CN109474600A - A kind of account binding method, system, device and its equipment - Google Patents

A kind of account binding method, system, device and its equipment Download PDF

Info

Publication number
CN109474600A
CN109474600A CN201811381561.5A CN201811381561A CN109474600A CN 109474600 A CN109474600 A CN 109474600A CN 201811381561 A CN201811381561 A CN 201811381561A CN 109474600 A CN109474600 A CN 109474600A
Authority
CN
China
Prior art keywords
client
account
information
service provider
account number
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201811381561.5A
Other languages
Chinese (zh)
Other versions
CN109474600B (en
Inventor
李茂�
李涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Kylin Seing Network Technology Ltd By Share Ltd
Original Assignee
Kylin Seing Network Technology Ltd By Share Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Kylin Seing Network Technology Ltd By Share Ltd filed Critical Kylin Seing Network Technology Ltd By Share Ltd
Priority to CN201811381561.5A priority Critical patent/CN109474600B/en
Publication of CN109474600A publication Critical patent/CN109474600A/en
Application granted granted Critical
Publication of CN109474600B publication Critical patent/CN109474600B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations

Abstract

This application discloses a kind of account binding method, system, device and its equipment, for solving the problems, such as that user requires to carry out cumbersome registration register process when using various types APP in the prior art.The described method includes: the first of the primary account number of terminal device the interim token is sent to first service corresponding with client end by client;It is logged in if the client does not pass through the primary account number, then the first service end group obtains the information of the primary account number in the described first interim token, and the information based on the primary account number generates the information of the client account, and the information of the account of the client is sent to the client;Service provider's application obtains and locally obtains based on the second interim token from the client information of the account of the client, and the information for the account that the service provider applies and the information of the account of the client are bound.

