CN107135075B - A kind of authorization method and device for user operation - Google Patents

A kind of authorization method and device for user operation Download PDF

Info

Publication number
CN107135075B
CN107135075B CN201610113467.6A CN201610113467A CN107135075B CN 107135075 B CN107135075 B CN 107135075B CN 201610113467 A CN201610113467 A CN 201610113467A CN 107135075 B CN107135075 B CN 107135075B
Authority
CN
China
Prior art keywords
authorization
terminal
identification information
result
query
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610113467.6A
Other languages
Chinese (zh)
Other versions
CN107135075A (en
Inventor
刘潮
何腾俊
王凯
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Yiwu Jinguo Intellectual Property Co.,Ltd.
Original Assignee
Yiwu Lansi Sporting Goods Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Yiwu Lansi Sporting Goods Co Ltd filed Critical Yiwu Lansi Sporting Goods Co Ltd
Priority to CN201610113467.6A priority Critical patent/CN107135075B/en
Publication of CN107135075A publication Critical patent/CN107135075A/en
Application granted granted Critical
Publication of CN107135075B publication Critical patent/CN107135075B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Storage Device Security (AREA)
  • User Interface Of Digital Computer (AREA)

Abstract

本发明公开了一种对用户操作的授权方法及装置,所述方法包括:接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;根据所述查询结果,生成授权结果,将所述授权结果返回至所述终端。本发明提供的对用户操作的授权方法使得硬件设备能够自动化完成对用户操作的授权,无需用户手动输入验证信息,提高了用户对硬件设备的访问效率。

Figure 201610113467

The present invention discloses a method and device for authorizing user operation. The method includes: receiving an authorization request from any terminal, wherein the authorization request carries the identification information of the terminal; , query whether the identification information of the terminal exists, and obtain a query result; generate an authorization result according to the query result, and return the authorization result to the terminal. The authorization method for user operation provided by the present invention enables the hardware device to automatically complete the authorization to the user operation, without requiring the user to manually input verification information, thereby improving the user's access efficiency to the hardware device.

Figure 201610113467

Description

一种对用户操作的授权方法及装置A kind of authorization method and device for user operation

技术领域technical field

本发明涉及数据处理领域,具体涉及一种对用户操作的授权方法及装置。The invention relates to the field of data processing, in particular to a method and device for authorizing user operations.

背景技术Background technique

目前,终端需要访问任一硬件设备时,如视频播放终端、图片浏览终端等,一般需要用户手动输入验证信息,如用户名、密码等,以完成硬件设备对用户操作的授权。但是对于用户经常访问的硬件,每次还是需要手动输入验证信息,这使得硬件设备对用户操作的授权变得繁琐而容易,降低了用户对硬件设备的访问效率。Currently, when a terminal needs to access any hardware device, such as a video playback terminal, a picture browsing terminal, etc., the user generally needs to manually input authentication information, such as a user name, password, etc., to complete the authorization of the user operation by the hardware device. However, for the hardware frequently accessed by the user, verification information needs to be manually input every time, which makes the authorization of the user operation by the hardware device complicated and easy, and reduces the access efficiency of the user to the hardware device.

发明内容SUMMARY OF THE INVENTION

针对上述问题,本发明提供了一种对用户操作的授权方法及装置,使得硬件设备能够自动化完成对用户操作的授权,提高了用户对硬件设备的访问效率。In view of the above problems, the present invention provides a method and device for authorizing user operations, so that the hardware device can automatically complete the authorization of user operations, and the user's access efficiency to the hardware device is improved.

本发明提供了一种对用户操作的授权方法,所述方法包括:The present invention provides a method for authorizing user operations, the method comprising:

接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;receiving an authorization request from any terminal, where the authorization request carries the identification information of the terminal;

在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;In the preset trusted device list, query whether the identification information of the terminal exists, and obtain the query result;

根据所述查询结果,生成授权结果,将所述授权结果返回至所述终端。According to the query result, an authorization result is generated, and the authorization result is returned to the terminal.

优选地,所述根据所述查询结果,生成授权结果,包括:Preferably, generating an authorization result according to the query result includes:

如果所述查询结果为查询到存在所述终端的标识信息,则生成确认授权的授权结果。If the query result is that the identification information of the terminal exists in the query, an authorization result confirming authorization is generated.

优选地,所述方法还包括:Preferably, the method further includes:

如果所述查询结果为未查询到所述终端的标识信息,则在显示屏幕上显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息;If the query result is that the identification information of the terminal is not queried, the information requesting authorization is displayed on the display screen, and the information requesting authorization includes the identification information of the terminal;

在用户根据显示的所述请求授权的信息,触发确认授权的操作后,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。After the user triggers an operation of confirming authorization according to the displayed information for requesting authorization, the identification information of the terminal is added to the list of trusted devices, and an authorization result confirming authorization is generated.

优选地,所述方法还包括:Preferably, the method further includes:

如果所述查询结果为未查询到所述终端的标识信息,则根据所述终端的标识信息判断所述终端是否属于预设的授权类型;If the query result is that the identification information of the terminal is not queried, determine whether the terminal belongs to a preset authorization type according to the identification information of the terminal;

如果确定所述终端属于预设的授权类型,则将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果;If it is determined that the terminal belongs to a preset authorization type, the identification information of the terminal is added to the trusted device list, and an authorization result confirming authorization is generated;

如果确定所述终端不属于预设的授权类型,则生成拒绝授权的授权结果。If it is determined that the terminal does not belong to the preset authorization type, an authorization result of denying authorization is generated.

优选地,所述方法还包括:Preferably, the method further includes:

如果所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作,则生成拒绝授权的授权结果。If the user triggers an operation of denying authorization according to the displayed information for requesting authorization, an authorization result of denying authorization is generated.

本发明还提供了一种对用户操作的授权装置,所述装置包括:The present invention also provides a device for authorizing user operations, the device comprising:

接收模块,用于接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;a receiving module, configured to receive an authorization request from any terminal, where the authorization request carries the identification information of the terminal;

查询模块,用于在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;a query module, configured to query whether the identification information of the terminal exists in a preset trusted device list, and obtain a query result;

生成模块,用于根据所述查询结果,生成授权结果;a generating module, configured to generate an authorization result according to the query result;

返回模块,用于将所述授权结果返回至所述终端。A return module is configured to return the authorization result to the terminal.

优选地,所述生成模块,包括:Preferably, the generation module includes:

生成子模块,用于在所述查询结果为查询到存在所述终端的标识信息时,生成确认授权的授权结果。The generating submodule is configured to generate an authorization result confirming authorization when the query result is that the identification information of the terminal exists in the query.

优选地,所述装置还包括:Preferably, the device further comprises:

显示模块,用于在所述查询结果为未查询到所述终端的标识信息时,在显示屏幕上显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息;a display module, configured to display the information requesting authorization on the display screen when the query result is that the identification information of the terminal is not queried, and the information requesting authorization includes the identification information of the terminal;

第一加入模块,用于在用户根据显示的所述请求授权的信息,触发确认授权的操作后,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。The first adding module is configured to add the identification information of the terminal to the trusted device list after the user triggers an operation of confirming authorization according to the displayed information requesting authorization, and generate an authorization result confirming authorization.

优选地,所述装置还包括:Preferably, the device further comprises:

判断模块,用于在所述查询结果为未查询到所述终端的标识信息时,根据所述终端的标识信息判断所述终端是否属于预设的授权类型;a judgment module, configured to judge whether the terminal belongs to a preset authorization type according to the identification information of the terminal when the query result is that the identification information of the terminal is not queried;

第二加入模块,用于在确定所述终端属于预设的授权类型时,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果;a second adding module, configured to add the identification information of the terminal to the trusted device list when it is determined that the terminal belongs to a preset authorization type, and generate an authorization result confirming authorization;

第一生成模块,用于在确定所述终端不属于预设的授权类型时,生成拒绝授权的授权结果。The first generating module is configured to generate an authorization result of denying authorization when it is determined that the terminal does not belong to a preset authorization type.

优选地,所述装置还包括:Preferably, the device further comprises:

第二生成模块,用于在所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作时,生成拒绝授权的授权结果。The second generating module is configured to generate an authorization result of denying authorization when the user triggers an operation of denying authorization according to the displayed information for requesting authorization.

本发明提供的对用户操作的授权方法,首先接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息。其次,在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果。最后,根据所述查询结果,生成授权结果,将所述授权结果返回至所述终端。本发明提供的对用户操作的授权方法使得硬件设备能够自动化完成对用户操作的授权,无需用户手动输入验证信息,提高了用户对硬件设备的访问效率。The authorization method for user operation provided by the present invention firstly receives an authorization request from any terminal, and the authorization request carries the identification information of the terminal. Secondly, in the preset trusted device list, query whether the identification information of the terminal exists, and obtain the query result. Finally, an authorization result is generated according to the query result, and the authorization result is returned to the terminal. The authorization method for user operation provided by the present invention enables the hardware device to automatically complete the authorization to the user operation, without requiring the user to manually input verification information, thereby improving the user's access efficiency to the hardware device.

附图说明Description of drawings

为了更清楚地说明本申请实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本申请的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to illustrate the technical solutions in the embodiments of the present application more clearly, the following briefly introduces the drawings that are used in the description of the embodiments. Obviously, the drawings in the following description are only some embodiments of the present application. For those of ordinary skill in the art, other drawings can also be obtained from these drawings without creative labor.

图1为本发明实施例提供的一种对用户操作的授权方法的流程图;1 is a flowchart of a method for authorizing user operations provided by an embodiment of the present invention;

图2为本发明实施例提供的另一种对用户操作的授权方法的流程图;2 is a flowchart of another method for authorizing user operations provided by an embodiment of the present invention;

图3为本发明实施例提供的另一种对用户操作的授权方法的流程图;3 is a flowchart of another method for authorizing user operations provided by an embodiment of the present invention;

图4为本发明实施例提供的一种对用户操作的授权装置结构示意图;4 is a schematic structural diagram of a device for authorizing user operations provided by an embodiment of the present invention;

图5为本发明实施例提供的另一种对用户操作的授权装置结构示意图;5 is a schematic structural diagram of another device for authorizing user operations provided by an embodiment of the present invention;

图6为本发明实施例提供的另一种对用户操作的授权装置结构示意图。FIG. 6 is a schematic structural diagram of another apparatus for authorizing user operations according to an embodiment of the present invention.

具体实施方式Detailed ways

下面将结合本申请实施例中的附图,对本申请实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application. Obviously, the described embodiments are only a part of the embodiments of the present application, but not all of the embodiments. Based on the embodiments in the present application, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present application.

实施例一Example 1

参考图1,图1为本发明实施例提供的一种对用户操作的授权方法的流程图,该方法具体可以包括:Referring to FIG. 1, FIG. 1 is a flowchart of a method for authorizing user operations provided by an embodiment of the present invention. The method may specifically include:

S101:接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息。S101: Receive an authorization request from any terminal, where the authorization request carries identification information of the terminal.

实际应用中,所述对用户操作的授权方法应用于硬件设备,如视频播放终端、图片浏览终端等。所述硬件设备在接收来自用户终端的授权请求之前,首先与所述用户的终端建立连接关系。具体包括,通过有线或无线的方式,建立所述硬件设备与用户终端的连接关系。In practical applications, the authorization method for user operations is applied to hardware devices, such as video playback terminals, picture browsing terminals, and the like. Before receiving the authorization request from the user terminal, the hardware device first establishes a connection relationship with the user's terminal. Specifically, the connection relationship between the hardware device and the user terminal is established in a wired or wireless manner.

在所述连接关系建立后,所述用户通过终端向所述硬件设备发送授权请求。一种实现方式中,当用户打开所述终端安装的用于请求授权的应用程序时,触发所述授权请求的发送;或者,用户可以触发所述应用程序中预设操作,完成所述授权请求的发送;或者其他实施方式,在此不再具体介绍。After the connection relationship is established, the user sends an authorization request to the hardware device through the terminal. In an implementation manner, when the user opens the application program installed on the terminal for requesting authorization, the sending of the authorization request is triggered; or, the user can trigger a preset operation in the application program to complete the authorization request. or other implementation manners, which will not be described in detail here.

实际应用中,用户用于发送授权请求的终端可以为智能手机,相应的,所述授权请求携带所述智能手机的IMEI国际移动设备标识、手机型号、手机号码等信息,作为智能手机的标识信息;或者,用户用于发送授权请求的终端也可以为平板电脑,相应的,所述授权请求携带所述平板电脑的品牌、型号等信息。In practical applications, the terminal used by the user to send the authorization request may be a smart phone. Correspondingly, the authorization request carries information such as the IMEI of the smart phone, the phone model, the phone number, etc., as the identification information of the smart phone. Alternatively, the terminal used by the user to send the authorization request may also be a tablet computer, and accordingly, the authorization request carries information such as the brand and model of the tablet computer.

S102:在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果。S102: Query whether the identification information of the terminal exists in the preset trusted device list, and obtain a query result.

硬件设备中预先存储有信任设备列表,用于存储可以被信任的终端的标识信息。当所述硬件设备接收到携带终端的标识信息后,提取其中终端的标识信息,并在所述信任设备列表中查询是否存在所述终端的标识信息,并得到最终的查询结果。A trusted device list is pre-stored in the hardware device for storing identification information of terminals that can be trusted. After receiving the identification information of the portable terminal, the hardware device extracts the identification information of the terminal, and queries whether the identification information of the terminal exists in the trusted device list, and obtains a final query result.

S103:根据所述查询结果,生成授权结果,将所述授权结果返回至所述终端。S103: Generate an authorization result according to the query result, and return the authorization result to the terminal.

在所述硬件设备得到查询结果后,根据所述查询结果生成授权结果。具体的,如果所述硬件设备在所述信任设备列表中查询到存在所述终端的标识信息,则生成确认授权的授权结果。也就是说,所述终端已经被授权,将确认授权的授权结果反馈至所述终端。此时,所述终端的用户可以对所述硬件设备执行被授权的操作,如访问硬件设备中的视频、文件、图片等内容。After the hardware device obtains the query result, an authorization result is generated according to the query result. Specifically, if the hardware device finds that the identification information of the terminal exists in the trusted device list, an authorization result confirming authorization is generated. That is, the terminal has been authorized, and the authorization result confirming the authorization is fed back to the terminal. At this time, the user of the terminal can perform an authorized operation on the hardware device, such as accessing content such as videos, files, and pictures in the hardware device.

参考图2,图2为本发明实施例提供的另一种对用户操作的授权方法的流程图,该方法在图1包括的各个步骤的基础上,还具体包括:Referring to FIG. 2, FIG. 2 is a flowchart of another method for authorizing user operations provided by an embodiment of the present invention. On the basis of each step included in FIG. 1, the method further specifically includes:

S201:如果所述查询结果为未查询到所述终端的标识信息,则在显示屏幕上显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息。S201: If the query result is that the identification information of the terminal is not queried, display information requesting authorization on a display screen, where the information requesting authorization includes identification information of the terminal.

S202:在用户根据显示的所述请求授权的信息,触发确认授权的操作后,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。S202: After the user triggers an operation of confirming authorization according to the displayed information for requesting authorization, add the identification information of the terminal to the list of trusted devices, and generate an authorization result confirming authorization.

S203:如果所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作,则生成拒绝授权的授权结果。S203: If the user triggers an operation of denying authorization according to the displayed information for requesting authorization, generate an authorization result of denying authorization.

参考图3,图3为本发明实施例提供的另一种对用户操作的授权方法的流程图,该方法在图1包括的各个步骤的基础上,还具体包括:Referring to FIG. 3, FIG. 3 is a flowchart of another method for authorizing user operations provided by an embodiment of the present invention. On the basis of each step included in FIG. 1, the method further specifically includes:

S301:如果所述查询结果为未查询到所述终端的标识信息,则根据所述终端的标识信息判断所述终端是否属于预设的授权类型。S301: If the query result is that the identification information of the terminal is not queried, determine whether the terminal belongs to a preset authorization type according to the identification information of the terminal.

S302:如果确定所述终端属于预设的授权类型,则将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。S302: If it is determined that the terminal belongs to a preset authorization type, add the identification information of the terminal to the trusted device list, and generate an authorization result confirming authorization.

S303:如果确定所述终端不属于预设的授权类型,则生成拒绝授权的授权结果。S303: If it is determined that the terminal does not belong to the preset authorization type, generate an authorization result of denying authorization.

如果所述硬件设备在所述信任设备列表中未查询到所述终端的标识信息,则说明所述终端尚未被授权。一种实施方式中,所述硬件设备利用自身的显示屏幕显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息。所述硬件设备的管理者根据所述显示屏幕上显示的请求授权的信息,选择是否对所述终端进行授权。If the hardware device does not find the identification information of the terminal in the trusted device list, it means that the terminal has not been authorized. In an implementation manner, the hardware device uses its own display screen to display information requesting authorization, where the information requesting authorization includes identification information of the terminal. The administrator of the hardware device selects whether to authorize the terminal according to the authorization request information displayed on the display screen.

另一种实施方式中,如果所述硬件设备在所述信任设备列表中未查询到所述终端的标识信息,则根据所述终端的标识信息判断所述终端是否属于预设的授权类型,例如,硬件设备的管理者预先将前七位为1382149的手机号码对应的终端设置为可以被授权的类型。所述硬件设备在确定所述终端的标识信息中携带有前七位为1382149的手机号码后,将所述终端确定为可以被授权的终端。In another implementation manner, if the hardware device does not find the identification information of the terminal in the trusted device list, it is determined whether the terminal belongs to a preset authorization type according to the identification information of the terminal, for example , the administrator of the hardware device pre-sets the terminal corresponding to the mobile phone number whose first seven digits are 1382149 as a type that can be authorized. After determining that the identification information of the terminal carries a mobile phone number whose first seven digits are 1382149, the hardware device determines the terminal as a terminal that can be authorized.

当所述硬件设备对终端进行授权后,将所述终端的标识信息加入所述信任设备列表,以便后续所述终端再次访问所述硬件设备时能够被信任。同时,所述硬件设备生成确认授权的授权结果,并反馈至所述终端。After the hardware device authorizes the terminal, the identification information of the terminal is added to the trusted device list, so that the terminal can be trusted when accessing the hardware device again later. At the same time, the hardware device generates an authorization result confirming authorization, and feeds it back to the terminal.

如果所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作,或者,所述硬件设备确定所述终端不属于预设的授权类型,则所述硬件设备直接生成拒绝授权的授权结果,并反馈至所述终端。此时,所述终端的用户不能够对所述硬件设备进行访问等操作。If the user triggers an operation of denying authorization according to the displayed information for requesting authorization, or the hardware device determines that the terminal does not belong to a preset authorization type, the hardware device directly generates an authorization result of denying authorization , and feedback to the terminal. At this time, the user of the terminal cannot perform operations such as accessing the hardware device.

本发明实施例中,首先接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息。其次,在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果。最后,根据所述查询结果,生成授权结果,将所述授权结果返回至所述终端。本发明实施例提供的对用户操作的授权方法使得硬件设备能够自动化完成对用户操作的授权,无需用户手动输入验证信息,提高了用户对硬件设备的访问效率。In this embodiment of the present invention, an authorization request from any terminal is first received, and the authorization request carries the identification information of the terminal. Secondly, in the preset trusted device list, query whether the identification information of the terminal exists, and obtain the query result. Finally, an authorization result is generated according to the query result, and the authorization result is returned to the terminal. The method for authorizing user operations provided by the embodiments of the present invention enables the hardware device to automatically complete the authorization of user operations without requiring the user to manually input verification information, thereby improving the user's access efficiency to the hardware device.

本发明实施例还提供了一种对用户操作的授权装置,参考图4,图4为本发明实施例提供的一种对用户操作的授权装置结构示意图,所述装置包括:An embodiment of the present invention further provides an apparatus for authorizing user operations. Referring to FIG. 4 , FIG. 4 is a schematic structural diagram of an apparatus for authorizing user operations provided by an embodiment of the present invention. The apparatus includes:

接收模块401,用于接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;A receiving module 401, configured to receive an authorization request from any terminal, where the authorization request carries the identification information of the terminal;

查询模块402,用于在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;The query module 402 is configured to query whether the identification information of the terminal exists in the preset trusted device list, and obtain a query result;

生成模块403,用于根据所述查询结果,生成授权结果;A generating module 403, configured to generate an authorization result according to the query result;

返回模块404,用于将所述授权结果返回至所述终端。Returning module 404, configured to return the authorization result to the terminal.

具体的,所述生成模块403,包括:Specifically, the generating module 403 includes:

生成子模块,用于在所述查询结果为查询到存在所述终端的标识信息时,生成确认授权的授权结果。The generating submodule is configured to generate an authorization result confirming authorization when the query result is that the identification information of the terminal exists in the query.

参考图5,图5为本发明实施例提供的另一种对用户操作的授权装置结构示意图。所述装置在包括图4中各个模块的基础上,还包括:Referring to FIG. 5 , FIG. 5 is a schematic structural diagram of another apparatus for authorizing user operations according to an embodiment of the present invention. On the basis of including each module in Fig. 4, the device also includes:

显示模块501,用于在所述查询结果为未查询到所述终端的标识信息时,在显示屏幕上显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息;The display module 501 is configured to display the information requesting authorization on the display screen when the query result is that the identification information of the terminal is not queried, and the information requesting authorization includes the identification information of the terminal;

第一加入模块502,用于在用户根据显示的所述请求授权的信息,触发确认授权的操作后,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。The first adding module 502 is configured to add the identification information of the terminal to the trusted device list after the user triggers an operation of confirming authorization according to the displayed information requesting authorization, and generate an authorization result confirming authorization.

所述装置还包括:The device also includes:

第二生成模块503,用于在所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作时,生成拒绝授权的授权结果。The second generating module 503 is configured to generate an authorization result of denying authorization when the user triggers an operation of denying authorization according to the displayed information for requesting authorization.

参考图6,图6为本发明实施例提供的另一种对用户操作的授权装置结构示意图。所述装置在包括图4中各个模块的基础上,还包括:Referring to FIG. 6 , FIG. 6 is a schematic structural diagram of another apparatus for authorizing user operations according to an embodiment of the present invention. On the basis of including each module in Fig. 4, the device also includes:

判断模块601,用于在所述查询结果为未查询到所述终端的标识信息时,根据所述终端的标识信息判断所述终端是否属于预设的授权类型;A judgment module 601, configured to judge whether the terminal belongs to a preset authorization type according to the identification information of the terminal when the query result is that the identification information of the terminal is not queried;

第二加入模块602,用于在确定所述终端属于预设的授权类型时,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果;The second adding module 602 is configured to add the identification information of the terminal to the trusted device list when it is determined that the terminal belongs to a preset authorization type, and generate an authorization result confirming authorization;

第一生成模块603,用于在确定所述终端不属于预设的授权类型时,生成拒绝授权的授权结果。The first generating module 603 is configured to generate an authorization result of denying authorization when it is determined that the terminal does not belong to a preset authorization type.

本发明实施例提供的对用户操作的授权装置能够实现以下功能:接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;根据所述查询结果,生成授权结果;将所述授权结果返回至所述终端。本发明实施例使得硬件设备能够自动化完成对用户操作的授权,无需用户手动输入验证信息,提高了用户对硬件设备的访问效率。The device for authorizing user operations provided by the embodiments of the present invention can implement the following functions: receive an authorization request from any terminal, where the authorization request carries the identification information of the terminal; in a preset trusted device list, query whether The identification information of the terminal exists, and a query result is obtained; an authorization result is generated according to the query result; and the authorization result is returned to the terminal. The embodiment of the present invention enables the hardware device to automatically complete the authorization to the user's operation, without requiring the user to manually input verification information, thereby improving the user's access efficiency to the hardware device.

对于装置实施例而言,由于其基本对应于方法实施例,所以相关之处参见方法实施例的部分说明即可。以上所描述的装置实施例仅仅是示意性的,其中所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部模块来实现本实施例方案的目的。本领域普通技术人员在不付出创造性劳动的情况下,即可以理解并实施。For the apparatus embodiments, since they basically correspond to the method embodiments, reference may be made to the partial descriptions of the method embodiments for related parts. The device embodiments described above are only illustrative, wherein the units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, they may be located in One place, or it can be distributed over multiple network elements. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution in this embodiment. Those of ordinary skill in the art can understand and implement it without creative effort.

需要说明的是,在本文中,诸如第一和第二等之类的关系术语仅仅用来将一个实体或者操作与另一个实体或操作区分开来,而不一定要求或者暗示这些实体或操作之间存在任何这种实际的关系或者顺序。而且,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括所述要素的过程、方法、物品或者设备中还存在另外的相同要素。It should be noted that, in this document, relational terms such as first and second are only used to distinguish one entity or operation from another entity or operation, and do not necessarily require or imply any relationship between these entities or operations. any such actual relationship or sequence exists. Moreover, the terms "comprising", "comprising" or any other variation thereof are intended to encompass a non-exclusive inclusion such that a process, method, article or device that includes a list of elements includes not only those elements, but also includes not explicitly listed or other elements inherent to such a process, method, article or apparatus. Without further limitation, an element qualified by the phrase "comprising a..." does not preclude the presence of additional identical elements in a process, method, article or apparatus that includes the element.

以上对本发明实施例所提供的对用户操作的授权方法及装置进行了详细介绍,本文中应用了具体个例对本发明的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本发明的方法及其核心思想;同时,对于本领域的一般技术人员,依据本发明的思想,在具体实施方式及应用范围上均会有改变之处,综上所述,本说明书内容不应理解为对本发明的限制。The method and device for authorizing user operations provided by the embodiments of the present invention have been described above in detail. The principles and implementations of the present invention are described with specific examples in this paper. The method of the invention and its core idea; at the same time, for those skilled in the art, according to the idea of the present invention, there will be changes in the specific implementation and application scope. In summary, the content of this description should not be understood to limit the present invention.

Claims (8)

1.一种对用户操作的授权方法,其特征在于,应用于硬件设备,所述硬件设备为视频播放终端或图片浏览终端;所述方法包括:1. a kind of authorization method to user operation, is characterized in that, is applied to hardware equipment, and described hardware equipment is video playing terminal or picture browsing terminal; Described method comprises: 接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;receiving an authorization request from any terminal, where the authorization request carries the identification information of the terminal; 在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;所述信任设备列表用于存储可以被信任的终端的标识信息;In the preset trusted device list, query whether the identification information of the terminal exists, and obtain the query result; the trusted device list is used to store the identification information of the terminal that can be trusted; 根据所述查询结果,生成授权结果,将所述授权结果返回至所述终端,以便所述终端的用户对所述硬件设备执行被授权的操作;generating an authorization result according to the query result, and returning the authorization result to the terminal, so that the user of the terminal can perform an authorized operation on the hardware device; 如果所述查询结果为未查询到所述终端的标识信息,则在所述硬件设备的显示屏幕上显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息;If the query result is that the identification information of the terminal is not queried, display the information requesting authorization on the display screen of the hardware device, and the information requesting authorization includes the identification information of the terminal; 在所述硬件设备的管理者根据显示的所述请求授权的信息,触发确认授权的操作后,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。After the administrator of the hardware device triggers an operation of confirming the authorization according to the displayed information requesting authorization, the identification information of the terminal is added to the list of trusted devices, and an authorization result confirming the authorization is generated. 2.根据权利要求1所述的方法,其特征在于,所述根据所述查询结果,生成授权结果,包括:2. The method according to claim 1, wherein the generating an authorization result according to the query result comprises: 如果所述查询结果为查询到存在所述终端的标识信息,则生成确认授权的授权结果。If the query result is that the identification information of the terminal exists in the query, an authorization result confirming authorization is generated. 3.根据权利要求1或2所述的方法,其特征在于,所述方法还包括:3. The method according to claim 1 or 2, wherein the method further comprises: 如果所述查询结果为未查询到所述终端的标识信息,则根据所述终端的标识信息判断所述终端是否属于预设的授权类型;If the query result is that the identification information of the terminal is not queried, determine whether the terminal belongs to a preset authorization type according to the identification information of the terminal; 如果确定所述终端属于预设的授权类型,则将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果;If it is determined that the terminal belongs to a preset authorization type, the identification information of the terminal is added to the trusted device list, and an authorization result confirming authorization is generated; 如果确定所述终端不属于预设的授权类型,则生成拒绝授权的授权结果。If it is determined that the terminal does not belong to the preset authorization type, an authorization result of denying authorization is generated. 4.根据权利要求1所述的方法,其特征在于,所述方法还包括:4. The method according to claim 1, wherein the method further comprises: 如果所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作,则生成拒绝授权的授权结果。If the user triggers an operation of denying authorization according to the displayed information for requesting authorization, an authorization result of denying authorization is generated. 5.一种对用户操作的授权装置,其特征在于,应用于硬件设备,所述硬件设备为视频播放终端或图片浏览终端;所述装置包括:5. An authorization device for user operation, characterized in that it is applied to a hardware device, and the hardware device is a video playback terminal or a picture browsing terminal; the device comprises: 接收模块,用于接收来自任一终端的授权请求,所述授权请求中携带所述终端的标识信息;a receiving module, configured to receive an authorization request from any terminal, where the authorization request carries the identification information of the terminal; 查询模块,用于在预设的信任设备列表中,查询是否存在所述终端的标识信息,得到查询结果;所述信任设备列表用于存储可以被信任的终端的标识信息;a query module, configured to query whether the identification information of the terminal exists in a preset trusted device list, and obtain a query result; the trusted device list is used to store the identification information of the terminal that can be trusted; 生成模块,用于根据所述查询结果,生成授权结果,以便所述终端的用户对所述硬件设备执行被授权的操作;a generating module, configured to generate an authorization result according to the query result, so that the user of the terminal performs an authorized operation on the hardware device; 返回模块,用于将所述授权结果返回至所述终端;A return module, configured to return the authorization result to the terminal; 显示模块,用于在所述查询结果为未查询到所述终端的标识信息时,在所述硬件设备的显示屏幕上显示请求授权的信息,所述请求授权的信息包括所述终端的标识信息;A display module, configured to display the information requesting authorization on the display screen of the hardware device when the query result is that the identification information of the terminal is not queried, and the information requesting authorization includes the identification information of the terminal ; 第一加入模块,用于在所述硬件设备的管理者根据显示的所述请求授权的信息,触发确认授权的操作后,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果。The first adding module is configured to add the identification information of the terminal to the list of trusted devices after the administrator of the hardware device triggers an operation of confirming authorization according to the displayed information requesting authorization, and generates a confirmation authorization authorization result. 6.根据权利要求5所述的装置,其特征在于,所述生成模块,包括:6. The apparatus according to claim 5, wherein the generating module comprises: 生成子模块,用于在所述查询结果为查询到存在所述终端的标识信息时,生成确认授权的授权结果。The generating submodule is configured to generate an authorization result confirming authorization when the query result is that the identification information of the terminal exists in the query. 7.根据权利要求5或6所述的装置,其特征在于,所述装置还包括:7. The device according to claim 5 or 6, wherein the device further comprises: 判断模块,用于在所述查询结果为未查询到所述终端的标识信息时,根据所述终端的标识信息判断所述终端是否属于预设的授权类型;a judgment module, configured to judge whether the terminal belongs to a preset authorization type according to the identification information of the terminal when the query result is that the identification information of the terminal is not queried; 第二加入模块,用于在确定所述终端属于预设的授权类型时,将所述终端的标识信息加入所述信任设备列表,并生成确认授权的授权结果;a second adding module, configured to add the identification information of the terminal to the trusted device list when it is determined that the terminal belongs to a preset authorization type, and generate an authorization result confirming authorization; 第一生成模块,用于在确定所述终端不属于预设的授权类型时,生成拒绝授权的授权结果。The first generating module is configured to generate an authorization result of denying authorization when it is determined that the terminal does not belong to a preset authorization type. 8.根据权利要求5所述的装置,其特征在于,所述装置还包括:8. The apparatus according to claim 5, wherein the apparatus further comprises: 第二生成模块,用于在所述用户根据显示的所述请求授权的信息,触发拒绝授权的操作时,生成拒绝授权的授权结果。The second generating module is configured to generate an authorization result of denying authorization when the user triggers an operation of denying authorization according to the displayed information for requesting authorization.
CN201610113467.6A 2016-02-29 2016-02-29 A kind of authorization method and device for user operation Active CN107135075B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610113467.6A CN107135075B (en) 2016-02-29 2016-02-29 A kind of authorization method and device for user operation

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610113467.6A CN107135075B (en) 2016-02-29 2016-02-29 A kind of authorization method and device for user operation

Publications (2)

Publication Number Publication Date
CN107135075A CN107135075A (en) 2017-09-05
CN107135075B true CN107135075B (en) 2020-12-04

Family

ID=59721790

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610113467.6A Active CN107135075B (en) 2016-02-29 2016-02-29 A kind of authorization method and device for user operation

Country Status (1)

Country Link
CN (1) CN107135075B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108830048A (en) * 2018-06-14 2018-11-16 沈阳东软医疗系统有限公司 A kind of display control method, device and the equipment of the display screen terminal of CT machine
CN111143658A (en) * 2019-12-31 2020-05-12 长城汽车股份有限公司 Method and device for inquiring vehicle state information and vehicle

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102421098A (en) * 2010-09-27 2012-04-18 中国移动通信集团公司 User authentication method, device and system
CN103249045A (en) * 2013-05-13 2013-08-14 华为技术有限公司 Identification method, device and system
CN103415014A (en) * 2013-08-28 2013-11-27 北京网秦天下科技有限公司 Method and device for authenticating mobile terminal
CN104202744A (en) * 2014-08-14 2014-12-10 腾讯科技(深圳)有限公司 Operation authentication method for intelligent terminal, terminal and system
CN104468464A (en) * 2013-09-12 2015-03-25 深圳市腾讯计算机系统有限公司 Authentication method, device and system
CN105100022A (en) * 2014-05-20 2015-11-25 阿里巴巴集团控股有限公司 Cipher processing method, server and system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102421098A (en) * 2010-09-27 2012-04-18 中国移动通信集团公司 User authentication method, device and system
CN103249045A (en) * 2013-05-13 2013-08-14 华为技术有限公司 Identification method, device and system
CN103415014A (en) * 2013-08-28 2013-11-27 北京网秦天下科技有限公司 Method and device for authenticating mobile terminal
CN104468464A (en) * 2013-09-12 2015-03-25 深圳市腾讯计算机系统有限公司 Authentication method, device and system
CN105100022A (en) * 2014-05-20 2015-11-25 阿里巴巴集团控股有限公司 Cipher processing method, server and system
CN104202744A (en) * 2014-08-14 2014-12-10 腾讯科技(深圳)有限公司 Operation authentication method for intelligent terminal, terminal and system

Also Published As

Publication number Publication date
CN107135075A (en) 2017-09-05

Similar Documents

Publication Publication Date Title
US10091127B2 (en) Enrolling a mobile device with an enterprise mobile device management environment
CN110351339B (en) Business processing method, device and server
KR102142143B1 (en) System, apparaus and method for sharing electronic device
CN108632253B (en) Client data security access method and device based on mobile terminal
WO2017193863A1 (en) Customized device registration method, server, and terminal
WO2017024842A1 (en) Internet access authentication method, client, computer storage medium
CN104902028A (en) Onekey registration authentication method, device and system
US20170154191A1 (en) Management of Privacy Policies
CN106534276A (en) Data sharing method and device, mobile terminal
US20140310741A1 (en) System for sharing data via cloud server and method thereof
CN102255887A (en) Method and system for providing online service corresponding to multiple mobile devices
TW201729121A (en) Cloud service server and method for managing cloud service server
WO2014111022A1 (en) Mobile terminal user information display method, mobile terminal, and service system
CN105072080A (en) Information verification method, device and system
CN105101205A (en) One-click login authentication method, device and system
CN105187412A (en) Login authentication method, device and system based on gesture recognition
JP2016051329A (en) Content management apparatus and control method thereof
WO2017000638A1 (en) Network file access control method and device
CN108574721A (en) A login method, device, server, user terminal, and readable storage medium
CN107566329A (en) A kind of access control method and device
CN107135075B (en) A kind of authorization method and device for user operation
CN104702634A (en) Method, device and system for processing data operation request
CN105516124A (en) Portal authentication method, portal server and terminal
US20150067766A1 (en) Application service management device and application service management method
US20170169802A1 (en) Method and device for setting data display

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right
TA01 Transfer of patent application right

Effective date of registration: 20200918

Address after: No. 181, erbatou, taimuyang village, Qinyu Town, Fuding City, Ningde City, Fujian Province

Applicant after: Chen Ximei

Address before: 1, building A, No. 201, front Bay Road, Qianhai, Shenzhen Shenzhen cooperation zone, Guangdong 518052, China

Applicant before: SHENZHEN SHOWBOOM TECHNOLOGY Co.,Ltd.

TA01 Transfer of patent application right

Effective date of registration: 20201113

Address after: 322000 1st floor, No.3, building 20, Qiyi village, Chengxi street, Yiwu City, Jinhua City, Zhejiang Province

Applicant after: Yiwu Lansi sporting goods Co.,Ltd.

Address before: No. 181, erbatou, taimuyang village, Qinyu Town, Fuding City, Ningde City, Fujian Province

Applicant before: Chen Ximei

TA01 Transfer of patent application right
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20240507

Address after: Room 2A, Science and Technology Building, No. 968 Xuefeng West Road, Beiyuan Street, Yiwu City, Jinhua City, Zhejiang Province, 322000

Patentee after: Zhejiang Jinguo Intellectual Property Co.,Ltd.

Country or region after: China

Address before: 322000 1st floor, No.3, building 20, Qiyi village, Chengxi street, Yiwu City, Jinhua City, Zhejiang Province

Patentee before: Yiwu Lansi sporting goods Co.,Ltd.

Country or region before: China

CP03 Change of name, title or address
CP03 Change of name, title or address

Address after: 2A, Science and Technology Building, 968 Xuefeng West Road, Beiyuan Street, Yiwu City, Jinhua City, Zhejiang Province 321000

Patentee after: Yiwu Jinguo Intellectual Property Co.,Ltd.

Country or region after: China

Address before: 1st Floor, No. 1-2, Building 9, Beiyuan Commercial and Trade Zone, Beiyuan Street, Yiwu City, Jinhua City, Zhejiang Province

Patentee before: Zhejiang Jinguo Intellectual Property Co.,Ltd.

Country or region before: China