally, plug-in unit token sending module includes:

Submodule is inquired, is configured as inquiring default corresponding relationship, obtains plug-in server mark corresponding with plug-in unit mark Know；

Sending submodule is configured as being identified according to plug-in server to plug-in server transmission plug-in unit token；

Optionally, the device further include:

Account number token sending module is configured as sending account number token to account server；

Second receiving module is configured as receiving the authentication result that account server returns, and authentication result is account number service The information that device accounting checking command board is sent after being authenticated；

Generation module is additionally configured to execute and enabled according to plug-in unit mark and account number when authentication result indicates to authenticate successfully Board generates the step of plug-in unit identifies corresponding plug-in unit token.

According to a fifth aspect of the embodiments of the present disclosure, a kind of plug-in services acquisition device is provided, which includes:

First obtains module, and it is corresponding slotting to be configured as identifying the acquisition plug-in unit mark from the client at place according to plug-in unit Part token, plug-in unit token are that the account number token that the corresponding service server of client is sent according to client and plug-in unit mark generate And client is fed back to, account number token is used to indicate that client to have the access authority of access service server；

Second obtains module, is configured as obtaining plug-in services from plug-in server according to plug-in unit token.

Optionally, the second acquisition module includes:

Sending submodule is configured as sending service acquisition request to plug-in server, and service acquisition is requested for requesting Plug-in services are obtained from plug-in server, plug-in unit token is included at least in service acquisition request, and plug-in server is used for right When the success of plug-in unit token authentication, requested to provide plug-in services to plug-in unit according to service acquisition；

Receiving submodule is configured as receiving the plug-in services that plug-in server provides.

According to a sixth aspect of an embodiment of the present disclosure, a kind of plug-in services offer device is provided, which includes:

First receiving module is configured to receive and store the plug-in unit token of service server transmission, and plug-in unit token is industry The token corresponding with plug-in unit mark that the account number token and plug-in unit mark that business server is sent according to the client received generate, Account number token be used for indicate client have access service server access authority, plug-in unit mark be include in client insert The mark of part；

Second receiving module is configured as receiving the plug-in unit token that plug-in unit is sent, according to the plug-in unit token of storage and reception To plug-in unit token provide plug-in services for plug-in unit, the plug-in unit token that plug-in unit is sent is plug-in unit according to the plug-in unit of plug-in unit mark from institute Client in the plug-in unit token corresponding with plug-in unit mark that obtains, the plug-in unit token in client is what client received The token of service server feedback.

Optionally, the second receiving module includes:

Receiving submodule is configured as receiving the service acquisition request that plug-in unit is sent, and service acquisition request is obtained for requesting Plug-in services are taken, include at least plug-in unit token in service acquisition request；

Authentication sub module is configured as authenticating the plug-in unit token received according to the plug-in unit token of storage；

Submodule is provided, is configured as when authenticating successfully, provides plug-in services for plug-in unit.

According to the 7th of the embodiment of the present disclosure the aspect, a kind of plug-in services acquisition device is provided, which includes:

Processor；

Memory for storage processor executable instruction；

Wherein, processor is configured as:

According to the eighth aspect of the embodiment of the present disclosure, a kind of plug-in services acquisition device is provided, which includes:

Processor；

Memory for storage processor executable instruction；

Wherein, processor is configured as:

According to the 9th of the embodiment of the present disclosure the aspect, a kind of plug-in services offer device is provided, which includes:

Processor；

Memory for storage processor executable instruction；

Wherein, processor is configured as:

The technical scheme provided by this disclosed embodiment can include the following benefits:

Through service server after the account number token and plug-in unit mark for receiving client transmission, according to account number token and Plug-in unit mark generates plug-in unit token, feeds back plug-in unit token to client and the corresponding plug-in server of plug-in unit, by client Plug-in unit obtain the plug-in unit token from client, and plug-in unit is obtained from corresponding plug-in server by the plug-in unit token and is taken Business；Solving the plug-in unit in client and obtaining plug-in services from service server causes service server load is heavier to ask Topic；Plug-in unit is reached and plug-in services is obtained from plug-in server by plug-in unit token, namely has reached service distributing to plug-in unit In corresponding plug-in server, mitigate the effect of the load of service server.

It should be understood that the above general description and the following detailed description are merely exemplary, this can not be limited It is open.

Detailed description of the invention

The drawings herein are incorporated into the specification and forms part of this specification, and shows the implementation for meeting the disclosure Example, and consistent with the instructions for explaining the principles of this disclosure.

Fig. 1 is a kind of plug-in services acquisition methods shown according to an exemplary embodiment and plug-in services providing method institute The schematic diagram for the implementation environment being related to；

Fig. 2 is a kind of plug-in services acquisition methods shown according to another exemplary embodiment and plug-in services providing method The schematic diagram of related implementation environment；

Fig. 3 is a kind of plug-in services acquisition methods shown according to an exemplary embodiment and plug-in services providing method Flow chart；

Fig. 4 is a kind of plug-in services acquisition methods shown according to another exemplary embodiment and plug-in services providing method Flow chart；

Fig. 5 is a kind of information exchange schematic diagram shown according to another exemplary embodiment；

Fig. 6 is a kind of plug-in services acquisition methods shown according to another exemplary embodiment and plug-in services providing method Flow chart；

Fig. 7 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment；

Fig. 8 is a kind of block diagram of the plug-in services acquisition device shown according to another exemplary embodiment；

Fig. 9 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment；

Figure 10 is a kind of block diagram of the plug-in services acquisition device shown according to another exemplary embodiment；

Figure 11 is that a kind of plug-in services shown according to an exemplary embodiment provide the block diagram of device；

Figure 12 is that a kind of plug-in services shown according to another exemplary embodiment provide the block diagram of device；

Figure 13 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment；

Figure 14 is that a kind of plug-in services acquisition device shown according to another exemplary embodiment or plug-in services provide dress The block diagram set.

Specific embodiment

Example embodiments are described in detail here, and the example is illustrated in the accompanying drawings.Following description is related to When attached drawing, unless otherwise indicated, the same numbers in different drawings indicate the same or similar elements.Following exemplary embodiment Described in embodiment do not represent all implementations consistent with this disclosure.On the contrary, they be only with it is such as appended The example of the consistent device and method of some aspects be described in detail in claims, the disclosure.

Fig. 1 is that a kind of schematic diagram of implementation environment, the implementation environment involved in each embodiment of the disclosure may include: Client 110, service server 120 and plug-in server 130.

Client 110 can run on the end of such as mobile phone, tablet computer, portable computer and desktop computer etc In end equipment.Plug-in unit 111 is installed in client 110, user logs in client 110 by user account number and account number cipher, and Obtain the corresponding local service of client 110 itself and the corresponding plug-in services of plug-in unit 111.Also, it is in actual implementation, objective The plug-in unit 111 installed in family end 110 can have one, can also have the corresponding plug-in services of multiple, different plug-in units to be usually Different, the present embodiment is only illustrated for including a plug-in unit in client 110.In an actual example, with Client is for millet wired home App (Application, application program), the corresponding local service of client itself can To be store information, personal information, list page etc., the plug-in unit in client may include air purifier plug-in unit, intelligent socket Plug-in unit, intelligent camera plug-in unit etc., then user obtains the corresponding plug-in services of the plug-in unit by clicking plug-in unit.

Client 110 can pass through wireless network mode or cable network mode and service server 120 and plug-in unit Server 130 establishes communication connection.

Service server 120 is used to the clothes that client 110 provides local service and is managed to client 110 Business device, service server 120 can be a server, be also possible to the server cluster of several servers composition, or It is a cloud computing service center.

Plug-in server 130 is used to plug-in unit 111 and provides the server of plug-in services, and plug-in server 130 can be One server is also possible to the server cluster or a cloud computing center of several servers composition.

Service server 120 can be established by wireless network mode or cable network mode and plug-in server 130 Communication connection.

When in client 110 including multiple plug-in units, the plug-in server 130 of communication connection is established with client 110 Including multiple, each plug-in server is corresponding with a plug-in unit in client, and provides plug-in unit for corresponding plug-in unit Service.

Optionally, in other alternative embodiments based on the above embodiment, user is close by user account number and account number When code logs in client, user account number and account number cipher can be authenticated by service server, it can also be by special account Number server authenticates user account number and account number cipher, then in implementation environment shown in Fig. 1 further include: account server 140, as shown in Figure 2.

Account server 140 can by wireless network mode or cable network mode and service server 120 and Client 110 establishes communication connection.

Account server 140 be can user account number to some or certain several clients and account number cipher verify The server of login, in the present embodiment, plug-in unit 111 and client 110 in client 110 can share user's account Number, account server 140 be used to carry out the user account number and account number cipher of client 110 certification and according to user account number or Account number token is generated according to user account number and account number cipher, and account number token is fed back into client 110.Account server 140 It can be a server, be also possible to the server cluster or a cloud computing center of several servers composition.

Fig. 3 is a kind of plug-in services acquisition methods shown according to an exemplary embodiment and plug-in services providing method Flow chart.The present embodiment is applied to implementation shown in FIG. 1 with the plug-in services acquisition methods and plug-in services providing method It is illustrated in environment.This method may include following steps:

In step 301, service server receives the account number token (passToken) and plug-in unit mark that client is sent (company id), account number token are used to indicate that client to have the access authority of access service server, and plug-in unit mark is visitor The mark of plug-in unit in the end of family.

In step 302, service server generates plug-in unit according to plug-in unit mark and account number token and identifies corresponding plug-in unit order Board (companyToken).

In step 303, service server sends plug-in unit token to plug-in server corresponding to client and plug-in unit.

In step 304, plug-in unit is identified according to plug-in unit obtains the corresponding plug-in unit order of plug-in unit mark from the client at place Board.

In step 305, plug-in server receives and stores the plug-in unit token of service server transmission.

Within step 306, plug-in unit obtains plug-in services according to plug-in unit token from plug-in server.

In step 307, plug-in server receives the plug-in unit token that plug-in unit is sent, according to the plug-in unit token of storage and reception To plug-in unit token provide plug-in services for plug-in unit.

It should be noted that above-mentioned steps 301, step 302 and step 303 can be implemented separately in service server Plug-in services acquisition methods, above-mentioned steps 304 and step 306 can be implemented separately to become and obtain for the plug-in services in plug-in unit Method is taken, the plug-in services provider become in plug-in server can be implemented separately in above-mentioned steps 305 and step 307 Method.

In conclusion plug-in services acquisition methods and plug-in services providing method that the embodiment of the present disclosure provides, pass through Service server generates after the account number token and plug-in unit mark for receiving client transmission according to account number token and plug-in unit mark Plug-in unit token, feedback plug-in unit token is to client and the corresponding plug-in server of plug-in unit, by the plug-in unit in client from client The plug-in unit token is obtained in end, and plug-in services are obtained from corresponding plug-in server by the plug-in unit token；Solves visitor Plug-in unit in the end of family obtains the problem that plug-in services cause service server load heavier from service server；Plug-in unit is reached Plug-in services are obtained from plug-in server by plug-in unit token, namely are reached service distributing to the corresponding plug-in services of plug-in unit In device, mitigate the effect of the load of service server.

Fig. 4 is a kind of plug-in services acquisition methods shown according to another exemplary embodiment and plug-in services provider The flow chart of method.The present embodiment is applied to reality shown in Fig. 2 with the plug-in services acquisition methods and plug-in services providing method It applies in environment and illustrates.This method may include following steps:

In step 401, client connects account server, sends user account number and account number cipher to account server.

User inputs user account number and account number cipher when logging in client in the client, then client is by user's account Number and account number cipher be sent to account server.

In step 402, account server receives the user account number and account number cipher that client is sent, and to user account number It is authenticated with account number cipher, when authenticating successfully, account server is to client feedback account number token.

Optionally, the corresponding relationship of user account number and account number cipher, account server are previously stored in account server After the user account number and account number cipher for receiving client transmission, inquire corresponding with the user account number received in corresponding relationship Account number cipher it is whether identical as the account number cipher received, if they are the same, then it represents that authenticate successfully, if not identical, then it represents that recognize Card failure.

When authenticating successfully, account server is by user account number, alternatively, using user account number and account number cipher as parameter, Account number token is generated according to pre-defined algorithm, the corresponding account number token of different user account numbers is not identical.Wherein, pre-defined algorithm can be with It is hash algorithm, MD5 algorithm (Message Digest Algorithm MD5, Message Digest Algorithm 5), UUID (Universally Unique Identifier, Universally Unique Identifier) algorithm or other algorithms, the present embodiment do not make this It limits.Account server returns to client after generating account number token, by account number token, and protects to account token It deposits.

In authentification failure, process terminates.

In step 403, client receives the account number token that account server returns, and connects service server, Xiang Ye Business server sends account number token and plug-in unit mark.

User is after logging in client, and client is by the plug-in unit for the plug-in unit for including in the account number token and client that receive Mark is sent to service server, wherein and account number token is used to indicate that client to have the access authority of access service server, Plug-in unit mark is the mark of the plug-in unit in client, and plug-in unit mark can be for uniquely identifying a plug-in unit, plug-in unit mark The unique identifier (Identifier) of plug-in unit.

Optionally, client checks account to generate after command board is encrypted according to predetermined cryptographic algorithm and sign, and by the signature It is sent to service server, wherein predetermined cryptographic algorithm can be symmetric encipherment algorithm or rivest, shamir, adelman, make a reservation for encryption Algorithm can be MD5 algorithm, DSA algorithm (Digital Signature Algorithm, Digital Signature Algorithm), IDEA algorithm (International Data Encryption Algorithm, international data encryption algorithm) etc., the present embodiment does not make this It limits.

In step 404, service server receives the account number token and plug-in unit mark that client is sent.

Optionally, when encrypted signature is sent to service server by client, service server is receiving label After name, signature is decrypted and obtains account number token.

In step 405, service server sends account number token to account server.

In a step 406, account server authenticates the account number token that service server is sent, and to business service Device feeds back authentication result.

Due to preserving the account number token of account server generation in account server, then account server is receiving After the account number token that service server is sent, the account number token phase for existing with receiving is searched whether in the account number token of preservation With account number token, and if it exists, then authenticate success, if it does not exist, then authentification failure.

In step 407, service server receives the authentication result that account server returns.

Authentication result expression authenticate successfully or authentification failure, and when authentication result indicates to authenticate successfully, service server is fair Perhaps client accesses and executes subsequent step；When authentication result indicates authentification failure, process terminates.

In a step 408, when authentication result expression authenticates successfully, service server is according to plug-in unit mark and account number token It generates plug-in unit and identifies corresponding plug-in unit token.

Service server generates plug-in unit according to pre-defined algorithm and enables using the plug-in unit received mark and account number token as parameter Board, plug-in unit token is corresponding with plug-in unit mark, meanwhile, plug-in unit token is also corresponding with account number token.The corresponding plug-in unit of different plug-in units Token is different；Since account number token is corresponding with user account number, when logging in the user account number difference of client, client In same plug-in unit corresponding to plug-in unit token it is also different.Wherein, the meaning of pre-defined algorithm can be in conjunction in above-mentioned steps 402 Pre-defined algorithm, the present embodiment repeat no more this.

In step 409, service server sends plug-in unit token to client.

Optionally, signature is generated after service server encrypts plug-in unit token according to predetermined cryptographic algorithm, and should Signature is sent to client.Wherein, the meaning of predetermined cryptographic algorithm can combine the predetermined cryptographic algorithm in above-mentioned steps 403, The present embodiment repeats no more this.

In step 410, plug-in unit is identified according to plug-in unit obtains the corresponding plug-in unit order of plug-in unit mark from the client at place Board.

Optionally, when signature is sent to client by service server, then by client after receiving signature, to label Name is decrypted, alternatively, being decrypted to signature by plug-in unit after getting signature and obtaining plug-in unit token.

In step 411, service server inquires default corresponding relationship, obtains plug-in server corresponding with plug-in unit mark Mark.

Default corresponding relationship is pre-configured with and is stored in service server, and default corresponding relationship includes plug-in unit mark and inserts Corresponding relationship between part server identification, plug-in server mark are the marks of plug-in server corresponding with plug-in unit.

In step 412, service server identifies to plug-in server according to plug-in server and sends plug-in unit token.

Optionally, signature is generated after service server encrypts plug-in unit token according to predetermined cryptographic algorithm, and should Signature is sent to the corresponding plug-in server of plug-in unit.Wherein, the meaning of predetermined cryptographic algorithm can be in conjunction in above-mentioned steps 403 Predetermined cryptographic algorithm, the present embodiment repeat no more this.

In step 413, plug-in server receives and stores the plug-in unit token of service server transmission.

Optionally, when signature is sent to plug-in server by service server, plug-in server after receiving signature, Signature is decrypted and obtains plug-in unit token and stores.

It should be noted that in actual implementation, above-mentioned steps 409 and above-mentioned steps 411 are usually to be performed simultaneously.

In step 414, plug-in unit sends service acquisition request to plug-in server.

Service acquisition request obtains the corresponding plug-in services of plug-in unit for requesting from plug-in server, service acquisition request In include at least plug-in unit token.

It optionally, further include the service identifiers for the plug-in services that plug-in request obtains, service identifiers in service acquisition request For uniquely identifying a plug-in services.

In step 415, plug-in server receives the service acquisition request that plug-in unit is sent.

Plug-in server parses service acquisition request and obtains the plug-in unit token in service acquisition request and service Mark.

In step 416, plug-in server authenticates the plug-in unit token received according to the plug-in unit token of storage.

In one possible implementation, plug-in server after the plug-in unit token for receiving plug-in unit transmission, deposit by judgement Whether the plug-in unit token of storage is identical as the plug-in unit token received, if they are the same, then authenticates success；If not identical, authentification failure.

In alternatively possible implementation, plug-in unit is encrypted and is obtained to plug-in unit token according to predetermined cryptographic algorithm Plug-in unit token signature, then in above-mentioned steps 414, the plug-in unit token carried in the service acquisition request that plug-in unit is sent is encrypted Plug-in unit token signature；Then plug-in server, which is encrypted according to plug-in unit token of the predetermined cryptographic algorithm to storage, is stored The signature of plug-in unit token, and whether the plug-in unit token signature for comparing the plug-in unit token signature and storage received is identical, if they are the same, Success is then authenticated, if not identical, authentification failure.Wherein, the meaning of predetermined cryptographic algorithm can be with reference in above-mentioned steps 403 Predetermined cryptographic algorithm, the present embodiment repeat no more this.

In step 417, when authenticating successfully, plug-in server provides plug-in services for plug-in unit.

When plug-in server fails to plug-in unit token authentication, process terminates.

In step 418, plug-in unit receives the plug-in services that plug-in server provides.

It should be noted that plug-in unit and plug-in server be after getting plug-in unit token, when plug-in unit needs to obtain plug-in unit When service, can directly it be obtained from plug-in server using the method for the plug-in unit token through the above steps shown in 414-418 Plug-in services；But it when the user account number for logging in the client changes, needs by re-executing above-mentioned steps 401-413 New plug-in unit token is generated, and new plug-in unit token is sent to plug-in unit and plug-in server by service server, plug-in unit is again Plug-in services are obtained using new plug-in unit token.

Client 110, plug-in unit 111 involved in the present embodiment, service server 120, plug-in server 130 and account number clothes The information exchange schematic diagram of business device 140 can be as shown in Figure 5.

Optionally, in other alternative embodiments based on the above embodiment, when in client including multiple plug-in units, on It states in step 403, client sends account number token and plug-in unit identification list after connecting service server, to service server, Plug-in unit in plug-in unit identification list including at least two plug-in units identifies.

Then service server is receiving account number token and plug-in unit identification list, and is received according to above-mentioned steps 405-407 To after indicating the successful authentication result of account number token authentication, according to each of account number token and plug-in unit identification list plug-in unit mark Know and generates the corresponding plug-in unit token of plug-in unit mark.

Then in above-mentioned steps 409, service server sends plug-in unit token list to client, wraps in plug-in unit token list At least two plug-in unit tokens are included, each plug-in unit token is corresponding with a plug-in unit mark.

In an illustrative example, client sends account number token and plug-in unit identification list to service server, It include that the corresponding plug-in unit of plug-in unit 1 mark 1, the corresponding plug-in unit of plug-in unit 2 mark 2 and plug-in unit 3 are corresponding slotting in plug-in unit identification list Part mark 3.Service server is after receiving the expression successful authentication result of account number token authentication, according to account number token and plug-in unit Mark 1 generates plug-in unit and identifies 1 corresponding plug-in unit token 1, and it is corresponding to generate plug-in unit mark 2 according to account number token and plug-in unit mark 2 Plug-in unit token 2 generates plug-in unit according to account number token and plug-in unit mark 3 and identifies 3 corresponding plug-in unit tokens 3.Service server is to visitor Family end sends plug-in unit token list, and plug-in unit token list can be as shown in following table one:

Plug-in unit mark	Plug-in unit token
		Plug-in unit mark 1	Plug-in unit token 1
Plug-in unit mark 2	Plug-in unit token 2
		Plug-in unit mark 3	Plug-in unit token 3

Table one

Then plug-in unit 1 obtains plug-in unit token 1 according to plug-in unit mark 1 from client, and plug-in unit 2 identifies 2 from client according to plug-in unit Plug-in unit token 2 is obtained in end, plug-in unit 3 obtains plug-in unit token 3 according to plug-in unit mark 3 from client.It should be noted that above-mentioned The form of plug-in unit token list and content shown in table one are all exemplary.

Meanwhile service server inquires default corresponding relationship, it is assumed that in default corresponding relationship, plug-in unit mark 1 and plug-in unit Server identification 1 is corresponding, and plug-in unit mark 2 is corresponding with plug-in server mark 2, and plug-in unit mark 3 identifies 3 pairs with plug-in server It answers, then plug-in unit token 1 is sent to plug-in server and identifies 1 corresponding plug-in server 1 by service server, by plug-in unit token 2 It is sent to plug-in server and identifies 2 corresponding plug-in servers 2, it is corresponding that plug-in unit token 3 is sent to plug-in server mark 3 Plug-in server 3.Wherein, plug-in server 1 is the corresponding plug-in server of plug-in unit 1, and plug-in server 2 is that plug-in unit 2 is corresponding Plug-in server, plug-in server 3 are the corresponding plug-in servers of plug-in unit 3.

Then plug-in unit 1 obtains plug-in services by plug-in unit token 1 from plug-in server 1, plug-in unit 2 by plug-in unit token 2 from Plug-in services are obtained in plug-in server 2, plug-in unit 3 obtains plug-in services from plug-in server 3 by plug-in unit token 3.

In conclusion plug-in services acquisition methods and plug-in services providing method that the embodiment of the present disclosure provides, pass through Client sends the plug-in unit identification list identified comprising multiple plug-in units to service server, and service server generates each plug-in unit Corresponding plug-in unit token is identified, the plug-in unit token list comprising multiple plug-in unit tokens is fed back into client, inserting in client Part obtains the corresponding plug-in unit token of itself plug-in unit mark and is obtained from corresponding plug-in server according to the plug-in unit token and inserted Part service, plug-in services can be obtained from corresponding plug-in server parallel by having reached multiple plug-in units in client Effect.

Optionally, in other alternative embodiments based on the above embodiment, user can also obtain after logging in client The local service of client is taken, then in above-mentioned steps 403, client sends account number token, plug-in unit mark to service server And local service identification (service id), local service identification is for uniquely identifying a local service of client. Corresponding, in above-mentioned steps 404, service server receives the account number token that client is sent and plug-in unit mark and local clothes Business mark.

After then 404-407 accounting checking command board is authenticated through the above steps, this method further includes following steps, such as Fig. 6 It is shown:

In step 601, when authentication result expression authenticates successfully, service server is according to local service identification and account number Token generates the corresponding service token (serviceToken) of local service identification.

Service server is generated according to pre-defined algorithm and is taken using the local service identification received and account number token as parameter Business token, service token is corresponding with local service identification, meanwhile, service token is also corresponding with account number token.Different local clothes Corresponding service token of being engaged in is different；Since account number token is corresponding with user account number, logging in the user account number of client not Meanwhile service token corresponding to the same item local service in client is also different.Wherein, the meaning of pre-defined algorithm can be tied The pre-defined algorithm in above-mentioned steps 402 is closed, the present embodiment repeats no more this.

In step 602, service server sends service token and storage service token to client.

In step 603, client sends local service acquisition request to service server.

Local service acquisition request obtains the corresponding local service of client for requesting from service server, local to take Service token is included at least in acquisition request of being engaged in.

In step 604, service server receives the local service acquisition request that client is sent.

Service server parses local service acquisition request and obtains the order of the service in local service acquisition request Board.

In step 605, service server authenticates the service token received according to the service token of storage.

The method that service server authenticates the service token received can take in conjunction with plug-in unit in above-mentioned steps 416 The method that business device authenticates the plug-in unit token received, the present embodiment repeat no more this.

In step 606, when authenticating successfully, service server provides local service for client.

When service server is to service token authentification failure, process terminates.

In step 607, client receives the local service that service server provides.

In conclusion plug-in services acquisition methods and plug-in services providing method that the embodiment of the present disclosure provides, client End can also send local service identification, reach other than sending account number token and plug-in unit mark to service server While providing plug-in services by plug-in server for plug-in unit, service server still can provide local service for client Effect.

Following is embodiment of the present disclosure, can be used for executing embodiments of the present disclosure.It is real for disclosure device Undisclosed details in example is applied, embodiments of the present disclosure is please referred to.

Fig. 7 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment, as shown in fig. 7, should Device being implemented in combination with as the business service in implementation environment shown in fig. 1 or fig. 2 by hardware, software or both Device, which includes but is not limited to: the first receiving module 710, generation module 720 and plug-in unit token sending module 730.

First receiving module 710 is configured as receiving the account number token and plug-in unit mark that client is sent, account number token use In the access authority for indicating that client has access service server, plug-in unit mark is the mark of the plug-in unit in client

Generation module 720 is configured as being identified according to plug-in unit and account number token generates plug-in unit and identifies corresponding plug-in unit token.

Plug-in unit token sending module 730 is configured as sending to plug-in server corresponding to client and plug-in unit and insert Part token, the plug-in unit in client are used to obtain plug-in services from plug-in server according to plug-in unit token.

In conclusion the plug-in services acquisition device that the embodiment of the present disclosure provides, is receiving visitor by service server After account number token and the plug-in unit mark that family end is sent, plug-in unit token is generated according to account number token and plug-in unit mark, feedback plug-in unit enables Board obtains the plug-in unit token to client and the corresponding plug-in server of plug-in unit, by the plug-in unit in client from client, And plug-in services are obtained from corresponding plug-in server by the plug-in unit token；The plug-in unit solved in client takes from business The problem that plug-in services cause service server load heavier is obtained in business device；Plug-in unit is reached and has been taken by plug-in unit token from plug-in unit Plug-in services are obtained in business device, namely are reached by service distributing into the corresponding plug-in server of plug-in unit, service server is mitigated Load effect.

Fig. 8 is a kind of block diagram of the plug-in services acquisition device shown according to another exemplary embodiment, as shown in figure 8, The device being implemented in combination with as the business service in implementation environment shown in fig. 1 or fig. 2 by hardware, software or both Device, which includes but is not limited to: the first receiving module 810, account number token sending module 820, the second receiving module 830, life At module 840 and plug-in unit token sending module 850.

First receiving module 810 is configured as receiving the account number token and plug-in unit mark that client is sent, account number token use In the access authority for indicating that client has access service server, plug-in unit mark is the mark of the plug-in unit in client；

Account number token sending module 820 is configured as sending account number token to account server.

Second receiving module 830 is configured as receiving the authentication result that account server returns, and authentication result is account number clothes The information that business device accounting checking command board is sent after being authenticated.

Generation module 840 is configured as executing and being enabled according to plug-in unit mark and account number when authentication result indicates to authenticate successfully Board generates the step of plug-in unit identifies corresponding plug-in unit token.

Plug-in unit token sending module 850 is configured as sending to plug-in server corresponding to client and plug-in unit and insert Part token, the plug-in unit in client are used to obtain plug-in services from plug-in server according to plug-in unit token.

Plug-in unit token sending module 850 includes:

Submodule 851 is inquired, is configured as inquiring default corresponding relationship, obtains plug-in server corresponding with plug-in unit mark Mark；

Sending submodule 852 is configured as being identified according to plug-in server to plug-in server transmission plug-in unit token；

Fig. 9 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment, as shown in figure 9, should Device being implemented in combination with as the plug-in unit in implementation environment shown in fig. 1 or fig. 2 by hardware, software or both, the dress Set including but not limited to: first, which obtains module 910 and second, obtains module 920.

First obtains module 910, is configured as identifying the acquisition plug-in unit mark from the client at place according to plug-in unit and corresponds to Plug-in unit token, the account number token and plug-in unit that plug-in unit token is the corresponding service server of client to be sent according to client identify Client is generated and feeds back to, account number token is used to indicate that client to have the access authority of access service server.

Second obtains module 920, is configured as obtaining plug-in services from plug-in server according to plug-in unit token.