Description

A kind of account binding method, system, device and its equipment
Technical field
This application involves field of computer technology more particularly to a kind of account binding methods, device and its equipment.
Background technique
Currently, with the rapid development of mobile Internet, types of applications program (Application, APP) emerges one after another. In order to meet the needs of users, user will often install multiple APP, such as the APP for instant messaging, use on mobile terminals APP in shopping, the APP for payment, for APP of receiving and dispatching mail, etc..
In general, to normal use, then needing to register and log in first certainly after an APP is installed in the every downloading of user Oneself account, and the process for registering login account is often relatively complicated, and user needs to register login account in face of such APP may be abandoned using this allows for the activation of many APP newly developed and utilization rate is lower.
Therefore, it needs a kind of countermeasure and is used to cope with the problem of account registration of various types APP is with logging in.
Summary of the invention
The embodiment of the present application provides a kind of account binding method, system, device and its equipment, to solve in the prior art User requires the problem of carrying out cumbersome registration register process when using various types APP.
In order to solve the above technical problems, the embodiment of the present application is achieved in that
In a first aspect, proposing a kind of account binding method, comprising:
The first of the primary account number of terminal device interim token is sent to the first clothes corresponding with the client by client Business end;
It is logged in if the client does not pass through the primary account number, the first service end group is interim in described first Token obtains the information of the primary account number, and the information based on the primary account number generates the information of the client account, and The information of the account of the client is sent to the client, and by the information of the primary account number and the client account Information bound so that the client is by the information preservation of the account of the client to local;
Service provider's application obtains the second interim token of the account of the client, wherein the service provider Using the third-party application to be run in the client;
The service provider, which applies, locally obtains the client from the client based on the described second interim token Account information, and the information for the account that the service provider applies and the information of the account of the client are tied up It is fixed, so that the service provider trades using the account based on the client.
Second aspect, proposes a kind of account binding method, and the method is applied to client, comprising:
The first of the primary account number of terminal device interim token is sent to first service corresponding with client end, with So that the first service end when the client does not pass through the primary account number and logged in, is based on the described first interim token Obtain the information of the primary account number, and the information based on the primary account number generates the information of the client account, and by institute The information for stating the information and the client account of primary account number is bound;
The information of the account of the client from the first service end is received, and by the information of the account of the client It saves to local, so that service provider application obtains the second interim token of the account of the client, Yi Jiji The information of the account of the client is locally obtained from the client in the described second interim token, and the service is provided The information of the information and the account of the client of the account of quotient's application is bound, so that the service provider applies base It trades in the account of the client.
The third aspect proposes a kind of account binding system, and the system comprises clients, corresponding with the client Server-side and the service provider operated in the client apply, in which:
The first of the primary account number of terminal device interim token is sent to corresponding with the client by the client One server-side;
It is logged in if the client does not pass through the primary account number, the first service end group is interim in described first Token obtains the information of the primary account number, and the information based on the primary account number generates the information of the client account, and The information of the primary account number and the information of the client account are bound, and the information of the account of the client is sent out It send to the client, so that the client is by the information preservation of the account of the client to local;
Service provider's application obtains the second interim token of the account of the client;And it is interim based on described second Token locally obtains the information of the account of the client from the client, and the account that the service provider is applied The information of information and the account of the client is bound, so that the service provider applies based on the client Account is traded.
Fourth aspect proposes a kind of client, comprising:
Transmission unit, it is corresponding with the client for being sent to the first of the primary account number of terminal device the interim token First service end, so that the server-side is not when the client passes through the primary account number and logged in, based on described the One interim token obtains the information of the primary account number, and the information based on the primary account number generates the letter of the client account Breath, and the information of the primary account number and the information of the client account are bound;
Receiving unit, the information of the account for receiving the client from the first service end, and by the client The information preservation of the account at end is to local, so that the second of the account of the service provider application acquisition client faces When token, and the information of the account of the client is locally obtained based on the described second interim token from the client, and The information for the account that the service provider applies and the information of the account of the client are bound, so that the clothes Business provider trades using the account based on the client.
5th aspect, proposes a kind of account bound device, comprising: memory, processor and be stored in the memory Computer executable instructions that are upper and can running on the processor, the computer executable instructions are held by the processor The step of account binding method as described in above-mentioned first aspect is realized when row.
6th aspect proposes a kind of computer readable storage medium, and the computer readable storage medium is for storing Computer executable instructions realize the account as described in above-mentioned first aspect when the computer executable instructions are executed by processor The step of number binding method.
The embodiment of the present application at least can achieve following technical effects by adopting the above technical scheme:
In the embodiment of the present invention, the first of the primary account number of terminal device the interim token is sent to and the client by client Corresponding first service end;It is logged in if client does not pass through primary account number, first service end group is obtained in the first interim token The information of primary account number is taken, and information based on primary account number generates the information of client account, and by the information of the primary account number It is bound with the information of the client account, and the information of the account of client is sent to client, so that client It holds the information preservation of the account of client to local;Service provider's application obtains the second interim order of the account of client Board, wherein the third-party application that service provider applies to run in client;Finally, service provider applies based on the Two interim tokens from client locally obtain client account information, and by service provider application account information with The information of the account of client is bound, so that service provider trades using the account based on the client.
Since the information of client account can be generated based on the information of primary account number existing in terminal device, user is avoided Also need to re-register account for client, and user uses service provider in application, can also for the first time in client It is enough to bind the information for the account that the information of client account is applied with service provider, so that user is subsequent in client End in using service provider in application, without carry out cumbersome register just can normal use service provider apply into Row transaction.
Detailed description of the invention
The drawings described herein are used to provide a further understanding of the present application, constitutes part of this application, this Shen Illustrative embodiments and their description please are not constituted an undue limitation on the present application for explaining the application.In the accompanying drawings:
Fig. 1 is a kind of implementation process diagram for account binding method that this specification one embodiment provides;
Fig. 2 is that the account binding method that this specification one embodiment provides applies the schematic diagram in actual scene;
Fig. 3 is the implementation process signal that the account binding method that this specification one embodiment provides is applied to client Figure;
Fig. 4 is the structural schematic diagram for the account binding system that this specification one embodiment provides;
Fig. 5 is a kind of structural schematic diagram for client that this specification one embodiment provides;
Fig. 6 is a kind of structural schematic diagram for account bound device that this specification one embodiment provides.
Specific embodiment
To keep the purposes, technical schemes and advantages of the application clearer, below in conjunction with the application specific embodiment and Technical scheme is clearly and completely described in corresponding attached drawing.Obviously, described embodiment is only the application one Section Example, instead of all the embodiments.Based on the embodiment in the application, those of ordinary skill in the art are not doing Every other embodiment obtained under the premise of creative work out, shall fall in the protection scope of this application.
Below in conjunction with attached drawing, the technical scheme provided by various embodiments of the present application will be described in detail.
It requires to carry out cumbersome registration register stream when using various types APP to solve user in the prior art The problem of journey, this specification embodiment provide a kind of account binding method.
Specifically, a kind of implementation process schematic diagram for account binding method that this specification one or more embodiment provides As shown in Figure 1, comprising:
Step 110, the first of the primary account number of terminal device the interim token is sent to corresponding with client by client One server-side;
It should be understood that the client in the embodiment of the present invention can be mounted in the application on above-mentioned terminal device, terminal is set Standby primary account number can be the account of the operating system of terminal device, and can be to run the net of third-party application in the client The form of page starts the shopping applications such as third-party application, such as Jingdone district APP, Taobao APP.By taking Huawei's mobile phone as an example, it should be appreciated that Each Huawei's mobile phone can register Huawei's account, Huawei's account for the operating system being mounted on Huawei's mobile phone It then can be used as the primary account number of terminal device, certainly, the primary account number of the terminal device, which can also be, to be mounted in Huawei's mobile phone Other application account, the embodiment of the present invention is not construed as limiting this.
Optionally, the first of the primary account number of terminal device the interim token is sent to clothes by the client in the embodiment of the present invention It is engaged in front of end, it is also necessary to the first interim token be obtained by the server-side of primary account number and avoided to improve safety without awarding The malicious third parties application of power arbitrarily obtains the first interim token of primary account number, can also be carried out by following step to client Safety check, and in the case where the server-side of primary account number passes through client secure verification, it just can be by the first of primary account number Interim token is sent to client.Specifically, include the following steps:
The server-side of primary account number obtains the sign-on ID of client;
The client-based sign-on ID of the server-side of primary account number carries out safety check to client;
If the server-side of primary account number passes through the safety check of client, the first of primary account number the interim token is sent to Client.
It should be understood that in practical applications, in order to guarantee that the server-side of client and primary account number is able to carry out interaction, to obtain The interim token of the first of primary account number, client can be in advance in the server-side applications of primary account number, to obtain the server-side of primary account number The sign-on ID (client-id) of distribution, meanwhile, the server-side of primary account number can safeguard a sign-on ID list, that is, register Identifying the client in the sign-on ID list can just be allowed to obtain the first interim token of primary account number.So, in client End obtains the of primary account number by Software Development Kit (Software Development Kit, the SDK) interface of primary account number When one interim token, the server-side of primary account number then can carry out safety check to client with client-based sign-on ID, if The sign-on ID of client is in the sign-on ID list at the server-side of primary account number, then the server-side of primary account number is by primary account number First interim token is sent to client.
By taking primary account number is the system account of terminal device as an example, then client is faced the first of the primary account number of terminal device When token be sent to server-side, specifically then system account can be judged by system account login interface in client terminal start-up Number whether log in, however, it is determined that system account has logged in, then can be carried out with the acquisition interface of calling system account information to client Safety check, and pass through in safety check, call the acquisition interface of the system account information to face to obtain the first of system account When token, and the first of the system account of terminal device the interim token is sent to server-side.
Step 120, if client does not pass through primary account number and logged in, server-side is based on the first interim token and obtains main account Number information, and information based on primary account number generates the information of client account, and the information of the account of client is sent To client, so that client is by the information preservation of the account of the client to local;
Optionally, the information based on primary account number generates the information of client account, can specifically lead to the information of primary account number Cross Mapping (mapping) algorithm generate client account information, such as can the information based on primary account number by MD5 algorithm come Generate the information of client account.
Optionally, in order to improve safety, the information of primary account number can also be obtained based on the first interim token in server-side Before, safety check is carried out to server-side and client by the server-side of primary account number, passed through to avoid criminal illegal The information of approach acquisition primary account number.Specifically, safe school is carried out to client and server-side by the server-side of primary account number The process tested may include following step:
The server-side of primary account number carries out safety check to client and first service end;
If the server-side of primary account number passes through the safety check of client and first service end, it is determined that the first interim order Whether board is effective;
If the first interim token is effective, the information of primary account number is sent to first service end.
Wherein, the first interim token has a timeliness, for example, can be with the period in 24 hours or in 48 hours effectively, If being more than the corresponding period, first interim token failure, at this point, then can again through primary account number SDK interface to The server-side of primary account number obtains the newest interim token (token) of primary account number.
It should be understood that the information of primary account number is obtained in the first interim token by first service end group, is led to improve safety For custom, which can be used as a key, for decrypting the encryption information of the information comprising primary account number.
Optionally, it for the ease of carrying out safe interaction between the server-side of primary account number and client and server-side, removes The server-side of above-mentioned primary account number can be safeguarded except a sign-on ID list, can also safeguard an IP address list, the IP Preserved in address list pre- first to file and the primary account number server-side interact and obtain primary account number server-side authorization IP address, i.e., the server-side of IP address list that only IP address belongs in the server-side of the primary account number could obtain primary account number Information.So, the server-side of primary account number carries out safety check to client and server-side, can specifically include following steps It is rapid:
The server-side of primary account number obtains the sign-on ID of client and the IP address of server-side;
The client-based sign-on ID of the server-side of primary account number carries out safety check to client, and based on server-side IP address carries out safety check to server-side.
It optionally, can be when primary account number logs in for the ease of subsequent client, it is not necessary to register is carried out, thus to use Family provides convenient and fast register, and the first service end group in the embodiment of the present invention obtains the letter of primary account number in the first interim token Breath, and after information based on primary account number generates the information of client account, can also be by first service end by primary account number The information of information and client account bound.It should be understood that can quickly be stepped on when to start client convenient for user Record operation, first service end can save the information of primary account number and the information of client account, and save primary account number Binding relationship between information and the information of client account.
Continue so that primary account number is the system account of terminal device as an example, then server-side, which is based on the first interim token, obtains master The information of account, specifically then the interim token (token) of available system account, account ID, user name, user's head portrait etc. are believed Breath.Server-side can generate client account based on these information of system account after getting these information of system account Number information, i.e., the information such as corresponding interim token, account ID, user name, user's head portrait, and by the information of system account and visitor The information of family end account carries out binding preservation, and the information of the system account of binding relationship and the information of client account will be present Being sent to client makes client be saved to local.
Step 130, service provider's application obtains the second interim token of the account of client, wherein service provider Using the third-party application to be run in client;
Optionally, in practical applications, service provider's application can be by the JS interface that client provides from client Second interim token of the interior account for obtaining client.Wherein, third-party application such as can be shopping application, as Jingdone district APP, The application that Taobao APP etc. can be called or be run in other application.
Optionally, in order to improve safety, the illegal account information for obtaining client of malicious third parties application, this hair are avoided Before second interim token of the account that service provider's application in bright embodiment obtains client, client can also be passed through Safety check is carried out to service provider's application.It should be understood that for the ease of being interacted between service provider and client, clothes The application of business provider can be applied in the corresponding official website of client in advance, to obtain the registration mark of client distribution Know, and records the domain-name information of service provider application by client.Meanwhile a registration mark can be safeguarded at client Know list and domain-name information list, only sign-on ID is recorded in the sign-on ID list, and domain-name information is recorded in the domain Service provider's application in name information list could be interacted with client, to obtain client account from client Second interim token.
It therefore, can be by following before the second interim token of the account that service provider's application obtains client Step carries out safety check to service provider's application by client:
Client obtains the domain-name information and sign-on ID of service provider's application;
The domain-name information and sign-on ID that client is applied based on service provider carry out safety to service provider's application Verification;
If the safety check that client applies service provider passes through, the second of client account the interim token is sent out It send to service provider and applies.
By taking service provider applies as shopping application as an example, then client carries out safety check, tool to the shopping application Body can domain name (such as www.xx.com) to the shopping application and sign-on ID (client-id) verify, and After verification passes through, the second of the account of client the interim token is sent to service provider's application.
Step 140, service provider applies the account for locally obtaining client from client based on the second interim token Information, and the information of the information of the account of service provider's application and the account of client is bound, so that service mentions It trades for quotient using client-based account.
Optionally, the information of the account of client is sent to the third-party application of malice in order to avoid first service end, The embodiment of the present invention is locally obtaining client account from client using based on the second interim token by service provider Before information, safety check can also be carried out to service provider's application by first service end, and at first service end to clothes After business provider application progress safety check passes through, just the information of the account of client can be sent to service provider and answered With.Specifically, including the following steps:
First service end carries out safety check to service provider's application;
If the safety check that service provider is applied at first service end passes through, and the second interim token is effective, then will be objective The information of family end account is sent to service provider's application.
Optionally, first service end carries out safety check to service provider's application, can specifically answer service provider IP address or solicited message carry out the safety check mode such as authenticating.Wherein, service provider is applied at first service end Solicited message is authenticated, can when specifically can be service provider using the information for being server-side requesting client account The information of request to be encrypted, which can be applied pre- between first service end by service provider What the enciphering and deciphering algorithm first appointed carried out, then first service end is receiving at the encryption from service provider application After the solicited message managed, if can be decrypted by the enciphering and deciphering algorithm made an appointment, and the service provider applies IP address within its IP address list, then can determine to the service provider application safety check pass through.
It should be noted that due to binding relationship existing between the information of client account and the information of primary account number, that Above-mentioned service provider's application obtains the information of client account, and the information of client account and service provider are applied Account information bound, in practical applications can also be in the following way:
The token of primary account number is obtained by service provider's application, and passes through the token of primary account number from the clothes of primary account number Business end obtains the information of primary account number, and the account that the information of primary account number is applied with service provider is bound.Specific implementation Process and above-mentioned service provider application obtain the information of client account, and by the information of client account and service provider The process that the account information of application is bound is similar, will not be described in great detail herein.
Optionally, if client has passed through primary account number and logged in, then may indicate that corresponding first clothes of client Business end the information based on primary account number generate client account information, and complete information and the master of the account of client Binding between the information of account.In this case, first service end then available client the last time log in when The interim token of the third of the account of client, and based on the interim token of third whether the account and service effectively to realize client Bindings between the account of provider application.Specifically, whether the interim token of third effectively may include following two kinds Situation:
The first situation, if the interim token of third is effective, service provider's application obtains the interim token of third, and is based on The interim token of third locally obtains the information of the account of client, and the information for the account that service provider is applied from client It is bound with the information of the account of client, so that service provider trades using client-based account.
Second situation, if the interim token failure of third, service provider's application obtain the 4th of the account of client Interim token, and based on the 4th interim token from the information of the local account for obtaining client of client, and service is provided The information of the account of the information and client of the account of quotient's application is bound, so that service provider, which applies, is based on client Account trade.
It is that a kind of account binding method provided in an embodiment of the present invention applies the process in actual scene to show shown in Fig. 2 Be intended to, the account binding method be related to service provider's application, the corresponding server-side of client, client, primary account number SDK with And primary account number server-side, it is the interactive interface that client and primary account number server-side provide that wherein primary account number SDK, which is primary account number, mainly Include the following steps:
Step 21, the login authentication process of client terminal start-up primary account number;
Step 22, primary account number SDK carries out safety check to client, if verification passes through, requests to primary account number server-side Obtain the token of primary account number;
Step 23, the server-side of primary account number updates the token of primary account number;
Step 24, the server-side of primary account number returns to the token of primary account number by primary account number SDK to client;
Step 25, client is after getting the token of primary account number, on first service corresponding with client end Report the token of primary account number;
Step 26, first service end group is in the token of primary account number, to the letter of the server-side request primary account number of primary account number Breath;
Step 27, the server-side of primary account number carries out safe school to first service end after receiving the request of server-side It tests, and passes through in safety check, and in the effective situation of token of primary account number, the information of primary account number is returned to first service end;
Step 28, first service end group generates the information of the account of client in the information of primary account number, and by primary account number The information of the account of information and client is bound;
Step 29, the information of the information of primary account number and the account of client is sent to client by first service end, so that Client is obtained by the information preservation of the information of primary account number and the account of client to local;
Step 210, service provider applies the token to client request client account;
Step 211, client carries out safety check to service provider's application, and after safety check passes through, will be objective The token of family end account is back to service provider's application;
Step 212, service provider applies letter of the token based on client account to client request client account Breath;
Step 213, client carries out safety check to service provider's application, and after safety check passes through, will be objective The information of family list account is sent to service provider's application;
Step 214, service provider apply by the information of client account and service provider application account information into Row binding, enables a user to trade based on the information of client account.
In the embodiment of the present invention, the first of the primary account number of terminal device the interim token is sent to and the client by client Corresponding first service end;It is logged in if client does not pass through primary account number, first service end group is obtained in the first interim token The information of primary account number is taken, and information based on primary account number generates the information of client account, and by the information of the primary account number It is bound with the information of the client account, and the information of the account of client is sent to client, so that client It holds the information preservation of the account of client to local;Service provider's application obtains the second interim order of the account of client Board, wherein the third-party application that service provider applies to run in client;Finally, service provider applies based on the Two interim tokens from client locally obtain client account information, and by service provider application account information with The information of the account of client is bound, so that service provider trades using the account based on the client.
Since the information of client account can be generated based on the information of primary account number existing in terminal device, user is avoided Also need to re-register account for client, and user uses service provider in application, can also for the first time in client It is enough to bind the information for the account that the information of client account is applied with service provider, so that user is subsequent in client End in using service provider in application, without carry out cumbersome register just can normal use service provider apply into Row transaction.
It requires to carry out cumbersome registration register stream when using various types APP to solve user in the prior art The problem of journey, this specification embodiment provide a kind of account binding method.The knowledge for the fictitious users that this specification embodiment provides The executing subject of other method, which can be, but not limited to client etc., can be configured as executing this method provided in an embodiment of the present invention At least one of.
For ease of description, hereafter executing subject in this way is to be able to carry out for the client of this method, to the party The embodiment of method is introduced.It is appreciated that it is a kind of illustrative explanation that the executing subject of this method, which is client, and It should not be construed as the restriction to this method.
Specifically, a kind of account binding method that this specification one or more embodiment provides is applied to the reality of client Existing flow diagram is as shown in Figure 3, comprising:
Step 310, the first of the primary account number of terminal device the interim token is sent to first service corresponding with client End, so that first service end obtains primary account number when client does not pass through primary account number and logged in, based on the first interim token Information, and information based on primary account number generates the information of client account, and by the information of the primary account number and the visitor The information of family end account is bound;
It should be understood that the information of primary account number is obtained in the first interim token by first service end group, is led to improve safety For custom, which can be used as a key, for decrypting the encryption information of the information comprising primary account number.
Optionally, the information based on primary account number generates the information of client account, can specifically lead to the information of primary account number Cross Mapping (mapping) algorithm generate client account information, such as can the information based on primary account number by MD5 algorithm come Generate the information of client account.
Step 320, the information of the account of the client from first service end is received, and by the information of the account of client It saves to local, so that service provider's application obtains the second interim token of the account of client, and faces based on second When token from client locally obtain client account information, and by service provider application account information and client The information of the account at end is bound, so that service provider trades using client-based account.
Optionally, the method also includes:
Obtain the domain-name information and sign-on ID of service provider's application;
Domain-name information and sign-on ID based on service provider's application carry out safety check to service provider's application;
If passing through to the safety check of service provider's application, the second of client account the interim token is sent to clothes The application of business provider.
The specific implementation of embodiment illustrated in fig. 3 correlation step can refer to step corresponding in FIG. 1 to FIG. 2 illustrated embodiment Specific implementation, details are not described herein for this specification one or more embodiment.
In the embodiment of the present invention, the first of the primary account number of terminal device the interim token is sent to server-side by client, In, server-side is server-side corresponding with client;It is logged in if client does not pass through primary account number, server-side is based on first Interim token obtains the information of primary account number, and the information based on primary account number generates the information of client account, and by client The information of account be sent to client so that client is by the information preservation of the account of client to local;Service provides Quotient's application obtains the second interim token of the account of client, wherein service provider apply for run in client the Tripartite's application;Finally, service provider applies the letter for locally obtaining the account of client from client based on the second interim token Breath, and the information of the information of the account of service provider's application and the account of client is bound, so that service provides Quotient trades using the account based on the client.
Since the information of client account can be generated based on the information of primary account number existing in terminal device, user is avoided Also need to re-register account for client, and user uses service provider in application, can also for the first time in client It is enough to bind the information for the account that the information of client account is applied with service provider, so that user is subsequent in client End in using service provider in application, without carry out cumbersome register just can normal use service provider apply into Row transaction.
Fig. 4 is the structural schematic diagram for the account binding system 400 that this specification provides.Referring to FIG. 4, real in a kind of software Apply in mode, account binding system 400 may include client 401, first service corresponding with client end 402 and The service provider in the client is operated in using 403, in which:
The first of the primary account number of terminal device interim token is sent to the first service end 402 by the client 401;
If the client 401 is not logged in by the primary account number, the first service end 402 is based on described the One interim token obtains the information of the primary account number, and the information based on the primary account number generates the letter of the client account Breath, and the information of the primary account number and the information of the client account is bound, and by the account of the client Information is sent to the client 401, so that the client 401 is by the information preservation of the account of the client to originally Ground;
Service provider's application obtains the second interim token of the account of the client;And it is interim based on described second Token locally obtains the information of the account of the client from the client, and the account that the service provider is applied The information of information and the account of the client is bound, so that the service provider applies based on the client Account is traded.
Optionally, in one embodiment, it the system also includes the server-side 404 of the primary account number, is used for:
Obtain the sign-on ID of the client;
Based on the sign-on ID of the client, safety check is carried out to the client;
If passing through to the safety check of the client, the first of the primary account number the interim token is sent to the visitor Family end.
Optionally, in one embodiment, the server-side 404 of the primary account number, is used for:
The server-side of the primary account number carries out safety check to the client and the first service end;
If the server-side of the primary account number passes through the safety check of the client and the first service end, really Whether the fixed first interim token is effective;
If the first interim token is effective, the information of the primary account number is sent to the first service end.
Optionally, in one embodiment, the account that the service provider obtains the client 401 using 403 The second interim token before, the client 401 is also used to:
The client obtains the domain-name information and sign-on ID of service provider's application;
The domain-name information and sign-on ID that the client is applied based on the service provider are to the service provider Using progress safety check;
If the safety check that the client applies the service provider passes through, by the of the client account Two interim tokens are sent to service provider's application.
Optionally, in one embodiment, if the client 401 is logged in by the primary account number, institute State the interim token of third that first service end 402 obtains the account of client when the client 401 is the last to be logged in;
If the interim token of third is effective, the service provider obtains the interim token of third using 403, and The information of the account of the client is locally obtained from the client based on the interim token of the third, and the service is mentioned It is bound for the information of the information and the account of the client of the account of quotient's application, so that the service provider applies Account based on the client is traded;
If the interim token failure of third, the account that the service provider obtains the client using 403 4th interim token, and the letter of the account of the client is locally obtained based on the 4th interim token from the client Breath, and the information for the account that the service provider applies and the information of the account of the client are bound, so that The service provider trades using the account based on the client.
The method that account binding system 400 can be realized the account binding method embodiment of FIG. 1 to FIG. 2, specifically refers to The account binding method of FIG. 1 to FIG. 2 illustrated embodiment, repeats no more.
Fig. 5 is the structural schematic diagram for the client 500 that this specification provides.Referring to FIG. 5, in a kind of Software Implementation In, client 500 may include transmission unit 501 and receiving unit 502, in which:
Transmission unit 501, for the first of the primary account number of terminal device the interim token to be sent to and the client pair The first service end answered, so that the first service end is not when the client passes through the primary account number and logged in, base The information of the primary account number is obtained in the described first interim token, and the information based on the primary account number generates the client The information of account, and the information of the primary account number and the information of the client account are bound;
Receiving unit 502, the information of the account for receiving the client from the first service end, and by the visitor The information preservation of the account at family end is to local, so that service provider application obtains the second of the account of the client Interim token, and the information of the account of the client is locally obtained based on the described second interim token from the client, And bind the information for the account that the service provider applies and the information of the account of the client, so that described Service provider trades using the account based on the client.
Optionally, in one embodiment, the client further include:
Acquiring unit 503, for obtaining the domain-name information and sign-on ID of service provider's application;
Verification unit 504, the domain-name information and sign-on ID for being applied based on the service provider are to the service Provider's application carries out safety check;
First transmission unit 505, if the safety check for applying to the service provider passes through, by the client Second interim token of end account is sent to service provider's application.
The method that client 500 can be realized the account binding method embodiment of Fig. 3 specifically refers to and implements shown in Fig. 3 The account binding method of example, repeats no more.
The embodiment of the invention also provides a kind of account bound device, Fig. 6 is account provided by the embodiments of the present application binding The structural schematic diagram of equipment.As shown in fig. 6, account bound device can generate bigger difference because configuration or performance are different, It may include one or more processor 601 and memory 602, can store one or one in memory 602 Application program or data stored above.Wherein, memory 602 can be of short duration storage or persistent storage.It is stored in memory 602 Application program may include one or more modules (diagram is not shown), each module may include adding to internal storage data Carry the series of computation machine executable instruction in equipment.Further, processor 601 can be set to logical with memory 602 Letter executes the series of computation machine executable instruction in memory 602 on internal storage data loading equipemtn.Internal storage data load is set Standby can also include one or more power supplys 603, one or more wired or wireless network interfaces 604, one or More than one input/output interface 605, one or more keyboards 606 etc..
In a specific embodiment, account bound device includes memory, processor and is stored in the memory Computer executable instructions that are upper and can running on the processor, the computer executable instructions are held by the processor Following below scheme is realized when row:
The first of the primary account number of terminal device interim token is sent to first service corresponding with client end, with So that the first service end when the client does not pass through the primary account number and logged in, is based on the described first interim token Obtain the information of the primary account number, and the information based on the primary account number generates the information of the client account, and by institute The information for stating the information and the client account of primary account number is bound;
The information of the account of the client from the first service end is received, and by the information of the account of the client It saves to local, so that service provider application obtains the second interim token of the account of the client, Yi Jiji The information of the account of the client is locally obtained from the client in the described second interim token, and the service is provided The information of the information and the account of the client of the account of quotient's application is bound, so that the service provider applies base It trades in the account of the client.
Optionally, when the computer executable instructions are executed by the processor,
Obtain the domain-name information and sign-on ID of service provider's application;
Domain-name information and sign-on ID based on service provider application pacify service provider application Whole school tests;
If passing through to the safety check of service provider application, by the second interim token of the client account It is sent to service provider's application.
In the embodiment of the present invention, the first of the primary account number of terminal device the interim token is sent to and the client by client Corresponding first service end;It is logged in if client does not pass through primary account number, first service end group is obtained in the first interim token The information of primary account number is taken, and information based on primary account number generates the information of client account, and by the information of the primary account number It is bound with the information of the client account, and the information of the account of client is sent to client, so that client It holds the information preservation of the account of client to local;Service provider's application obtains the second interim order of the account of client Board, wherein the third-party application that service provider applies to run in client;Finally, service provider applies based on the Two interim tokens from client locally obtain client account information, and by service provider application account information with The information of the account of client is bound, so that service provider trades using the account based on the client.
Since the information of client account can be generated based on the information of primary account number existing in terminal device, user is avoided Also need to re-register account for client, and user uses service provider in application, can also for the first time in client It is enough to bind the information for the account that the information of client account is applied with service provider, so that user is subsequent in client End in using service provider in application, without carry out cumbersome register just can normal use service provider apply into Row transaction.
Further, described computer-readable to deposit the embodiment of the present application also provides a kind of computer readable storage medium Storage media is realized for storing computer executable instructions, when the computer executable instructions are executed by processor to flow down Journey:
The first of the primary account number of terminal device interim token is sent to first service corresponding with client end, with So that the first service end when the client does not pass through the primary account number and logged in, is based on the described first interim token Obtain the information of the primary account number, and the information based on the primary account number generates the information of the client account, and by institute The information for stating the information and the client account of primary account number is bound;
The information of the account of the client from the first service end is received, and by the information of the account of the client It saves to local, so that service provider application obtains the second interim token of the account of the client, Yi Jiji The information of the account of the client is locally obtained from the client in the described second interim token, and the service is provided The information of the information and the account of the client of the account of quotient's application is bound, so that the service provider applies base It trades in the account of the client.
Optionally, when the computer executable instructions are executed by processor,
Obtain the domain-name information and sign-on ID of service provider's application;
Domain-name information and sign-on ID based on service provider application pacify service provider application Whole school tests;
If passing through to the safety check of service provider application, by the second interim token of the client account It is sent to service provider's application.
In the embodiment of the present invention, the first of the primary account number of terminal device the interim token is sent to and the client by client Corresponding first service end;It is logged in if client does not pass through primary account number, first service end group is obtained in the first interim token The information of primary account number is taken, and information based on primary account number generates the information of client account, and by the information of the primary account number It is bound with the information of the client account, and the information of the account of client is sent to client, so that client It holds the information preservation of the account of client to local;Service provider's application obtains the second interim order of the account of client Board, wherein the third-party application that service provider applies to run in client;Finally, service provider applies based on the Two interim tokens from client locally obtain client account information, and by service provider application account information with The information of the account of client is bound, so that service provider trades using the account based on the client.
Since the information of client account can be generated based on the information of primary account number existing in terminal device, user is avoided Also need to re-register account for client, and user uses service provider in application, can also for the first time in client It is enough to bind the information for the account that the information of client account is applied with service provider, so that user is subsequent in client End in using service provider in application, without carry out cumbersome register just can normal use service provider apply into Row transaction.
Wherein, the computer readable storage medium includes read-only memory (Read-Only Memory, abbreviation ROM), random access memory (Random Access Memory, abbreviation RAM), magnetic or disk etc..
All the embodiments in this specification are described in a progressive manner, same and similar portion between each embodiment Dividing may refer to each other, and each embodiment focuses on the differences from other embodiments.Especially for system reality For applying example, since it is substantially similar to the method embodiment, so being described relatively simple, related place is referring to embodiment of the method Part explanation.
The above description is only an example of the present application, is not intended to limit this application.For those skilled in the art For, various changes and changes are possible in this application.All any modifications made within the spirit and principles of the present application are equal Replacement, improvement etc., should be included within the scope of the claims of this application.

Claims (14)

1. a kind of account binding method characterized by comprising
The first of the primary account number of terminal device interim token is sent to first service corresponding with client end by client;
It is logged in if the client does not pass through the primary account number, the first service end group is in the described first interim token Obtain the information of the primary account number, and the information based on the primary account number generates the information of the client account, and by institute The information for stating the information and the client account of primary account number is bound, and the information of the account of the client is sent to The client, so that the client is by the information preservation of the account of the client to local;
Service provider's application obtains the second interim token of the account of the client, wherein service provider's application For the third-party application run in the client;
The service provider applies the account for locally obtaining the client from the client based on the described second interim token Number information, and the information for the account that the service provider applies and the information of the account of the client are bound, So that the service provider trades using the account based on the client.
2. the method as described in claim 1, which is characterized in that the client is interim by the first of the primary account number of terminal device Token is sent to before server-side, the method also includes:
The server-side of the primary account number obtains the sign-on ID of the client;
Sign-on ID of the server-side of the primary account number based on the client carries out safety check to the client;
If the server-side of the primary account number passes through the safety check of the client, by the first of the primary account number the interim order Board is sent to the client.
3. method according to claim 2, which is characterized in that described in first service end group is obtained in the described first interim token Before the information of primary account number, the method also includes:
The server-side of the primary account number carries out safety check to the client and the first service end;
If the server-side of the primary account number passes through the safety check of the client and the first service end, it is determined that institute Whether effective state the first interim token;
If the first interim token is effective, the information of the primary account number is sent to described by the server-side of the primary account number One server-side.
4. the method as described in claim 1, which is characterized in that service provider's application obtains the account of the client The second interim token before, the method also includes:
The client obtains the domain-name information and sign-on ID of service provider's application;
The domain-name information and sign-on ID that the client is applied based on the service provider apply the service provider Carry out safety check;
If the safety check that the client applies the service provider passes through, the second of the client account is faced When token be sent to service provider application.
5. the method as described in claim 1, which is characterized in that
It is logged in if the client has passed through the primary account number, the first service end obtains the client nearest one The interim token of the third of the account of client when secondary login;
If the interim token of third is effective, service provider's application obtains the interim token of third, and is based on institute The information that the interim token of third locally obtains the account of the client from the client is stated, and the service provider is answered The information of account and the information of the account of the client are bound, so that the service provider, which applies, is based on institute The account for stating client is traded;
If the interim token failure of third, the 4th of the account of service provider's application acquisition client are interim Token, and based on the 4th interim token from the information of the local account for obtaining the client of the client, and will The information of the information and the account of the client of the account of service provider's application is bound, so that the service Provider trades using the account based on the client.
6. a kind of account binding method, which is characterized in that the method is applied to client, which comprises
The first of the primary account number of terminal device interim token is sent to first service corresponding with client end, so that The first service end is obtained when the client does not pass through the primary account number and logged in based on the described first interim token The information of the primary account number, and the information based on the primary account number generate the information of the client account, and by the master The information of account and the information of the client account are bound;
The information of the account of the client from the first service end is received, and by the information preservation of the account of the client To local, so that service provider application obtains the second interim token of the account of the client, and it is based on institute The information that the second interim token locally obtains the account of the client from the client is stated, and the service provider is answered The information of account and the information of the account of the client are bound, so that the service provider, which applies, is based on institute The account for stating client is traded.
7. method as claimed in claim 6, which is characterized in that the method also includes:
Obtain the domain-name information and sign-on ID of service provider's application;
Domain-name information and sign-on ID based on service provider application carry out safe school to service provider application It tests;
If passing through to the safety check of service provider application, the second of the client account the interim token is sent It is applied to the service provider.
8. a kind of account binding system, which is characterized in that the system comprises clients, service corresponding with the client End and the service provider operated in the client apply, in which:
The first of the primary account number of terminal device interim token is sent to the first clothes corresponding with the client by the client Business end;
It is logged in if the client does not pass through the primary account number, the first service end group is in the described first interim token Obtain the information of the primary account number, and the information based on the primary account number generates the information of the client account, and by institute The information for stating the information and the client account of primary account number is bound, and the information of the account of the client is sent to The client, so that the client is by the information preservation of the account of the client to local;
Service provider's application obtains the second interim token of the account of the client;And it is based on the described second interim token The information of the account of the client, and the information for the account that the service provider is applied locally are obtained from the client It is bound with the information of the account of the client, so that the service provider applies the account based on the client It trades.
9. system as claimed in claim 8, which is characterized in that the system also includes the server-sides of the primary account number, are used for:
Obtain the sign-on ID of the client;
Based on the sign-on ID of the client, safety check is carried out to the client;
If passing through to the safety check of the client, the first of the primary account number the interim token is sent to the client End.
10. system as claimed in claim 9, which is characterized in that the server-side of the primary account number is used for:
The server-side of the primary account number carries out safety check to the client and the first service end;
If the server-side of the primary account number passes through the safety check of the client and the first service end, it is determined that institute Whether effective state the first interim token;
If the first interim token is effective, the information of the primary account number is sent to the first service end.
11. system as claimed in claim 8, which is characterized in that service provider's application obtains the account of the client Number the second interim token before, the client is also used to:
The client obtains the domain-name information and sign-on ID of service provider's application;
The domain-name information and sign-on ID that the client is applied based on the service provider apply the service provider Carry out safety check;
If the safety check that the client applies the service provider passes through, the second of the client account is faced When token be sent to service provider application.
12. system as claimed in claim 8, which is characterized in that
It is logged in if the client has passed through the primary account number, the first service end obtains the client nearest one The interim token of the third of the account of client when secondary login;
If the interim token of third is effective, service provider's application obtains the interim token of third, and is based on institute The information that the interim token of third locally obtains the account of the client from the client is stated, and the service provider is answered The information of account and the information of the account of the client are bound, so that the service provider, which applies, is based on institute The account for stating client is traded;
If the interim token failure of third, the 4th of the account of service provider's application acquisition client are interim Token, and based on the 4th interim token from the information of the local account for obtaining the client of the client, and will The information of the information and the account of the client of the account of service provider's application is bound, so that the service Provider trades using the account based on the client.
13. a kind of client characterized by comprising
Transmission unit, for the first of the primary account number of terminal device the interim token to be sent to corresponding with the client first Server-side, so that the first service end is not when the client passes through the primary account number and logged in, based on described the One interim token obtains the information of the primary account number, and the information based on the primary account number generates the letter of the client account Breath, and the information of the primary account number and the information of the client account are bound;
Receiving unit, the information of the account for receiving the client from the first service end, and by the client The information preservation of account is to local, so that service provider application obtains the second interim order of the account of the client Board, and the information of the account of the client is locally obtained based on the described second interim token from the client, and by institute The information for stating the information and the account of the client of the account of service provider's application is bound, so that the service mentions It trades for quotient using the account based on the client.
14. client as claimed in claim 13, which is characterized in that the client further include:
Acquiring unit, for obtaining the domain-name information and sign-on ID of service provider's application;
Verification unit, domain-name information and sign-on ID for being applied based on the service provider answer the service provider With carrying out safety check;
First transmission unit, if the safety check for applying to the service provider passes through, by the client account The second interim token be sent to service provider application.
CN201811381561.5A 2018-11-20 2018-11-20 Account binding method, system, device and equipment Active CN109474600B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811381561.5A CN109474600B (en) 2018-11-20 2018-11-20 Account binding method, system, device and equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811381561.5A CN109474600B (en) 2018-11-20 2018-11-20 Account binding method, system, device and equipment

Publications (2)

Publication Number Publication Date
CN109474600A true CN109474600A (en) 2019-03-15
CN109474600B CN109474600B (en) 2021-06-18

Family

ID=65672929

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811381561.5A Active CN109474600B (en) 2018-11-20 2018-11-20 Account binding method, system, device and equipment

Country Status (1)

Country Link
CN (1) CN109474600B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111654864A (en) * 2020-06-15 2020-09-11 河北幸福消费金融股份有限公司 Secondary authentication method and related equipment
CN111814130A (en) * 2020-07-06 2020-10-23 新华智云科技有限公司 Single sign-on method and system
CN112118161A (en) * 2019-06-19 2020-12-22 深圳Tcl新技术有限公司 Device control method and system based on Google intelligent assistant
CN113452558A (en) * 2021-06-24 2021-09-28 新华三技术有限公司 Service processing method, device and system
CN115277072A (en) * 2022-06-17 2022-11-01 支付宝(杭州)信息技术有限公司 Account number getting-through method, account number getting-through device, storage medium and computer equipment

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103248661A (en) * 2012-02-13 2013-08-14 宇龙计算机通信科技(深圳)有限公司 Account number binding method and system
CN104468487A (en) * 2013-09-23 2015-03-25 华为技术有限公司 Communication authentication method and device and terminal device
CN104883259A (en) * 2015-06-11 2015-09-02 郑存粮 Method for automatic registration by using mobile phone number as network application account number
WO2015196665A1 (en) * 2014-06-26 2015-12-30 小米科技有限责任公司 Method and device for binding account number to token key
CN105897668A (en) * 2015-10-22 2016-08-24 乐视致新电子科技(天津)有限公司 Third party account authorization method, device, server and system
US20160307183A1 (en) * 2015-04-16 2016-10-20 Patrick L. Faith Binding process using electronic telecommunications device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103248661A (en) * 2012-02-13 2013-08-14 宇龙计算机通信科技(深圳)有限公司 Account number binding method and system
CN104468487A (en) * 2013-09-23 2015-03-25 华为技术有限公司 Communication authentication method and device and terminal device
WO2015196665A1 (en) * 2014-06-26 2015-12-30 小米科技有限责任公司 Method and device for binding account number to token key
US20160307183A1 (en) * 2015-04-16 2016-10-20 Patrick L. Faith Binding process using electronic telecommunications device
CN104883259A (en) * 2015-06-11 2015-09-02 郑存粮 Method for automatic registration by using mobile phone number as network application account number
CN105897668A (en) * 2015-10-22 2016-08-24 乐视致新电子科技(天津)有限公司 Third party account authorization method, device, server and system

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112118161A (en) * 2019-06-19 2020-12-22 深圳Tcl新技术有限公司 Device control method and system based on Google intelligent assistant
CN111654864A (en) * 2020-06-15 2020-09-11 河北幸福消费金融股份有限公司 Secondary authentication method and related equipment
CN111814130A (en) * 2020-07-06 2020-10-23 新华智云科技有限公司 Single sign-on method and system
CN111814130B (en) * 2020-07-06 2024-03-26 新华智云科技有限公司 Single sign-on method and system
CN113452558A (en) * 2021-06-24 2021-09-28 新华三技术有限公司 Service processing method, device and system
CN115277072A (en) * 2022-06-17 2022-11-01 支付宝(杭州)信息技术有限公司 Account number getting-through method, account number getting-through device, storage medium and computer equipment
CN115277072B (en) * 2022-06-17 2024-03-15 支付宝(杭州)信息技术有限公司 Account number opening method and device, storage medium and computer equipment

Also Published As

Publication number Publication date
CN109474600B (en) 2021-06-18

Similar Documents

Publication Publication Date Title
CN109474600A (en) A kind of account binding method, system, device and its equipment
US9264232B2 (en) Cryptographic device that binds an additional authentication factor to multiple identities
CN109413096B (en) A kind of login method and device more applied
CN104113552B (en) A kind of platform authorization method, platform service end and applications client and system
CN103916244B (en) Verification method and device
CN108416589A (en) Connection method, system and the computer readable storage medium of block chain node
CN101873331B (en) Safety authentication method and system
CN104735065B (en) A kind of data processing method, electronic equipment and server
CN112333198A (en) Secure cross-domain login method, system and server
CN103139182B (en) A kind of method that user of permission accesses, client, server and system
CN108242999B (en) Key escrow method, device and computer-readable storage medium
CN106953831A (en) A kind of authorization method of user resources, apparatus and system
CN105978994B (en) A kind of login method of web oriented system
Senol et al. Leaky forms: A study of email and password exfiltration before form submission
CN105681340A (en) Digital certificate use method and apparatus
CN113515756B (en) High-credibility digital identity management method and system based on block chain
CN108718323A (en) A kind of identity identifying method and system
CN112905979A (en) Electronic signature authorization method and device, storage medium and electronic device
CN109740319B (en) Digital identity verification method and server
CN108768991A (en) A kind of reality people's authentication method and system
CN110248356A (en) Information acquisition method and device
CN109558710A (en) User login method, device, system and storage medium
CN109495458A (en) A kind of method, system and the associated component of data transmission
CN103559430B (en) application account management method and device based on Android system
CN109802927B (en) Security service providing method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant