CN110324344B - Account information authentication method and device - Google Patents
Account information authentication method and device Download PDFInfo
- Publication number
- CN110324344B CN110324344B CN201910605350.3A CN201910605350A CN110324344B CN 110324344 B CN110324344 B CN 110324344B CN 201910605350 A CN201910605350 A CN 201910605350A CN 110324344 B CN110324344 B CN 110324344B
- Authority
- CN
- China
- Prior art keywords
- website
- account information
- logged
- information
- account
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The application provides a method and a device for authenticating account information, wherein the account information authentication method provided by the embodiment of the application associates the account information with website information which is permitted to log in and stores the account information in an account information list in advance, the account information list uniformly stores the account information corresponding to the website information, after the account information input by a user is successfully verified, at least one website information which is permitted to log in and corresponds to the account information is sent to a website to be logged in, so that the website to be logged in is determined to be included in the at least one website information which is permitted to log in and corresponds to the account information, the user which is permitted to log in the website to be logged in and corresponds to the account information is authenticated, the authentication of the website to be logged in is realized, a data management module does not need to be arranged on each website to authenticate the account information input by the user, and the authentication process is simplified, the efficiency of authentication is improved, and the cost of website development, maintenance and authentication is reduced.
Description
Technical Field
The present application relates to the field of internet technologies, and in particular, to a method and an apparatus for account information authentication.
Background
Currently, an enterprise develops and maintains a plurality of websites, and provides different services for users through the plurality of websites.
In the prior art, each website corresponds to user data, different websites correspond to different user data, and the user data between the websites are not related, so that each website needs to be provided with a data management module to manage the corresponding user data through the data management module. For example, when a user logs in a website, a data management module on the website needs to verify account information of the user. However, the method for authenticating the account information of the user by setting the data management module on each website makes the process of authenticating the account information of the user complicated, has low efficiency, and has high cost for developing, maintaining and authenticating the website.
Disclosure of Invention
In view of the above, an object of the present application is to provide a method and an apparatus for authenticating account information, so as to improve the authentication efficiency and reduce the authentication cost.
In a first aspect, an embodiment of the present application provides a method for authenticating account information, where the method includes:
receiving account information sent by a website to be logged in;
verifying whether the account information is correct or not based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information;
if the account information is correct, sending a verification success identifier and at least one login permission website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permission website information corresponding to the account information, and permitting a user corresponding to the account information to log in the to-be-logged-in website.
In some embodiments of the present application, before receiving account information sent by a website to be logged in, the method includes:
receiving account information created by a user;
setting at least one website information for permitting login for the account information;
and storing the account information and at least one login permission website information corresponding to the account information in an account information list.
In some embodiments of the present application, the account information includes a user name and a password;
the verifying whether the account information is correct based on the pre-stored account information list comprises:
searching the user name in the account information list;
if the account information list comprises the user name, comparing the password corresponding to the user name with the password corresponding to the user name stored in the account information list.
In some embodiments of the present application, the method further comprises:
if the account information is incorrect, sending a verification failure identifier to the website to be logged in, so that the website to be logged in does not allow the user corresponding to the account information to log in the website to be logged in according to the verification failure identifier.
In a second aspect, an embodiment of the present application further provides a method for authenticating account information, where the method includes:
sending the received account information to an account authentication server;
receiving a verification success identifier sent by the account authentication server and at least one login permission website information corresponding to the account information, wherein the verification success identifier is obtained by verifying the account information by the account authentication server according to a pre-stored account information list;
judging whether the information of the website permitted to be logged in comprises the information of the website to be logged in;
and if so, permitting the user corresponding to the account information to log in the website to be logged in.
In some embodiments of the present application, the method further comprises:
receiving a verification failure identifier which is sent by the account authentication server and is obtained by verifying the account information according to a pre-stored account information list;
and according to the verification failure identification, not allowing the user corresponding to the account information to log in the website to be logged in.
In some embodiments of the present application, the website information includes a website name and identification information corresponding to the website name;
the determining whether the information of the website to be logged in is included in the at least one login permitted website information, and if so, permitting the user corresponding to the account information to log in the website to be logged in includes:
judging whether at least one login permitted website name corresponding to the account information comprises the name of the website to be logged in;
if yes, judging whether the identification information of the website to be logged in is the same as the identification information corresponding to the website to be logged in at least one login permitted website information;
and if the account information is the same as the website to be logged in, allowing the user corresponding to the account information to log in the website to be logged in.
In a third aspect, an embodiment of the present application further provides an apparatus for account information authentication, where the apparatus includes:
the receiving module is used for receiving account information sent by a website to be logged in;
the verification module is used for verifying whether the account information is correct or not based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information;
and if the account information is correct, sending a verification success identifier and at least one login permission website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permission website information corresponding to the account information, and permits a user corresponding to the account information to log in the to-be-logged-in website.
In a fourth aspect, an embodiment of the present application further provides an electronic device, including: a processor, a memory and a bus, wherein the memory stores machine-readable instructions executable by the processor, the processor and the memory communicate via the bus when the electronic device is running, and the machine-readable instructions, when executed by the processor, perform the steps of the method for authenticating account information as set forth in the first aspect above or any one of the possible embodiments of the first aspect.
In a fifth aspect, the present application further provides a computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the computer program performs the steps of the method for authenticating account information in the first aspect or any possible implementation manner of the first aspect.
The embodiment of the application provides a method and a device for account information authentication, wherein the method for account information authentication comprises the following steps: receiving account information sent by a website to be logged in; verifying whether the account information is correct or not based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information; if the verification is correct, the verification success identification and at least one login permission website information corresponding to the account information are sent to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permission website information corresponding to the account information, and the user corresponding to the account information is permitted to log in the to-be-logged-in website. The account information and website information which permits login are correlated and pre-stored in an account information list, the account information list uniformly stores the account information corresponding to the website information, after the account information input by a user is successfully verified, at least one website information which permits login and corresponds to the account information is sent to a website to be logged in, so that the website to be logged in is determined to include the information of the website to be logged in the at least one website information which permits login and corresponds to the account information, the user which permits the account information to log in the website to be logged in is authenticated, a data management module does not need to be arranged on each website to authenticate the account information input by the user, the authentication process is simplified, the authentication efficiency is improved, the website development and maintenance are reduced, and the website to be logged in is authenticated, The cost of authentication.
In order to make the aforementioned objects, features and advantages of the present application more comprehensible, preferred embodiments accompanied with figures are described in detail below.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are required to be used in the embodiments will be briefly described below, it should be understood that the following drawings only illustrate some embodiments of the present application and therefore should not be considered as limiting the scope, and for those skilled in the art, other related drawings can be obtained from the drawings without inventive effort.
Fig. 1 is a flowchart illustrating a method for authenticating account information according to an embodiment of the present disclosure;
fig. 2 is a flowchart illustrating another method for authenticating account information according to an embodiment of the present disclosure;
fig. 3 is a schematic structural diagram illustrating an account information authentication apparatus according to an embodiment of the present application;
fig. 4 shows a schematic structural diagram of an electronic device provided in an embodiment of the present application.
Icon: 301-a receiving module; 302-a verification module; 303-a sending module; 400-an electronic device; 401-a processor; 402-a memory; 403-bus; 4021-a memory; 4022-external memory.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present application clearer, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all the embodiments. The components of the embodiments of the present application, generally described and illustrated in the figures herein, can be arranged and designed in a wide variety of different configurations. Thus, the following detailed description of the embodiments of the present application, presented in the accompanying drawings, is not intended to limit the scope of the claimed application, but is merely representative of selected embodiments of the application. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the present application without making any creative effort, shall fall within the protection scope of the present application.
In the prior art, each website corresponds to user data, different websites correspond to different user data, and the user data between the websites are not related, so that each website needs to be provided with a data management module to manage the corresponding user data through the data management module. For example, when a user logs in a website, a data management module on the website needs to verify account information of the user. However, the method for authenticating the account information of the user by setting the data management module on each website makes the process of authenticating the account information of the user complicated, has low efficiency, and has high cost for developing, maintaining and authenticating the website. Based on this, the embodiment of the present application provides a method and an apparatus for account information authentication, which are described below by an embodiment.
To facilitate understanding of the present embodiment, first, a method for authenticating account information disclosed in the embodiments of the present application is described in detail.
Example one
The embodiment of the application provides an account information authentication method, which is applied to an account authentication server.
Referring to fig. 1, a flowchart of a method for authenticating account information is shown, the method includes steps S101-S103; specifically, the method comprises the following steps:
and S101, receiving account information sent by a website to be logged in.
In the embodiment of the application, the account information includes a user name and a password. The user inputs account information, namely a user name and a password into a website to be logged in, and the website to be logged in sends the input account information to an account authentication server.
S102, whether the account information is correct is verified based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information.
In the embodiment of the application, the account information list includes at least one login permitted website information corresponding to each account information.
In the embodiment of the application, the account information includes a user name and a password. The method for verifying whether account information is correct or not based on the pre-stored account information list comprises the following steps:
first, the user name is looked up in the account information list.
Secondly, if the account information list comprises the user name, comparing the password corresponding to the user name with the password corresponding to the user name stored in the account information list.
And S103, if the verification is correct, sending the verification success identification and at least one login permission website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permission website information corresponding to the account information, and a user corresponding to the account information is permitted to log in the to-be-logged-in website.
And if the account information is incorrect, sending a verification failure identifier to the website to be logged in, so that the website to be logged in does not allow the user corresponding to the account information to log in the website to be logged in according to the verification failure identifier.
Specifically, if the account information list includes the user name, and the password corresponding to the user name is the same as the password corresponding to the user name stored in the account information list, the account information is accurate. If the account information list does not include the user name, or the password corresponding to the user name is different from the password corresponding to the user name stored in the account information list, the account information is inaccurate.
In the embodiment of the application, if the account information is correct, a verification success identifier and at least one login permission website information corresponding to the account information are sent to the website to be logged in, after the website to be logged in receives the verification success identifier, the website to be logged in is searched in the at least one login permission website information corresponding to the account information, and if the at least one login permission website information comprises the information of the website to be logged in, a user corresponding to the account information is permitted to log in the website to be logged in; and if the information of the website to be logged in is not included in the at least one website information which permits logging in, not permitting the user corresponding to the account information to log in the website to be logged in.
According to the account information authentication method provided by the embodiment of the application, account information and website information which permits login are associated and pre-stored in an account information list, the account information list uniformly stores the account information corresponding to the website information, after the account information input by a user is successfully verified, at least one website information which permits login and corresponds to the account information is sent to a website to be logged in, so that the website to be logged in is determined to include the information of the website to be logged in the at least one website information which permits login and corresponds to the account information, the user which corresponds to the account information is permitted to log in the website to be logged in, authentication of the website to be logged in is achieved, a data management module does not need to be arranged on each website to authenticate the account information input by the user, the authentication process is simplified, the authentication efficiency is improved, website development and website development are reduced, Cost of maintenance, authentication.
As an optional embodiment, before the receiving account information sent by a website to be logged in, the method includes:
first, account information created by a user is received.
In the embodiment of the application, the created account information includes a user name, a password, and may further include a mailbox.
Secondly, setting at least one piece of login permission website information for the account information.
In the embodiment of the application, the website information comprises the website name, the website identification code and the valid period of each login-permitted website. For example, the account information may be that the user name is zhang, the password is 123456, and the mailbox is: com, the account information corresponds to at least one website information which permits login, and the website information comprises: website name: a first web site; the website identification code is as follows: 111; the effective period is as follows: 2019.06.01 to 2020.05.31. The method for setting at least one login permission website information for the account information comprises the following steps: firstly, an account authentication server is set according to the authority of a user; for example, users can be divided into different levels, such as ordinary users, advanced users, administrative users, and the like, and the different user levels correspond to different permissions, such as that the ordinary users can only log in the website a and the website B, and the valid period of the log-in is one year; advanced users can log in the website A, the website B, the website C, the website D and the like, and the effective period of logging in is five years. Therefore, at least one piece of website information for permitting login is set for the account information corresponding to the user according to the authority of the user. Secondly, after the user creates account information, the information of a plurality of websites capable of logging in is displayed to the user, and the user can set the information from the displayed information of the websites. For example, after the account information is created by the user, at least one website information permitted to be logged in corresponding to the account information may be selected, and at the same time, a validity period corresponding to each website information may be selected.
And finally, storing the account information and at least one login permission website information corresponding to the account information in an account information list.
Illustratively, the at least one login permitted website information corresponding to the account information may be the at least one login permitted website information corresponding to the user name, and the password corresponding to each website information of the user name in the at least one login permitted website information, that is, the user name may be set to be different passwords in different website information. For example, if the username is lee, the website information for permitting login corresponding to the username includes website a, website B, and website C, and the password corresponding to the username is 123 in website a, 235 in website B, and 678 in website C.
For example, if the user wants to change the password, the user may send the user name, the original password, and the changed password to the account authentication server, and the account authentication server verifies the user name and the original password, and if the user passes the verification, the original password is replaced by the changed password, and the password is modified. Further, if the user forgets the password, the user can send the user name and the mailbox to the account authentication server, the account authentication server verifies the user name and the mailbox, and if the user passes the verification, the user is allowed to reset the password.
Example two
The embodiment of the application provides an account information authentication method, which is applied to a website to be logged in.
Referring to fig. 2, a flowchart of another method for authenticating account information is shown, which includes steps S201-S204; specifically, the method comprises the following steps:
s201, sending the received account information to an account authentication server;
s202, receiving a verification success identifier sent by the account authentication server and at least one login permission website information corresponding to the account information, wherein the verification success identifier is obtained by the account authentication server through verifying the account information according to a pre-stored account information list;
s203, judging whether the information of the website to be logged in is included in the at least one website information which permits logging in;
and S204, if yes, allowing the user corresponding to the account information to log in the website to be logged in.
As an alternative embodiment, the method further comprises:
firstly, receiving a verification failure identifier which is sent by an account authentication server and is obtained by verifying account information according to a pre-stored account information list;
and secondly, according to the verification failure identification, not allowing the user corresponding to the account information to log in the website to be logged in.
As an optional embodiment, the website information includes a website name and identification information corresponding to the website name;
the method for judging whether the information of the website to be logged in is included in the at least one website information which permits logging in, and if so, the method for permitting the user corresponding to the account information to log in the website to be logged in includes the following steps:
judging whether at least one login permission website name corresponding to the account information comprises a name of a website to be logged in;
if yes, judging whether the identification information of the website to be logged in is the same as the identification information corresponding to the website to be logged in at least one login permitted website information;
and if the account information is the same as the login information, the user corresponding to the account information is permitted to log in the website to be logged in.
The account information authentication method provided by the embodiment of the application has the same technical characteristics as the account information authentication method provided by the first embodiment, so that the same technical problems can be solved, and the same technical effects can be achieved.
Based on the same inventive concept, the embodiment of the present application further provides an account information authentication device corresponding to the account information authentication method, and as the principle of solving the problem of the device in the embodiment of the present application is similar to the account information authentication method in the embodiment of the present application, the implementation of the device may refer to the implementation of the method, and repeated details are omitted.
EXAMPLE III
An embodiment of the present application provides an account information authentication apparatus, and refer to fig. 3, which is a schematic structural diagram of an account information authentication apparatus, where the apparatus includes:
the receiving module 301 is configured to receive account information sent by a website to be logged in;
a verification module 302, configured to verify whether the account information is correct based on a pre-stored account information list, where the account information list includes at least one account information and at least one login permitted website information corresponding to each account information;
a sending module 303, configured to send, if the account information is correct, a verification success identifier and at least one login permitted website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permitted website information corresponding to the account information, and permits the user corresponding to the account information to log in the to-be-logged-in website.
As an alternative embodiment, the apparatus further comprises:
the creating module is used for receiving account information created by a user;
the setting module is used for setting at least one website information for permitting login for the account information;
and the storage module is used for storing the account information and at least one login permission website information corresponding to the account information in an account information list.
As an optional embodiment, the account information includes a user name and a password; wherein the verification module is to:
searching the user name in the account information list;
if the account information list comprises the user name, comparing the password corresponding to the user name with the password corresponding to the user name stored in the account information list.
As an alternative embodiment, the apparatus further comprises:
and the intercepting module is used for sending a verification failure identifier to the website to be logged in if the account information is incorrect, so that the website to be logged in is not allowed to log in the website to be logged in by the user corresponding to the account information according to the verification failure identifier.
The account information authentication device provided by the embodiment of the application has the same technical characteristics as the account information authentication method provided by the first embodiment, so that the same technical problems can be solved, and the same technical effects can be achieved.
Example four
The embodiment of the application provides another account information authentication device, which comprises:
the information sending module is used for sending the received account information to the account authentication server;
the information receiving module is used for receiving a verification success identifier sent by the account authentication server and at least one login permission website information corresponding to the account information, wherein the verification success identifier is obtained by the account authentication server through verification of the account information according to a pre-stored account information list;
the judging module is used for judging whether the information of the website which is permitted to log in comprises the information of the website to be logged in; and if so, permitting the user corresponding to the account information to log in the website to be logged in.
As an alternative embodiment, the apparatus further comprises:
the failure identification receiving module is used for receiving a verification failure identification which is sent by the account authentication server and is obtained by verifying the account information according to a pre-stored account information list;
and the login refusing module is used for not allowing the user corresponding to the account information to log in the website to be logged in according to the verification failure identification.
As an optional embodiment, the website information includes a website name and identification information corresponding to the website name; the determination module is configured to:
judging whether at least one login permitted website name corresponding to the account information comprises the name of the website to be logged in;
if yes, judging whether the identification information of the website to be logged in is the same as the identification information corresponding to the website to be logged in at least one login permitted website information;
and if the account information is the same as the website to be logged in, allowing the user corresponding to the account information to log in the website to be logged in.
The account information authentication device provided by the embodiment of the application has the same technical characteristics as the account information authentication method provided by the first embodiment, so that the same technical problems can be solved, and the same technical effects can be achieved.
EXAMPLE five
Based on the same technical concept, the embodiment of the application also provides the electronic equipment. Referring to fig. 4, a schematic structural diagram of an electronic device 400 provided in the embodiment of the present application includes a processor 401, a memory 402, and a bus 403. The memory 402 is used for storing execution instructions and includes a memory 4021 and an external memory 4022; the memory 4021 is also referred to as an internal memory, and is configured to temporarily store operation data in the processor 401 and data exchanged with the external memory 4022 such as a hard disk, the processor 401 exchanges data with the external memory 4022 through the memory 4021, and when the electronic device 400 operates, the processor 401 communicates with the memory 402 through the bus 403, so that the processor 401 executes the following instructions:
receiving account information sent by a website to be logged in;
verifying whether the account information is correct or not based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information;
if the account information is correct, sending a verification success identifier and at least one login permission website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permission website information corresponding to the account information, and permitting a user corresponding to the account information to log in the to-be-logged-in website.
In one possible design, the instructions that may be executed by processor 401 further include:
receiving account information created by a user;
setting at least one website information for permitting login for the account information;
and storing the account information and at least one login permission website information corresponding to the account information in an account information list.
In one possible design, the instructions that may be executed by processor 401 further include:
the account information comprises a user name and a password;
the verifying whether the account information is correct based on the pre-stored account information list comprises:
searching the user name in the account information list;
if the account information list comprises the user name, comparing the password corresponding to the user name with the password corresponding to the user name stored in the account information list.
In one possible design, the instructions that may be executed by processor 401 further include:
if the account information is incorrect, sending a verification failure identifier to the website to be logged in, so that the website to be logged in does not allow the user corresponding to the account information to log in the website to be logged in according to the verification failure identifier.
In one possible design, the instructions that may be executed by processor 401 further include:
sending the received account information to an account authentication server;
receiving a verification success identifier sent by the account authentication server and at least one login permission website information corresponding to the account information, wherein the verification success identifier is obtained by verifying the account information by the account authentication server according to a pre-stored account information list;
judging whether the information of the website permitted to be logged in comprises the information of the website to be logged in;
and if so, permitting the user corresponding to the account information to log in the website to be logged in.
In one possible design, the instructions that may be executed by processor 401 further include:
receiving a verification failure identifier which is sent by the account authentication server and is obtained by verifying the account information according to a pre-stored account information list;
and according to the verification failure identification, not allowing the user corresponding to the account information to log in the website to be logged in.
In one possible design, the instructions that may be executed by processor 401 further include:
the website information comprises a website name and identification information corresponding to the website name;
the determining whether the information of the website to be logged in is included in the at least one login permitted website information, and if so, permitting the user corresponding to the account information to log in the website to be logged in includes:
judging whether at least one login permitted website name corresponding to the account information comprises the name of the website to be logged in;
if yes, judging whether the identification information of the website to be logged in is the same as the identification information corresponding to the website to be logged in at least one login permitted website information;
and if the account information is the same as the website to be logged in, allowing the user corresponding to the account information to log in the website to be logged in.
EXAMPLE six
An embodiment of the present application further provides a computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the steps of the method for authenticating account information in any of the above embodiments are performed.
Specifically, the storage medium can be a general-purpose storage medium, such as a removable disk, a hard disk, or the like, and when the computer program on the storage medium is executed, the steps of the method for authenticating account information can be executed, so that the authentication efficiency is improved.
The computer program product of the method for performing account information authentication provided in the embodiment of the present application includes a computer-readable storage medium storing a nonvolatile program code executable by a processor, where instructions included in the program code may be used to execute the method described in the foregoing method embodiment, and specific implementation may refer to the method embodiment, and is not described herein again.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the several embodiments provided in the present application, it should be understood that the disclosed system, apparatus and method may be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units is only one logical division, and there may be other divisions when actually implemented, and for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection of devices or units through some communication interfaces, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present application may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit.
The functions, if implemented in the form of software functional units and sold or used as a stand-alone product, may be stored in a non-volatile computer-readable storage medium executable by a processor. Based on such understanding, the technical solution of the present application or portions thereof that substantially contribute to the prior art may be embodied in the form of a software product stored in a storage medium and including instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
Finally, it should be noted that: the above-mentioned embodiments are only specific embodiments of the present application, and are used for illustrating the technical solutions of the present application, but not limiting the same, and the scope of the present application is not limited thereto, and although the present application is described in detail with reference to the foregoing embodiments, those skilled in the art should understand that: any person skilled in the art can modify or easily conceive the technical solutions described in the foregoing embodiments or equivalent substitutes for some technical features within the technical scope disclosed in the present application; such modifications, changes or substitutions do not depart from the spirit and scope of the exemplary embodiments of the present application, and are intended to be covered by the scope of the present application. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.
Claims (9)
1. A method for account information authentication is applied to an account authentication server, and comprises the following steps:
receiving account information sent by a website to be logged in;
verifying whether the account information is correct or not based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information;
if the account information is correct, sending a verification success identifier and at least one login permission website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permission website information corresponding to the account information, and permitting a user corresponding to the account information to log in the to-be-logged-in website;
the account information comprises a user name and a password;
the verifying whether the account information is correct based on the pre-stored account information list comprises:
searching the user name in the account information list;
if the account information list comprises the user name, comparing the password corresponding to the user name with the password corresponding to the user name stored in the account information list;
the making the website to be logged in determine that the information of the website to be logged in is included in at least one login permitted website information corresponding to the account information, and permitting a user corresponding to the account information to log in the website to be logged in includes:
after the website to be logged in receives the verification success identifier and at least one login permission website information corresponding to the account information, judging whether the at least one login permission website information comprises the information of the website to be logged in;
if yes, permitting the user corresponding to the account information to log in the website to be logged in;
and if the information of the website to be logged in is not included in the at least one website information which permits logging in, not permitting the user corresponding to the account information to log in the website to be logged in.
2. The method according to claim 1, wherein before the receiving account information sent by the website to be logged in, the method comprises:
receiving account information created by a user;
setting at least one website information for permitting login for the account information;
and storing the account information and at least one login permission website information corresponding to the account information in an account information list.
3. The method of claim 1, further comprising:
if the account information is incorrect, sending a verification failure identifier to the website to be logged in, so that the website to be logged in does not allow the user corresponding to the account information to log in the website to be logged in according to the verification failure identifier.
4. A method for account information authentication is applied to a website to be logged in, and comprises the following steps:
sending the received account information to an account authentication server;
receiving a verification success identifier sent by the account authentication server and at least one login permission website information corresponding to the account information, wherein the verification success identifier is obtained by verifying the account information by the account authentication server according to a pre-stored account information list;
judging whether the information of the website permitted to be logged in comprises the information of the website to be logged in;
if yes, permitting the user corresponding to the account information to log in the website to be logged in;
and if the information of the website to be logged in is not included in the at least one website information which permits logging in, not permitting the user corresponding to the account information to log in the website to be logged in.
5. The method of claim 4, further comprising:
receiving a verification failure identifier which is sent by the account authentication server and is obtained by verifying the account information according to a pre-stored account information list;
and according to the verification failure identification, not allowing the user corresponding to the account information to log in the website to be logged in.
6. The method of claim 4, wherein the website information comprises a website name and identification information corresponding to the website name;
the determining whether the information of the website to be logged in is included in the at least one login permitted website information, and if so, permitting the user corresponding to the account information to log in the website to be logged in includes:
judging whether at least one login permitted website name corresponding to the account information comprises the name of the website to be logged in;
if yes, judging whether the identification information of the website to be logged in is the same as the identification information corresponding to the website to be logged in at least one login permitted website information;
and if the account information is the same as the website to be logged in, allowing the user corresponding to the account information to log in the website to be logged in.
7. An apparatus for account information authentication, the apparatus comprising:
the receiving module is used for receiving account information sent by a website to be logged in;
the verification module is used for verifying whether the account information is correct or not based on a pre-stored account information list, wherein the account information list comprises at least one account information and at least one login permission website information corresponding to each account information;
a sending module, configured to send, if the account information is correct, a verification success identifier and at least one login permitted website information corresponding to the account information to the to-be-logged-in website, so that the to-be-logged-in website determines that the information of the to-be-logged-in website is included in the at least one login permitted website information corresponding to the account information, and permits a user corresponding to the account information to log in the to-be-logged-in website;
the account information comprises a user name and a password;
the verification module is configured to verify whether the account information is correct based on a pre-stored account information list, and is specifically implemented in the following manner:
searching the user name in the account information list;
if the account information list comprises the user name, comparing the password corresponding to the user name with the password corresponding to the user name stored in the account information list;
the sending module is configured to, when the to-be-logged-in website determines that information of the to-be-logged-in website is included in at least one login permitted website information corresponding to the account information, permit a user corresponding to the account information to log in the to-be-logged-in website, implement the following steps:
after the website to be logged in receives the verification success identifier and at least one login permission website information corresponding to the account information, judging whether the at least one login permission website information comprises the information of the website to be logged in;
if yes, permitting the user corresponding to the account information to log in the website to be logged in;
and if the information of the website to be logged in is not included in the at least one website information which permits logging in, not permitting the user corresponding to the account information to log in the website to be logged in.
8. An electronic device, comprising: a processor, a memory and a bus, the memory storing machine-readable instructions executable by the processor, the processor and the memory communicating via the bus when the electronic device is operating, the machine-readable instructions when executed by the processor performing the steps of the method of account information authentication according to any one of claims 1 to 6.
9. A computer-readable storage medium, having a computer program stored thereon, where the computer program is executed by a processor to perform the steps of the method for authenticating account information according to any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910605350.3A CN110324344B (en) | 2019-07-05 | 2019-07-05 | Account information authentication method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910605350.3A CN110324344B (en) | 2019-07-05 | 2019-07-05 | Account information authentication method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110324344A CN110324344A (en) | 2019-10-11 |
| CN110324344B true CN110324344B (en) | 2021-11-02 |
Family
ID=68122843
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910605350.3A Active CN110324344B (en) | 2019-07-05 | 2019-07-05 | Account information authentication method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110324344B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111800397A (en) * | 2020-06-23 | 2020-10-20 | 四川虹美智能科技有限公司 | Login method, device and system of intangible asset management platform |
| CN112073404B (en) * | 2020-09-03 | 2023-09-29 | 中国平安财产保险股份有限公司 | Account login method and device based on browser |
| CN112579956A (en) * | 2020-12-17 | 2021-03-30 | 北京金山云网络技术有限公司 | Website account management method and device and electronic equipment |
| CN112651011B (en) * | 2020-12-24 | 2022-03-11 | 深圳竹云科技有限公司 | Login verification method, device and equipment for operation and maintenance system and computer storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103248661A (en) * | 2012-02-13 | 2013-08-14 | 宇龙计算机通信科技(深圳)有限公司 | Account number binding method and system |
| CN104270386A (en) * | 2014-10-22 | 2015-01-07 | 中国建设银行股份有限公司 | Cross-application-system user information integration method and identity information management server |
| CN106101054A (en) * | 2016-04-29 | 2016-11-09 | 乐视控股(北京)有限公司 | The single-point logging method of a kind of multisystem and centralized management system |
| CN109379336A (en) * | 2018-09-18 | 2019-02-22 | 中汇信息技术(上海)有限公司 | A kind of uniform authentication method, distributed system and computer readable storage medium |
Family Cites Families (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2004077794A2 (en) * | 2003-02-25 | 2004-09-10 | Creative Solutions Unlimited | Web site management system and method |
| WO2009039160A2 (en) * | 2007-09-17 | 2009-03-26 | Vidoop, Llc. | Method and system for storing and using a plurality of passwords |
| KR20090051966A (en) * | 2007-11-20 | 2009-05-25 | 한국전자통신연구원 | Website login processing method and apparatus |
| US20100269151A1 (en) * | 2009-04-20 | 2010-10-21 | Crume Jeffery L | Migration across authentication systems |
| CN102801713A (en) * | 2012-07-23 | 2012-11-28 | 中国联合网络通信集团有限公司 | Website logging-in method and system as well as accessing management platform |
| CN108134787B (en) * | 2017-12-21 | 2020-06-23 | 恒宝股份有限公司 | Identity authentication method and authentication device |
| CN108600190A (en) * | 2018-04-03 | 2018-09-28 | 四川斐讯信息技术有限公司 | A kind of account login method and system based on router |
| CN108829838B (en) * | 2018-06-19 | 2021-11-26 | 彭建超 | Batch processing method of account information and server |
-
2019
- 2019-07-05 CN CN201910605350.3A patent/CN110324344B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103248661A (en) * | 2012-02-13 | 2013-08-14 | 宇龙计算机通信科技(深圳)有限公司 | Account number binding method and system |
| CN104270386A (en) * | 2014-10-22 | 2015-01-07 | 中国建设银行股份有限公司 | Cross-application-system user information integration method and identity information management server |
| CN106101054A (en) * | 2016-04-29 | 2016-11-09 | 乐视控股(北京)有限公司 | The single-point logging method of a kind of multisystem and centralized management system |
| CN109379336A (en) * | 2018-09-18 | 2019-02-22 | 中汇信息技术(上海)有限公司 | A kind of uniform authentication method, distributed system and computer readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110324344A (en) | 2019-10-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110324344B (en) | Account information authentication method and device | |
| US11381550B2 (en) | Account management using a portable data store | |
| CN109688114B (en) | Single sign-on method, authentication server and application server | |
| CN111756753B (en) | Authority verification method and system | |
| US9660982B2 (en) | Reset and recovery of managed security credentials | |
| US8776194B2 (en) | Authentication management services | |
| US8819795B2 (en) | Presenting managed security credentials to network sites | |
| US8745705B2 (en) | Account management for multiple network sites | |
| EP2810226B1 (en) | Account management for multiple network sites | |
| US9282098B1 (en) | Proxy server-based network site account management | |
| US9767262B1 (en) | Managing security credentials | |
| CN106716957B (en) | Efficient and reliable authentication | |
| US20180026968A1 (en) | Managing security credentials | |
| US11444936B2 (en) | Managing security credentials | |
| CN112000951A (en) | Access method, device, system, electronic equipment and storage medium | |
| CN109842616B (en) | Account binding method and device and server | |
| US20190220590A1 (en) | Password generation device and password verification device | |
| US11228592B1 (en) | Consent-based authorization system | |
| WO2021034379A1 (en) | Permitted authentication types for account access | |
| KR20190062797A (en) | User terminal for using cloud service, integrated security management server of user terminal and method thereof | |
| CN111259368A (en) | Method and equipment for logging in system | |
| CN111901304B (en) | Registration method and device of mobile security equipment, storage medium and electronic device | |
| KR101637155B1 (en) | A system providing trusted identity management service using trust service device and its methods of operation | |
| KR20140043628A (en) | Log-in process method | |
| US20240020376A1 (en) | System and method for safely autofilling login fields in computing sources |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |