CN107193667A - The update method and device of webpage authority - Google Patents

The update method and device of webpage authority Download PDF

Info

Publication number
CN107193667A
CN107193667A CN201710279267.2A CN201710279267A CN107193667A CN 107193667 A CN107193667 A CN 107193667A CN 201710279267 A CN201710279267 A CN 201710279267A CN 107193667 A CN107193667 A CN 107193667A
Authority
CN
China
Prior art keywords
webpage
configuration information
privileges configuration
privileges
web
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710279267.2A
Other languages
Chinese (zh)
Other versions
CN107193667B (en
Inventor
董红光
吴华
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Xiaomi Mobile Software Co Ltd
Original Assignee
Beijing Xiaomi Mobile Software Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Xiaomi Mobile Software Co Ltd filed Critical Beijing Xiaomi Mobile Software Co Ltd
Priority to CN201710279267.2A priority Critical patent/CN107193667B/en
Publication of CN107193667A publication Critical patent/CN107193667A/en
Application granted granted Critical
Publication of CN107193667B publication Critical patent/CN107193667B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/547Remote procedure calls [RPC]; Web services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/34Network arrangements or protocols for supporting network services or applications involving the movement of software or configuration parameters 

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Information Transfer Between Computers (AREA)
  • Storage Device Security (AREA)

Abstract

The disclosure is directed to the update method of webpage authority and device, this method includes:The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal local function that the webpage can be called;In the web data that the privileges configuration information of the webpage is stored in the webpage;The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;Send the web data for the webpage for carrying the privileges configuration information.The technical scheme more fine-grained can control the terminal local function that each webpage can be called, and the configuration of privileges configuration information can be carried out in server end, convenient and swift, it is not necessary to which that applications client is intervened, and reduce the maintenance cost of applications client.

Description

The update method and device of webpage authority
Technical field
This disclosure relates to Internet technical field, more particularly to webpage authority update method and device.
Background technology
With the fast development of applications client in mobile phone, the major applications client of mobile phone can open substantial amounts of hand Machine local function such as camera function and GPS (GlobalPositioning System, GPS) positioning function Deng, so can also in expanded application client third party's webpage of loading ability, pass through third party's webpage JavaScript calls these mobile phone local functions, brings more preferable Consumer's Experience.
The content of the invention
The embodiment of the present disclosure provides the update method and device of webpage authority.The technical scheme is as follows:
According to the first aspect of the embodiment of the present disclosure there is provided a kind of update method of webpage authority, including:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal sheet that the webpage can be called Ground function;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
The technical scheme provided by this disclosed embodiment can include the following benefits:The present embodiment can pass through authority Configuration information control webpage can only call the terminal local function that the webpage limited in privileges configuration information can be called, remaining Function can not be called, more fine-grained to control the terminal local function that each webpage be called, and the privileges configuration information by Web page server is saved in the web data of webpage, configures convenient and swift, can receive the webpage of terminal transmission webpage During request, the web data for the webpage for carrying the privileges configuration information is returned to terminal, the privileges configuration information is existed End side comes into force;Because the privileges configuration information is configured by web page server, therefore application client is not needed End intervention, this reduces the maintenance cost of applications client.
In one embodiment, the web data includes HTML html file, described by the webpage Privileges configuration information be stored in the web data of the webpage, including:
In the html file that the privileges configuration information of the webpage is stored in the webpage;
Methods described also includes:
Obtain the first renewal authority configuration information of the webpage;
In the form of updating the html file of the webpage, institute is replaced with the first renewal authority configuration information of the webpage State the privileges configuration information in the html file of webpage.
The technical scheme provided by this disclosed embodiment can include the following benefits:The present embodiment is by by webpage Privileges configuration information is stored in the html file of webpage, and in time with the of webpage after the first renewal authority configuration information is obtained One renewal authority configuration information replaces the privileges configuration information in the html file of webpage, and new privileges configuration information is updated to In the html file of webpage, conveniently and efficiently the privileges configuration information of webpage can be stored in webpage, and carries out in time more Newly.
In one embodiment, the web data includes Java Script JS files, the power by the webpage Limit configuration information is stored in the web data of the webpage, including:
The privileges configuration information of the webpage is stored in the JS files of the webpage;
Methods described also includes:
Obtain the second renewal authority configuration information of the webpage;
In the form of updating the JS files of the webpage, replace described with the second renewal authority configuration information of the webpage Privileges configuration information in the JS files of webpage.
The technical scheme provided by this disclosed embodiment can include the following benefits:The present embodiment is by by webpage Privileges configuration information is stored in the JS files of webpage, and is updated after the second renewal authority configuration information is obtained with the second of webpage Privileges configuration information replaces the privileges configuration information in the JS files of webpage, and new privileges configuration information is updated to the JS of webpage In file, conveniently and efficiently the privileges configuration information of webpage can be stored in webpage, and is updated in time.
In one embodiment, the privileges configuration information of the webpage includes the information of character string forms.
The technical scheme provided by this disclosed embodiment can include the following benefits:The present embodiment can be by the net The privileges configuration information of page facilitates terminal to be parsed and given birth to be write in the form of character string in the web data of the webpage Into.
In one embodiment, the privileges configuration information also includes signing messages, and the signing messages is used to make terminal Verify the validity of the privileges configuration information.
The technical scheme provided by this disclosed embodiment can include the following benefits:The present embodiment can match somebody with somebody in authority Signing messages is set in confidence breath, prevents third party from carrying out forgery privileges configuration information, it is ensured that the peace of privileges configuration information transmission Full property and validity.
According to the second aspect of the embodiment of the present disclosure there is provided a kind of updating device of webpage authority, including:
First acquisition module, the privileges configuration information for obtaining webpage, the privileges configuration information is described for limiting The terminal local function that webpage can be called;
Preserving module, for the privileges configuration information of the webpage to be stored in the web data of the webpage;
Receiving module, the web-page requests for receiving the webpage, the web-page requests are used for the net for asking the webpage Page data;
Sending module, the web data for sending the webpage for carrying the privileges configuration information.
In one embodiment, the web data includes HTML html file, the preserving module bag Include:
First preserves submodule, the html file for the privileges configuration information of the webpage to be stored in the webpage It is interior;
Described device also includes:
Second acquisition module, the first renewal authority configuration information for obtaining the webpage;
First replacement module, in the form of updating the html file of the webpage, being updated with the first of the webpage Privileges configuration information replaces the privileges configuration information in the html file of the webpage.
In one embodiment, the web data includes Java Script JS files, and the preserving module includes:
Second preserves submodule, for the privileges configuration information of the webpage to be stored in the JS files of the webpage;
Described device also includes:
3rd acquisition module, the second renewal authority configuration information for obtaining the webpage;
Second replacement module, in the form of updating the JS files of the webpage, being updated and being weighed with the second of the webpage Limit the privileges configuration information in the JS files of the configuration information replacement webpage.
In one embodiment, the privileges configuration information of the webpage includes the information of character string forms.
In one embodiment, the privileges configuration information also includes signing messages, and the signing messages is used to make terminal Verify the validity of the privileges configuration information.
According to the third aspect of the embodiment of the present disclosure there is provided a kind of updating device of webpage authority, including:
Processor;
Memory for storing processor-executable instruction;
Wherein, the processor is configured as:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal sheet that the webpage can be called Ground function;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
According to the fourth aspect of the embodiment of the present disclosure there is provided a kind of computer-readable recording medium, the computer that is stored with refers to Order, the computer instruction realizes following steps when being executed by processor:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal sheet that the webpage can be called Ground function;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
It should be appreciated that the general description of the above and detailed description hereinafter are only exemplary and explanatory, not The disclosure can be limited.
Brief description of the drawings
Accompanying drawing herein is merged in specification and constitutes the part of this specification, shows the implementation for meeting the disclosure Example, and be used to together with specification to explain the principle of the disclosure.
Fig. 1 is the flow chart of the update method of the webpage authority according to an exemplary embodiment.
Fig. 2 is the flow chart of the update method of the webpage authority according to an exemplary embodiment.
Fig. 3 is the flow chart of the update method of the webpage authority according to an exemplary embodiment.
Fig. 4 is the block diagram of the updating device of the webpage authority according to an exemplary embodiment.
Fig. 5 is the block diagram of the updating device of the webpage authority according to an exemplary embodiment.
Fig. 6 is the block diagram of the updating device of the webpage authority according to an exemplary embodiment.
Fig. 7 is the block diagram of the updating device of the webpage authority according to an exemplary embodiment.
Embodiment
Here exemplary embodiment will be illustrated in detail, its example is illustrated in the accompanying drawings.Following description is related to During accompanying drawing, unless otherwise indicated, the same numbers in different accompanying drawings represent same or analogous key element.Following exemplary embodiment Described in embodiment do not represent all embodiments consistent with the disclosure.On the contrary, they be only with it is such as appended The example of the consistent apparatus and method of some aspects be described in detail in claims, the disclosure.
At present, in applications client using upper addition white list control, trust webpage of the permission in white list is It can prevent not trusted webpage from using these mobile phone local functions with calling mobile phone local function, bring not expected consequence. But, in the above method, not trusted webpage can not call any terminal local function that applications client is opened, trust net Page can call whole terminal local functions that applications client is opened, it is impossible to call the authority of terminal local function to enter to webpage The more fine-grained control of row;If the privileges configuration information of each webpage is set in applications client, by privileges configuration information The terminal local ability that named web page can be called, can control webpage to call calling of being limited in privileges configuration information Terminal local function, calls the authority of terminal local function to carry out more fine-grained control to webpage;But need authority Configuration information is preset in applications client, and renewal authority configuration letter is removed by applications client when privileges configuration information changes Breath, due to for different webpages, it is desirable to have different privileges configuration informations, the cost of client maintenance configuration is very big.
The technical scheme that the embodiment of the present disclosure is provided, web page server end can obtain the privileges configuration information of webpage, institute Stating privileges configuration information is used to limit the terminal local function that the webpage can be called;Then the authority configuration of the webpage is believed In the web data of the breath write-in webpage;In the web-page requests for the webpage for receiving terminal transmission, the webpage is asked Web data when, to terminal return carry the privileges configuration information the webpage web data, make terminal according to The privileges configuration information controls the webpage to call the corresponding terminal called of the webpage limited in the privileges configuration information Local function;Configured due to the privileges configuration information by web page server, it is not necessary to which applications client is intervened, this Just reduce the maintenance cost of applications client.
Fig. 1 is a kind of flow chart of the update method of webpage authority according to an exemplary embodiment, such as Fig. 1 institutes Show, the update method of webpage authority is used in web page server, comprises the following steps 101 to 104:
In a step 101, the privileges configuration information of webpage is obtained, the privileges configuration information can for limiting the webpage The terminal local function of calling.
In a step 102, the privileges configuration information of the webpage is stored in the web data of the webpage.
In step 103, the web-page requests of the webpage are received, the web-page requests are used for the webpage for asking the webpage Data.
At step 104, the web data for the webpage for carrying the privileges configuration information is sent.
In this embodiment, the privileges configuration information of webpage is by applications client corresponding server (such as wechat service Device) application, the terminal local function that the webpage application webpage that the applications client can be loaded for it can be called, this application leads to Often audited by the administrative staff of terminal, this application is reviewed by rear, the privileges configuration information of the webpage can be sent into this The corresponding web page server of webpage, in this way, web page server can obtain the privileges configuration information of webpage, the authority configuration letter Cease for limiting the terminal local function that the webpage can be called, can include what the webpage and the webpage of the webpage can be called Terminal local function.
The privileges configuration information of webpage can be written to institute by web page server after the privileges configuration information of webpage is obtained State in the web data of webpage, in this way, the applications client in terminal sends web-page requests to web page server, request of loading should During webpage, the web data that web page server can carry this webpage of privileges configuration information returns to end End, applications client loads the webpage according to the web data, when the webpage needs to call a certain terminal local function, application Client can obtain the privileges configuration information of the webpage by the corresponding interface from the web data of webpage, then in the webpage The need for call a certain terminal local function to belong to the terminal local that can call of webpage that the privileges configuration information of the webpage is limited When function and the network address of the webpage are the network address of the webpage limited in the privileges configuration information of the webpage, the net is just controlled Page calls the terminal local function that its needs is called.
Explanation is needed exist for, terminal local function can be the work(that the terminals such as camera function, GPS location function have Energy.
In this embodiment, web page server can be after the privileges configuration information of webpage changes, by the webpage New privileges configuration information is write in the web data of the webpage, in this way, after the web-page requests of terminal are received, it is possible to Terminal returns to the web data for the webpage for carrying the new privileges configuration information, terminal is believed according to new authority configuration Breath controls the webpage to call terminal local function, new privileges configuration information is come into force.
The present embodiment can control webpage to call the net limited in privileges configuration information by privileges configuration information The corresponding terminal local function of calling of page, remaining function can not be called, and more fine-grained to control each webpage adjustable Terminal local function, and the privileges configuration information is written in the web data of webpage by web page server, configuration is convenient Fast, the web data for carrying the privileges configuration information can be returned to terminal when terminal sends the web-page requests of webpage, The privileges configuration information is set to be come into force in end side, because the privileges configuration information is configured by web page server , therefore applications client intervention is not needed, this reduces the maintenance cost of applications client..
In a kind of possible embodiment, the web data includes HTML (HyperText Mark-up Language, HTML) file, the step 102 may be embodied as following steps A1, above-mentioned webpage authority Update method can also comprise the following steps A2 and A3.
In step A1, in the html file that the privileges configuration information of the webpage is stored in the webpage.
In step A2, the first renewal authority configuration information of the webpage is obtained.
In step A3, in the form of updating the html file of the webpage, matched somebody with somebody with the first renewal authority of the webpage Confidence breath replaces the privileges configuration information in the html file of the webpage.
In the embodiment, web data includes html file.Illustratively, web page server is matched somebody with somebody in the authority for obtaining webpage 1 , can be by webpage 1 after confidence breath (such as privileges configuration information limits terminal local function that webpage 1 can call as camera function) Privileges configuration information write in the html file of the webpage 1.In this way, the applications client in terminal is sent out to web page server Web-page requests are sent, during the request of loading webpage 1, web page server can carry this webpage 1 of privileges configuration information Web data returns to terminal.The web data that applications client is received according to the terminal loads the webpage 1, in the webpage 1 When the interface 1 provided by applications client calls GPS location function, applications client can be by interface 2 from webpage 1 The privileges configuration information of webpage 1 is obtained in html file, it is then determined that the GPS location function to be called of webpage 1 is not belonging to net The terminal local function i.e. camera function called limited in the privileges configuration information of page 1, then do not perform control webpage 1 and call The instruction of GPS location function.
In this embodiment it is assumed that applications client adds the webpage 1 for its application of webpage 1 that can be loaded can call GPS During positioning function success, new privileges configuration information i.e. the first renewal authority that web page server can obtain webpage 1 matches somebody with somebody confidence Breath, which is that webpage 1 is corresponding, calls terminal local function to be camera function and GPS location function, at this point it is possible to using renewal net The form of the html file of page 1, the privileges configuration information for replacing webpage 1 with the first renewal authority configuration information of webpage 1 (i.e. should Privileges configuration information limits terminal local function that webpage 1 can call as camera function), obtain carrying the first renewal authority and match somebody with somebody The html file of confidence breath.In this way, the applications client in terminal sends web-page requests, the request of loading net to web page server During page 1, the web data that web page server can carry this webpage 1 of the first renewal authority configuration information returns to end End.The web data that applications client is received according to the terminal loads the webpage 1, is carried in the webpage 1 by applications client When the interface 1 of confession calls GPS location function, applications client can obtain webpage by interface 2 from the html file of webpage 1 1 privileges configuration information, it is then determined that the first renewal authority that the GPS location function to be called of webpage 1 belongs to webpage 1 matches somebody with somebody confidence The terminal local function of calling and the network address of webpage 1 limited in breath is the net limited in the privileges configuration information of the webpage The network address of page 1, then control webpage 1 to call the GPS location function, and the first renewal authority configuration information of renewal can so stood Come into force.
The present embodiment is updated by the way that the privileges configuration information of webpage to be stored in the html file of webpage obtaining first In time with the authority configuration in the html file of the first renewal authority configuration information replacement webpage of webpage after privileges configuration information Information, new privileges configuration information is updated in the html file of webpage, can be conveniently and efficiently by the authority configuration of webpage Information is stored in webpage, and is updated in time.
In a kind of possible embodiment, the web data includes JS (Java Script) file, the step 102 may be embodied as following steps B1, and the update method of above-mentioned webpage authority can also comprise the following steps B2 and B3.
In step bl is determined., the privileges configuration information of the webpage is stored in the JS files of the webpage.
In step B2, the second renewal authority configuration information of the webpage is obtained.
In step B3, in the form of updating the JS files of the webpage, configured with the second renewal authority of the webpage Information replaces the privileges configuration information in the JS files of the webpage.
In the embodiment, web data includes JS (JavaScript) file.JS files and html file are all webpage numbers Be stored with JavaScript in formatted file in, JS files, and JavaScript is a kind of high level language, by explaining Perform, be a regime type, the literal translation language of object-oriented (being based on prototype).
Illustratively, in the privileges configuration information of acquisition webpage 1, (such as webpage 1 is corresponding to call terminal sheet to web page server Ground function is camera function) after, the privileges configuration information of webpage 1 can be write in the JS files of the webpage 1.In this way, eventually Applications client in end is provided after obtaining web data and loading the webpage 1 accordingly in the webpage 1 by applications client Interface 1 when calling GPS location function, applications client can obtain webpage 1 by interface 2 from the JS files of webpage 1 Privileges configuration information, it is then determined that the GPS location function to be called of webpage 1 is not belonging to limit in the privileges configuration information of webpage 1 The fixed terminal local function i.e. camera function called, then do not perform the instruction that control webpage 1 calls GPS location function.
Assuming that applications client adds the webpage 1 for its application of webpage 1 that can be loaded can call the success of GPS location function When, web page server is that the second renewal authority configuration information is corresponding for webpage 1 in the new privileges configuration information of acquisition webpage 1 It is camera function and GPS location function that terminal local function, which can be called, at this point it is possible to the shape of the JS files using more new web page 1 Formula, privileges configuration information (the i.e. privileges configuration information restriction of webpage 1 is replaced with the second renewal authority configuration information of webpage 1 The terminal local function that webpage 1 can be called is camera function), obtain carrying the JS files of the second renewal authority configuration information. In this way, the applications client in terminal sends web-page requests, during the request of loading webpage 1, web page server to web page server The web data that this can be carried to the webpage 1 of the privileges configuration information returns to terminal, and web data includes JS files. Applications client loads the webpage 1 according to the web data, and the interface 1 provided in the webpage 1 by applications client calls GPS During positioning function, applications client can obtain the privileges configuration information of webpage 1 by interface 2 from the JS files of webpage 1, so Determine that the GPS location function to be called of webpage 1 belongs to the terminal local called limited in the privileges configuration information of webpage 1 afterwards Function and the network address of webpage 1 are the network address of the webpage limited in the privileges configuration information of the webpage, then control webpage 1 to call this GPS location function, can so make the second renewal authority configuration information of renewal come into force.
The present embodiment updates power by the way that the privileges configuration information of webpage to be stored in the JS files of webpage obtaining first The privileges configuration information in the JS files for the first renewal authority configuration information replacement webpage for using webpage after configuration information in time is limited, New privileges configuration information is updated in the JS files of webpage, conveniently and efficiently can be preserved the privileges configuration information of webpage It is updated in webpage, and in time.
In a kind of possible embodiment, in the update method of above-mentioned webpage authority, the authority configuration letter of the webpage Breath includes the information of character string forms.
Here, the privileges configuration information of webpage includes the information of character string forms, and character string forms here can be JSON (JavaScript Object Notation, JavaScript object representation) character strings or other can Using the character string in webpage, the present embodiment is not limited herein.
Here, JSON is a kind of data interchange language of lightweight, based on word, and is easy to allow people to read, simultaneously Machine has been also convenient for be parsed and generated.In this embodiment, web page server can believe the authority configuration of the webpage Cease to be write in the form of JSON character strings in the html file or JS files of the webpage.
The present embodiment can write the privileges configuration information of the webpage webpage of the webpage in the form of character string In data, facilitate machine and parsed and generated.
In a kind of possible embodiment, the privileges configuration information also includes signing messages, and the signing messages is used In making the validity of privileges configuration information described in terminal authentication.
In this embodiment, the signing messages includes signature, or, the signing messages includes signature and content is provided Person, or, the signing messages includes signing and signature expired time;Or, the signing messages includes content provider, label Name and signature expired time.
In this embodiment, so that signing messages includes content provider, signature and signature expired time as an example.Application visitor The corresponding server in family end is that the webpage 1 that the applications client can be loaded applies for the end that the webpage 1 can be called within some time Local function is held, this application is generally audited by the administrative staff of terminal, and this application is reviewed by rear, is sent to Digital signature service Device, by network address of the signature server according to webpage 1, its terminal local function that can be called and calls these information of time limit, according to Predetermined encryption algorithm is calculated, generation signature, and it is exactly the signature expired time in signing messages that the time limit is called here, so label Name server can just generate webpage 1 privileges configuration information (privileges configuration information include content provider's such as applications client Corresponding server, signature, sign expired time, the network address of webpage 1, the terminal local function that webpage 1 can be called), then, label The privileges configuration information of webpage 1 can just be sent to the corresponding web page server of webpage 1 by name server, and web page server is by net Page 1 privileges configuration information with the form of JSON character strings write webpage 1 html file or JS files in, wherein, JSON words The privileges configuration information for according with string form can be with as follows:
In this way, during the web-page requests for the webpage 1 that web page server is sent in the applications client for receiving terminal, will carry Have the privileges configuration information of the webpage 1 webpage 1 web data in be issued to terminal, terminal has verifying the signing messages During effect, the webpage 1 that the privileges configuration information of control webpage 1 invoking web page 1 is limited calls terminal local function.
The present embodiment can set signing messages in privileges configuration information, prevent third party from carrying out forging authority configuration letter Breath, it is ensured that the security and validity of privileges configuration information transmission.
Implementation process is discussed in detail below by several embodiments.
Fig. 2 is a kind of flow chart of the update method of webpage authority according to an exemplary embodiment, such as Fig. 2 institutes Show, this method can be realized by equipment such as web page servers, including step 201 is to 206.
In step 201, the privileges configuration information of webpage is obtained, the privileges configuration information can for limiting the webpage The terminal local function of calling.
In step 202., the privileges configuration information of the webpage is stored in the html file of the webpage, the net The privileges configuration information of page includes the information of character string forms.
In step 203, the web-page requests of the webpage are received, the web-page requests are used for the webpage for asking the webpage Data;Send the web data for the webpage for carrying the privileges configuration information.
In step 204, the first renewal authority configuration information of the webpage is obtained.
In step 205, in the form of updating the html file of the webpage, matched somebody with somebody with the first renewal authority of the webpage Confidence breath replaces the privileges configuration information in the html file of the webpage.
In step 206, the web-page requests of the webpage are received, the web-page requests are used for the webpage for asking the webpage Data;Send the web data for the webpage for carrying the first renewal authority configuration information.
Fig. 3 is a kind of flow chart of the update method of webpage authority according to an exemplary embodiment, such as Fig. 3 institutes Show, this method can be realized by equipment such as web page servers, including step 301 is to 306.
In step 301, the privileges configuration information of webpage is obtained, the privileges configuration information can for limiting the webpage The terminal local function of calling.
In step 302, the privileges configuration information of the webpage is stored in the JS files of the webpage, the webpage Privileges configuration information include the information of character string forms.
In step 303, the web-page requests of the webpage are received, the web-page requests are used for the webpage for asking the webpage Data;Send the web data for the webpage for carrying the privileges configuration information.
In step 304, the first renewal authority configuration information of the webpage is obtained.
In step 305, in the form of updating the JS files of the webpage, configured with the first renewal authority of the webpage Information replaces the privileges configuration information in the JS files of the webpage.
Within step 306, the web-page requests of the webpage are received, the web-page requests are used for the webpage for asking the webpage Data;Send the web data for the webpage for carrying the first renewal authority configuration information.
Fig. 4 is a kind of block diagram of the updating device of webpage authority according to an exemplary embodiment, and the device can be with By software, hardware or both be implemented in combination with it is some or all of as electronic equipment.As shown in figure 4, the webpage is adjusted Included with the device of terminal local function:First acquisition module 401, preserving module 402, receiving module 403 and sending module 404;Wherein:
First acquisition module 401, the privileges configuration information for obtaining webpage, the privileges configuration information is used to limit institute State the terminal local function that webpage can be called;
Preserving module 402, for the privileges configuration information of the webpage to be stored in the web data of the webpage;
Receiving module 403, the web-page requests for receiving the webpage, the web-page requests are used to ask the webpage Web data;
Sending module 404, the web data for sending the webpage for carrying the privileges configuration information.
As a kind of possible embodiment, the web data includes HTML html file, disclosed above The updating device of webpage authority the preserving module 402 can also be configured to include the first preservation submodule 4021, may be used also To be configured to include the second acquisition module 405 and the first replacement module 406, Fig. 5 is the more new clothes for being related to above-mentioned webpage authority The block diagram put, wherein:
First preserves submodule 4021, the HTML texts for the privileges configuration information of the webpage to be stored in the webpage In part;
Second acquisition module 405, the first renewal authority configuration information for obtaining the webpage;
First replacement module 406, in the form of updating the html file of the webpage, with the first of the webpage more New privileges configuration information replaces the privileges configuration information in the html file of the webpage.
As alternatively possible embodiment, the web data includes Java Script JS files, disclosed above The updating device of webpage authority can also be configured to the preserving module 402 to include the second preservation submodule 4022, can be with It is configured to include the 3rd acquisition module 407 and the second replacement module 408, Fig. 6 is the updating device for being related to above-mentioned webpage authority Block diagram, wherein:
Second preserves submodule 4022, the JS files for the privileges configuration information of the webpage to be stored in the webpage It is interior;
3rd acquisition module 407, the second renewal authority configuration information for obtaining the webpage;
Second replacement module 408, in the form of updating the JS files of the webpage, being updated with the second of the webpage Privileges configuration information replaces the privileges configuration information in the JS files of the webpage.
As alternatively possible embodiment, the authority of webpage is matched somebody with somebody described in the updating device of webpage authority disclosed above Confidence breath includes the information of character string forms.
As alternatively possible embodiment, privileges configuration information described in the updating device of webpage authority disclosed above Also include signing messages, the signing messages is used to make the validity of privileges configuration information described in terminal authentication.
On the device in above-described embodiment, wherein modules perform the concrete mode of operation in relevant this method Embodiment in be described in detail, explanation will be not set forth in detail herein.
Fig. 7 is a kind of block diagram of the updating device of webpage authority according to an exemplary embodiment.For example, device 700 may be provided in a server.Device 700 includes processing assembly 711, and it further comprises one or more processors, And as the memory resource representated by memory 712, for store can by the execution of processing assembly 711 instruction, for example should Use program.The application program stored in memory 712 can include it is one or more each correspond to one group of instruction Module.In addition, processing assembly 711 is configured as execute instruction, to perform the above method.
Device 700 can also include the power management that a power supply module 713 is configured as performs device 700, and one has Line or radio network interface 714 are configured as device 700 being connected to network, and input and output (I/O) interface 715.Dress Putting 700 can operate based on the operating system for being stored in memory 712, such as Windows ServerTM, Mac OS XTM, UnixTM, LinuxTM, FreeBSDTM or similar.
A kind of computer-readable recording medium is present embodiments provided, when the instruction in the storage medium is by device 700 Computing device when realize following steps:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal sheet that the webpage can be called Ground function;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
Instruction in the storage medium by computing device when can also realize following steps:
The web data includes HTML html file, and the privileges configuration information by the webpage is protected In the web data that there is the webpage, including:
In the html file that the privileges configuration information of the webpage is stored in the webpage;
Methods described also includes:
Obtain the first renewal authority configuration information of the webpage;
In the form of updating the html file of the webpage, institute is replaced with the first renewal authority configuration information of the webpage State the privileges configuration information in the html file of webpage.
Instruction in the storage medium by computing device when can also realize following steps:
The web data includes Java Script JS files, and the privileges configuration information by the webpage is stored in In the web data of the webpage, including:
The privileges configuration information of the webpage is stored in the JS files of the webpage;
Methods described also includes:
Obtain the second renewal authority configuration information of the webpage;
In the form of updating the JS files of the webpage, replace described with the second renewal authority configuration information of the webpage Privileges configuration information in the JS files of webpage.
Instruction in the storage medium by computing device when can also realize following steps:
The privileges configuration information of the webpage includes the information of character string forms.
Instruction in the storage medium by computing device when can also realize following steps:
The privileges configuration information also includes signing messages, and the signing messages is used to make authority configuration described in terminal authentication The validity of information.
The present embodiment additionally provides a kind of updating device of webpage authority, including:
Processor;
Memory for storing processor-executable instruction;
Wherein, the processor is configured as:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal sheet that the webpage can be called Ground function;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
The processor can be additionally configured to:
The web data includes HTML html file, and the privileges configuration information by the webpage is protected In the web data that there is the webpage, including:
In the html file that the privileges configuration information of the webpage is stored in the webpage;
Methods described also includes:
Obtain the first renewal authority configuration information of the webpage;
In the form of updating the html file of the webpage, institute is replaced with the first renewal authority configuration information of the webpage State the privileges configuration information in the html file of webpage.
The processor can be additionally configured to:
The web data includes Java Script JS files, and the privileges configuration information by the webpage is stored in In the web data of the webpage, including:
The privileges configuration information of the webpage is stored in the JS files of the webpage;
Methods described also includes:
Obtain the second renewal authority configuration information of the webpage;
In the form of updating the JS files of the webpage, replace described with the second renewal authority configuration information of the webpage Privileges configuration information in the JS files of webpage.
The processor can be additionally configured to:
The privileges configuration information of the webpage includes the information of character string forms.
The processor can be additionally configured to:
The privileges configuration information also includes signing messages, and the signing messages is used to make authority configuration described in terminal authentication The validity of information.
Those skilled in the art will readily occur to its of the disclosure after considering specification and putting into practice disclosure disclosed herein Its embodiment.The application is intended to any modification, purposes or the adaptations of the disclosure, these modifications, purposes or Person's adaptations follow the general principle of the disclosure and including the undocumented common knowledge in the art of the disclosure Or conventional techniques.Description and embodiments are considered only as exemplary, and the true scope of the disclosure and spirit are by following Claim is pointed out.
It should be appreciated that the precision architecture that the disclosure is not limited to be described above and is shown in the drawings, and And various modifications and changes can be being carried out without departing from the scope.The scope of the present disclosure is only limited by appended claim.

Claims (12)

1. a kind of update method of webpage authority, it is characterised in that including:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal local work(that the webpage can be called Energy;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
2. according to the method described in claim 1, it is characterised in that the web data includes HTML HTML texts Part, the privileges configuration information by the webpage is stored in the web data of the webpage, including:
In the html file that the privileges configuration information of the webpage is stored in the webpage;
Methods described also includes:
Obtain the first renewal authority configuration information of the webpage;
In the form of updating the html file of the webpage, the net is replaced with the first renewal authority configuration information of the webpage Privileges configuration information in the html file of page.
3. according to the method described in claim 1, it is characterised in that the web data includes Java Script JS files, The privileges configuration information by the webpage is stored in the web data of the webpage, including:
The privileges configuration information of the webpage is stored in the JS files of the webpage;
Methods described also includes:
Obtain the second renewal authority configuration information of the webpage;
In the form of updating the JS files of the webpage, the webpage is replaced with the second renewal authority configuration information of the webpage JS files in privileges configuration information.
4. according to the method described in claim 1, it is characterised in that
The privileges configuration information of the webpage includes the information of character string forms.
5. according to the method described in claim 1, it is characterised in that the privileges configuration information also includes signing messages, described Signing messages is used to make the validity of privileges configuration information described in terminal authentication.
6. a kind of updating device of webpage authority, it is characterised in that including:
First acquisition module, the privileges configuration information for obtaining webpage, the privileges configuration information is used to limit the webpage The terminal local function that can be called;
Preserving module, for the privileges configuration information of the webpage to be stored in the web data of the webpage;
Receiving module, the web-page requests for receiving the webpage, the web-page requests are used for the webpage number for asking the webpage According to;
Sending module, the web data for sending the webpage for carrying the privileges configuration information.
7. device according to claim 6, it is characterised in that the web data includes HTML HTML texts Part, the preserving module includes:
First preserves submodule, for the privileges configuration information of the webpage to be stored in the html file of the webpage;
Described device also includes:
Second acquisition module, the first renewal authority configuration information for obtaining the webpage;
First replacement module, in the form of updating the html file of the webpage, with the first renewal authority of the webpage Configuration information replaces the privileges configuration information in the html file of the webpage.
8. device according to claim 6, it is characterised in that the web data includes Java Script JS files, The preserving module includes:
Second preserves submodule, for the privileges configuration information of the webpage to be stored in the JS files of the webpage;
Described device also includes:
3rd acquisition module, the second renewal authority configuration information for obtaining the webpage;
Second replacement module, in the form of updating the JS files of the webpage, being matched somebody with somebody with the second renewal authority of the webpage Confidence breath replaces the privileges configuration information in the JS files of the webpage.
9. device according to claim 6, it is characterised in that
The privileges configuration information of the webpage includes the information of character string forms.
10. device according to claim 6, it is characterised in that the privileges configuration information also includes signing messages, described Signing messages is used to make the validity of privileges configuration information described in terminal authentication.
11. a kind of updating device of webpage authority, it is characterised in that including:
Processor;
Memory for storing processor-executable instruction;
Wherein, the processor is configured as:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal local work(that the webpage can be called Energy;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
12. a kind of computer-readable recording medium, be stored with computer instruction, it is characterised in that the computer instruction is located Reason device realizes following steps when performing:
The privileges configuration information of webpage is obtained, the privileges configuration information is used to limit the terminal local work(that the webpage can be called Energy;
In the web data that the privileges configuration information of the webpage is stored in the webpage;
The web-page requests of the webpage are received, the web-page requests are used for the web data for asking the webpage;
Send the web data for the webpage for carrying the privileges configuration information.
CN201710279267.2A 2017-04-25 2017-04-25 Method and device for updating webpage permission Active CN107193667B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710279267.2A CN107193667B (en) 2017-04-25 2017-04-25 Method and device for updating webpage permission

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710279267.2A CN107193667B (en) 2017-04-25 2017-04-25 Method and device for updating webpage permission

Publications (2)

Publication Number Publication Date
CN107193667A true CN107193667A (en) 2017-09-22
CN107193667B CN107193667B (en) 2021-03-09

Family

ID=59872367

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710279267.2A Active CN107193667B (en) 2017-04-25 2017-04-25 Method and device for updating webpage permission

Country Status (1)

Country Link
CN (1) CN107193667B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108416199A (en) * 2018-03-07 2018-08-17 北京恒华伟业科技股份有限公司 A kind of user authority control method of application, device and server
CN109213947A (en) * 2018-08-31 2019-01-15 北京京东金融科技控股有限公司 Browser page methods of exhibiting, device, electronic equipment and readable medium
CN109343900A (en) * 2018-08-30 2019-02-15 维沃移动通信有限公司 A kind of authority configuring method and terminal
WO2021082996A1 (en) * 2019-10-31 2021-05-06 杭州来布科技有限公司 File management method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102799477A (en) * 2012-07-16 2012-11-28 中兴通讯股份有限公司 Resource access method and apparatus
CN103279373A (en) * 2013-05-31 2013-09-04 广州市动景计算机科技有限公司 Method and device for updating browser shell functions
CN104375831A (en) * 2014-11-06 2015-02-25 北京奇虎科技有限公司 Method, device and system realizing communication between webpage and applications on terminal equipment
CN104838630A (en) * 2012-10-10 2015-08-12 思杰系统有限公司 Policy-based application management

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102799477A (en) * 2012-07-16 2012-11-28 中兴通讯股份有限公司 Resource access method and apparatus
CN104838630A (en) * 2012-10-10 2015-08-12 思杰系统有限公司 Policy-based application management
CN103279373A (en) * 2013-05-31 2013-09-04 广州市动景计算机科技有限公司 Method and device for updating browser shell functions
CN104375831A (en) * 2014-11-06 2015-02-25 北京奇虎科技有限公司 Method, device and system realizing communication between webpage and applications on terminal equipment

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108416199A (en) * 2018-03-07 2018-08-17 北京恒华伟业科技股份有限公司 A kind of user authority control method of application, device and server
CN109343900A (en) * 2018-08-30 2019-02-15 维沃移动通信有限公司 A kind of authority configuring method and terminal
CN109213947A (en) * 2018-08-31 2019-01-15 北京京东金融科技控股有限公司 Browser page methods of exhibiting, device, electronic equipment and readable medium
CN109213947B (en) * 2018-08-31 2021-12-14 北京京东金融科技控股有限公司 Browser page display method and device, electronic equipment and readable medium
WO2021082996A1 (en) * 2019-10-31 2021-05-06 杭州来布科技有限公司 File management method

Also Published As

Publication number Publication date
CN107193667B (en) 2021-03-09

Similar Documents

Publication Publication Date Title
CN107871083A (en) Desensitize regular collocation method, application server and computer-readable recording medium
US8341104B2 (en) Method and apparatus for rule-based masking of data
CN107193667A (en) The update method and device of webpage authority
US10678682B2 (en) Intelligent batch job testing
CN112861496A (en) Report generation display method and device, computer equipment and readable storage medium
CN108132926A (en) Contract generating means and system
CN111191221A (en) Method and device for configuring authority resources and computer readable storage medium
CN109144487B (en) Method, device, computer equipment and storage medium for developing business of parts
US11373006B2 (en) Processing system using natural language processing for performing dataset filtering and sanitization
CN108418797A (en) Web access method, device, computer equipment and storage medium
CN107656910A (en) Method and apparatus for generating list
CN112328486A (en) Interface automation test method and device, computer equipment and storage medium
CN115730319A (en) Data processing method, data processing device, computer equipment and storage medium
CN111541758A (en) Page updating method and device
CN108632348B (en) Service checking method and device
CN114021175B (en) User portrait configuration method and device, computer equipment and medium
CN115640471A (en) Short link generation method and device, computer equipment and storage medium
CN110992131B (en) Form processing method, form processing device and storage medium
CN108170706A (en) A kind of information collection page generation method and device
CN112015429A (en) Code generation method, device and equipment
US11411937B2 (en) Web scraping prevention system
CN114549187B (en) Method and system for controlling marketing two-dimensional code use range by electronic bank
CN113342646B (en) Use case generation method, device, electronic equipment and medium
CN117290890B (en) Security risk management and control method and device, electronic equipment and storage medium
CN112667730B (en) External data verification method, system, equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant