CN107483418A

CN107483418A - Login process method, method for processing business, device and server

Info

Publication number: CN107483418A
Application number: CN201710624142.9A
Authority: CN
Inventors: 李哲
Original assignee: Alibaba Group Holding Ltd
Current assignee: Advanced New Technologies Co Ltd; Advantageous New Technologies Co Ltd
Priority date: 2017-07-27
Filing date: 2017-07-27
Publication date: 2017-12-15

Abstract

This specification embodiment discloses a kind of login process method, method for processing business, device and server.The login process method can include：The logging request of client is obtained, whether there is effective session service in the user's identification mark, equipment identification marking, last login session identification inquiry server buffer data in the logging request；If in the presence of, session Id that directly user can not failed last time, using the session identification of session service of the session identification of the effective session service as the logging request, the reuse to existing session is realized.Otherwise, sessionId can be rebuild according to nearest log-on message.

Description

Login process method, method for processing business, device and server

Technical field

This specification embodiment belongs to microcomputer data processing field, more particularly to a kind of login process method, Method for processing business, device and server.

Background technology

As the development of internet and the communication technology, the popularity rate more and more higher of wireless client, each service side are also more next More pay attention to the application service experience of wireless client end subscriber, and the balance between the capacity of system, performance.Wherein, wireless visitor The login service at family end is critical services content in each service, while realizing checking user identity, complete authorization, and The important step gathered as user behavior information, facility information, client features, is the weight ensured in each application service component Point.

The main mode including the use of account name+password login of the conventional design of registering service at present.At this place Under reason mode, for user when wireless client logs in, wireless client can send logging request to server.Server is to logging in Request is verified, is authorized after being verified, then can create and store the session with the wireless client (session), and corresponding session information is sent to other Service Component, server etc. to carry out session information asynchronous logical Know or business processing.Then user logins successfully after authorizing successfully.To ensure user login services, system is usually required to user's Each logging request is verified, authorized, being stored, asynchronous process etc., and user needs to consume in the login service of wireless client Certain systematic function.Login successfully rate directly affect again user wireless client sign-in experience perceive, based on hardware into This consideration, usual system service capacity are limited, and the contradiction of this system service capacity and Consumer's Experience is in activity or production Become apparent during the short time high concurrent login service device request amount of product promotion.Therefore, one kind is needed effectively to reduce in the industry Login service processing consumption, the user's login process mode for improving power system capacity.

The content of the invention

This specification embodiment purpose is to provide a kind of login process method, method for processing business, device and server, Server repeated authentication and the processing step authorized can be reduced, server resource consumption is reduced, completes register faster, Improve server system capacity and user's sign-in experience.

A kind of login process method, method for processing business, device and the server that this specification embodiment provides are to include What such a way was realized：

A kind of login process method, methods described include：

Obtain logging request, the user's identification mark in the logging request, equipment identification marking, last login meeting Words mark inquiry whether there is effective session service；

If in the presence of, the logging status of confirmation user, and using the session identification of the effective session service as institute State the session identification of the session service of logging request.

A kind of method for processing business, methods described include：

Obtain service request, detect the logging status of the service request, the service request include user's identification mark, Equipment identification marking, session identification；

If the service request is in and is not logged in state, implicit login process is carried out to the service request；

The result of the implicit login process is received, if logining successfully, by the session identification of logging status and described Corresponding business processing side is sent to after service request combination to carry out logging in rear business processing.

A kind of login process apparatus, described device include：

Active session confirms module, and for obtaining logging request, the user's identification in the logging request is identified, set Standby identification marking, the inquiry of last login session identification whether there is effective session service；

First conversation establishing module, for when determining to have effective session service according to the logging request, creating The session service of the logging request, confirms the logging status of user, and by the session identification of the effective session service Session identification as the session service of the logging request.

A kind of business processing device, described device include：

Business intercepts detection module, for obtaining service request, detects the logging status of the service request, the business Request includes user's identification mark, equipment identification marking, session identification；

Login process module, for if it is determined that the service request is then entered in state is not logged in the service request The implicit login process of row；

Work flow module, for receiving the result of the implicit login process, if logining successfully, by logging status Session identification and service request combination after be sent to corresponding business processing side and carry out logging in rear business processing.

A kind of login process apparatus, including processor and the memory for storing processor-executable instruction, it is described Realized described in computing device during instruction：

If the session service of the result of the inquiry including the logging request has failed, read user's last login into The log-on message of work(, the session service of the logging request is rebuild according to the log-on message, and with the log-on message Session identification of the session identification as the session service of the logging request.

A kind of business processing device, including processor and the memory for storing processor-executable instruction, it is described Realized described in computing device during instruction：

The result of the implicit login process is received, if logining successfully, by the session identification of logging status and described Corresponding business processing side is sent to after service request combination to carry out logging in rear business processing；

The request results that the service request logs in rear business processing are received, the request results are returned into corresponding visitor Family end.

A kind of server, including at least one processor and user store the memory of processor-executable instruction, institute Realized when stating instruction described in computing device：

The memory of processor-executable instruction, the computing device are stored including at least one processor and user Realized during the instruction：

A kind of login process method, device and the server that this specification one or more embodiment provides, can connect After the logging request for receiving the user that wireless client is sent, inquired about by user+equipment+last login session identification marking existing Have in the data of caching with the presence or absence of the session service not failed.If it is present can confirm that user logins successfully, can make With user's last login success and the session identification not failed, the reuse to already-existing session resource is realized.So, this theory is utilized Bright book embodiment, same to user, the multiple logging request with equipment can be optimized, reduce server repeated authentication and the place authorized Step and performance consumption are managed, register is faster completed, significantly reduces the complexity of register, improve server Power system capacity and user's sign-in experience.

Brief description of the drawings

In order to illustrate more clearly of this specification embodiment or technical scheme of the prior art, below will to embodiment or The required accompanying drawing used is briefly described in description of the prior art, it should be apparent that, drawings in the following description are only Some embodiments described in specification, for those of ordinary skill in the art, before creative labor is not paid Put, other accompanying drawings can also be obtained according to these accompanying drawings.

Fig. 1 is a kind of normal login service handling process schematic diagram in existing scheme；

Fig. 2 is a kind of schematic flow sheet of login process method embodiment that this specification provides；

Fig. 3 is that this specification one embodiment is directed to same user, the high concurrent login service device with equipment asks to carry out Schematic flow sheet after login process optimization；

Fig. 4 is a kind of processing procedure schematic diagram of one application scenarios of method for processing business that this specification provides；

Fig. 5 is a kind of schematic flow sheet for method for processing business embodiment that this specification provides；

Fig. 6 is a kind of modular structure schematic diagram for login process apparatus embodiment that this specification provides；

Fig. 7 is a kind of modular structure schematic diagram for login process apparatus embodiment that this specification provides；

Fig. 8 is the modular structure schematic diagram for another login process apparatus embodiment that this specification provides；

Fig. 9 is a kind of modular structure schematic diagram for business processing device embodiment that this specification provides；

Figure 10 is the modular structure schematic diagram for another business processing device embodiment that this specification provides；

Figure 11 is the modular structure schematic diagram of login process server one embodiment that this specification provides；

Figure 12 is the modular structure schematic diagram of Service Process Server one embodiment that this specification provides.

Embodiment

In order that those skilled in the art more fully understand the technical scheme in this specification, below in conjunction with this explanation Accompanying drawing in book one or more embodiment, the technical scheme in this specification one or more embodiment is carried out clear, complete Site preparation describes, it is clear that described embodiment is only specification part of the embodiment, rather than whole embodiments.It is based on Specification one or more embodiment, the institute that those of ordinary skill in the art are obtained under the premise of creative work is not made There is other embodiment, should all belong to the scope of this specification embodiment scheme protection.

Although present description provides such as following embodiments or method operating procedure shown in the drawings or apparatus structure, base After routine can either include more or part merging without performing creative labour in methods described or device less Operating procedure or modular unit.Necessary causality is not present in logicality the step of or in structure, the execution of these steps Order or the modular structure of device are not limited to this specification embodiment or execution sequence shown in the drawings or modular structure.Described , can be according to embodiment or accompanying drawing when the device in practice of method or modular structure, server or end product are applied Shown method or the execution of modular structure carry out order be either parallel to be performed (such as the ring of parallel processor or multiple threads Border, even include distributed treatment, the implementation environment of server cluster).

In general, normal login service handling process can be with as shown in figure 1, server receive stepping on for client transmission After record request, the information in logging request is verified, whether such as user name is legal, Environmental security Information Authentication.So Checking generally can include multiple information dimensions checking or multiple processing steps, such as verify A, verify B.After being verified The mandate of corresponding service or service is carried out to login user, session is further created again and sends login to other business sides The processing such as notice, distributed storage.The embodiment that this specification provides, can first log into use in user using client Such as normal login service handling process described above, and phase can be realized based on the identification information of equipment, user, session The complexity of login service is reduced during identical equipment with user's repeat logon, reduction makes some user by certification and equipment Repeated authentication, and then reduce the resource consumption of single logging request, improve the handling capacity of system.

Client described in this specification embodiment can include multiple terminal equipment, such as mobile intelligent terminal, vehicle-mounted set Standby, PC (personal computer, PC), server, industrial computer (industrial control computer), intelligent movable phone, Flat electronic equipment, portable computer (such as notebook computer etc.), personal digital assistant (PDA), desktop computer, intelligence Can wearable device, mobile communication terminal, handheld device, mobile unit, television equipment, setting based on quantum computer processing logic It is standby etc..

Whether the embodiment of this specification, which can combine the login banner such as user+equipment and have inquiring about server, does not fail Session, if so, can then return to the mark for the session that last time do not fail, realize the use to already-existing session resource again, Repeated authentication in login service, mandate is greatly reduced, creates the steps such as session, is rapidly completed register, reduction is stepped on Record operation complexity.One or more embodiments of this specification optimize what the same equipment of user (same to client) repeatedly logged in Handling process, the performance of server login services device under high concurrent request condition is particularly preferably optimized, held in server Amount and client login successfully rate conveniently and significantly improved.With reference to classical throughput calculation formula：

Throughput calculation is：F=Vu*R/T, unit are individual/s；

Wherein F is that server transaction handles handling capacity, and Vu be number of users number, the number of request that R sends for each user, T The spent time is asked to handle these.

As seen from the above, reducing average user logging request number can be in the constant situation of throughput of system (capacity) The lower more users of service, by reducing the complexity of login service, and reduce single request and take, can be obviously improved system again Figureofmerit of handling up.Therefore, in one embodiment of this specification, described server can be believed with the login of local cache user Breath, as log in every time the identification marking of user, the device identification of institute's logging device, session identification, whether login successfully, log in Time etc..These log-on messages can be stored in server buffer data, and single database, table etc. can also be set to hold Longization.After the logging request for the user that client is sent is obtained, the login banners such as user+equipment can be combined to inquire about service Whether device has the session do not failed, if so, can then return to the mark for the session that last time do not fail, realizes again to can The use of words resource, the repeated authentication being greatly reduced in login service, mandate, the steps such as session are created, be rapidly completed and step on Record operation, reduces register complexity.Specific one embodiment is as shown in Fig. 2 at a kind of login that this specification provides In a kind of embodiment of reason method, methods described can include：

S2：Logging request is obtained, the user's identification mark in the logging request, equipment identification marking, last time step on Record session identification inquiry whether there is effective session service；

S4：If in the presence of, confirm the logging status of user, and using the session identification of the effective session service as The session identification of the session service of the logging request.

If user first logs into client in the present embodiment, then described logging request can include user's identification mark Know, equipment identification marking.Under the non-implement scene first logged into of some users, if client record has the meeting of last login Information is talked about, now the session identification (sessionId) of last login can also be sent to server by the client, therefore Logging request described in some embodiments can also include the session identification of user's last login.It is understood that this theory " last time " described in bright book embodiment can be understood as the last time apart from current time under some implement scenes, generally not Including current login process.For example, user 10:00 after client is using APP1 again switch to APP2 browsed it is 4 small When, because having published APP1 without operation in predetermined period on APP1, disconnection links user with APP1 corresponding servers.Institute After 4 hours stated, i.e., 14:00 moment user needs to log in again when switching to APP1 again, and server-side is corresponding Login service operation is performed to the logging request of user.The logging request that now client is sent can include the knowledge of the user Not Biao Shi " user_1 ", institute's logging device equipment identification marking " IMEI_1 " and the last stepped in the client (above-mentioned 10 when recording APP1:00 moment) session identification " session_1 " that uses.

Certainly, described logging request is verified according to practical business or other process demands based on communication, safety may be used also With including other field informations.Server can be known after the logging request that the client obtained is sent is received according to user Not Biao Shi bonding apparatus identification marking check caching data (can also be other data persistence forms, such as special data Explanation is described for implement scene with data cached in storehouse, tables of data etc., the present embodiment) whether effective session service also be present (session).A kind of mode can be inquired about in the form of user+equipment when being searched here, be applicable in this case Client is first logged into user, and what also no user logged in the client in the logging request that client is sent steps on Information is recorded, as last time login sessions identify.For server-side, for ease of Unify legislation, it is possible to understand that described Last login session identification in logging request is sky.User's identification mark+equipment identification marking is used in the present embodiment, can It is that the login service for belonging to the same equipment of same user's login with current logging request is handled to represent to need to be processed, example Such as search whether the session identification (sessionId) not failed that user used last time and present be present in data cached, can With identified according to user's identification+equipment identification marking searches.

Include user's identification mark " user_1 " in a specific example, such as in the logging request of user, stepped on The equipment identification marking " IMEI_1 " of recording apparatus and the last last time meeting used when logging in APP1 in the client Words mark " session_1 ".Server can be identified according to user's identification and equipment identification marking is same to determine whether The same equipment that user logs in, can specifically be judged according to data cached middle historical log information.If it is determined that it is The same equipment that same subscriber logs in, then it can read in the logging request and be identified with user with the last session of equipment " session_1 ", judge whether the last session mark " session_1 " is effective.Specific judgment mode can be included in The data cached middle inquiry whether there is session identification " session_1 ", if not depositing the session identification, can represent not In the presence of the effective session service of the logging request.If it is present the last session mark " session_1 " can be represented still So be buffered in it is data cached in, belong to effective session service, can now be based on effective session service mark and create pair Answer the session service of this logging request and confirm the logging status of user, wherein the session of the logging request created Business can use session mark of the effective session service mark inquired as the session service of the logging request Know, as can be directly used last session mark " session_1 " as the session service of this logging request sessionId.Certainly, this specification be not excluded in other embodiment to it is described it is data cached in session identification can also have into The setting of one step, such as other checkings or expiration policy.

In a kind of implement scene, the effective session service mark inquired during such as above-mentioned server-side is data cached is such as Used when being user's last login session service mark, then in implement scene as described above, described inquiry it is effective Session service mark can be with identical, as being all " session_1 " with the last login session identification in the logging request.Its In his implement scene, if had in server buffer data according to what user's identification mark and equipment identification marking inquired The session service mark of effect is not the session identification (such as last time login failure) of last login, then the now inquiry is effective Session service mark can differ with the last login session identification in the logging request.

It should be noted that meeting of the session identification using the effective session service as the logging request The session identification of call business, in certain embodiments, the server-side for having business and using of logging request have not expired SessionId, not only include reusing existing sessionId, due to trusting the last authentication vs. authorization logined successfully Journey, it can also include realizing the reuse to the existing effective session all or part resources.Such as the effective meeting In call business, its authentication vs. authorization can handled and in last login success by the way that the login of described reconstruction please The session service asked has used the sessionId of the effective session, the then now session of the logging request of the reconstruction Business need not can again carry out the processing step of authentication vs. authorization.Even, because the session service is still effective, other services Some processing steps such as the storage of side or component, asynchronous process (notice) need not can also repeat to send or processing, realize pair Existing session reuse, reduces systematic function expense during login process.

In another embodiment of this specification, if it is effective to be not logged on request in the data of server-side buffering Call business (such as expired deleted record) or session service have failed (such as judging safety problem be present), then can tie Share family identification marking, equipment identification marking and the last login session identification, from server it is data cached it is middle acquisition most Near log-on message, session service is rebuild to the logging request according to log-on message.Specifically, what this specification provided In another embodiment, methods described can also include：

S6：If the session service that the result of the inquiry includes the logging request has failed, read user and stepped on last time Successful log-on message is recorded, the session service of the logging request is rebuild according to the log-on message, and with the log-on message In session identification of the session identification as the session service of the logging request.

In the present embodiment, handle, can be logined successfully according to uploading for multiple same user, with equipment logging request Log-on message assembling builds the session of this logging request, returns to the sessionId of client logging status, can subtract The step of few repeated authentication and mandate, register is faster completed, significantly reduces the complexity of register.Also, From logging in total amount, reducing average user logging request number can take in the case where throughput of system (capacity) is constant Be engaged in more users, time-consuming so as to reduce single request by reducing the complexity of login service, can be obviously improved system again Handle up figureofmerit and wireless client logins successfully rate.

Above embodiment described can realize inquiry user's identification mark+equipment identification mark by the caching of server Knowledge whether there is effective session, certainly, in other embodiments other log-on messages can also be used to store and verify The whether effective strategies of session.In a specific implementation process, user session can be realized using server buffer Rebuild.The inefficacy mechanism that this can also be set to cache, such as the term of validity (the expired i.e. quilt that sessionId is stored in the buffer Delete) or the terms of validity that use of sessionId it is (expired to fail, it is impossible to use, but can store during reconstructed session In the buffer).This inefficacy mechanism can carry out identical according to specific security and account state consistency, authentication mechanism etc. Setting, to ensure data cached safety so that business normally performs.Specifically, one or more of the offer of this specification In individual embodiment, be also provided with store user log-on message it is data cached, the log-on message includes user's identification In mark, equipment identification marking, caching session identification；And execution includes at least one of following data cached security strategies；

When safety based on the user's identification mark detected triggers message, from described in the data cached middle deletion Record is logined successfully corresponding to user's identification mark；

When safety based on the equipment identification marking detected triggers message, from described in the data cached middle deletion Record is logined successfully corresponding to equipment identification marking；

If it is determined that in the logging request user's identification mark with it is described it is data cached in user's identification identify differ Cause, record is logined successfully corresponding to the user's identification mark from data cached middle delete；

If it is determined that equipment identification marking in the logging request with it is described it is data cached in user's identification mark differ Cause, record is logined successfully corresponding to the equipment identification marking from data cached middle delete；

When detecting that the account status information of user changes, updated accordingly based on the account status information after change It is described it is data cached in log-on message.

In specific implement scene, while operation complexity is reduced, because being testing of trusting that the last time logins successfully Card and licensing process, can be to safety, account verification mechanism in order to reduce the uniformity of security and account status simultaneously Carry out asynchronization guarantee.It, which is mainly handled, can include at least one of following processing procedures：

1st, the message that triggers safely is monitored in asynchronization, to determine it is data cached in had safety problem user, Equipment is kicked out of corresponding record information.；

When the 2nd, detecting that the more exchange device of same user logs in, or being logged in the replacing user of equipment, by what is cached before Record is logined successfully to be kicked out of；

3rd, the change of account status, such as the change of information, release, cancellation etc. are monitored in asynchronization, and account status becomes It is synchronized in time during change in login caching.

It is, of course, also possible to other corresponding security guarantee measures are set, for example, setting the asymmetric encryption of login interface Mechanism, ensure communication process in data can not intercept, and to login interface request endorse, sign test mechanism, ensure interface Data it is anti-tamper, and device identification generated by security mechanism, is stored in the safety zone of client, is prevented from distorting, Ensure global uniqueness of mark etc..

, can be by the data cached of above-mentioned setting, if it is determined that user's identification mark+equipment in one embodiment Session service has failed corresponding to identification marking, then can after the successful log-on message of user's last login is obtained, Methods described can also include：

Judge whether the log-on message is effective, if effectively, being logged in from the data cached middle reading is described with the number of households involved Successful log-on message；

Otherwise, the logging request is transferred into preset normal registering service flow to be handled.

In specific example, if the successful log-on message of last login is effective, server can obtain it is data cached in Log-on message in the ID, equipment token, the last login sessionId that include, fast rebuild session, and can be same When identify user, equipment, the last Successful login record.Otherwise it can require that user comes back to normal login process, lead to Often now user can be returned to login interface, it is necessary to input user name or password, and user has operation to perceive.

The whether effective decision mechanism of described log-on message can be carried out according to the security strategy mechanism in actual scene It is corresponding to set., can be to specifying user to log in the meeting that designated equipment uses in one or more embodiments of this specification Words mark sets Time Validity, in the term of validity, if same subscriber logs in the multiple logging request of identical equipment, steps on Record service can directly be returned to the result of user's logging status, can directly use data cached storage SessionId and corresponding resource carry out service conversation, reduce the performance consumption for rebuilding session storages.Therefore, this explanation It is described to judge whether the log-on message effectively include in the one embodiment for the methods described that book provides：

If it is described it is data cached in it is corresponding with the logging request caching session identification exceed the preset time term of validity, Determine that the log-on message is invalid.

Certainly, in other one or more embodiments of this specification, other can also be set to judge that the log-on message is No effective manner, such as the logging request and the user's identification in the successful log-on message of user's last login Whether mark, equipment identification marking are identical；If it is not the same, then determine that the log-on message is invalid；Or

Based in the logging request user's identification mark, equipment identification marking it is described it is data cached it is middle inquiry whether In the presence of corresponding caching session identification, if in the absence of sky, it is determined that the log-on message is invalid.

In a kind of embodiment, if being full of any one above-mentioned situation, it can determine that the log-on message is invalid. In a specific example, such as according to logging request inquiry understand that the sessionId in logging request has failed, then can be with Obtain the successful log-on message of user's last login.But now, in the successful log-on message of user's last login, although its In sessionId not less than Time Validity, be similarly that same subscriber logs in, but the device identification logged in is inconsistent, then The logging device that user changes is identified, then it is invalid to be now considered as the successful log-on message of user's last login.Further Can obtain other and login successfully information or jump directly to the login interface of normal user name+password and stepped on again Record.

The described preset time term of validity can set different failure machines according to different users, different equipment etc. System.Such as in higher A class users A1, the A2 of level of trust, to the sessionId of the main equipment (token_A1) of the frequent logins of A1 It is 30 days that Time Validity, which can be set, and the Time Validity for setting secondary equipment (token_A11) is 15 days；To the frequent logins of A2 Main equipment (token_A2) sessionId can set Time Validity be 45 days, secondary equipment (token_A22) is set Time Validity is 15 days.For the user B1 that credit level is B classes, then the equipment (token_B1) of B1 logins can be set SessionId Time Validities are 7 days.The data of data cached middle storage can be with " user's identification mark+equipment distinguishing mark The data format of the session identification of+the last Successful login " is stored, and can be provided with special data cell or timing Device or processor judge it is data cached corresponding to logging request in caching session identification whether exceed the preset time term of validity.Such as Fruit exceedes, then can be determined that this log-on message of data cached storage is invalid.

It can be inquired about in this specification one or more embodiment by user+equipment+last login session identification marking With the presence or absence of the session service not failed in the data of existing caching.Please if it is present current log in can quickly be rebuild The session asked, and realize the reuse to already-existing session resource.The present embodiment, same to user, repeatedly stepping on equipment can be optimized Record request, reduces server repeated authentication and the processing step and performance consumption that authorize, faster completes register, significantly The complexity of register is reduced, improves server system capacity and user's sign-in experience.Fig. 3 is one reality of this specification Apply example to same user, with equipment high concurrent login service device request carry out login process optimization after schematic flow sheet, such as 3 In, server-side can set login optimization switch, please in activity or merchandising or other expection high concurrent login services Login optimization switch can be opened by asking in the scene of processing, reduce same user, with the repeated authentication of equipment and authorisation process step, By to user, equipment, the checking for logging in the static informations such as state in the recent period so that service capacity and client login successfully rate aspect It is significantly increased.

This specification also provides a kind of method for processing business based on the foregoing processing for logging in optimization.Fig. 4 is that this specification carries A kind of processing procedure schematic diagram of one application scenarios of method for processing business supplied.In the present embodiment application scenarios, such as Fruit user is not logged in (or may be unaware that oneself is several times published in client) for a long time in client, in being not logged in shape Service request has been initiated under state, has such as carried out service inquiry.It then can now produce the service request for being once not logged in state.Compared to Conventional requirement user is logged in (user has perception) again, and a kind of method for processing business that this specification provides will can be not logged in The service request of state is implicitly logged in by being built into logging request in server background.It is implicit login successfully after can be with The processing of corresponding service request is carried out again.Specifically, Fig. 5 is a kind of method for processing business embodiment that this specification provides Schematic flow sheet, as shown in figure 5, can include：

S20：Service request is obtained, detects the logging status of the service request, the service request includes user's identification Mark, equipment identification marking, session identification；

S40：If the service request is in and is not logged in state, implicit login process is carried out to the service request；

S60：Receive the result of the implicit login process, if logining successfully, by the session identification of logging status and Corresponding business processing side is sent to after the service request combination to carry out logging in rear business processing.

During concrete implementation, as shown in figure 4, can be by API (Application Programming Interface, application programming interface) webmaster setting login blocker, intercept and judge that the business in the state that is not logged in is asked Ask.Login inspection (LoginCheck Interceptor) can be carried out before business processing (Service Invoker).Such as Fruit service request is in and is not logged in, then can rebuild the logging request of the service request, then can be by the logging request It is sent to corresponding login service component and carries out implicit login process.Login successfully rear service request to may be at logging in state, so After service request can be sent to corresponding business service component again and carry out business operation.Implicit login described in the present embodiment The login process that the service request that processing can be understood as being not logged in state to described is carried out, unaware for corresponding user, It can specifically be presented as including need not notify user that the service request is illegal, or notify user first to be logged in, or ejection phase The login interface of pass, message etc..The login attempt of server background can be first carried out, then can be further if logged on success Respond the service request of user.Therefore, methods described can also include：

S80：The request results that the service request logs in rear business processing are received, the request results are returned to accordingly Client.

If described implicit login failure, it can now return to normal login process flow.

After logining successfully, the sessionId of logging status can be returned to API gateway, API gateway can be by described in The sessionId of logging status and the service request reconfigure, are sent to corresponding server, component or other business Processing side etc..

Specific login process process can include the embodiment of login process method described in foregoing any one.Such as The data cached middle successful log-on message of user's last login is obtained, user's identification mark, equipment identification marking can be included, delayed Deposit session identification etc..If the log-on message is effective, described implicit login successfully can confirm that.Certainly, it is other real Apply in example, can successfully confirm described implicitly login successfully (now, if caching if can set and can inquire last login Session identification exceeds the time limit or user, equipment have safety problem, data cached to delete corresponding log-on message in time).Specifically , in the embodiment for the method for processing business that this specification provides, the implicit login process can include：

Verify whether the service request is legal；

If legal, the successful log-on message of user's last login is read, the business is created based on the log-on message The session service of request, confirm the logging status of user, and the business is used as using the session identification in the log-on message The session identification of the session service of request.

In one embodiment, if the successful log-on message of user's last login in data cached be present, it can represent to use Last login successful sessionId in family has not expired, and can reuse session corresponding to the sessionId, and creating business please The logging status asked.In other implement scene examples, such as user identical to login parameters logs in id, equipment static identity (token) sessionId identical logging requests, are finally logged in, legitimate request can be considered as, to the service request of legitimate request Return logs in success after rebuilding session, reduces repeated authentication, the process performance authorized consumption.

Described according to previous embodiment, other more embodiments can also be included, e.g., the log-on message includes user In identification marking, equipment identification marking, caching session identification, and it is configured with including at least one of following data cached safe plans Slightly：

And in other implementations, after the successful log-on message of user's last login is obtained, methods described is also It can include：

Otherwise, the service request is transferred into preset normal registering service flow to be handled.

And described judge whether the log-on message can effectively include：

Compare the service request and user's identification mark, the equipment in the successful log-on message of user's last login Whether identification marking is identical；If it is not the same, then determine that the log-on message is invalid；

Based in the logging request user's identification mark, equipment identification marking it is described it is data cached it is middle inquiry whether In the presence of corresponding caching session identification, if in the absence of sky, it is determined that the log-on message is invalid；

If it is described it is data cached in it is corresponding with the logging request caching session identification exceed the preset term of validity, it is determined that The log-on message is invalid.

Each embodiment in this specification is described by the way of progressive, identical similar portion between each embodiment Divide mutually referring to what each embodiment stressed is the difference with other embodiment.Specifically it is referred to The description of foregoing login process related embodiment, does not do repeat one by one herein.

A kind of login process method that this specification one or more embodiment provides, can be by built in API gateway Blocker is logged in, the service request being not logged in implicitly is logged in.Service request knot is remerged after completing once implicit log in Fruit, by returning to client after combination.One or more embodiments of the offer of this explanation, can be by setting checking a series of The legal and client secure mechanism of parameter, implicit login (fake login) is completed, is normally completed after rebuilding user session Business service, optimization log in efficiency, and above-mentioned session can be completed while service request and is rebuild, user's unaware, not only Same user, the multiple logging request with equipment are greatly optimized, reduces server repeated authentication and the processing step and property that authorize It can consume, faster complete register, login also is realized to the initiation user of the service request implicitly logined successfully Unaware, the service request for being not logged in state are realized at the business that normal logging status is carried out after the login of user's unaware Reason, substantially increases subscription client login service and usage experience.

It is above-mentioned that this specification specific embodiment is described.Other embodiments are in the scope of the appended claims It is interior.In some cases, the action recorded in detail in the claims or step can be come according to different from the order in embodiment Perform and still can realize desired result.In addition, the process described in the accompanying drawings not necessarily require show it is specific suitable Sequence or consecutive order could realize desired result.In some embodiments, multitasking and parallel processing be also can With or be probably favourable.

Based on user's login process method described above, this specification one or more embodiment also provides a kind of login Processing unit.Described device can include the use of system (including the distributed system of this specification embodiment methods described System), software (application), module, component, server, client etc. and combine the necessary device for implementing hardware.Based on same wound New to conceive, the device in one or more embodiments that this specification embodiment provides is as described in the following examples.Due to dress Put that the implementation solved the problems, such as is similar to method, thus the implementation of the specific device of this specification embodiment may refer to it is foregoing The implementation of method, repeat part and repeat no more.Used below, term " unit " or " module " can realize predetermined function Software and/or hardware combination.Although device described by following examples is preferably realized with software, hardware, Or the realization of the combination of software and hardware is also what may and be contemplated.Stepped on specifically, Fig. 6 is one kind that this specification provides The modular structure schematic diagram of processing unit embodiment is recorded, as shown in fig. 6, described device can include：

Active session confirms module 101, can be used for obtaining logging request, according to the user's identification in the logging request Mark, the inquiry of equipment identification marking, last login session identification whether there is effective session service；

First conversation establishing module 102, it can be used for determining effective session service be present according to the logging request When, the session service of the logging request is created, confirms the logging status of user, and by the meeting of the effective session service Session identification of the words mark as the session service of the logging request.

Fig. 7 is a kind of modular structure schematic diagram for login process apparatus embodiment that this specification provides.Described device In another embodiment, if the session service according to corresponding to the session identification that the logging request is inquired about to obtain in logging request It has been failed that, then can read the information that same user logins successfully with equipment the last time, rebuild the session of logging request Business.Therefore, in another embodiment of described device, described device can also include：

Second conversation establishing module 103, it can be used for the session service that the result of the inquiry includes the logging request It has been failed that, then read the successful log-on message of user's last login, the logging request is rebuild according to the log-on message Session service, and the session identification using the session identification in the log-on message as the session service of the logging request.

The data cached of storage user login information can be provided with as described in preceding method, in other embodiments, This is data cached can to include single data storage cell, can also include described device or described device framework in service The caching of device.In one embodiment that this specification provides, described device can include：

Buffer unit 104, can be used for store user log-on message it is data cached, the log-on message includes user In identification marking, equipment identification marking, caching session identification；

Data cached maintenance unit 105, can be used for performing includes at least one of following data cached security strategies；

Further, in the other embodiment of described device, can also include：

Log-on message authentication module 106, it can be used for judging whether the log-on message is effective, if effectively, from described The data cached middle reading log-on message logined successfully with the number of households involved；Otherwise, by the logging request be transferred to it is preset just Normal registering service flow is handled.

Fig. 8 is the modular structure schematic diagram for another login process apparatus embodiment that this specification provides.

The log-on message can be judged accordingly according to the setting such as data processing needs and client secure authentication mechanism Whether effective manner.It is described to judge that described log in is believed in the one or more embodiments for the described device that this specification provides Whether breath can effectively include：

Compare the logging request and user's identification mark, the equipment in the successful log-on message of user's last login Whether identification marking is identical；If it is not the same, then determine that the log-on message is invalid；

In a kind of embodiment, if being full of any one above-mentioned situation, it can determine that the log-on message is invalid.

Need what is illustrated, device described above can also include other embodiment party according to the description of embodiment of the method Formula, concrete implementation mode are referred to the description of related method embodiment, not repeated one by one herein.

A kind of login process apparatus that this specification one or more embodiment provides, can pass through user+equipment+last time Login sessions identification marking, which is inquired about in the data of existing caching, whether there is the session service not failed.If it is present can be with The session of current logging request is quickly rebuild, and realizes the reuse to already-existing session resource.The present embodiment, it can optimize same User, the multiple logging request with equipment, server repeated authentication and the processing step and performance consumption that authorize are reduced, more rapidly Completion register, significantly reduce the complexity of register, improve server system capacity and user's sign-in experience.

Likewise, based on user's login process method described above, this specification one or more embodiment also provides One kind business processing device.Described device can include the use of this specification embodiment methods described system (including Distributed system), software (application), module, component, server, client etc. and the device for combining necessary implementation hardware.Base Device such as the following examples institute in one or more embodiments that same innovation thinking, this specification embodiment provide State.It is similar to method to solve the implementation of problem due to device, therefore the implementation of the specific device of this specification embodiment can Referring to the implementation of preceding method, to repeat part and repeat no more.Specifically, Fig. 9 is a kind of business processing that this specification provides The modular structure schematic diagram of device embodiment, as shown in figure 9, described device can include：

Business intercepts detection module 201, can be used for obtaining service request, detects the logging status of the service request, The service request includes user's identification mark, equipment identification marking, session identification；

Login process module 202, it can be used for if it is determined that the service request, which is in, is not logged in state, then to the business Request carries out implicit login process；

Work flow module 203, it can be used for the result for receiving the implicit login process, if logining successfully, by Corresponding business processing side is sent to after the session identification of logging status and service request combination log at rear business Reason.

During concrete implementation, as shown in figure 4, can be by API (Application Programming Interface, application programming interface) webmaster setting login blocker, intercept and judge in state is not logged in, then to weigh The logging request of the service request is newly built, then the logging request can be sent to corresponding login service component progress hidden Formula login process.Implicit login process described in the present embodiment is referred to described in preceding method embodiment.Can first it be taken The implicit login attempt on business device backstage, can be further responsive to the service request of user if implicitly logined successfully.Therefore, Described device can also include：

Service request respond module 204, it can be used for receiving the request results that the service request logs in rear business processing, The request results are returned into corresponding client.

Specific login process process can include the embodiment of login process method described in foregoing any one.Such as The data cached middle successful log-on message of user's last login is obtained, user's identification mark, equipment identification marking can be included, delayed Deposit session identification etc..If the log-on message is effective, described implicit login successfully can confirm that.Certainly, it is other real Apply in example, can successfully confirm described implicitly login successfully (now, if caching if can set and can inquire last login Session identification exceeds the time limit or user, equipment have safety problem, data cached to delete corresponding log-on message in time).Specifically , in the embodiment for the business processing device that this specification provides, the implicit login process can include：

Verify whether the service request is legal；

Buffer unit 205, can be used for store user log-on message it is data cached, the log-on message includes user In identification marking, equipment identification marking, caching session identification；

Data cached maintenance unit 206, can be used for performing includes at least one of following data cached security strategies；

Further, in the other embodiment of described device, can also include：

Log-on message authentication module 207, it can be used for judging whether the log-on message is effective, if effectively, from described The data cached middle reading log-on message logined successfully with the number of households involved；Otherwise, by the logging request be transferred to it is preset just Normal registering service flow is handled.

Figure 10 is the modular structure schematic diagram for another business processing device embodiment that this specification provides.

It is similar to the processing of foregoing method for processing business to implement the implementation of its solution problem by upper said apparatus, therefore This specification one or more embodiment is specifically implemented to may refer to the implementation of foregoing method for processing business, repeats part no longer Repeat.

A kind of login process apparatus that this specification one or more embodiment provides, can be by built in API gateway Blocker is logged in, the service request being not logged in implicitly is logged in.Service request knot is remerged after completing once implicit log in Fruit, by returning to client after combination.One or more embodiments of the offer of this specification, a system can be verified by setting The legal and client secure mechanism of row parameter, complete implicitly to log in (fake login), it is normal complete after reconstruction user session Into business service, optimization logs in efficiency, and above-mentioned session can be completed while service request and is rebuild, user's unaware, no Only greatly optimize same user, the multiple logging request with equipment, reduce server repeated authentication and the processing step authorized and Performance consumption, register is faster completed, the also initiation user realization to the service request implicitly logined successfully is stepped on Unaware is recorded, the service request for being not logged in state realizes the business that normal logging status is carried out after the login of user's unaware Processing, substantially increases subscription client login service and usage experience.

Above-mentioned the user's login process method or device that this specification embodiment provides can be in a computer by processors Corresponding programmed instruction is performed to realize, is such as realized using the c++ language of windows operating systems in server end, or other Such as realized using android, iOS system programming language in server system terminal, and including based on quantum calculation Processing logic realization of machine etc..In a kind of another embodiment for login process apparatus that this specification provides, place can be included Device and the memory for storing processor-executable instruction are managed, is realized described in the computing device during instruction：

Likewise, in a kind of another embodiment for business processing device that this specification provides, processor can be included And for storing the memory of processor-executable instruction, realized described in the computing device during instruction：

Method or apparatus described above can be used in the server of a variety of high concurrent logging request processing, to use Family, effectively optimized with the multiple login service request processing flow in the equipment short time, maximize ensure security and While service regulation uniformity, Consumer's Experience is taken into account well and logins successfully rate, reduce the time-consuming of client logging request, And the performance loss for reducing and reusing the service for checking credentials, create session, so as to the concurrent capacity for the service of improving.Specifically, this Specification provides a kind of login process server, as shown in figure 11, can include at least one processor and user's storage The memory of device executable instruction is managed, is realized described in the computing device during instruction：

Likewise, this specification provides a kind of Service Process Server, as shown in figure 12, at least one processing can be included Device and user store the memory of processor-executable instruction, are realized described in the computing device during instruction：

It should be noted that specification device described above or server may be used also according to the description of related method embodiment To be referred to the description of embodiment of the method including other embodiments, concrete implementation mode, not repeat one by one herein. Each embodiment in this specification is described by the way of progressive, the identical mutual coherent in similar part between each embodiment See, what each embodiment stressed is the difference with other embodiment.It is real especially for hardware+program class For applying example, because it is substantially similar to embodiment of the method, so description is fairly simple, related part is referring to embodiment of the method Part explanation.

It is above-mentioned that this specification specific embodiment is described.Other embodiments are in the scope of the appended claims It is interior.In some cases, the action recorded in detail in the claims or step can be come according to different from the order in embodiment Perform and still can realize desired result.In addition, the process described in the accompanying drawings not necessarily require show it is specific suitable Sequence or consecutive order could realize desired result.In some embodiments, multitasking and parallel processing be also can With or be probably favourable.Dotted portion in this specification accompanying drawing can be represented in other method or apparatus embodiments In, can be with increased processing step or modular unit.

A kind of login process and server of this specification one or more embodiment offer, business processing device and service Device, it is possible to reduce server repeated authentication and the processing step authorized, reduce server resource consumption, complete to log in behaviour faster Make, improve user's sign-in experience of server system capacity and client-side.

Although mentioned in specification embodiment content described in logging request comprising user+equipment mark Format Type, Using the data persistence mode of caching, the whether effective judgment modes of sessionId, data cached inefficacy mechanism definition, Data/definition of the interception of service request, response or the like, acquisition, interaction, calculating, judgements etc. describe, still, this specification Embodiment is not limited to meet industry communication standard, standard computer data processing and storage rule or this specification Situation described by one or more embodiments.Some professional standards or the implementation described using self-defined mode or embodiment On the basis of embodiment amended slightly can also realize above-described embodiment it is identical, it is equivalent or it is close or deformation after it is anticipated that Implementation result.Using the data acquisition after these modifications or deformation, storage, judgement, the acquisition such as processing mode embodiment, still So it may belong within the scope of the optional embodiment of this specification embodiment.

It is above-mentioned that this specification specific embodiment is described.Other embodiments are in the scope of the appended claims It is interior.In some cases, the action recorded in detail in the claims or step can be come according to different from the order in embodiment Perform and still can realize desired result.In addition, the process described in the accompanying drawings not necessarily require show it is specific suitable Sequence or consecutive order could realize desired result.In some embodiments, multitasking and parallel processing be also can With or be probably favourable

In the 1990s, the improvement for a technology can clearly distinguish be on hardware improvement (for example, Improvement to circuit structures such as diode, transistor, switches) or software on improvement (improvement for method flow).So And as the development of technology, the improvement of current many method flows can be considered as directly improving for hardware circuit. Designer nearly all obtains corresponding hardware circuit by the way that improved method flow is programmed into hardware circuit.Cause This, it cannot be said that the improvement of a method flow cannot be realized with hardware entities module.For example, PLD (Programmable Logic Device, PLD) (such as field programmable gate array (Field Programmable Gate Array, FPGA)) it is exactly such a integrated circuit, its logic function is determined by user to device programming.By designer Voluntarily programming comes a digital display circuit " integrated " on a piece of PLD, without asking chip maker to design and make Special IC chip.Moreover, nowadays, substitution manually makes IC chip, this programming is also used instead mostly " patrols Volume compiler (logic compiler) " software realizes that software compiler used is similar when it writes with program development, And the source code before compiling also write by handy specific programming language, this is referred to as hardware description language (Hardware Description Language, HDL), and HDL is also not only a kind of, but have many kinds, such as ABEL (Advanced Boolean Expression Language)、AHDL(Altera Hardware Description Language)、Confluence、CUPL(Cornell University Programming Language)、HDCal、JHDL (Java Hardware Description Language)、Lava、Lola、MyHDL、PALASM、RHDL(Ruby Hardware Description Language) etc., VHDL (Very-High-Speed are most generally used at present Integrated Circuit Hardware Description Language) and Verilog.Those skilled in the art also should This understands, it is only necessary to method flow slightly programming in logic and is programmed into integrated circuit with above-mentioned several hardware description languages, Can is readily available the hardware circuit for realizing the logical method flow.

Controller can be implemented in any suitable manner, for example, controller can take such as microprocessor or processing Device and storage can by the computer of the computer readable program code (such as software or firmware) of (micro-) computing device Read medium, gate, switch, application specific integrated circuit (Application Specific Integrated Circuit, ASIC), the form of programmable logic controller (PLC) and embedded microcontroller, the example of controller include but is not limited to following microcontroller Device：ARC 625D, Atmel AT91SAM, Microchip PIC18F26K20 and Silicone Labs C8051F320, are deposited Memory controller is also implemented as a part for the control logic of memory.It is also known in the art that except with Pure computer readable program code mode realized beyond controller, completely can be by the way that method and step is carried out into programming in logic to make Controller is obtained in the form of gate, switch, application specific integrated circuit, programmable logic controller (PLC) and embedded microcontroller etc. to come in fact Existing identical function.Therefore this controller is considered a kind of hardware component, and various for realizing to including in it The device of function can also be considered as the structure in hardware component.Or even, can be by for realizing that the device of various functions regards For that not only can be the software module of implementation method but also can be the structure in hardware component.

System, device, module or the unit that above-described embodiment illustrates, it can specifically be realized by computer chip or entity, Or realized by the product with certain function.One kind typically realizes that equipment is computer.Specifically, computer for example may be used Think personal computer, laptop computer, vehicle-mounted human-computer interaction device, cell phone, camera phone, smart phone, individual Digital assistants, media player, navigation equipment, electronic mail equipment, game console, tablet PC, wearable device or The combination of any equipment in these equipment of person.

Although this specification one or more embodiment provides the method operating procedure as described in embodiment or flow chart, But more or less operating procedures can be included based on the conventional means either without creativeness.The step of being enumerated in embodiment Order is only a kind of mode in numerous step execution sequences, does not represent unique execution sequence.Device in practice or When end product performs, can according to embodiment either method shown in the drawings order perform or it is parallel perform it is (such as parallel The environment of processor or multiple threads, even distributed data processing environment).Term " comprising ", "comprising" or its Any other variant is intended to including for nonexcludability so that process, method, product including a series of elements or Equipment not only includes those key elements, but also the other element including being not expressly set out, or also include for this process, Method, product or the intrinsic key element of equipment.In the absence of more restrictions, it is not precluded from including the key element Other identical or equivalent elements in process, method, product or equipment also be present.

For convenience of description, it is divided into various modules during description apparatus above with function to describe respectively.Certainly, this is being implemented The function of each module can be realized in same or multiple softwares and/or hardware during specification one or more, can also The module for realizing same function is realized by the combination of multiple submodule or subelement etc..Device embodiment described above is only It is only illustrative, for example, the division of the unit, only a kind of division of logic function, can have in addition when actually realizing Dividing mode, such as multiple units or component can combine or be desirably integrated into another system, or some features can be with Ignore, or do not perform.Another, shown or discussed mutual coupling or direct-coupling or communication connection can be logical Some interfaces are crossed, the INDIRECT COUPLING or communication connection of device or unit, can be electrical, mechanical or other forms.

It is also known in the art that in addition to realizing controller in a manner of pure computer readable program code, it is complete Entirely can by by method and step carry out programming in logic come controller with gate, switch, application specific integrated circuit, may be programmed The form of logic controller and embedded microcontroller etc. realizes identical function.Therefore this controller is considered one kind Hardware component, and what its inside was included is used to realize that the device of various functions can also to be considered as the structure in hardware component.Or Person even, not only can be able to will be the software module of implementation method but also can be hardware for realizing that the device of various functions is considered as Structure in part.

The present invention is the flow with reference to method according to embodiments of the present invention, equipment (system) and computer program product Figure and/or block diagram describe.It should be understood that can be by every first-class in computer program instructions implementation process figure and/or block diagram Journey and/or the flow in square frame and flow chart and/or block diagram and/or the combination of square frame.These computer programs can be provided The processors of all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing devices is instructed to produce A raw machine so that produced by the instruction of computer or the computing device of other programmable data processing devices for real The device for the function of being specified in present one flow of flow chart or one square frame of multiple flows and/or block diagram or multiple square frames.

These computer program instructions, which may be alternatively stored in, can guide computer or other programmable data processing devices with spy Determine in the computer-readable memory that mode works so that the instruction being stored in the computer-readable memory, which produces, to be included referring to Make the manufacture of device, the command device realize in one flow of flow chart or multiple flows and/or one square frame of block diagram or The function of being specified in multiple square frames.

These computer program instructions can be also loaded into computer or other programmable data processing devices so that counted Series of operation steps is performed on calculation machine or other programmable devices to produce computer implemented processing, so as in computer or The instruction performed on other programmable devices is provided for realizing in one flow of flow chart or multiple flows and/or block diagram one The step of function of being specified in individual square frame or multiple square frames.

In a typical configuration, computing device includes one or more processors (CPU), input/output interface, net Network interface and internal memory.

Internal memory may include computer-readable medium in volatile memory, random access memory (RAM) and/or The forms such as Nonvolatile memory, such as read-only storage (ROM) or flash memory (flash RAM).Internal memory is computer-readable medium Example.

Computer-readable medium includes permanent and non-permanent, removable and non-removable media can be by any method Or technology come realize information store.Information can be computer-readable instruction, data structure, the module of program or other data. The example of the storage medium of computer includes, but are not limited to phase transition internal memory (PRAM), static RAM (SRAM), moved State random access memory (DRAM), other kinds of random access memory (RAM), read-only storage (ROM), electric erasable Programmable read only memory (EEPROM), fast flash memory bank or other memory techniques, read-only optical disc read-only storage (CD-ROM), Digital versatile disc (DVD) or other optical storages, magnetic cassette tape, the storage of tape magnetic rigid disk, graphene stores or other Magnetic storage apparatus or any other non-transmission medium, the information that can be accessed by a computing device available for storage.According to herein In define, computer-readable medium does not include the data of temporary computer readable media (transitory media), such as modulation Signal and carrier wave.

It will be understood by those skilled in the art that this specification one or more embodiment can be provided as method, system or calculating Machine program product.Therefore, this specification one or more embodiment can use complete hardware embodiment, complete software embodiment or With reference to the form of the embodiment in terms of software and hardware.Moreover, this specification one or more embodiment can use at one or It is multiple wherein include computer usable program code computer-usable storage medium (include but is not limited to magnetic disk storage, CD-ROM, optical memory etc.) on the form of computer program product implemented.

This specification one or more embodiment can computer executable instructions it is general on Described in hereafter, such as program module.Usually, program module includes performing particular task or realizes particular abstract data type Routine, program, object, component, data structure etc..This this specification one can also be put into practice in a distributed computing environment Or multiple embodiments, in these DCEs, by being held by communication network and connected remote processing devices Row task.In a distributed computing environment, program module can be located at the local and remote computer including storage device In storage medium.

Each embodiment in this specification is described by the way of progressive, identical similar portion between each embodiment Divide mutually referring to what each embodiment stressed is the difference with other embodiment.It is real especially for system For applying example, because it is substantially similar to embodiment of the method, so description is fairly simple, related part is referring to embodiment of the method Part explanation.In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", The description of " specific example " or " some examples " etc. means to combine specific features, structure, material that the embodiment or example describe Or feature is contained at least one embodiment or example of this specification.In this manual, to the signal of above-mentioned term Property statement be necessarily directed to identical embodiment or example.Moreover, specific features, structure, material or the feature of description It can be combined in an appropriate manner in any one or more embodiments or example.In addition, in the case of not conflicting, this The technical staff in field can be by the different embodiments or example described in this specification and the spy of different embodiments or example Sign is combined and combined.

The embodiment of this specification one or more embodiment is the foregoing is only, is not limited to book explanation Book one or more embodiment.To those skilled in the art, this specification one or more embodiment can have various Change and change.All any modification, equivalent substitution and improvements made within spirit herein and principle etc., all should be included Within right.

Claims

1. a kind of login process method, methods described include：

Obtain logging request, the user's identification mark in the logging request, equipment identification marking, last login session mark Know inquiry and whether there is effective session service；

If in the presence of, the logging status of confirmation user, and the session identification of the effective session service is stepped on as described in Record the session identification of the session service of request.

A kind of 2. login process method as claimed in claim 1, if the result of the inquiry includes the meeting of the logging request Call business has failed, then reads the successful log-on message of user's last login, and rebuilding the login according to the log-on message please The session service asked, and the session mark of the session service of the logging request is used as using the session identification in the log-on message Know.

3. a kind of login process method as claimed in claim 1 or 2, in addition to：

The data cached of the log-on message of storage user is provided with, the log-on message includes user's identification mark, equipment identification In mark, caching session identification；And execution includes at least one of following data cached security strategies；

When safety based on the user's identification mark detected triggers message, from the data cached middle deletion user Record is logined successfully corresponding to identification marking；

When safety based on the equipment identification marking detected triggers message, from the data cached middle deletion equipment Record is logined successfully corresponding to identification marking；

If it is determined that in the logging request user's identification mark with it is described it is data cached in user's identification identify it is inconsistent, from Data cached middle delete logins successfully record corresponding to the user's identification mark；

If it is determined that equipment identification marking in the logging request with it is described it is data cached in user's identification mark it is inconsistent, from Data cached middle delete logins successfully record corresponding to the equipment identification marking；

When detecting that the account status information of user changes, based on described in the account status information after change accordingly renewal Log-on message in data cached.

4. a kind of login process method as claimed in claim 3, if the session service has failed, obtaining the user After the successful log-on message of last login, methods described also includes：

Judge whether the log-on message is effective, if effectively, being logined successfully from the data cached middle reading is described with the number of households involved Log-on message；

5. a kind of login process method as described in claim 4, described to judge whether the log-on message effectively includes：

Compare the logging request to identify with user's identification mark, the equipment in the successful log-on message of user's last login Identify whether identical；If it is not the same, then determine that the log-on message is invalid；

It whether there is based on the user's identification mark in the logging request, equipment identification marking in the data cached middle inquiry Corresponding caching session identification, if in the absence of sky, it is determined that the log-on message is invalid；

If it is described it is data cached in it is corresponding with the logging request caching session identification exceed the preset time term of validity, it is determined that The log-on message is invalid.

6. a kind of method for processing business, methods described include：

Service request is obtained, detects the logging status of the service request, the service request includes user's identification mark, equipment Identification marking, session identification；

The result of the implicit login process is received, if logining successfully, by the session identification of logging status and the business Corresponding business processing side is sent to after request combination to carry out logging in rear business processing.

7. a kind of method for processing business as claimed in claim 6, methods described also include：

The request results that the service request logs in rear business processing are received, the request results are returned into corresponding client End.

8. a kind of method for processing business as claimed in claims 6 or 7, the implicit login process includes：

Verify whether the service request is legal；

If legal, the successful log-on message of user's last login is read, the service request is built based on the log-on message Session service, confirm the logging status of user, and the service request is used as using the session identification in the log-on message Session service session identification.

9. a kind of method for processing business as claimed in claim 8, the log-on message be stored in it is data cached in, the login Information is included in user's identification mark, equipment identification marking, caching session identification, and is configured with and delays including at least one of following Deposit data security strategy：

10. a kind of method for processing business as claimed in claim 9, obtaining the successful log-on message of user's last login Afterwards, methods described also includes：

11. a kind of method for processing business as claimed in claim 10, described to judge whether the log-on message effectively includes：

Compare the service request to identify with user's identification mark, the equipment in the successful log-on message of user's last login Identify whether identical；If it is not the same, then determine that the log-on message is invalid；

If it is described it is data cached in it is corresponding with the logging request caching session identification exceed the preset term of validity, it is determined that it is described Log-on message is invalid.

12. a kind of login process apparatus, described device include：

Active session confirms module, and for obtaining logging request, user's identification mark, equipment in the logging request are known Not Biao Shi, last login session identification inquiry whether there is effective session service；

First conversation establishing module, for when determining to have effective session service according to the logging request, described in establishment The session service of logging request, confirms the logging status of user, and using the session identification of the effective session service as The session identification of the session service of the logging request.

13. a kind of login process apparatus as claimed in claim 12, described device also include：

Second conversation establishing module, the session service that the result for the inquiry includes the logging request have failed, then read The successful log-on message of user's last login is taken, the session service of the logging request is rebuild according to the log-on message, And the session identification using the session identification in the log-on message as the session service of the logging request.

14. a kind of login process apparatus as described in claim 12 or 13, described device include：

Buffer unit, for store user log-on message it is data cached, the log-on message include user's identification mark, set In standby identification marking, caching session identification；

Data cached maintenance unit, include at least one of following data cached security strategies for performing；

15. a kind of login process apparatus as claimed in claim 14, described device also include：

Log-on message authentication module, for judging whether the log-on message is effective, if effectively, from the data cached middle reading Take the log-on message logined successfully with the number of households involved；Otherwise, the logging request is transferred to preset normal registering service stream Cheng Jinhang processing.

16. a kind of login process apparatus as claimed in claim 15, described to judge whether the log-on message effectively includes：

17. a kind of business processing device, described device include：

Business intercepts detection module, for obtaining service request, detects the logging status of the service request, the service request Including user's identification mark, equipment identification marking, session identification；

Login process module, for if it is determined that the service request in state is not logged in, is then carried out hidden to the service request Formula login process；

Work flow module, for receiving the result of the implicit login process, if logining successfully, by the meeting of logging status Corresponding business processing side is sent to after words mark and service request combination to carry out logging in rear business processing.

18. a kind of business processing device as claimed in claim 17, described device also include：

Service request respond module, the request results of rear business processing are logged in for receiving the service request, by the request As a result corresponding client is returned to.

19. a kind of business processing device as described in claim 17 or 18, the implicit login process includes：

Verify whether the service request is legal；

If legal, the successful log-on message of user's last login is read, the service request is created based on the log-on message Session service, confirm the logging status of user, and the service request is used as using the session identification in the log-on message Session service session identification.

20. a kind of business processing device as claimed in claim 19, described device include：

21. a kind of business processing device as claimed in claim 20, described device also include：

22. a kind of business processing device as claimed in claim 21, described to judge whether the log-on message effectively includes：

23. a kind of login process apparatus, including processor and the memory for storing processor-executable instruction, the place Reason device is realized when performing the instruction：

If the session service that the result of the inquiry includes the logging request has failed, it is successful to read user's last login Log-on message, the session service of the logging request is rebuild according to the log-on message, and with the session in the log-on message Identify the session identification of the session service as the logging request.

24. a kind of business processing device, including processor and the memory for storing processor-executable instruction, the place Reason device is realized when performing the instruction：

The result of the implicit login process is received, if logining successfully, by the session identification of logging status and the business Corresponding business processing side is sent to after request combination to carry out logging in rear business processing；

25. a kind of server, including at least one processor and user store the memory of processor-executable instruction, described Realized described in computing device during instruction：

The memory of processor-executable instruction is stored including at least one processor and user, described in the computing device Realized during instruction：

26. a kind of server, including at least one processor and user store the memory of processor-executable instruction, described Realized described in computing device during instruction：