Figure 10 is a kind of block diagram of the plug-in services acquisition device shown according to another exemplary embodiment, such as Figure 10 institute Show, the device being implemented in combination with as the plug-in unit in implementation environment shown in fig. 1 or fig. 2 by hardware, software or both, The device includes but is not limited to: first, which obtains module 1010 and second, obtains module 1020.

First obtains module 1010, is configured as identifying the acquisition plug-in unit mark from the client at place according to plug-in unit and corresponds to Plug-in unit token, the account number token and plug-in unit that plug-in unit token is the corresponding service server of client to be sent according to client identify Client is generated and feeds back to, account number token is used to indicate that client to have the access authority of access service server.

Second obtains module 1020, is configured as obtaining plug-in services from plug-in server according to plug-in unit token.

Second, which obtains module 1020, includes:

Sending submodule 1021 is configured as sending service acquisition request to plug-in server, and service acquisition request is used for Request obtains plug-in services from plug-in server, includes at least plug-in unit token in service acquisition request, plug-in server is used for When to the success of plug-in unit token authentication, requested to provide plug-in services to plug-in unit according to service acquisition.

Receiving submodule 1022 is configured as receiving the plug-in services that plug-in server provides.

Figure 11 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment, as shown in figure 11, The device being implemented in combination with as the plug-in services in implementation environment shown in fig. 1 or fig. 2 by hardware, software or both Device, which includes but is not limited to: the first receiving module 1110 and the second receiving module 1120.

First receiving module 1110 is configured to receive and store the plug-in unit token of service server transmission, plug-in unit token The account number token and plug-in unit mark that be service server send according to the client received generate corresponding with plug-in unit mark Token, account number token are used to indicate that client to have the access authority of access service server, and plug-in unit mark is wrapped in client The mark of the plug-in unit included.

Second receiving module 1120 is configured as receiving the plug-in unit token that plug-in unit is sent, according to the plug-in unit token of storage and The plug-in unit token received provides plug-in services for plug-in unit, and the plug-in unit token that plug-in unit is sent is that plug-in unit is identified according to the plug-in unit of plug-in unit The plug-in unit token corresponding with plug-in unit mark obtained from the client at place, the plug-in unit token in client are that client receives The token of the service server feedback arrived.

In conclusion the plug-in services that the embodiment of the present disclosure provides provide device, visitor is being received by service server After account number token and the plug-in unit mark that family end is sent, plug-in unit token is generated according to account number token and plug-in unit mark, feedback plug-in unit enables Board obtains the plug-in unit token to client and the corresponding plug-in server of plug-in unit, by the plug-in unit in client from client, And plug-in services are obtained from corresponding plug-in server by the plug-in unit token；The plug-in unit solved in client takes from business The problem that plug-in services cause service server load heavier is obtained in business device；Plug-in unit is reached and has been taken by plug-in unit token from plug-in unit Plug-in services are obtained in business device, namely are reached by service distributing into the corresponding plug-in server of plug-in unit, service server is mitigated Load effect.

Figure 12 is a kind of block diagram of the plug-in services acquisition device shown according to another exemplary embodiment, such as Figure 12 institute Show, which being implemented in combination with as the plug-in unit in implementation environment shown in fig. 1 or fig. 2 by hardware, software or both Server, which includes but is not limited to: the first receiving module 1210 and the second receiving module 1220.

First receiving module 1210 is configured to receive and store the plug-in unit token of service server transmission, plug-in unit token The account number token and plug-in unit mark that be service server send according to the client received generate corresponding with plug-in unit mark Token, account number token are used to indicate that client to have the access authority of access service server, and plug-in unit mark is wrapped in client The mark of the plug-in unit included.

Second receiving module 1220 is configured as receiving the plug-in unit token that plug-in unit is sent, according to the plug-in unit token of storage and The plug-in unit token received provides plug-in services for plug-in unit, and the plug-in unit token that plug-in unit is sent is that plug-in unit is identified according to the plug-in unit of plug-in unit The plug-in unit token corresponding with plug-in unit mark obtained from the client at place, the plug-in unit token in client are that client receives The token of the service server feedback arrived.

Second receiving module 1220 includes:

Receiving submodule 1221 is configured as receiving the service acquisition request that plug-in unit is sent, and service acquisition is requested for asking Acquisition plug-in services are sought, include at least plug-in unit token in service acquisition request.

Authentication sub module 1222 is configured as authenticating the plug-in unit token received according to the plug-in unit token of storage.

Submodule 1223 is provided, is configured as when authenticating successfully, provides plug-in services for plug-in unit.

About the device in above-described embodiment, wherein modules execute the concrete mode of operation in related this method Embodiment in be described in detail, no detailed explanation will be given here.

An exemplary embodiment of the present disclosure provides a kind of plug-in services acquisition device, can be realized inserting for disclosure offer Part service acquisition method, the device include: processor, for the memory of storage processor executable instruction；

Wherein, processor is configured as:

An exemplary embodiment of the present disclosure provides a kind of plug-in services to provide device, can be realized inserting for disclosure offer Part service providing method, the device include: processor, for the memory of storage processor executable instruction；

Figure 13 is a kind of block diagram of plug-in services acquisition device shown according to an exemplary embodiment.Referring to Fig.1 3, dress Setting 1300 may include following one or more components: processing component 1302, memory 1304, power supply module 1306, input/defeated (I/O) interface 1308 and communication component 1310 out.

The integrated operation of the usual control device 1300 of processing component 1302, processing component 1302 may include one or more Processor 1312 executes instruction, to perform all or part of the steps of the methods described above.In addition, processing component 1302 can wrap One or more modules are included, convenient for the interaction between processing component 1302 and other assemblies.

Memory 1304 is configured as storing various types of data to support the operation in device 1300.These data Example includes the instruction of any application or method for operating on device 1300.Memory 1304 can be by any class The volatibility or non-volatile memory device or their combination of type are realized, such as static random access memory (SRAM), electricity Erasable Programmable Read Only Memory EPROM (EEPROM), Erasable Programmable Read Only Memory EPROM (EPROM), programmable read only memory (PROM), read-only memory (ROM), magnetic memory, flash memory, disk or CD.

Power supply module 1306 provides electric power for the various assemblies of device 1300.Power supply module 1306 may include power management System, one or more power supplys and other with for device 1300 generate, manage, and distribute the associated component of electric power.

I/O interface 1308 provides interface, above-mentioned peripheral interface module between processing component 1302 and peripheral interface module It can be keyboard, click wheel, button etc..These buttons may include, but are not limited to: home button, volume button, start button and Locking press button.

Communication component 1310 is configured to facilitate the communication of wired or wireless way between device 1300 and other equipment.Dress The wireless network based on communication standard, such as Wi-Fi can be accessed by setting 1300,2G or 3G or their combination.It is exemplary at one In embodiment, communication component 1310 receives broadcast singal or broadcast correlation from external broadcasting management system via broadcast channel Information.In one exemplary embodiment, communication component 1310 further includes near-field communication (NFC) module, to promote short range communication. For example, radio frequency identification (RFID) technology, Infrared Data Association (IrDA) technology, ultra wide band (UWB) skill can be based in NFC module Art, bluetooth (BT) technology and other technologies are realized.

In the exemplary embodiment, device 1300 can be by one or more application specific integrated circuit (ASIC), number Signal processor (DSP), digital signal processing appts (DSPD), programmable logic device (PLD), field programmable gate array (FPGA), controller, microcontroller, microprocessor or other electronic components are realized, for executing above-mentioned plug-in services acquisition side Method.

In the exemplary embodiment, a kind of non-transitorycomputer readable storage medium including instruction, example are additionally provided It such as include the memory 1304 of instruction, above-metioned instruction can be executed by the processor 1312 of device 1300 to complete above-mentioned plug-in services Acquisition methods.For example, non-transitorycomputer readable storage medium can be ROM, random access memory (RAM), CD-ROM, Tape, floppy disk and optical data storage devices etc..

Figure 14 is that one kind shown according to an exemplary embodiment is provided for plug-in services acquisition device or plug-in services The block diagram of device.For example, device 1400 may be provided as a network side equipment.Referring to Fig.1 4, device 1400 includes processing group Part 1402 further comprises one or more processors, and the memory resource as representated by memory 1404, for depositing Storage can be by the instruction of the execution of processing component 1402.The application program stored in memory 1404 may include one or one with On each correspond to one group of instruction module.In addition, processing component 1402 is configured as executing instruction, to execute above-mentioned insert Part service acquisition method or plug-in services providing method.

Device 1400 can also include that a power supply module 1406 be configured as the power management of executive device 1400, and one Wired or wireless network interface 1408 is configured as device 1400 being connected to network and input and output (I/O) interface 1410.Device 1400 can be operated based on the operating system for being stored in memory 1404, such as Windows ServerTM, Mac OS XTM, UnixTM, LinuxTM, FreeBSDTM or similar.

Those skilled in the art after considering the specification and implementing the invention disclosed here, will readily occur to its of the disclosure Its embodiment.This application is intended to cover any variations, uses, or adaptations of the disclosure, these modifications, purposes or Person's adaptive change follows the general principles of this disclosure and including the undocumented common knowledge in the art of the disclosure Or conventional techniques.The description and examples are only to be considered as illustrative, and the true scope and spirit of the disclosure are by following Claim is pointed out.

It should be understood that the present disclosure is not limited to the precise structures that have been described above and shown in the drawings, and And various modifications and changes may be made without departing from the scope thereof.The scope of the present disclosure is only limited by the accompanying claims.

Claims

1. a kind of plug-in services acquisition methods, which is characterized in that in service server, which comprises

The account number token and plug-in unit mark that client is sent are received, the account number token is for indicating that the client has access The access authority of the service server, the plug-in unit mark are the marks of the plug-in unit in the client；

The plug-in unit, which is generated, according to plug-in unit mark and the account number token identifies corresponding plug-in unit token；

Signature is generated after encrypting according to predetermined cryptographic algorithm to the plug-in unit token；

The signature is sent to plug-in server corresponding to the client and the plug-in unit, it is described in the client Plug-in unit is used to that the signature to be decrypted, and the plug-in unit token is obtained, according to the plug-in unit token from the plug-in server Middle acquisition plug-in services.

2. the method according to claim 1, wherein described send to plug-in server corresponding to the plug-in unit The signature, comprising:

It is identified according to the plug-in server to the plug-in server and sends the signature；

Wherein, the default corresponding relationship includes the corresponding relationship between plug-in unit mark and plug-in server mark.

3. method according to claim 1 or 2, which is characterized in that the method also includes:

The account number token is sent to account server；

The authentication result that the account server returns is received, the authentication result is that the account server enables the account number The information that board is sent after being authenticated；

When authentication result expression authenticates successfully, execute described according to plug-in unit mark and account number token generation institute State the step of plug-in unit identifies corresponding plug-in unit token.

4. a kind of plug-in services acquisition methods, which is characterized in that in plug-in unit, which comprises

The plug-in unit is obtained from the client at place according to plug-in unit mark and identifies corresponding plug-in unit token, and the plug-in unit token is Signature is decrypted, the signature be the client corresponding service server according to predetermined cryptographic algorithm to institute It states plug-in unit token to carry out encryption generation and feed back to the client, the plug-in unit token is the corresponding business of the client What the account number token and plug-in unit mark that server is sent according to the client generated, the account number token is for indicating institute Stating client has the access authority for accessing the service server；

Plug-in services are obtained from plug-in server according to the plug-in unit token.

5. according to the method described in claim 4, it is characterized in that, described obtain from plug-in server according to the plug-in unit token Take plug-in services, comprising:

Service acquisition request is sent to the plug-in server, the service acquisition request is for requesting from the plug-in server It is middle to obtain the plug-in services, the plug-in unit token is included at least in the service acquisition request, the plug-in server is used for When to plug-in unit token authentication success, requested to provide the plug-in services to the plug-in unit according to the service acquisition；

Receive the plug-in services that the plug-in server provides.

6. a kind of plug-in services providing method, which is characterized in that in plug-in server, which comprises

The plug-in unit token of service server transmission is received and stored, the plug-in unit token is that the service server carries out signature Decryption obtains, and the signature is that the service server according to predetermined cryptographic algorithm to the plug-in unit token carries out encryption generation And the plug-in server is fed back to, the plug-in unit token is that the service server is sent according to the client received The token corresponding with plug-in unit mark that account number token and plug-in unit mark generate, the account number token is for indicating the client Holding has the access authority for accessing the service server, and the plug-in unit mark is the mark for the plug-in unit for including in the client Know；

The plug-in unit token that plug-in unit is sent is received, is described according to the plug-in unit token of storage and the plug-in unit token received Plug-in unit provides plug-in services, and the plug-in unit token that the plug-in unit is sent is that the plug-in unit is identified according to the plug-in unit of the plug-in unit from place Client in the plug-in unit token corresponding with plug-in unit mark that obtains, the plug-in unit token in the client is described The token for the service server feedback that client receives.

7. according to the method described in claim 6, it is characterized in that, it is described receive plug-in unit send plug-in unit token, according to storage The plug-in unit token and the plug-in unit token that receives provide plug-in services for the plug-in unit, comprising:

The service acquisition request that the plug-in unit is sent is received, the service acquisition request is used for plug-in services described in request, The plug-in unit token is included at least in the service acquisition request；

When authenticating successfully, the plug-in services are provided for the plug-in unit.

8. a kind of plug-in services acquisition device, which is characterized in that described device includes:

First receiving module is configured as receiving the account number token of client transmission and plug-in unit mark, the account number token is used for Indicate that the client has the access authority for accessing the service server, the plug-in unit mark is inserting in the client The mark of part；

Generation module is configured as being identified according to the plug-in unit and the account number token generates the plug-in unit and identifies corresponding plug-in unit Token；Signature is generated after encrypting according to predetermined cryptographic algorithm to the plug-in unit token；

Plug-in unit token sending module is configured as sending institute to plug-in server corresponding to the client and the plug-in unit Signature is stated, the plug-in unit in the client is used to that the signature to be decrypted, and the plug-in unit token is obtained, according to described Plug-in unit token obtains plug-in services from the plug-in server.

9. device according to claim 8, which is characterized in that the plug-in unit token sending module includes:

Sending submodule is configured as being identified according to the plug-in server to the plug-in server transmission signature；

10. device according to claim 8 or claim 9, which is characterized in that described device further include:

Account number token sending module is configured as sending the account number token to account server；

Second receiving module is configured as receiving the authentication result that the account server returns, and the authentication result is described The information that account server is sent after authenticating to the account number token；

The generation module is additionally configured to execute described according to the plug-in unit when the authentication result indicates to authenticate successfully Mark and the account number token generate the step of plug-in unit identifies corresponding plug-in unit token.

11. a kind of plug-in services acquisition device, which is characterized in that described device includes:

First obtains module, is configured as being identified according to plug-in unit and obtains from the client at place that the plug-in unit mark is corresponding to insert Signature is decrypted in part token, the plug-in unit token, and the signature is the corresponding service server of the client Encryption generation is carried out to the plug-in unit token according to predetermined cryptographic algorithm and feeds back to the client, the plug-in unit token is What the account number token and plug-in unit mark that the corresponding service server of the client is sent according to the client generated, institute Account number token is stated for indicating that the client has the access authority for accessing the service server；

Second obtains module, is configured as obtaining plug-in services from plug-in server according to the plug-in unit token.

12. device according to claim 11, which is characterized in that described second, which obtains module, includes:

Sending submodule is configured as sending service acquisition request to the plug-in server, and the service acquisition request is used for Request obtains the plug-in services from the plug-in server, includes at least the plug-in unit in the service acquisition request and enables Board, the plug-in server are used for when to plug-in unit token authentication success, request to insert to described according to the service acquisition Part provides the plug-in services；

Receiving submodule is configured as receiving the plug-in services that the plug-in server provides.

13. a kind of plug-in services provide device, which is characterized in that described device includes:

First receiving module is configured to receive and store the plug-in unit token of service server transmission, and the plug-in unit token is institute Service server is stated signature is decrypted, the signature be the service server according to predetermined cryptographic algorithm to institute It states plug-in unit token to carry out encryption generation and feed back to the plug-in server, the plug-in unit token is the service server root The token corresponding with plug-in unit mark that account number token and the plug-in unit mark sent according to the client received generates, the account Command board is used to indicate that the client to have the access authority for accessing the service server, and the plug-in unit mark is the visitor The mark for the plug-in unit for including in the end of family；

Second receiving module is configured as receiving the plug-in unit token that plug-in unit is sent, according to the plug-in unit token of storage and reception To the plug-in unit token provide plug-in services for the plug-in unit, the plug-in unit token that the plug-in unit is sent is the plug-in unit according to institute The plug-in unit for stating plug-in unit identifies the plug-in unit token corresponding with plug-in unit mark obtained from the client at place, the client In the plug-in unit token be the client receive the service server feedback token.

14. device according to claim 13, which is characterized in that second receiving module includes:

Receiving submodule is configured as receiving the service acquisition request that the plug-in unit is sent, and the service acquisition request is for asking It asks and obtains the plug-in services, include at least the plug-in unit token in the service acquisition request；

Submodule is provided, is configured as when authenticating successfully, provides the plug-in services for the plug-in unit.

15. a kind of plug-in services acquisition device, which is characterized in that described device includes:

Processor；

For storing the memory of the processor-executable instruction；

Wherein, the processor is configured to:

16. a kind of plug-in services acquisition device, which is characterized in that described device includes:

Processor；

For storing the memory of the processor-executable instruction；

Wherein, the processor is configured to:

17. a kind of plug-in services provide device, which is characterized in that described device includes:

Processor；

For storing the memory of the processor-executable instruction；

Wherein, the processor is configured to: