CN109639740B - Login state sharing method and device based on equipment ID - Google Patents

Login state sharing method and device based on equipment ID Download PDF

Info

Publication number
CN109639740B
CN109639740B CN201910099187.8A CN201910099187A CN109639740B CN 109639740 B CN109639740 B CN 109639740B CN 201910099187 A CN201910099187 A CN 201910099187A CN 109639740 B CN109639740 B CN 109639740B
Authority
CN
China
Prior art keywords
token
user terminal
login
authentication server
application
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201910099187.8A
Other languages
Chinese (zh)
Other versions
CN109639740A (en
Inventor
朱坤
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ping An Technology Shenzhen Co Ltd
Original Assignee
Ping An Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ping An Technology Shenzhen Co Ltd filed Critical Ping An Technology Shenzhen Co Ltd
Priority to CN201910099187.8A priority Critical patent/CN109639740B/en
Publication of CN109639740A publication Critical patent/CN109639740A/en
Priority to PCT/CN2019/089150 priority patent/WO2020155492A1/en
Application granted granted Critical
Publication of CN109639740B publication Critical patent/CN109639740B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/108Network architectures or network communication protocols for network security for controlling access to devices or network resources when the policy decisions are valid for a limited amount of time

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The application relates to the field of consensus mechanisms, in particular to a verification pool technology, and specifically discloses a login state sharing method based on a device ID, which comprises the following steps: the user terminal sends login information to an authentication server, wherein the login information comprises login account information and a device ID of the user terminal, so that the authentication server generates a token according to the login information and returns the token to the user terminal, and the token comprises verification information; and the user terminal receives the token and stores the token. The application also discloses a login state sharing device based on the equipment ID, which is used for executing the login state sharing method based on the equipment ID disclosed by the application. The method and the device can simplify the login operation of the user, and further have better user friendliness.

Description

Login state sharing method and device based on equipment ID
Technical Field
The application relates to the field of consensus mechanisms, in particular to a verification pool technology, and specifically discloses a login state sharing method and device based on an equipment ID.
Background
At present, along with the development of the information technology, more and more enterprises optimize the business process of the enterprises through building the information system, the business process of the enterprises is various, so under the common condition, one enterprise has a plurality of different information systems, therefore, the staff of the enterprise finds in the process of using the information system of the enterprise, each information system needs to log in by using an account password, thus, the login operation of the information system is more complicated, and if two information systems have business association, one information system can call the function of the other information system, the problem of pause occurs, and the use experience of users is greatly influenced.
Disclosure of Invention
In order to solve the above problems, the present invention provides a login state sharing method and device based on device ID.
In a first aspect, the present invention provides a login state sharing method and apparatus based on device ID, where the method includes:
when a user accesses a first application in an application pool for the first time through a user terminal, the user terminal sends login information to an authentication server, wherein the login information comprises login account information and a device ID of the user terminal, so that the authentication server generates a token according to the login information and returns the token to the user terminal, and the token comprises verification information;
the user terminal receives the token and stores the token;
when detecting that the user next triggers access to a second application of the application pool, the user terminal reads the token;
the user terminal sends the token to the authentication server so that the authentication server verifies the token according to the verification information in the token, and if the verification passes, the authentication server sends the token to the second application;
and after the second application receives the token, the user terminal establishes a session with the second application.
In this embodiment of the present invention, optionally, the user terminal reads the token and sends the token to the authentication server, and the login state sharing method for the device ID further includes:
the user terminal analyzes the failure time point in the token;
and the user terminal compares the failure time point with the current time point, and if the failure time point is before the current time point, the user terminal is executed to send the token to the authentication server.
In this embodiment of the present invention, optionally, after the user terminal establishes a session with the second application, the login state sharing method based on the device ID further includes:
the user terminal responds to the account quitting operation triggered by the user and generates a session logout request;
and the user terminal sends the session logout request to the authentication server so that the authentication server generates a session logout instruction according to the session logout request, wherein the session logout instruction is used for logging out the session between the user terminal and the second application.
In this embodiment of the present invention, optionally, the establishing, by the user terminal, a session with the second application includes:
and establishing a session with the second application according to the access level so that the user terminal accesses the resource corresponding to the access level.
In a second aspect, the present invention provides another login state sharing method based on device IDs, where the method includes:
the method comprises the steps that an authentication server receives login information sent by a user terminal, wherein the login information is generated by the user terminal when a user accesses a first application in an application pool for the first time through the user terminal, and the login information comprises login account information and a device ID of the user terminal;
the authentication server generates a token according to the login information;
the authentication server sends the token to the user terminal so that the user terminal receives the token and stores the token, wherein the token comprises verification information;
when the user terminal detects that the user triggers the access of a second application of the application pool next time, the authentication server receives the token sent by the user terminal;
and the authentication server verifies the token according to the verification information in the token, and if the verification is passed, the authentication server sends the token to the user terminal so that the user terminal establishes a session with the second application.
In this embodiment of the present invention, optionally, the method for sharing login status based on the device ID further includes:
the authentication server receives a session logout request sent by the user terminal;
and the authentication server generates a session logout instruction according to the session logout request, wherein the session logout instruction is used for logging out the session between the user terminal and the second application.
In this embodiment of the present invention, optionally, after the user terminal receives the token sent by the user terminal, the login sharing method based on the device ID further includes:
and obtaining login information in the token, verifying the login information in the token, and if an account matched with the login information is stored in account data in the authentication server, executing the authentication server to verify the token according to the verification information in the token.
In this embodiment of the present invention, optionally, the generating, by the authentication server, a token according to the login information and sending the token to the user terminal may include:
the authentication server generating a token according to the login information and sending the token to the user terminal includes:
the authentication server inquires authority information associated with the login information in an authority database according to the login information;
the authentication server identifies the permission information as a value of a permission level field in the token;
the authentication server generates a token, wherein the token includes the permission level field. .
In a third aspect, the present invention provides a device for sharing login status based on device ID, including:
a memory storing executable program code;
a processor coupled to the memory;
the processor calls the executable program code stored in the memory to execute the steps in the login state sharing method based on the device ID according to the first aspect of the present invention and the second aspect of the present invention.
In a fourth aspect, the present invention provides a computer storage medium storing computer instructions for executing the steps of the login state sharing method based on device ID according to the first aspect and the second aspect of the present invention when the computer instructions are called.
Therefore, the embodiment of the invention can log in a plurality of service systems by using the same account according to the implementation, avoids the complex operations of inputting the login account and the login password for a plurality of times, and further improves the use experience of the user; meanwhile, the embodiment of the invention can make the page jump among a plurality of service systems smoother, and further improve the use experience of users.
Additional aspects and advantages of the present application will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the present application.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings needed to be used in the description of the embodiments will be briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
Fig. 1 is a schematic flowchart of a login state sharing method based on a device ID according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of a login state sharing method based on a device ID according to a second embodiment of the present invention;
fig. 3 is a schematic structural diagram of a login state sharing apparatus based on a device ID according to a third embodiment of the present invention.
Detailed Description
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The terms "first," "second," and the like in the description and claims of the present invention and in the above-described drawings are used for distinguishing between different objects and not for describing a particular order. Furthermore, the terms "include" and "have," as well as any variations thereof, are intended to cover non-exclusive inclusions. For example, a process, method, apparatus, product, or apparatus that comprises a list of steps or elements is not limited to those listed but may alternatively include other steps or elements not listed or inherent to such process, method, product, or apparatus.
Reference herein to "an embodiment" means that a particular feature, structure, or characteristic described in connection with the embodiment can be included in at least one embodiment of the invention. The appearances of the phrase in various places in the specification are not necessarily all referring to the same embodiment, nor are separate or alternative embodiments mutually exclusive of other embodiments. It is explicitly and implicitly understood by one skilled in the art that the embodiments described herein can be combined with other embodiments.
At present, along with the development of the information technology, more and more enterprises optimize the business process of the enterprises through building the information system, the business process of the enterprises is various, so under the common condition, one enterprise has a plurality of different information systems, therefore, the staff of the enterprise finds in the process of using the information system of the enterprise, each information system needs to log in by using an account password, thus, the login operation of the information system is more complicated, and if two information systems have business association, one information system can call the function of the other information system, the problem of pause occurs, and the use experience of users is greatly influenced.
For the above application scenario, a detailed description is given below of a login state sharing method and apparatus based on device ID according to the present invention with reference to specific embodiments.
Implement one
Referring to fig. 1, fig. 1 is a schematic flowchart illustrating a disclosed login state sharing method based on device ID according to an embodiment of the present invention, and as shown in fig. 1, the login state sharing method based on device ID includes:
101. when a user accesses a first application in the application pool for the first time through the user terminal, the user terminal sends login information to the authentication server, wherein the login information comprises login account information and a device ID of the user terminal, so that the authentication server generates a token according to the login information and returns the token to the user terminal, and the token comprises verification information.
In the embodiment of the present invention, optionally, the user terminal sends the login information in a JSON data format.
For example, the login information is sent in a { "key": ID, user: user, password:123456} data grid, where "key" field represents the device ID, "user" represents the login account number, and "password" represents the login password.
When a user terminal receives a first manual account password input by a user for logging in, the user terminal sends JSON data containing an equipment ID, a login password and a login account to an authentication server in an ajax asynchronous post mode, the authentication server analyzes the equipment ID, the login password and the login account respectively by analyzing the JSON data, and stores the equipment ID, the login password and the login account into a database of the authentication server and records and stores date.
In the embodiment of the invention, after the authentication server receives the login information and verifies the login information, the authentication server creates a global session with the user terminal, meanwhile, the authentication server creates a token according to the login information, after the token is created, the authentication server incorporates the token into the access address of the user terminal, and the user terminal receives the token.
Therefore, the embodiment of the invention can avoid the complicated operation that the user needs to repeatedly input login information such as user name, password and the like when accessing a plurality of applications by establishing the mapping relation between the equipment ID of the user terminal and the access authority of the application, and can realize that the user can access a plurality of applications without login authentication again after one-time login authentication.
102. The user terminal receives the token and stores the token.
In the embodiment of the present invention, optionally, the user may trigger an access request for one application in the browsing page. When a user accesses an application in a browsing page, the application guides the user to input a login account and a login password in a login interface, the login account and the login password are sent to an authentication server by the login interface, the authentication server verifies the login account and the login password, then an authentication identifier is sent to a browser where the login interface is located, and after receiving the authentication identifier, the browser stores the authentication identifier in a cookie file of the browser, wherein the cookie file is a file which is specially used for storing identity verification information in the browser.
In the embodiment of the present invention, optionally, after receiving the authentication identifier, the browser stores the authentication identifier in a token file of the browser.
The login state sharing method based on the equipment ID further comprises the following steps:
103. the user terminal reads the token when the user next triggers access to a second application of the application pool.
The login state sharing method based on the equipment ID further comprises the following steps:
104. and the user terminal sends the token to the authentication server so that the authentication server verifies the token according to the verification information in the token, and if the verification is passed, the authentication server sends the token to the second application.
The login state sharing method based on the equipment ID further comprises the following steps:
105. and after the second application receives the token, the user terminal establishes a session with the second application.
For example, suppose an enterprise has two business systems, namely a first business system and a second business system, in order to realize that an employee of the enterprise can log in the second business system without inputting a login account and a login password after inputting a login account and a login password for one time, after receiving the login account and the login password input by a user for the first time, an authentication server associates the login account and the login password input by the user for the first time with a device ID number of a user terminal and generates a token, and the token indicates that the authentication server successfully verifies the login account and the login password input by the user for the first time.
When a user accesses the second service system, the user terminal firstly acquires the token and sends the token to the authentication server, the authentication server verifies the token, if the authentication server verifies successfully, the authentication server sends the token to the second service system, and after receiving the token, the second service system informs the user terminal to establish a session with the second service system, so that the second service system finally shares the login state of the first service system.
In this embodiment of the present invention, optionally, after the user terminal establishes a session with the second application, the login state sharing method based on the device ID further includes:
the user terminal responds to an account quitting operation triggered by a user and generates a session logout request;
and the user terminal sends the session logout request to the authentication server so that the authentication server generates a session logout instruction according to the session logout request, wherein the session logout instruction is used for logging out the session between the user terminal and the second application.
In this embodiment of the present invention, optionally, the establishing, by the user terminal, a session with the second application includes:
and establishing a session with the second application according to the access level so that the user terminal accesses the resource corresponding to the access level.
Therefore, the embodiment of the invention can log in a plurality of service systems by using the same account according to the implementation, avoids the complex operations of inputting the login account and the login password for a plurality of times, and further improves the use experience of the user; meanwhile, the embodiment of the invention can make the page jump among a plurality of service systems smoother, and further improve the use experience of users.
Example two
Referring to fig. 2, fig. 2 is a schematic flow chart of another login state sharing method based on device ID according to the second disclosure implemented in the present invention, as shown in fig. 2, the login state sharing method based on device ID includes:
201. the authentication server receives login information sent by the user terminal, the login information is generated by the user terminal when the user accesses a first application in the application pool for the first time through the user terminal, and the login information comprises login account information and the equipment ID of the user terminal.
In the embodiment of the invention, after the authentication server receives the login information and verifies the login information, the authentication server creates a global session with the user terminal, meanwhile, the authentication server creates a token according to the login information, after the token is created, the authentication server incorporates the token into the access address of the user terminal, and the user terminal receives the token.
Therefore, the embodiment of the invention can avoid the complicated operation that the user needs to repeatedly input login information such as user name, password and the like when accessing a plurality of applications by establishing the mapping relation between the equipment ID of the user terminal and the access authority of the application, and can realize that the user can access a plurality of applications without login authentication again after one-time login authentication.
In the embodiment of the present invention, optionally, the user terminal sends the login information in a JSON data format.
For example, the login information is sent in a { "key": ID, user: user, password:123456} data grid, where "key" field represents the device ID, "user" represents the login account number, and "password" represents the login password.
When a user terminal receives a first manual account password input by a user for logging in, the user terminal sends JSON data containing an equipment ID, a login password and a login account to an authentication server in an ajax asynchronous post mode, the authentication server analyzes the equipment ID, the login password and the login account respectively by analyzing the JSON data, and stores the equipment ID, the login password and the login account into a database of the authentication server and records and stores date.
In the embodiment of the present invention, the login state sharing method based on the device ID includes:
202. the authentication server generates a token according to the login information, wherein the token comprises verification information.
In the embodiment of the present invention, optionally, the user may trigger an access request for one application in the browsing page. When a user accesses an application in a browsing page, the application guides the user to input a login account and a login password in a login interface, the login account and the login password are sent to an authentication server by the login interface, the authentication server verifies the login account and the login password, then an authentication identifier is sent to a browser where the login interface is located, and after receiving the authentication identifier, the browser stores the authentication identifier in a cookie file of the browser, wherein the cookie file is a file which is specially used for storing identity verification information in the browser.
In the embodiment of the present invention, optionally, after receiving the authentication identifier, the browser stores the authentication identifier in a token file of the browser.
In the embodiment of the present invention, the login state sharing method based on the device ID includes:
203. the authentication server sends the token to the user terminal so that the user terminal receives the token and stores the token;
204. and when the user terminal detects that the user triggers the access of a second application of the application pool next time, the authentication server receives the token sent by the user terminal.
205. And the authentication server verifies the token according to the verification information in the token, and if the verification is passed, the authentication server sends the token to the user terminal so that the user terminal establishes a session with the second application.
For example, suppose an enterprise has two business systems, namely a first business system and a second business system, in order to realize that an employee of the enterprise can log in the second business system without inputting a login account and a login password after inputting a login account and a login password for one time, after receiving the login account and the login password input by a user for the first time, an authentication server associates the login account and the login password input by the user for the first time with a device ID number of a user terminal and generates a token, and the token indicates that the authentication server successfully verifies the login account and the login password input by the user for the first time.
When a user accesses the second service system, the user terminal firstly acquires the token and sends the token to the authentication server, the authentication server verifies the token, if the authentication server verifies successfully, the authentication server sends the token to the second service system, and after receiving the token, the second service system informs the user terminal to establish a session with the second service system, so that the second service system finally shares the login state of the first service system.
In this embodiment of the present invention, optionally, a login state sharing method based on a device ID further includes:
the authentication server receives a session logout request sent by a user terminal;
and the authentication server generates a session logout instruction according to the session logout request, wherein the session logout instruction is used for logging out the session between the user terminal and the second application.
In this embodiment of the present invention, optionally, after the user terminal receives the token sent by the user terminal, the login sharing method based on the device ID further includes:
and obtaining login information in the token, verifying the login information in the token, and if an account matched with the login information is stored in the account data in the authentication server, executing the authentication server to verify the token according to verification information in the token.
In this embodiment of the present invention, optionally, the generating, by the authentication server, the token according to the login information and sending the token to the user terminal may include:
the authentication server inquires authority information associated with the login information in an authority database according to the login information;
the authentication server identifies the authority information as the value of the authority level field in the token;
the authentication server generates a token, wherein the token includes a permission level field.
Therefore, the embodiment of the invention can log in a plurality of service systems by using the same account according to the implementation, avoids the complex operations of inputting the login account and the login password for a plurality of times, and further improves the use experience of the user; meanwhile, the embodiment of the invention can make the page jump among a plurality of service systems smoother, and further improve the use experience of users.
EXAMPLE III
Referring to fig. 3, as shown in fig. 3, a fifth embodiment of the present invention discloses a device for sharing login status based on device ID, including:
a communication interface 301 for enabling the apparatus 30 to communicate with other communication devices. In particular implementations, communication interface 301 may include a wired communication interface (e.g., an ethernet interface) or may include a wireless communication interface.
A memory 303 is coupled to the processor 302 for storing various software programs and/or sets of instructions, network communication programs, etc. In embodiments of the present invention, the memory 303 may be used to store a database.
In this embodiment of the present invention, optionally, the memory 303 may be configured to store an implementation program of the login state sharing method based on the device ID disclosed in one or more embodiments of the present invention. For the implementation of the login state sharing method based on the device ID disclosed in one or more embodiments of the present invention, please refer to the method embodiments shown in fig. 1 and fig. 2.
In embodiments of the present invention, processor 302 may be used to read and execute computer readable instructions. Specifically, the processor 302 may be configured to call a program stored in the memory 303, such as an implementation program of the login-state sharing method based on the device ID disclosed in one or more embodiments of the present invention, and execute instructions included in the implementation program.
Therefore, the embodiment of the invention can log in a plurality of service systems by using the same account according to the implementation, avoids the complex operations of inputting the login account and the login password for a plurality of times, and further improves the use experience of the user; meanwhile, the embodiment of the invention can make the page jump among a plurality of service systems smoother, and further improve the use experience of users.
Example four
The embodiment of the invention discloses a computer-readable storage medium which stores a computer program for electronic data exchange, wherein the computer program enables a computer to execute the steps in the login state sharing method based on the equipment ID described in the first embodiment and the second embodiment of the invention.
Therefore, the embodiment of the invention can log in a plurality of service systems by using the same account according to the implementation, avoids the complex operations of inputting the login account and the login password for a plurality of times, and further improves the use experience of the user; meanwhile, the embodiment of the invention can make the page jump among a plurality of service systems more smooth and further improve.
EXAMPLE five
The embodiment of the invention discloses a computer program product, which comprises a non-transitory computer readable storage medium storing a computer program, wherein the computer program is operable to make a computer execute the steps in the login state sharing method based on the device ID described in the first embodiment of the invention.
Therefore, the embodiment of the invention can log in a plurality of service systems by using the same account according to the implementation, avoids the complex operations of inputting the login account and the login password for a plurality of times, and further improves the use experience of the user; meanwhile, the embodiment of the invention can make the page jump among a plurality of service systems smoother, and further improve the use experience of users.
In the foregoing embodiments, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
Units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable memory. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a memory and includes several instructions for causing a computer device (which may be a personal computer, a server, a network device, or the like) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned memory comprises: a U-disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic or optical disk, and other various media capable of storing program codes.
Those skilled in the art will appreciate that all or part of the steps in the methods of the above embodiments may be implemented by associated hardware instructed by a program, which may be stored in a computer-readable memory, which may include: flash Memory disks, Read-Only memories (ROMs), Random Access Memories (RAMs), magnetic or optical disks, and the like.
The above embodiments of the present invention are described in detail, and the principle and the implementation of the present invention are explained by applying specific embodiments, and the above description of the embodiments is only used to help understanding the method of the present invention and the core idea thereof; meanwhile, for a person skilled in the art, according to the idea of the present invention, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present invention.

Claims (9)

1. A login state sharing method based on a device ID is characterized by comprising the following steps:
when a user accesses a first application in an application pool for the first time through a user terminal, the user terminal sends login information to an authentication server, wherein the login information comprises login account information and a device ID of the user terminal, so that the authentication server generates a token according to the login information and returns the token to the user terminal, and the token comprises verification information;
the user terminal receives the token and stores the token;
when the user terminal detects that the user next triggers access to a second application of the application pool, the user terminal reads the token;
the user terminal analyzes the failure time point in the token;
the user terminal compares a failure time point with a current time point, and if the failure time point is before the current time point, the user terminal is executed to send the token to the authentication server;
the user terminal sends the token to the authentication server so that the authentication server verifies the token according to the verification information in the token, and if the verification passes, the authentication server sends the token to the second application;
and after the second application receives the token, the user terminal establishes a session with the second application.
2. The device ID-based login state sharing method according to claim 1, wherein after the user terminal establishes the session with the second application, the device ID-based login state sharing method further comprises:
the user terminal responds to the account quitting operation triggered by the user and generates a session logout request;
and the user terminal sends the session logout request to the authentication server so that the authentication server generates a session logout instruction according to the session logout request, wherein the session logout instruction is used for logging out the session between the user terminal and the second application.
3. The device ID-based login state sharing method of claim 1, wherein the establishing of the session with the second application by the user terminal comprises:
and establishing a session with the second application according to the access level so that the user terminal accesses the resource corresponding to the access level.
4. A login state sharing method based on a device ID is characterized in that the login sharing method based on the device ID comprises the following steps:
the method comprises the steps that an authentication server receives login information sent by a user terminal, wherein the login information is generated by the user terminal when a user accesses a first application in an application pool for the first time through the user terminal, and the login information comprises login account information and a device ID of the user terminal;
the authentication server generates a token according to the login information, wherein the token comprises verification information;
the authentication server sends the token to the user terminal so that the user terminal receives the token and stores the token;
when the user terminal detects that the user triggers the access of a second application of the application pool next time, the authentication server receives the token sent by the user terminal;
and the authentication server verifies the token according to the verification information in the token, and if the verification is passed, the authentication server sends the token to the user terminal so that the user terminal establishes a session with the second application.
5. The method of claim 4, wherein the method further comprises:
the authentication server receives a session logout request sent by the user terminal;
and the authentication server generates a session logout instruction according to the session logout request, wherein the session logout instruction is used for logging out the session between the user terminal and the second application.
6. The method as claimed in claim 4, wherein after the user terminal receives the token sent by the user terminal, the method further comprises:
and obtaining login information in the token, verifying the login information in the token, and if an account matched with the login information is stored in account data in the authentication server, executing the authentication server to verify the token according to the verification information in the token.
7. The device ID-based login state sharing method according to claim 4,
the authentication server generating a token according to the login information and sending the token to the user terminal includes:
the authentication server inquires authority information associated with the login information in an authority database according to the login information;
the authentication server identifies the permission information as a value of a permission level field in the token;
the authentication server generates a token, wherein the token includes the permission level field.
8. A device ID-based login state sharing apparatus, comprising:
a memory storing executable program code;
a processor coupled to the memory;
the processor calls executable program code stored in the memory to perform the steps in the device ID based login sharing method according to any one of claims 1-7.
9. A computer storage medium storing computer instructions for performing the steps of the device ID based login sharing method of any one of claims 1-7 when invoked.
CN201910099187.8A 2019-01-31 2019-01-31 Login state sharing method and device based on equipment ID Active CN109639740B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201910099187.8A CN109639740B (en) 2019-01-31 2019-01-31 Login state sharing method and device based on equipment ID
PCT/CN2019/089150 WO2020155492A1 (en) 2019-01-31 2019-05-30 Device id-based login state sharing method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910099187.8A CN109639740B (en) 2019-01-31 2019-01-31 Login state sharing method and device based on equipment ID

Publications (2)

Publication Number Publication Date
CN109639740A CN109639740A (en) 2019-04-16
CN109639740B true CN109639740B (en) 2022-02-22

Family

ID=66064626

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910099187.8A Active CN109639740B (en) 2019-01-31 2019-01-31 Login state sharing method and device based on equipment ID

Country Status (2)

Country Link
CN (1) CN109639740B (en)
WO (1) WO2020155492A1 (en)

Families Citing this family (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109639740B (en) * 2019-01-31 2022-02-22 平安科技(深圳)有限公司 Login state sharing method and device based on equipment ID
US11652818B2 (en) 2019-07-18 2023-05-16 Advanced New Technologies Co., Ltd. Method and apparatus for accessing service system
CN110445769B (en) * 2019-07-18 2021-03-26 创新先进技术有限公司 Access method and device of business system
CN110516454A (en) * 2019-08-13 2019-11-29 苏州浪潮智能科技有限公司 Exchange method, system, device and the computer readable storage medium of more equipment
CN111783044B (en) * 2019-10-25 2024-03-01 北京沃东天骏信息技术有限公司 Method and device for sharing login state
CN113225295B (en) * 2020-01-21 2022-10-25 汇丰软件开发(广东)有限公司 Safe anonymous opinion feedback system
CN111343168B (en) * 2020-02-19 2022-01-28 深圳壹账通智能科技有限公司 Identity authentication method and device, computer equipment and readable storage medium
CN111581612B (en) * 2020-04-26 2022-04-22 支付宝(杭州)信息技术有限公司 Login state data processing method, device, equipment and system of applet application
CN111597540B (en) * 2020-04-28 2022-01-28 维沃移动通信有限公司 Login method of application program, electronic device and readable storage medium
CN112346888A (en) * 2020-11-04 2021-02-09 网易(杭州)网络有限公司 Data communication method and device based on software application and server equipment
CN112422533B (en) * 2020-11-05 2023-03-24 杭州米络星科技(集团)有限公司 Verification method and device for user to access network and electronic equipment
CN112612922A (en) * 2020-12-16 2021-04-06 平安普惠企业管理有限公司 Method and device for safely storing mobile phone number, computer equipment and medium
CN112910904B (en) * 2021-02-03 2023-05-09 叮当快药科技集团有限公司 Login method and device of multi-service system
CN112822217A (en) * 2021-02-25 2021-05-18 上海派拉软件股份有限公司 Server access method, device, equipment and storage medium
CN113132402B (en) * 2021-04-27 2022-08-30 奇安信科技集团股份有限公司 Single sign-on method and system
CN113536250B (en) * 2021-06-02 2023-07-04 上海硬通网络科技有限公司 Token generation method, login verification method and related equipment
CN113612756B (en) * 2021-07-29 2023-06-27 广州博冠信息科技有限公司 Shared login method and device, computer readable storage medium and electronic equipment
CN113992408B (en) * 2021-10-27 2024-05-10 上海妃鱼网络科技有限公司 Multi-system unified login information processing method and system
CN114726632B (en) * 2022-04-14 2024-04-05 广州鑫景信息科技服务有限公司 Login method, login equipment and storage medium
CN114866247B (en) * 2022-04-18 2024-01-02 杭州海康威视数字技术股份有限公司 Communication method, device, system, terminal and server
CN114866324A (en) * 2022-05-10 2022-08-05 中国建设银行股份有限公司 Information processing method, system, device and storage medium
CN114760448B (en) * 2022-06-15 2022-09-02 深圳市鼎山科技有限公司 Intelligent 5G video monitoring system and method based on short message remote activation
CN115529154A (en) * 2022-08-01 2022-12-27 深圳市酷开网络科技股份有限公司 Login management method, login management device, electronic device and readable storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101355527A (en) * 2008-08-15 2009-01-28 深圳市中兴移动通信有限公司 Method for implementing single-point LOG striding domain name
CN103188237A (en) * 2011-12-30 2013-07-03 盛大计算机(上海)有限公司 Single sign-on system and single sign-on method
CN103685175A (en) * 2012-09-11 2014-03-26 腾讯科技(深圳)有限公司 Method, proxy server and system for sharing logging status between application platform and application
CN104378376A (en) * 2014-11-18 2015-02-25 深圳中兴网信科技有限公司 SOA-based single-point login method, authentication server and browser
CN104917727A (en) * 2014-03-12 2015-09-16 中国移动通信集团福建有限公司 Account authentication method, system and apparatus
CN106209726A (en) * 2015-04-30 2016-12-07 中兴通讯股份有限公司 A kind of Mobile solution single-point logging method and device
CN107147617A (en) * 2017-04-01 2017-09-08 北京五八信息技术有限公司 A kind of single-point logging method and device

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105162779B (en) * 2015-08-20 2018-08-17 南威软件股份有限公司 The method that multisystem uses unifying user authentication
US10462092B2 (en) * 2015-09-28 2019-10-29 Facebook, Inc. Authenticating notifications on online social networks
CN105450637A (en) * 2015-11-09 2016-03-30 歌尔声学股份有限公司 Single sign-on method and device for multiple application systems
CN108200050B (en) * 2017-12-29 2022-07-01 重庆金融资产交易所有限责任公司 Single sign-on server, method and computer readable storage medium
CN109274685B (en) * 2018-11-02 2021-09-17 深圳壹账通智能科技有限公司 Multi-system login method and device, computer equipment and storage medium
CN109639740B (en) * 2019-01-31 2022-02-22 平安科技(深圳)有限公司 Login state sharing method and device based on equipment ID

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101355527A (en) * 2008-08-15 2009-01-28 深圳市中兴移动通信有限公司 Method for implementing single-point LOG striding domain name
CN103188237A (en) * 2011-12-30 2013-07-03 盛大计算机(上海)有限公司 Single sign-on system and single sign-on method
CN103685175A (en) * 2012-09-11 2014-03-26 腾讯科技(深圳)有限公司 Method, proxy server and system for sharing logging status between application platform and application
CN104917727A (en) * 2014-03-12 2015-09-16 中国移动通信集团福建有限公司 Account authentication method, system and apparatus
CN104378376A (en) * 2014-11-18 2015-02-25 深圳中兴网信科技有限公司 SOA-based single-point login method, authentication server and browser
CN106209726A (en) * 2015-04-30 2016-12-07 中兴通讯股份有限公司 A kind of Mobile solution single-point logging method and device
CN107147617A (en) * 2017-04-01 2017-09-08 北京五八信息技术有限公司 A kind of single-point logging method and device

Also Published As

Publication number Publication date
WO2020155492A1 (en) 2020-08-06
CN109639740A (en) 2019-04-16

Similar Documents

Publication Publication Date Title
CN109639740B (en) Login state sharing method and device based on equipment ID
US10057251B2 (en) Provisioning account credentials via a trusted channel
CN104253686B (en) Method, equipment and the system that account logs in
CN104113551B (en) A kind of platform authorization method, platform service end and applications client and system
CN104618315B (en) A kind of method, apparatus and system of verification information push and Information Authentication
CN112769826B (en) Information processing method, device, equipment and storage medium
US8365245B2 (en) Previous password based authentication
CN103368913A (en) Account login method, apparatus and system, and network server
CN102594817A (en) Password agent method, user terminal equipment and password agent server
CN107241336B (en) Identity verification method and device
CN106878250B (en) Cross-application single-state login method and device
CN106254319B (en) Light application login control method and device
CN111818088A (en) Authorization mode management method and device, computer equipment and readable storage medium
KR20150080578A (en) Method, apparatus, and device for adding plug-in in address book
CN111355723A (en) Single sign-on method, device, equipment and readable storage medium
CN106254328B (en) A kind of access control method and device
CN109088884B (en) Website access method, device, server and storage medium based on identity authentication
CN108737398B (en) Processing method and device of trust system, computer equipment and storage medium
CN106161356B (en) Method and system for rapidly logging in website through client
US9680814B2 (en) Method, device, and system for registering terminal application
CN109327468A (en) A kind of offline reminding method, device, equipment and storage medium
CN104767672A (en) Account relation establishing method and device
CN109688109A (en) The verification method and device of identifying code based on client-side information identification
CN112714166A (en) Multi-cluster management method and device for distributed storage system
KR20230075385A (en) Method and apparatus for managing user profile

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant