CN107809427A - Page push method, apparatus, system and information acquisition method, device - Google Patents
Page push method, apparatus, system and information acquisition method, device Download PDFInfo
- Publication number
- CN107809427A CN107809427A CN201711020089.8A CN201711020089A CN107809427A CN 107809427 A CN107809427 A CN 107809427A CN 201711020089 A CN201711020089 A CN 201711020089A CN 107809427 A CN107809427 A CN 107809427A
- Authority
- CN
- China
- Prior art keywords
- terminal
- network access
- proxy server
- information
- sent
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/953—Querying, e.g. by the use of web search engines
- G06F16/9535—Search customisation based on user profiles and personalisation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/55—Push-based network services
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Databases & Information Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Data Mining & Analysis (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Information Transfer Between Computers (AREA)
Abstract
A kind of page push method, apparatus, system and information acquisition method provided in an embodiment of the present invention, device, are related to data communication field.Page push method includes the second network access request that address information of the proxy server receiving terminal based on proxy server is sent;Proxy server is based on second network access request and returns to intermediate page to institute's terminal, so that terminal obtains the identification information of terminal based on intermediate page, after the second network access request sent by address information of the proxy server receiving terminal based on proxy server, the mode of intermediate page is returned to terminal based on the second network access request, so that terminal obtains the identification information of the terminal based on the intermediate page, to realize identification terminal, in order to subsequently to the Portal pages corresponding to the terminal push of identification, and then carry out different access privilege controls, improve network security, use range is wider, autgmentability is stronger, System Hardware Environment requires lower.
Description
Technical field
The present invention relates to data communication field, in particular to a kind of page push method, apparatus, system and information
Acquisition methods, device.
Background technology
With the rapid development of computer and Internet technology, the unit such as government, bank, enterprise is all deployed with wireless or had
Gauze network uses for employee and visitor, considers that above-mentioned wireless network is not complete open network for factors such as securities,
It is required for being authenticated to surf the Net after authorizing, access authentication authorization mainly there are two kinds at present, and one kind is enterprise-level
802.1x encryption certification, another kind are the Portal certifications of semi open model, the former must disposably input effective user name and
Password is authenticated, and can not be interacted with user, and the latter passes through the Portal pages and user mutual, it is possible to achieve cell-phone number obtains
Take short message mode certification, wechat certification, two-dimentional code authentication etc..
For interior employee's generally use enterprise-level 802.1x certifications, employee inputs in advance after connecting Wi-Fi or wireline interface
The user name and password for first distributing to individual are authenticated authorizing and surfed the Net.Recognize for visitor's generally use semi open model Portal
Card, any third party website is accessed by mobile phone browser after visitor connects Wi-Fi or wireline interface, before Certificate Authority and (led to
Often allow to access enterprise portal) the Portal pages can be all redirected to by system, short message certification, micro- is obtained by input handset number
Believe certification, Quick Response Code Certificate Authority and online.Often only PC is allowed to access network for enterprise's office scene, without allowing to move
Equipment accesses, now with regard to needing to carry out control of authority according to different end messages.
The existing solution for obtaining end message is to obtain terminal by the User-Agent attributes in http request
Information, and then the accurate dispensing of the page is pushed when the end message by getting is to carry out customer access network, exist following
Deficiency:The information gathering of compatible all terminals can not be accomplished in theory;The User-Agent parameters in http request can be changed,
The push page can not then be accomplished precisely to launch, and can cheat certificate server to obtain wrongful access rights, to net
Network safety belt carrys out hidden danger.
The content of the invention
It is an object of the invention to provide a kind of page push method, apparatus, system and information acquisition method, device, with
Improve above mentioned problem.To achieve these goals, the technical scheme that the present invention takes is as follows:
In a first aspect, the embodiments of the invention provide a kind of page push method, methods described includes:Proxy server connects
Receive the second network access request that address information of the terminal based on the proxy server is sent;The proxy server is based on institute
State the second network access request and return to intermediate page to the terminal, so that the terminal is based on described in intermediate page acquisition
The identification information of terminal.
Second aspect, the embodiments of the invention provide a kind of information acquisition method, methods described connects including terminal to network
Enter equipment and send first network access request;The terminal is received the network access equipment and accessed based on the first network
Request determines the address information of the proxy server sent when the terminal is unauthorized terminal;The terminal is based on the agency
The address information of server sends the second network access request to the proxy server;The terminal is based on the agency service
Device obtains the identification information of the terminal based on the intermediate page that second network access request is sent.
The third aspect, the embodiments of the invention provide a kind of page push method, methods described includes:Portal server
The identification information for the terminal that address information of the receiving terminal based on Portal server is sent;The Portal server to
The terminal sends the Portal page corresponding with the identification information of the terminal.
Fourth aspect, the embodiments of the invention provide a kind of page push method, methods described includes network access equipment
When it is unauthorized terminal that the first network access request initiated based on the terminal received, which determines the terminal, to the terminal
Send the address information of proxy server;The proxy server receives address letter of the terminal based on the proxy server
Cease the second network access request sent;The proxy server is returned based on second network access request to the terminal
Intermediate page;Portal server receives the terminal that address information of the terminal based on the Portal server is sent
Identification information, wherein, the identification information of the terminal is the information that the terminal is obtained based on the intermediate page, described
The address information of Portal server is the information that the network access equipment is sent to the terminal;The Portal server
The Portal page corresponding with the identification information of the terminal is sent to the terminal.
5th aspect, the embodiments of the invention provide a kind of page push device, runs on proxy server, described device
Including:First receiving unit and returning unit.First receiving unit, for address of the receiving terminal based on the proxy server
The second network access request that information is sent.Returning unit, in being returned for second network access request to the terminal
Between the page so that the terminal obtains the identification information of the terminal based on the intermediate page.
6th aspect, the embodiments of the invention provide a kind of information acquisition device, runs on terminal, and described device includes:
First transmitting element, the second receiving unit, the second transmitting element and acquiring unit.First transmitting element, for network insertion
Equipment sends first network access request.Second receiving unit, for receiving the network access equipment based on described first
Network access request determines the address information of the proxy server sent when the terminal is unauthorized terminal.Second sends list
Member, the second network access request is sent to the proxy server for the address information based on the proxy server.Obtain
Unit, for obtaining the terminal based on the intermediate page that second network access request is sent based on the proxy server
Identification information.
7th aspect, the embodiments of the invention provide a kind of page push device, runs on Portal server, the dress
Put including:3rd receiving unit and the 3rd transmitting element.3rd receiving unit, for receiving terminal based on Portal server
The identification information for the terminal that address information is sent.3rd transmitting element, for being sent and the terminal to the terminal
The Portal pages corresponding to identification information.
Eighth aspect, the embodiments of the invention provide a kind of page push system, the system include network access equipment,
Proxy server and Portal server.Network access equipment, for being visited in the first network initiated based on the terminal received
When asking that it is unauthorized terminal to ask the determination terminal, the address information of proxy server is sent to the terminal.The agency
Server, the second network access request sent for receiving address information of the terminal based on the proxy server.Institute
Proxy server is stated, is additionally operable to return to intermediate page to the terminal based on second network access request.Portal is serviced
Device, the identification information of the terminal sent for receiving address information of the terminal based on the Portal server, its
In, the identification information of the terminal is the information that the terminal is obtained based on the intermediate page, the Portal server
Address information is the information that the network access equipment is sent to the terminal.The Portal server, it is additionally operable to described
Terminal sends the Portal page corresponding with the identification information of the terminal.
A kind of page push method, apparatus, system and information acquisition method provided in an embodiment of the present invention, device, network
Access device when it is unauthorized terminal that the first network access request initiated based on the terminal that receives, which determines the terminal, to
The terminal sends the address information of proxy server;The proxy server receives the terminal and is based on the proxy server
Address information send the second network access request after, then based on second network access request to the terminal return in
Between the page;Portal server receives the terminal that address information of the terminal based on the Portal server is sent
After identification information, then the Portal page corresponding with the identification information of the terminal is sent to the terminal, wherein, the terminal
Identification information be the information that is obtained based on the intermediate page of the terminal, the address information of the Portal server is institute
The information that network access equipment is sent to the terminal is stated, intermediate page is returned to by proxy server, so that the terminal base
Obtain the identification information of the terminal in intermediate page and be sent to the mode of Portal server so that Portal server to
Terminal sends the Portal page corresponding with the identification information of the terminal, to realize identification terminal and to the terminal push of identification
The corresponding Portal pages, and then different access privilege controls is carried out, network security is improved, use range is wider, autgmentability
Stronger, System Hardware Environment requires lower.
Other features and advantages of the present invention will illustrate in subsequent specification, also, partly become from specification
It is clear that or by implementing understanding of the embodiment of the present invention.The purpose of the present invention and other advantages can be by saying what is write
Specifically noted structure is realized and obtained in bright book, claims and accompanying drawing.
Brief description of the drawings
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below by embodiment it is required use it is attached
Figure is briefly described, it will be appreciated that the following drawings illustrate only certain embodiments of the present invention, therefore be not construed as pair
The restriction of scope, for those of ordinary skill in the art, on the premise of not paying creative work, can also be according to this
A little accompanying drawings obtain other related accompanying drawings.
Fig. 1 is the application environment of the embodiment of the present invention;
Fig. 2 is a kind of flow chart of page push method provided in an embodiment of the present invention;
Fig. 3 is the flow chart of information acquisition method provided in an embodiment of the present invention;
Fig. 4 is the flow chart of another page push method provided in an embodiment of the present invention;
Fig. 5 is the timing diagram of page push system provided in an embodiment of the present invention and terminal;
Fig. 6 is a kind of structured flowchart of page push device provided in an embodiment of the present invention;
Fig. 7 is the structured flowchart of information acquisition device provided in an embodiment of the present invention;
Fig. 8 is the structured flowchart of another page push device provided in an embodiment of the present invention.
Embodiment
To make the purpose, technical scheme and advantage of the embodiment of the present invention clearer, below in conjunction with the embodiment of the present invention
In accompanying drawing, the technical scheme in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is
Part of the embodiment of the present invention, rather than whole embodiments.The present invention implementation being generally described and illustrated herein in the accompanying drawings
The component of example can be configured to arrange and design with a variety of.Therefore, the reality of the invention to providing in the accompanying drawings below
The detailed description for applying example is not intended to limit the scope of claimed invention, but is merely representative of the selected implementation of the present invention
Example.Based on the embodiment in the present invention, what those of ordinary skill in the art were obtained under the premise of creative work is not made
Every other embodiment, belongs to the scope of protection of the invention.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi
It is defined, then it further need not be defined and explained in subsequent accompanying drawing in individual accompanying drawing.Meanwhile the present invention's
In description, term " first ", " second " etc. are only used for distinguishing description, and it is not intended that instruction or hint relative importance.
The following each embodiments of the present invention can be applied in environment as shown in Figure 1 unless otherwise instructed, as shown in figure 1,
Terminal 100 is connected by network 200 with page push system 300.The network 200 can be wired or wireless network.It is described
Page push system 300 can include network access equipment 310, proxy server 320 and Portal server 330.Network connects
Enter equipment 310 to communicate to connect with Portal server 330, network access equipment 310 can also be with the communication link of proxy server 310
Connect.In the embodiment of the present invention, terminal 100 and network access equipment 310, proxy server 320 and Portal server 330 can
It is directly connected to by communication network.Terminal 100 and network access equipment 310, proxy server 320 and Portal server 330
Communication connection can be established in Wi-Fi (Wireless Fidelity) network, 2G/3G/4G networks or LAN.
After terminal 100 and network access equipment 310 establish network connection, after the certification by Portal server 330,
Internet could be accessed.Terminal 100 sends first network access request to network access equipment 310.
Network access equipment 310, for determining institute in the first network access request initiated based on the terminal 100 received
When to state terminal 100 be unauthorized terminal, the address information of proxy server 320 is sent to the terminal 100.
The proxy server 320, for receiving address information of the terminal 100 based on the proxy server 320
The second network access request sent.
The proxy server 320, it is additionally operable to return to centre to the terminal 100 based on second network access request
The page.
Portal server 330, for receiving address information of the terminal 100 based on the Portal server 330
The identification information of the terminal 100 sent, wherein, the identification information of the terminal 100 for the terminal 100 be based on it is described in
Between the information that obtains of the page, the address information of the Portal server 330 is sent to described for the network access equipment 310
The information of terminal 100.
The Portal server 330, it is additionally operable to send the identification information pair with the terminal 100 to the terminal 100
The Portal pages answered.
In the embodiment of the present invention, the terminal 100 can be PC (personal computer) computer, tablet personal computer, hand
The terminal devices such as machine, notebook computer, intelligent television, set top box, car-mounted terminal.Client can be installed in terminal 100, should
Client can be browser, such as 360 browsers etc..
Referring to Fig. 2, the embodiments of the invention provide a kind of page push method, methods described can include step S200
With step S210.
Step S200:The second network that address information of the proxy server receiving terminal based on the proxy server is sent
Access request.
Further, the address information of the proxy server is network access equipment based on the terminal received
The first network access request of initiation determines the terminal when being unauthorized terminal, the information sent to the terminal.
The address information of proxy server may be, but not limited to, the IP (Internet for proxy server
Protocol) address.
When visitor is needed by WLAN (Wireless Local Area Networks) or cable access network, in preparation
During net, any third party website is opened by browser, network access equipment receive visitor where terminal initiate first
Network access request, now network access equipment can judge whether the terminal authorized, to the visitor if authorized
The terminal access network at place is let pass, if unauthorized, that is, when to determine the terminal be unauthorized terminal, to terminal transmission
Target is the redirection information of the address information of proxy server, so that address letter of the terminal based on the proxy server
Cease to the proxy server and send the second network access request, be i.e. proxy server receives second network access request.
Step S210:The proxy server is based on second network access request and returns to intermediate page to the terminal
Face, so that the terminal obtains the identification information of the terminal based on the intermediate page.
In a kind of embodiment of the present invention, the proxy server may be, but not limited to, to be serviced for Nginx
Device.After the Nginx servers are redirected to Nginx servers based on terminal, the second network request of transmission is to the terminal
Intermediate page is returned to, so that the terminal obtains the identification information of the terminal based on the intermediate page.The terminal access
The intermediate page, the interface that the intermediate page calls the terminal to provide obtain the identification information of the terminal.In this reality
Apply in example, the intermediate page may be, but not limited to, as the intermediate static page.Specifically, intermediate page is one section
JavaScript code, correspondingly, the interface are navigator.platform interfaces.
A kind of page push method provided in an embodiment of the present invention, the agency is based on by proxy server receiving terminal
After the second network access request that the address information of server is sent, returned based on second network access request to the terminal
The mode of intermediate page is returned, so that the terminal obtains the identification information of the terminal based on the intermediate page, is known with realizing
Other terminal, in order to subsequently to the Portal pages corresponding to the push of the terminal of identification, and then carry out different access privilege controls,
Network security is improved, use range is wider, autgmentability is stronger, System Hardware Environment requires lower.
Referring to Fig. 3, the embodiments of the invention provide a kind of information acquisition method, methods described can include step
S300, step S310, step S320 and step S330.
Step S300:Terminal sends first network access request to network access equipment.
Step S310:The terminal receives the network access equipment and is determining institute based on the first network access request
State the address information of the proxy server sent when terminal is unauthorized terminal.
Step S320:Address information of the terminal based on the proxy server sends second to the proxy server
Network access request.
Step S330:The centre that the terminal is sent based on the proxy server based on second network access request
The page obtains the identification information of the terminal.
Further, receive the proxy server based on step S330, the terminal and be based on second network access
Ask the intermediate page sent;Intermediate page described in the terminal access, the intermediate page call connecing for the terminal offer
Mouth obtains the identification information of the terminal.
The identification information of terminal can include the type of terminal.The type of terminal can include mobile device and non-moving set
It is standby.Such as mobile device can be mobile phone, flat board etc..Non-mobile device can be PC computers.
In the present embodiment, the intermediate page may be, but not limited to, as the intermediate static page.Specifically, it is middle quiet
The state page is one section of JavaScript code, and correspondingly, the interface is navigator.platform interfaces.
A kind of information acquisition method provided in an embodiment of the present invention, terminal send first network to network access equipment and accessed
Request;The network access equipment is received again is determining that the terminal is unauthorized terminal based on the first network access request
When the address information of proxy server that sends;The address information of the proxy server is then based on to the proxy server
Send the second network access request;The intermediate page sent based on the proxy server based on second network access request
Obtain the identification information of the terminal.Use range is wider if whether identification visitor's access terminal is mobile phone, flat board and PC;No
With by third party's hardware device, and artificial modification User-Agent is avoided that, versatility is higher, autgmentability is stronger, system is hard
Part environmental requirement is lower.
Referring to Fig. 4, the embodiments of the invention provide a kind of page push method, methods described can include step S400
With step S410.
Step S400:The terminal that address information of the Portal server receiving terminal based on Portal server is sent
Identification information.
Step S410:The Portal server sends corresponding with the identification information of the terminal to the terminal
The Portal pages.
Further, the identification information of the terminal is the information that the terminal is obtained based on intermediate page;The centre
The page is the second net that proxy server is sent based on address information of the terminal received based on the proxy server
The page that network access request returns to the terminal;The address information of the proxy server is network access equipment based on connecing
The first network access request that the terminal that receives is initiated determines the terminal when be unauthorized terminal, to terminal transmission
Information.
The address information of Portal server may be, but not limited to, the IP (Internet for Portal server
Protocol) address.
The identification information of terminal can include the type of terminal.The type of terminal can include mobile device and non-moving set
It is standby.Such as mobile device can be mobile phone, flat board etc..Non-mobile device can be PC computers.Described in Portal server obtains
The identification information of terminal, the Portal page corresponding with the identification information of the terminal, i.e. Portal clothes are sent to the terminal
Device be engaged according to the identification information such as mobile phone or PC computers of different terminals, returns to the identification information such as mobile phone or PC of different terminals
Each self-corresponding Portal pages of computer.
Further, in order to improve the accurate push of the Portal pages, the identification information of terminal can also include terminal
Operation system information.The operation system information of terminal can be including IOS, Android etc..Portal server is according to the class of terminal
Type and operation system information, the Portal pages corresponding to the type and operation system information of terminal are returned to terminal.I other words when
The type that Portal server gets terminal is mobile phone, when the operation system information of terminal is IOS, to terminal return mobile phone and
The Portal pages corresponding to IOS;This is mobile phone with the type for getting terminal, when the operation system information of terminal is Android,
It is different with the Portal pages corresponding to IOS that mobile phone is returned to terminal.Portal server according to the identification information of different terminals,
The different Portal pages are returned, improve the accurate push of the Portal pages.
In addition, for the ease of terminal access control of authority, Portal server can also by the identification information of terminal with
The characteristic information of terminal is bound and is stored as default binding relationship information.
In the present embodiment, the characteristic information of the terminal can include MAC (the Medium/Media Access of terminal
Control it is) at least one in address and IP (Internet Protocol) address.
After step S410, methods described can also include:
The Portal server, which receives network access equipment and is based on the terminal, is based on the Portal pages to described
The characteristic information for the terminal that the certification request that network access equipment is initiated is sent;
Characteristic information and default binding relationship information of the Portal server based on the terminal, obtain the end
The identification information of the terminal corresponding to the characteristic information at end;
The Portal server returns when it is determined that the identification information of the terminal meets preparatory condition to the terminal
Authentication success message.
When visitor is needed by WLAN or cable access network, when preparation is surfed the Net, if the network that visitor needs to access is certain
Enterprise's office network, only PC computers are allowed to access, preparatory condition can be PC computers, and Portal server is if it is determined that obtain visiting
The identification information of terminal where objective is PC computers, when meeting preparatory condition, is successfully believed to the terminal return authentication where visitor
Breath, so that the terminal where visitor accesses certain enterprise's office network, can access internet;If it is determined that where getting visitor
The identification information of terminal is mobile phone, when being unsatisfactory for preparatory condition, to the terminal return authentication failure information where visitor, is not allowed
Terminal access enterprise office network where visitor.
A kind of page push method provided in an embodiment of the present invention, Portal is based on by Portal server receiving terminal
The identification information for the terminal that the address information of server is sent, the identification information pair with the terminal is sent to the terminal
The mode for the Portal pages answered, to realize the terminal precisely Portal pages corresponding to push, and then carry out different to identification
Access privilege control, improve network security, use range is wider, autgmentability is stronger, System Hardware Environment requires lower.
Referring to Fig. 5, the embodiments of the invention provide a kind of page push method, methods described can include:
Step S500:Terminal initiates first network access request to network access equipment;
Step S510:Described in network access equipment is determined in the first network access request initiated based on the terminal received
When terminal is unauthorized terminal, the address information of proxy server is sent to the terminal;
Step S520:The proxy server receives what address information of the terminal based on the proxy server was sent
Second network access request;
Step S530:The proxy server is based on second network access request and returns to intermediate page to the terminal
Face;
Step S540:The terminal obtains the identification information of the terminal based on the intermediate page;
Step S550:Portal server receives what address information of the terminal based on the Portal server was sent
The identification information of the terminal, wherein, the identification information of the terminal is the letter that the terminal is obtained based on the intermediate page
Breath, the address information of the Portal server are sent to the information of the terminal for the network access equipment;
Step S560:The Portal server sends corresponding with the identification information of the terminal to the terminal
The Portal pages.
Step S570:The Portal server receives network access equipment and is based on the terminal based on described Portal pages
The characteristic information for the terminal that the certification request initiated towards the network access equipment is sent;
Step S580:Characteristic information and default binding relationship information of the Portal server based on the terminal,
Obtain the identification information of the terminal corresponding to the characteristic information of the terminal;
Step S590:The Portal server is when it is determined that the identification information of the terminal meets preparatory condition, to institute
State terminal return authentication successful information.
A kind of page push method provided in an embodiment of the present invention, network access equipment are initiated based on the terminal received
First network access request when to determine the terminal be unauthorized terminal, the address that proxy server is sent to the terminal is believed
Breath;The proxy server receives the second network access that address information of the terminal based on the proxy server is sent please
After asking, then based on second network access request to the terminal return intermediate page;Portal server receives the end
End group in the Portal server address information send the terminal identification information after, then to the terminal send with
The Portal pages corresponding to the identification information of the terminal, wherein, the identification information of the terminal is based on described for the terminal
The information that intermediate page obtains, the address information of the Portal server are sent to the terminal for the network access equipment
Information, intermediate page is returned to by proxy server, so that the terminal obtains the mark of the terminal based on intermediate page
Information and the mode for being sent to Portal server, so that Portal server sends the identification information with the terminal to terminal
The corresponding Portal pages, to realize identification terminal and to the Portal pages corresponding to the push of the terminal of identification, and then carry out not
Same access privilege control, network security is improved, use range is wider, autgmentability is stronger, System Hardware Environment requires lower.
Referring to Fig. 6, the embodiments of the invention provide a kind of page push device 600, proxy server is run on, it is described
Device 600 can include the first receiving unit 610 and returning unit 620.
First receiving unit 610, the second net sent for address information of the receiving terminal based on the proxy server
Network access request.
Further, the address information of the proxy server is network access equipment based on the terminal received
The first network access request of initiation determines the terminal when being unauthorized terminal, the information sent to the terminal.
Returning unit 620, intermediate page is returned to the terminal for second network access request, so that the end
End group obtains the identification information of the terminal in the intermediate page.
Above each unit can be that now, above-mentioned each unit can be stored in proxy server by software code realization
In memory.Above each unit can equally be realized by hardware such as IC chip.
Page push device 600 provided in an embodiment of the present invention, its realization principle and caused technique effect and foregoing side
Method embodiment is identical, and to briefly describe, device embodiment part does not refer to part, refers in corresponding in preceding method embodiment
Hold.
Referring to Fig. 7, the embodiments of the invention provide a kind of information acquisition device 700, terminal, described device are run on
700 can include:First transmitting element 710, the second receiving unit 720, the second transmitting element 730 and acquiring unit 740.
First transmitting element 710, for sending first network access request to network access equipment.
Second receiving unit 720, for receiving the network access equipment true based on the first network access request
The address information for the proxy server that the fixed terminal is sent when being unauthorized terminal.
Second transmitting element 730, sent for the address information based on the proxy server to the proxy server
Second network access request.
Acquiring unit 740, for the centre sent based on the proxy server based on second network access request
The page obtains the identification information of the terminal.
Acquiring unit 740 can include intermediate page receiving subelement 741 and obtain subelement 742.
Intermediate page receiving subelement 741, second network access request is based on for receiving the proxy server
The intermediate page of transmission.
Subelement 742 is obtained, for accessing the intermediate page, the intermediate page calls the interface that the terminal provides
Obtain the identification information of the terminal.
Above each unit can be that now, above-mentioned each unit can be stored in the memory of terminal by software code realization
It is interior.Above each unit can equally be realized by hardware such as IC chip.
Information acquisition device 700 provided in an embodiment of the present invention, its realization principle and caused technique effect and foregoing side
Method embodiment is identical, and to briefly describe, device embodiment part does not refer to part, refers in corresponding in preceding method embodiment
Hold.
Referring to Fig. 8, the embodiments of the invention provide a kind of page push device 800, Portal server is run on, institute
The 3rd receiving unit 810 and the 3rd transmitting element 820 can be included by stating device 800.
3rd receiving unit 810, the terminal sent for address information of the receiving terminal based on Portal server
Identification information.
The identification information of the terminal is the information that the terminal is obtained based on intermediate page;The intermediate page is agency
The second network access request that server is sent based on address information of the terminal received based on the proxy server
The page returned to the terminal;The address information of the proxy server is network access equipment based on described in receiving
The first network access request that terminal is initiated is when to determine the terminal be unauthorized terminal, to the information of terminal transmission.
3rd transmitting element 820, for sending Portal page corresponding with the identification information of the terminal to the terminal
Face.
Described device 800 can also include authentication unit 830.
Authentication unit 830, the terminal is based on for receiving network access equipment and is based on the Portal pages to described
The characteristic information for the terminal that the certification request that network access equipment is initiated is sent;Characteristic information based on the terminal and pre-
If binding relationship information, obtain the identification information of the terminal corresponding to the characteristic information of the terminal;It is determined that the end
When the identification information at end meets preparatory condition, to the terminal return authentication successful information.
Above each unit can be that now, above-mentioned each unit can be stored in Portal server by software code realization
Memory in.Above each unit can equally be realized by hardware such as IC chip.
Page push device 800 provided in an embodiment of the present invention, its realization principle and caused technique effect and foregoing side
Method embodiment is identical, and to briefly describe, device embodiment part does not refer to part, refers in corresponding in preceding method embodiment
Hold.
It should be noted that each embodiment in this specification is described by the way of progressive, each embodiment weight
Point explanation is all difference with other embodiment, between each embodiment identical similar part mutually referring to.
For device class embodiment, because it is substantially similar to embodiment of the method, so description is fairly simple, related part is joined
See the part explanation of embodiment of the method.
In several embodiments provided herein, it should be understood that disclosed apparatus and method, can also pass through
Other modes are realized.Device embodiment described above is only schematical, for example, flow chart and block diagram in accompanying drawing
Show the device of multiple embodiments according to the present invention, method and computer program product architectural framework in the cards,
Function and operation.At this point, each square frame in flow chart or block diagram can represent the one of a module, program segment or code
Part, a part for the module, program segment or code include one or more and are used to realize holding for defined logic function
Row instruction.It should also be noted that at some as in the implementation replaced, the function that is marked in square frame can also with different from
The order marked in accompanying drawing occurs.For example, two continuous square frames can essentially perform substantially in parallel, they are sometimes
It can perform in the opposite order, this is depending on involved function.It is it is also noted that every in block diagram and/or flow chart
The combination of individual square frame and block diagram and/or the square frame in flow chart, function or the special base of action as defined in performing can be used
Realize, or can be realized with the combination of specialized hardware and computer instruction in the system of hardware.
In addition, each functional module in each embodiment of the present invention can integrate to form an independent portion
Point or modules individualism, can also two or more modules be integrated to form an independent part.
If the function is realized in the form of software function module and is used as independent production marketing or in use, can be with
It is stored in a computer read/write memory medium.Based on such understanding, technical scheme is substantially in other words
The part to be contributed to prior art or the part of the technical scheme can be embodied in the form of software product, the meter
Calculation machine software product is stored in a storage medium, including some instructions are causing a computer equipment (can be
People's computer, server, or network equipment etc.) perform all or part of step of each embodiment methods described of the present invention.
And foregoing storage medium includes:USB flash disk, mobile hard disk, read-only storage (ROM, Read-Only Memory), arbitrary access are deposited
Reservoir (RAM, Random Access Memory), magnetic disc or CD etc. are various can be with the medium of store program codes.Need
Illustrate, herein, such as first and second or the like relational terms be used merely to by an entity or operation with
Another entity or operation make a distinction, and not necessarily require or imply between these entities or operation any this reality be present
The relation or order on border.Moreover, term " comprising ", "comprising" or its any other variant are intended to the bag of nonexcludability
Contain, so that process, method, article or equipment including a series of elements not only include those key elements, but also including
The other element being not expressly set out, or also include for this process, method, article or the intrinsic key element of equipment.
In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that including the key element
Process, method, other identical element also be present in article or equipment.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the invention, for the skill of this area
For art personnel, the present invention can have various modifications and variations.Within the spirit and principles of the invention, that is made any repaiies
Change, equivalent substitution, improvement etc., should be included in the scope of the protection.It should be noted that:Similar label and letter exists
Similar terms is represented in following accompanying drawing, therefore, once being defined in a certain Xiang Yi accompanying drawing, is then not required in subsequent accompanying drawing
It is further defined and explained.
The foregoing is only a specific embodiment of the invention, but protection scope of the present invention is not limited thereto, any
Those familiar with the art the invention discloses technical scope in, change or replacement can be readily occurred in, should all be contained
Cover within protection scope of the present invention.Therefore, protection scope of the present invention described should be defined by scope of the claims.
It should be noted that herein, such as first and second or the like relational terms are used merely to a reality
Body or operation make a distinction with another entity or operation, and not necessarily require or imply and deposited between these entities or operation
In any this actual relation or order.Moreover, term " comprising ", "comprising" or its any other variant are intended to
Nonexcludability includes, so that process, method, article or equipment including a series of elements not only will including those
Element, but also the other element including being not expressly set out, or it is this process, method, article or equipment also to include
Intrinsic key element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that
Other identical element also be present in process, method, article or equipment including the key element.
Claims (12)
- A kind of 1. page push method, it is characterised in that methods described includes:The second network access request that address information of the proxy server receiving terminal based on the proxy server is sent;The proxy server is based on second network access request and returns to intermediate page to the terminal, so that the terminal The identification information of the terminal is obtained based on the intermediate page.
- 2. according to the method for claim 1, it is characterised in that the address information of the proxy server sets for network insertion It is standby when it is unauthorized terminal that the first network access request initiated based on the terminal received, which determines the terminal, to institute State the information of terminal transmission.
- 3. a kind of information acquisition method, it is characterised in that methods described includes:Terminal sends first network access request to network access equipment;The terminal receives the network access equipment and is determining the terminal based on the first network access request not award Weigh the address information of the proxy server sent during terminal;Address information of the terminal based on the proxy server sends the second network access request to the proxy server;Described in the intermediate page acquisition that the terminal is sent based on the proxy server based on second network access request The identification information of terminal.
- 4. according to the method for claim 3, it is characterised in that the terminal is based on the proxy server and is based on described the The intermediate page that two network access requests are sent obtains the identification information of the terminal, including:The terminal receives the intermediate page that the proxy server is sent based on second network access request;Intermediate page described in the terminal access, the interface that the intermediate page calls the terminal to provide obtain the terminal Identification information.
- A kind of 5. page push method, it is characterised in that methods described includes:The identification information for the terminal that address information of the Portal server receiving terminal based on Portal server is sent;The Portal server sends the Portal page corresponding with the identification information of the terminal to the terminal.
- 6. according to the method for claim 5, it is characterised in that the identification information of the terminal is that the terminal is based on centre The information that the page obtains;The intermediate page is proxy server based on address information of the terminal based on the proxy server received The page that the second network access request sent returns to the terminal;The address information of the proxy server is network access equipment in the first net initiated based on the terminal received Network access request determines the terminal when being unauthorized terminal, the information sent to the terminal.
- 7. according to the method for claim 5, it is characterised in that the Portal server to the terminal send with it is described After the Portal pages corresponding to the identification information of terminal, methods described also includes:The Portal server receives network access equipment and is based on the Portal pages to the network based on the terminal The characteristic information for the terminal that the certification request that access device is initiated is sent;Characteristic information and default binding relationship information of the Portal server based on the terminal, obtain the terminal The identification information of the terminal corresponding to characteristic information;The Portal server is when it is determined that the identification information of the terminal meets preparatory condition, to the terminal return authentication Successful information.
- A kind of 8. page push method, it is characterised in that methods described includes:Network access equipment determines that the terminal is unauthorized in the first network access request initiated based on the terminal received During terminal, the address information of proxy server is sent to the terminal;The proxy server receives the second network access that address information of the terminal based on the proxy server is sent Request;The proxy server is based on second network access request and returns to intermediate page to the terminal;Portal server receives the mark for the terminal that address information of the terminal based on the Portal server is sent Know information, wherein, the identification information of the terminal is the information that the terminal is obtained based on the intermediate page, the Portal The address information of server is the information that the network access equipment is sent to the terminal;The Portal server sends the Portal page corresponding with the identification information of the terminal to the terminal.
- 9. a kind of page push device, it is characterised in that run on proxy server, described device includes:First receiving unit, the second network access sent for address information of the receiving terminal based on the proxy server please Ask;Returning unit, intermediate page is returned to the terminal for second network access request, so that the terminal is based on The intermediate page obtains the identification information of the terminal.
- 10. a kind of information acquisition device, it is characterised in that run on terminal, described device includes:First transmitting element, for sending first network access request to network access equipment;Second receiving unit, the end is being determined based on the first network access request for receiving the network access equipment Hold the address information of the proxy server to be sent during unauthorized terminal;Second transmitting element, the second network is sent to the proxy server for the address information based on the proxy server Access request;Acquiring unit, for being obtained based on the proxy server based on the intermediate page that second network access request is sent The identification information of the terminal.
- 11. a kind of page push device, it is characterised in that run on Portal server, described device includes:3rd receiving unit, the mark letter of the terminal sent for address information of the receiving terminal based on Portal server Breath;3rd transmitting element, for sending the Portal page corresponding with the identification information of the terminal to the terminal.
- A kind of 12. page push system, it is characterised in that the system include network access equipment, proxy server and Portal server;Network access equipment, for determining the terminal for not in the first network access request initiated based on the terminal received During authorization terminal, the address information of proxy server is sent to the terminal;The proxy server, the second network sent for receiving address information of the terminal based on the proxy server Access request;The proxy server, it is additionally operable to return to intermediate page to the terminal based on second network access request;Portal server, the terminal sent for receiving address information of the terminal based on the Portal server Identification information, wherein, the identification information of the terminal is the information that the terminal is obtained based on the intermediate page, described The address information of Portal server is the information that the network access equipment is sent to the terminal;The Portal server, it is additionally operable to send Portal page corresponding with the identification information of the terminal to the terminal Face.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711020089.8A CN107809427A (en) | 2017-10-26 | 2017-10-26 | Page push method, apparatus, system and information acquisition method, device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711020089.8A CN107809427A (en) | 2017-10-26 | 2017-10-26 | Page push method, apparatus, system and information acquisition method, device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107809427A true CN107809427A (en) | 2018-03-16 |
Family
ID=61591257
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711020089.8A Pending CN107809427A (en) | 2017-10-26 | 2017-10-26 | Page push method, apparatus, system and information acquisition method, device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107809427A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103369531A (en) * | 2013-07-02 | 2013-10-23 | 杭州华三通信技术有限公司 | Method and device for controlling authority based on terminal information |
| CN104283848A (en) * | 2013-07-03 | 2015-01-14 | 杭州华三通信技术有限公司 | Terminal access method and device |
| CN105592458A (en) * | 2014-10-22 | 2016-05-18 | 中国电信股份有限公司 | Authentication method and system for service of wireless local area network, and server |
| CN105933900A (en) * | 2016-04-22 | 2016-09-07 | 上海斐讯数据通信技术有限公司 | Portal authentication page self-adaptive system based on operating system and method thereof |
-
2017
- 2017-10-26 CN CN201711020089.8A patent/CN107809427A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103369531A (en) * | 2013-07-02 | 2013-10-23 | 杭州华三通信技术有限公司 | Method and device for controlling authority based on terminal information |
| CN104283848A (en) * | 2013-07-03 | 2015-01-14 | 杭州华三通信技术有限公司 | Terminal access method and device |
| CN105592458A (en) * | 2014-10-22 | 2016-05-18 | 中国电信股份有限公司 | Authentication method and system for service of wireless local area network, and server |
| CN105933900A (en) * | 2016-04-22 | 2016-09-07 | 上海斐讯数据通信技术有限公司 | Portal authentication page self-adaptive system based on operating system and method thereof |
Non-Patent Citations (1)
| Title |
|---|
| 史洲宇: "js判断浏览器类型(手机和电脑终端)", 《BBSMAX》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103609090B (en) | Identity logs method and apparatus | |
| CN101702717B (en) | Method, system and equipment for authenticating Portal | |
| CN104254073B (en) | The method and device being authenticated to access terminal | |
| CN108009825A (en) | A kind of identity management system and method based on block chain technology | |
| US20030073065A1 (en) | Methods and systems for providing training through an electronic network to remote electronic devices | |
| US20030074559A1 (en) | Methods and systems for receiving training through electronic data networks using remote hand held devices | |
| US7299067B2 (en) | Methods and systems for managing the provision of training provided remotely through electronic data networks to users of remote electronic devices | |
| US20030073064A1 (en) | Methods and systems for registering and authenticating recipients of training provided through data communications networks to remote electronic devices | |
| CN105991518B (en) | Network access verifying method and device | |
| CN101651541A (en) | System and method for authentication of network user | |
| KR20080062445A (en) | User authentication method in internet site using mobile and device thereof | |
| CN107277812A (en) | A kind of wireless network authentication method and system based on Quick Response Code | |
| CN107529160A (en) | A kind of VoWiFi method for network access and system, terminal and wireless access points equipment | |
| CN107451631A (en) | A kind of present distribution method and device | |
| CN104852915B (en) | A kind of upper network control method and equipment | |
| CN110071932A (en) | A kind of security access system and method | |
| CN104184709A (en) | Verification method, device, server, service data center and system | |
| CN109284599A (en) | It the use of portable electronic device is the method and system that user creates strong authentication | |
| CN107203576A (en) | Information synchronization method and device | |
| CN107241361A (en) | A kind of unified identity authentication method based on cloud environment | |
| CN108809969A (en) | A kind of authentication method, system and its apparatus | |
| CN107707560B (en) | Authentication method, system, network access equipment and Portal server | |
| CN109769249A (en) | A kind of authentication method, system and its apparatus | |
| CN108123944A (en) | A kind of methods of exhibiting and system based on the self-defined visitor's welcome page of router | |
| CN107277803A (en) | Wireless network authentication method, apparatus and system based on iOS terminals |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180316 |
|
| RJ01 | Rejection of invention patent application after publication |