CN111753270A

CN111753270A - Application program login verification method, device, equipment and storage medium

Info

Publication number: CN111753270A
Application number: CN202010595836.6A
Authority: CN
Inventors: 张仪俊
Original assignee: Alipay Hangzhou Information Technology Co Ltd
Current assignee: Alipay Hangzhou Information Technology Co Ltd
Priority date: 2020-06-28
Filing date: 2020-06-28
Publication date: 2020-10-09
Anticipated expiration: 2040-06-28
Also published as: CN116361755A; CN111753270B

Abstract

One embodiment of the present specification provides an application login authentication method, apparatus, device, and storage medium, where the method includes: and acquiring a login request of a user for a target application program, wherein the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user. And judging whether the user terminal is a legal terminal of the target application program or not according to the login request. And according to the judgment result, determining that the target application program is successfully logged in, or determining that the target application program is failed to be logged in.

Description

Application program login verification method, device, equipment and storage medium

Technical Field

The present disclosure relates to the field of software, and in particular, to a method, an apparatus, a device, and a storage medium for login authentication of an application.

Background

When a user logs in to an application program, a server of the application program needs to authenticate the user, for example, to verify whether a user name and a password of the user are correct. Considering the situation that a hacker may obtain a user name and a password of a user through an illegal way to steal a user account, when the server performs login verification on the user, the server also needs to verify whether a terminal used by the user for the current login is a legal terminal, and the legal terminal can be a common terminal of the user. Therefore, it is necessary to provide a technical solution to verify whether a terminal used for user login is a legal terminal, so as to improve login security of an application program.

Disclosure of Invention

An object of one embodiment of the present specification is to provide an application login authentication method, apparatus, device, and storage medium, so as to authenticate whether a terminal used for a user to log in is a valid terminal, thereby improving login security of an application.

To achieve the above technical object, one embodiment of the present specification is implemented as follows:

one embodiment of the present specification provides an application login verification method, including: and acquiring a login request of a user for the target application program. The login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user. And judging whether the user terminal is a legal terminal of the target application program or not according to the login request. And according to the judgment result, determining that the target application program is successfully logged in, or determining that the target application program is failed to be logged in.

One embodiment of the present specification provides an application login verification method, including: and acquiring a login request of a user for the target application program. The login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user. And sending the login request to a server of the target application program. And the login request is used for the server to judge whether the user terminal is a legal terminal of the target application program. And receiving a login success message or a login failure message returned by the server according to the judgment result.

One embodiment of the present specification provides an application login authentication apparatus, including: the first acquisition module acquires a login request of a user for a target application program. The login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user. And the judging module is used for judging whether the user terminal is a legal terminal of the target application program or not according to the login request. And the determining module is used for determining that the target application program is successfully logged in or determining that the target application program is failed to be logged in according to the judgment result.

One embodiment of the present specification provides an application login authentication apparatus, including: and the second acquisition module is used for acquiring a login request of a user for the target application program. The login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user. And the first sending module is used for sending the login request to a server of the target application program. And the login request is used for the server to judge whether the user terminal is a legal terminal of the target application program. And the receiving module is used for receiving the login success message or the login failure message returned by the server according to the judgment result.

One embodiment of the present specification provides an application login authentication device, including: a processor and a memory arranged to store computer executable instructions. The computer executable instructions, when executed, cause the processor to implement the steps of the application login authentication method described above.

One embodiment of the present specification provides a storage medium for storing computer-executable instructions that, when executed, implement the steps of the application login authentication method described above.

Drawings

In order to more clearly illustrate the technical solutions in one or more embodiments of the present disclosure, the drawings needed to be used in the embodiments or the prior art descriptions will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in the present disclosure, and for those skilled in the art, other drawings can be obtained according to these drawings without any creative effort.

Fig. 1 is a schematic view of a scenario of an application login authentication method according to an embodiment of the present disclosure;

fig. 2 is a flowchart illustrating an application login authentication method according to an embodiment of the present disclosure;

FIG. 3 is a flowchart illustrating a method for verifying login of an application according to another embodiment of the present disclosure;

fig. 4 is a schematic diagram of an application login authentication apparatus according to an embodiment of the present disclosure;

FIG. 5 is a diagram of an application login authentication device according to another embodiment of the present disclosure;

fig. 6 is a schematic structural diagram of an application login authentication device according to an embodiment of the present disclosure.

Detailed Description

In order to make those skilled in the art better understand the technical solutions in one or more embodiments of the present disclosure, the technical solutions in one or more embodiments of the present disclosure will be clearly and completely described below with reference to the drawings in one or more embodiments of the present disclosure, and it is obvious that the described embodiments are only a part of the embodiments of the present disclosure, and not all embodiments. All other embodiments that can be derived by a person skilled in the art from one or more of the embodiments described herein without making any inventive step shall fall within the scope of protection of this document.

Fig. 1 is a schematic view of a scenario of an application login authentication method provided in an embodiment of the present specification, as shown in fig. 1, the scenario includes a user terminal and an application login authentication device, where the user terminal includes, but is not limited to, a tablet computer 101, a mobile phone 102, a desktop computer 103, and a notebook computer 104 as shown in fig. 1, and the application login authentication device includes, but is not limited to, a server 200 of a target application as shown in fig. 1. The application login verification method in one embodiment of the present description may be applied to the scenario shown in fig. 1, so as to verify whether a terminal used for user login is a valid terminal, and improve login security of an application.

Fig. 2 is a schematic flowchart of an application login authentication method provided in an embodiment of this specification, where the method may be executed by a server of a target application or by a user terminal, and as shown in fig. 2, the flowchart includes the following steps:

step S202, obtaining a login request of a user for a target application program; the login request carries a user identifier of a user, an identifier of a target application program and program data storage path information of the target application program in a user terminal of the user;

step S204, judging whether the user terminal is a legal terminal of the target application program or not according to the login request;

and step S206, according to the judgment result, determining that the target application program is successfully logged in, or determining that the target application program is failed to be logged in.

In this embodiment, when a user requests to log in a target application program, a login request may be obtained, where the login request includes program data storage path information of the target application program in a user terminal of the user, and whether the user terminal is a legal terminal of the target application program is determined according to the login request, so that the effect of verifying whether a terminal used for user login is a legal terminal based on the program data storage path information of the target application program is achieved, and the login security of the application program is improved.

In step S202, a login request of the user for the target application program is acquired. When the method in this embodiment is executed by the user terminal, the user terminal may receive a login operation of the user for the target application program, for example, an operation of clicking a login button, so as to obtain a login request of the user for the target application program. When the method in this embodiment is executed by the server, the user terminal obtains the login request of the user for the target application program in the above manner, and then forwards the login request to the server, so that the server obtains the login request of the user for the target application program.

The target application may be any application with a login function, and is not limited herein. The login request of the user for the target application program carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user.

The user identification of the user can be at least one of a user name of the user in the target application program, a mobile phone number of the user and a real name of the user. The identification of the target application may be the name of the target application.

The program data storage path information of the target application program in the user terminal of the user refers to a storage address of the program data of the target application program after the target application program is installed in the user terminal. Specifically, each time the target application is installed in the user terminal, the user terminal allocates a program data storage path for the target application, and generates program data storage path information, where the program data storage path information may be embodied as a storage path, such as "C/wenjian/good", or as a string of numbers, such as "2309909309", and the string of numbers may be referred to as file path node information or file node parameters.

The program data storage path information of the target application program may be generated by an operating system of the user terminal. And after the target application program is uninstalled and installed in the same user terminal every time, the operating system generates different program data storage path information for the target application program. The program data storage path information of different target application programs is different in the same terminal. After the same target application program is installed in different user terminals, the program data storage path information is different. And, in the user terminal, only the target application itself can acquire its own program data storage path information from the operating system and access its own program data storage path. Therefore, the program data storage path information of the target application program is a parameter at the operating system level, and only the target application program can obtain the parameter, so that the uniqueness is realized.

In step S204, it is determined whether the user terminal is a valid terminal of the target application according to the login request. This step may be performed by the user terminal or by the server.

In one embodiment, determining whether the user terminal is a valid terminal of the target application according to the login request specifically includes:

(a1) acquiring legal program data storage path information corresponding to the target application program according to the user identification and the identification of the target application program;

(a2) and if the program data storage path information in the login request is the same as the acquired legal program data storage path information, determining that the user terminal is a legal terminal of the target application program, and otherwise, determining that the user terminal is not a legal terminal of the target application program.

In this embodiment, a correspondence between a user identifier, an identifier of a target application program, and valid program data storage path information corresponding to the target application program is stored in advance, for example, for each target application program of each user, a correspondence between a user identifier of the user, an identifier of the target application program, and valid program data storage path information corresponding to the target application program is stored. The correspondence may be as shown in table 1 below.

TABLE 1

When the embodiment is executed by the user terminal, the corresponding relationship may be stored in the user terminal, and when the embodiment is executed by the server, the corresponding relationship may be stored in the server or the database.

In this embodiment, according to the correspondence, legal program data storage path information corresponding to the user identifier and the identifier of the target application program in the login request is obtained. And then judging whether the program data storage path information in the login request is the same as the acquired legal program data storage path information, if so, determining that the user terminal is a legal terminal of the target application program, and if not, determining that the user terminal is not the legal terminal of the target application program.

In this embodiment, before acquiring the login request of the user for the target application program, the legal program data storage path information corresponding to the user identifier and the identifier of the target application program may be acquired in the following manner:

(a11) after a user logs in a target application program for the first time, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time;

(a12) and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program.

Specifically, taking the user prune as an example to log in the target application program abc for the first time, program data storage path information of the target application program abc in the user terminal used by the prune to log in the target application program abc for the first time is obtained, and the information is used as legal program data storage path information corresponding to the user identifier "prune" and the target application program identifier "abc".

It can be seen that the legal program data storage path information is the storage path information of the target application program in the user terminal used by the user when the user logs in the target application program for the first time. Based on this, in step S204, by obtaining the legal program data storage path information and comparing whether the program data storage path information in the login request is the same as the legal program data storage path information, it can be accurately determined whether the user terminal currently used for the user login is the user terminal used for the user login for the first time, that is, whether the situation that the user replaces the terminal to login the target application program exists, so as to prevent the user account from being stolen, and improve the login security of the application program.

In another embodiment, the login request further includes a terminal identifier of the user terminal, where the terminal identifier may be a terminal name, a Media Access Control Address (MAC Address), an International Mobile Equipment Identity (IMEI), and the like. Correspondingly, according to the login request, determining whether the user terminal is a legal terminal of the target application program, specifically comprising:

(b1) according to the user identification and the identification of the target application program, acquiring legal program data storage path information corresponding to the target application program and a legal terminal identification corresponding to the target application program; the legal terminal identification can be a terminal name, an MAC address, an IMEI and the like;

(b2) and if the program data storage path information in the login request is the same as the legal program data storage path information, and the terminal identifier of the user terminal in the login request is the same as the legal terminal identifier, determining that the user terminal is the legal terminal of the target application program, otherwise, determining that the user terminal is not the legal terminal of the target application program.

In this embodiment, a correspondence relationship between a user identifier, an identifier of a target application program, legal program data storage path information corresponding to the target application program, and a legal terminal identifier corresponding to the target application program is stored in advance, for example, for each target application program of each user, a correspondence relationship between the user identifier of the user, the identifier of the target application program, the legal program data storage path information corresponding to the target application program, and the legal terminal identifier corresponding to the target application program is stored. The correspondence may be as shown in table 2 below.

TABLE 2

In this embodiment, according to the correspondence, legal program data storage path information corresponding to the user identifier in the login request and the identifier of the target application program is obtained, and a legal terminal identifier corresponding to the user identifier in the login request and the identifier of the target application program is obtained. And then judging whether the program data storage path information in the login request is the same as the acquired legal program data storage path information, judging whether the terminal identifier in the login request is the same as the acquired legal terminal identifier, if the terminal identifier in the login request is the same as the acquired legal terminal identifier, determining that the user terminal is a legal terminal of the target application program, and otherwise, determining that the user terminal is not a legal terminal of the target application program.

In this embodiment, before acquiring the login request of the user for the target application program, the legal program data storage path information and the legal terminal identifier corresponding to the user identifier and the identifier of the target application program may be acquired in the following manner:

(b11) after a user logs in a target application program for the first time, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time, and acquiring a terminal identifier of the user terminal used by the user for logging in the target application program for the first time;

(b12) and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program, and taking the acquired terminal identification as a legal terminal identification corresponding to the target application program.

It can be seen that the legal program data storage path information is the storage path information of the target application program in the user terminal used by the user when the user logs in the target application program for the first time. The legal terminal identification is the terminal identification of the user terminal used by the user when the user logs in the target application program for the first time. Based on this, in the step S204, by obtaining the legal program data storage path information, comparing whether the program data storage path information in the login request is the same as the legal program data storage path information, and by obtaining the legal terminal identifier, and comparing whether the terminal identifier in the login request is the same as the legal terminal identifier, it can be accurately determined whether the user terminal currently used for the user login is the user terminal used for the first login of the user, that is, whether the user changes the terminal login target application program, based on the different characteristics of the program data storage path information in different user terminals and the different characteristics of the terminal identifiers of different terminals, so as to prevent the user account from being stolen, and improve the login security of the application program.

In the step S206, it is determined that the target application program is successfully logged in or that the target application program is unsuccessfully logged in according to the determination result. Specifically, if the judgment result indicates that the user terminal is a legal terminal, it is determined that the target application program is successfully logged in, and if the judgment result indicates that the user terminal is not a legal terminal, it is determined that the target application program is failed to be logged in.

In view of the fact that a user needs to replace a legal terminal, in this embodiment, after it is determined that the target application program fails to log in, the following process may be implemented:

(c1) acquiring a legal terminal setting instruction of a user for a target application program; the legal terminal setting instruction is used for setting the user terminal in the step S202 as a legal terminal of the target application program;

(c2) and according to the legal terminal setting instruction, setting the user terminal in the step S202 as a legal terminal of the target application program.

Specifically, after determining that the target application program fails to log in, the user terminal may pop up inquiry information to inquire whether the user terminal in step S202 is a valid terminal, and if the user selects yes, the user terminal obtains a valid terminal setting instruction of the user for the target application program. The valid terminal setting instruction is used to set the user terminal in step S202 as a valid terminal of the target application.

In order to ensure the security of the account, the legal terminal setting instruction may carry high-level authentication information such as a face image or an identity card image of the user, so as to ensure that the legal terminal setting is performed under the condition of the user. The server or the user terminal sets the user terminal in the step S202 as a legal terminal of the target application program according to the legal terminal setting instruction, thereby satisfying the requirement of the user for replacing the legal terminal.

When the above-mentioned actions (c1) and (c2) are performed by the user terminal, the user terminal may acquire a legal terminal setting instruction of the user for the target application according to the user operation, and set the user terminal as a legal terminal of the target application according to the legal terminal setting instruction. When the above-mentioned actions (c1) and (c2) are performed by the server, the user terminal may acquire a legal terminal setting instruction of the user for the target application according to a user operation, and transmit the instruction to the server, so that the server sets the user terminal as a legal terminal of the target application according to the legal terminal setting instruction.

In summary, the program data storage path information of the target application is information generated for the target application by the operating system of the user terminal, and other programs cannot acquire the information. And in the same terminal, the information changes every time the target application program is uninstalled and installed. The program data storage path information of different target application programs is different in the same terminal. The program data storage path information of the same target application program in different user terminals is different from one target application program to another. Therefore, the program data storage path information of the target application program has uniqueness.

By the application program login verification method in the embodiment, when a user requests to login a target application program, whether the user switches the terminal to login or not can be verified by using the uniqueness of the program data storage path information of the target application program, and the login safety of the application program is improved. Even if the data of the target application program is completely copied to a new terminal or in the scene that the application program is hook, the method in the embodiment can still achieve the effect of identifying the cross-terminal login of the target application program and improve the login security of the application program.

Fig. 3 is a schematic flowchart of an application login authentication method according to another embodiment of the present disclosure, which may be executed by a user terminal, as shown in fig. 3, where the flowchart includes the following steps:

step S302, obtaining a login request of a user for a target application program; the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user;

step S304, the login request is sent to a server of the target application program, and the login request is used for the server to judge whether the user terminal is a legal terminal of the target application program;

and step S306, receiving a login success message or a login failure message returned by the server according to the judgment result.

In the step S302, the obtaining of the login request of the user for the target application program specifically includes: responding to the starting operation of a user for a target application program, and acquiring a login request of the user for the target application program; or responding to the login operation of the user for the target application program, and acquiring the login request of the user for the target application program.

Specifically, when the user starts the target application program through a click operation or other operations, if the user logs in the target application program before, the user terminal obtains a login request of the user for the target application program. The scene is a scene that the user does not sense login every time the user starts the program, so that the user is prevented from being disturbed. Or when the user clicks a login button through clicking operation, the user terminal acquires a login request of the user for the target application program. Other explanations of the above step S302 may refer to the description of the aforementioned step S202, and are not repeated here.

In step S304, the user terminal sends a login request to the server of the target application, so that the server of the target application determines whether the user terminal currently used by the user is a valid terminal of the target application.

As can be seen from the description of fig. 2, it is necessary to obtain the legitimate program data storage path information. Based on this, in an embodiment, when the user terminal is a terminal used by the user to log in the target application for the first time, before acquiring the login request of the user for the target application, the user terminal may further implement the following process:

after a user logs in a target application program for the first time, sending program data storage path information of the target application program in a user terminal to a server, wherein the program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server.

Through the process, the server can acquire the legal program data storage path information, so that the server can conveniently judge whether the legal program data storage path information is the same as the program data storage path information in the login request or not, and the verification work of the legal terminal is carried out.

As can be seen from the description of fig. 2, it is necessary to obtain the legitimate program data storage path information and the legitimate terminal identification. Based on this, in another embodiment, the login request further comprises a terminal identification of the user terminal. When the user terminal is a terminal used by the user for logging in the target application program for the first time, before acquiring a login request of the user for the target application program, the user terminal may further implement the following process:

after a user logs in a target application program for the first time, program data storage path information of the target application program in a user terminal and a terminal identification of the user terminal are sent to a server, the program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server, and the terminal identification of the user terminal is used for being set as the legal terminal identification corresponding to the target application program by the server.

Through the process, the server can acquire legal program data storage path information and legal terminal identification, so that the server can conveniently judge whether the legal program data storage path information is the same as the program data storage path information in the login request or not and judge whether the legal terminal identification is the same as the terminal identification in the login request or not, and therefore the verification work of the legal terminal is carried out.

In step S306, the user terminal further receives a login success message or a login failure message returned by the server.

In one embodiment, after receiving the login failure message returned by the server according to the determination result, the user terminal further implements the following process:

displaying a legal terminal setting page according to the login failure message;

receiving a legal terminal setting instruction sent by a user based on a legal terminal setting page; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program;

and sending a legal terminal setting instruction to the server so as to set the user terminal as a legal terminal of the target application program.

Specifically, after it is determined that the target application program fails to log in, the user terminal may display a legal terminal setting page, where the user is asked whether to set the user terminal in step S302 as a legal terminal by querying information in the page, and if so, the user terminal obtains a legal terminal setting instruction of the user for the target application program. The valid terminal setting instruction is used to set the user terminal in step S302 as a valid terminal of the target application. The user terminal sends the instruction to the server, so that the server sets the user terminal as a legal terminal of the target application program according to the legal terminal setting instruction, and the requirement of a user for replacing the legal terminal is met. In order to ensure the security of the account, the legal terminal setting instruction may carry high-level authentication information such as a face image or an identity card image of the user, so as to ensure that the legal terminal setting is performed under the condition of the user.

Fig. 4 is a schematic diagram of an application login authentication apparatus according to an embodiment of the present disclosure, as shown in fig. 4, the apparatus includes:

a first obtaining module 41, configured to obtain a login request of a user for a target application; the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user;

a judging module 42, configured to judge whether the user terminal is a valid terminal of the target application according to the login request;

the determining module 43 determines that the target application program is successfully logged in or determines that the target application program is failed to log in according to the determination result.

Optionally, the determining module 42: acquiring legal program data storage path information corresponding to the target application program according to the user identification and the identification of the target application program; and if the program data storage path information in the login request is the same as the legal program data storage path information, determining that the user terminal is a legal terminal of the target application program, otherwise, determining that the user terminal is not a legal terminal of the target application program.

Optionally, the login request further includes a terminal identifier of the user terminal; accordingly, the determining module 42: according to the user identification and the identification of the target application program, acquiring legal program data storage path information corresponding to the target application program and a legal terminal identification corresponding to the target application program; and if the program data storage path information in the login request is the same as the legal program data storage path information, and the terminal identifier of the user terminal in the login request is the same as the legal terminal identifier, determining that the user terminal is the legal terminal of the target application program, otherwise, determining that the user terminal is not the legal terminal of the target application program.

Optionally, the apparatus further comprises: the data processing method comprises the steps that a first data setting module acquires program data storage path information of a target application program in a user terminal used by a user for logging in the target application program for the first time before acquiring a login request of the user for the target application program and after the user logs in the target application program for the first time; and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program.

Optionally, the apparatus further comprises: the second data setting module is used for acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time and acquiring a terminal identifier of the user terminal used by the user for logging in the target application program for the first time before acquiring a login request of the user for the target application program; and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program, and taking the acquired terminal identification as the legal terminal identification corresponding to the target application program.

Optionally, the apparatus further comprises: the third data setting module is used for acquiring a legal terminal setting instruction of the user for the target application program after the target application program is determined to be failed to log in; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program; and setting the user terminal as a legal terminal of the target application program according to the legal terminal setting instruction.

The application login authentication apparatus in this embodiment can implement the processes of the application login authentication method in fig. 2 described above, and achieve the same effects and functions, which are not repeated here.

Fig. 5 is a schematic diagram of an application login authentication apparatus according to another embodiment of the present disclosure, as shown in fig. 5, the apparatus includes:

a second obtaining module 51, configured to obtain a login request of a user for a target application; the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user;

a first sending module 52, configured to send the login request to a server of the target application, where the login request is used for the server to determine whether the user terminal is a valid terminal of the target application;

and the receiving module 53 receives a login success message or a login failure message returned by the server according to the judgment result.

Optionally, the second obtaining module 51, in response to a starting operation of the user for the target application program, obtains a login request of the user for the target application program; or responding to the login operation of the user for the target application program, and acquiring the login request of the user for the target application program.

Optionally, the user terminal is a terminal used by the user to log in the target application program for the first time; the device further comprises: the second sending module is used for sending program data storage path information of the target application program in the user terminal to the server after the user logs in the target application program for the first time before acquiring a login request of the user for the target application program; and the program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server.

Optionally, the user terminal is a terminal used by the user to log in the target application program for the first time; the login request also comprises a terminal identifier of the user terminal; the device further comprises: a third sending module, configured to send, to the server, program data storage path information of a target application program in the user terminal and a terminal identifier of the user terminal before obtaining a login request of a user for the target application program and after the user logs in the target application program for the first time; program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server; and the terminal identification of the user terminal is used for being set as a legal terminal identification corresponding to the target application program by the server.

Optionally, the apparatus further includes a fourth sending module, configured to display a legal terminal setting page according to the login failure message, after receiving the login failure message returned by the server according to the determination result; receiving a legal terminal setting instruction sent by the user based on the legal terminal setting page; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program; and sending the legal terminal setting instruction to the server so as to set the user terminal as a legal terminal of the target application program.

The application login authentication apparatus in this embodiment can implement the processes of the application login authentication method in fig. 3 described above, and achieve the same effects and functions, which are not repeated here.

Further, an embodiment of the present specification further provides an application login authentication device, fig. 6 is a schematic structural diagram of the application login authentication device provided in the embodiment of the present specification, as shown in fig. 6, the application login authentication device may generate a relatively large difference due to different configurations or performances, and may include one or more processors 901 and a memory 902, and the memory 902 may store one or more stored applications or data. Memory 902 may be, among other things, transient storage or persistent storage. The application stored in memory 902 may include one or more modules (not shown), each of which may include a series of computer-executable instructions for logging into the authentication device for the application. Still further, the processor 901 may be configured to communicate with the memory 902 to execute a series of computer-executable instructions in the memory 902 on the application login authentication device. The application login authentication apparatus may also include one or more power supplies 903, one or more wired or wireless network interfaces 904, one or more input-output interfaces 905, one or more keyboards 906, and the like.

In one particular embodiment, the application login authentication device includes a memory, and one or more programs, wherein the one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each module may include a series of computer-executable instructions for the application login authentication device, and be configured to be executed by one or more processors to perform the following processes including the computer-executable instructions:

acquiring a login request of a user for a target application program; the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user;

judging whether the user terminal is a legal terminal of the target application program or not according to the login request;

and according to the judgment result, determining that the target application program is successfully logged in, or determining that the target application program is failed to be logged in.

Optionally, when executed, the computer-executable instructions determine whether the user terminal is a valid terminal of the target application according to the login request, including: acquiring legal program data storage path information corresponding to the target application program according to the user identification and the identification of the target application program; and if the program data storage path information in the login request is the same as the legal program data storage path information, determining that the user terminal is a legal terminal of the target application program, otherwise, determining that the user terminal is not a legal terminal of the target application program.

Optionally, when executed by computer executable instructions, the login request further comprises a terminal identity of the user terminal; correspondingly, according to the login request, determining whether the user terminal is a valid terminal of the target application program includes: according to the user identification and the identification of the target application program, acquiring legal program data storage path information corresponding to the target application program and a legal terminal identification corresponding to the target application program; and if the program data storage path information in the login request is the same as the legal program data storage path information, and the terminal identifier of the user terminal in the login request is the same as the legal terminal identifier, determining that the user terminal is the legal terminal of the target application program, otherwise, determining that the user terminal is not the legal terminal of the target application program.

Optionally, the computer executable instructions, when executed, further implement the following flow: before acquiring a login request of a user for a target application program, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time after the user logs in the target application program for the first time; and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program.

Optionally, the computer executable instructions, when executed, further implement the following flow: before acquiring a login request of a user for a target application program, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time after the user logs in the target application program for the first time, and acquiring a terminal identifier of the user terminal used by the user for logging in the target application program for the first time; and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program, and taking the acquired terminal identification as the legal terminal identification corresponding to the target application program.

Optionally, the computer executable instructions, when executed, further implement the following flow: after the target application program is determined to be failed to log in, acquiring a legal terminal setting instruction of the user for the target application program; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program; and setting the user terminal as a legal terminal of the target application program according to the legal terminal setting instruction.

The application login authentication device in this embodiment can implement the processes of the application login authentication method in fig. 2 described above, and achieve the same effects and functions, which are not repeated here.

In another specific embodiment, the application login authentication device includes a memory, and one or more programs, wherein the one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each module may include a series of computer-executable instructions for the application login authentication device, and be configured to be executed by one or more processors to perform the following processes:

sending the login request to a server of the target application program, wherein the login request is used for the server to judge whether the user terminal is a legal terminal of the target application program;

and receiving a login success message or a login failure message returned by the server according to the judgment result.

Optionally, the computer executable instructions, when executed, obtain a login request of a user for a target application, comprising: responding to the starting operation of the user for the target application program, and acquiring a login request of the user for the target application program; or responding to the login operation of the user for the target application program, and acquiring the login request of the user for the target application program.

Optionally, the user terminal is a terminal used by the user to log in the target application program for the first time; the computer executable instructions, when executed, further implement the following flow: before acquiring a login request of a user for a target application program, after the user logs in the target application program for the first time, sending program data storage path information of the target application program in the user terminal to the server; and the program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server.

Optionally, the user terminal is a terminal used by the user to log in the target application program for the first time; the login request also comprises a terminal identifier of the user terminal; the computer executable instructions, when executed, further implement the following flow: before acquiring a login request of a user for a target application program, after the user logs in the target application program for the first time, sending program data storage path information of the target application program in the user terminal and a terminal identifier of the user terminal to the server; program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server; and the terminal identification of the user terminal is used for being set as a legal terminal identification corresponding to the target application program by the server.

Optionally, the computer executable instructions, when executed, further implement the following flow: after receiving a login failure message returned by the server according to a judgment result, displaying a legal terminal setting page according to the login failure message; receiving a legal terminal setting instruction sent by the user based on the legal terminal setting page; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program; and sending the legal terminal setting instruction to the server so as to set the user terminal as a legal terminal of the target application program.

The application login authentication device in this embodiment can implement the processes of the application login authentication method in fig. 3 described above, and achieve the same effects and functions, which are not repeated here.

Further, another embodiment of the present specification further provides a storage medium for storing computer-executable instructions, and in a specific embodiment, the storage medium may be a usb disk, an optical disk, a hard disk, or the like, and the storage medium stores computer-executable instructions that, when executed by a processor, implement the following processes:

Optionally, when executed by a processor, the computer-executable instructions stored in the storage medium determine whether the user terminal is a valid terminal of the target application according to the login request, including: acquiring legal program data storage path information corresponding to the target application program according to the user identification and the identification of the target application program; and if the program data storage path information in the login request is the same as the legal program data storage path information, determining that the user terminal is a legal terminal of the target application program, otherwise, determining that the user terminal is not a legal terminal of the target application program.

Optionally, the storage medium stores computer executable instructions that, when executed by the processor, further comprise a terminal identification of the user terminal; correspondingly, according to the login request, determining whether the user terminal is a valid terminal of the target application program includes: according to the user identification and the identification of the target application program, acquiring legal program data storage path information corresponding to the target application program and a legal terminal identification corresponding to the target application program; and if the program data storage path information in the login request is the same as the legal program data storage path information, and the terminal identifier of the user terminal in the login request is the same as the legal terminal identifier, determining that the user terminal is the legal terminal of the target application program, otherwise, determining that the user terminal is not the legal terminal of the target application program.

Optionally, the storage medium stores computer executable instructions that, when executed by the processor, further implement the following process: before acquiring a login request of a user for a target application program, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time after the user logs in the target application program for the first time; and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program.

Optionally, the storage medium stores computer executable instructions that, when executed by the processor, further implement the following process: before acquiring a login request of a user for a target application program, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time after the user logs in the target application program for the first time, and acquiring a terminal identifier of the user terminal used by the user for logging in the target application program for the first time; and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program, and taking the acquired terminal identification as the legal terminal identification corresponding to the target application program.

Optionally, the storage medium stores computer executable instructions that, when executed by the processor, further implement the following process: after the target application program is determined to be failed to log in, acquiring a legal terminal setting instruction of the user for the target application program; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program; and setting the user terminal as a legal terminal of the target application program according to the legal terminal setting instruction.

The storage medium in this embodiment can implement the processes of the application login authentication method in fig. 2 described above, and achieve the same effects and functions, which are not repeated here.

In another specific embodiment, the storage medium may be a usb disk, an optical disk, a hard disk, or the like, and when executed by the processor, the storage medium stores computer-executable instructions for implementing the following processes:

Optionally, the storage medium stores computer-executable instructions that, when executed by the processor, obtain a login request of a user for a target application, including: responding to the starting operation of the user for the target application program, and acquiring a login request of the user for the target application program; or responding to the login operation of the user for the target application program, and acquiring the login request of the user for the target application program.

Optionally, the user terminal is a terminal used by the user to log in the target application program for the first time; the storage medium stores computer-executable instructions that, when executed by the processor, further implement the following: before acquiring a login request of a user for a target application program, after the user logs in the target application program for the first time, sending program data storage path information of the target application program in the user terminal to the server; and the program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server.

Optionally, the user terminal is a terminal used by the user to log in the target application program for the first time; the login request also comprises a terminal identifier of the user terminal; the storage medium stores computer-executable instructions that, when executed by the processor, further implement the following: before acquiring a login request of a user for a target application program, after the user logs in the target application program for the first time, sending program data storage path information of the target application program in the user terminal and a terminal identifier of the user terminal to the server; program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server; and the terminal identification of the user terminal is used for being set as a legal terminal identification corresponding to the target application program by the server.

Optionally, the storage medium stores computer executable instructions that, when executed by the processor, further implement the following process: after receiving a login failure message returned by the server according to a judgment result, displaying a legal terminal setting page according to the login failure message; receiving a legal terminal setting instruction sent by the user based on the legal terminal setting page; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program; and sending the legal terminal setting instruction to the server so as to set the user terminal as a legal terminal of the target application program.

The storage medium in this embodiment can implement the processes of the application login authentication method in fig. 3 described above, and achieve the same effects and functions, which are not repeated here.

The foregoing description has been directed to specific embodiments of this disclosure. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims may be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing may also be possible or may be advantageous.

In the 90 s of the 20 th century, improvements in a technology could clearly distinguish between improvements in hardware (e.g., improvements in circuit structures such as diodes, transistors, switches, etc.) and improvements in software (improvements in process flow). However, as technology advances, many of today's process flow improvements have been seen as direct improvements in hardware circuit architecture. Designers almost always obtain the corresponding hardware circuit structure by programming an improved method flow into the hardware circuit. Thus, it cannot be said that an improvement in the process flow cannot be realized by hardware physical modules. For example, a Programmable Logic Device (PLD), such as a Field Programmable Gate Array (FPGA), is an integrated circuit whose Logic functions are determined by programming the Device by a user. A digital system is "integrated" on a PLD by the designer's own programming without requiring the chip manufacturer to design and fabricate application-specific integrated circuit chips. Furthermore, nowadays, instead of manually making an integrated Circuit chip, such Programming is often implemented by "logic compiler" software, which is similar to a software compiler used in program development and writing, but the original code before compiling is also written by a specific Programming Language, which is called Hardware Description Language (HDL), and HDL is not only one but many, such as abel (advanced Boolean Expression Language), ahdl (alternate Language Description Language), traffic, pl (core unified Programming Language), HDCal, JHDL (Java Hardware Description Language), langue, Lola, HDL, laspam, hardsradware (Hardware Description Language), vhjhd (Hardware Description Language), and vhigh-Language, which are currently used in most common. It will also be apparent to those skilled in the art that hardware circuitry that implements the logical method flows can be readily obtained by merely slightly programming the method flows into an integrated circuit using the hardware description languages described above.

The controller may be implemented in any suitable manner, for example, the controller may take the form of, for example, a microprocessor or processor and a computer-readable medium storing computer-readable program code (e.g., software or firmware) executable by the (micro) processor, logic gates, switches, an Application Specific Integrated Circuit (ASIC), a programmable logic controller, and an embedded microcontroller, examples of which include, but are not limited to, the following microcontrollers: ARC 625D, Atmel AT91SAM, Microchip PIC18F26K20, and Silicone Labs C8051F320, the memory controller may also be implemented as part of the control logic for the memory. Those skilled in the art will also appreciate that, in addition to implementing the controller as pure computer readable program code, the same functionality can be implemented by logically programming method steps such that the controller is in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers and the like. Such a controller may thus be considered a hardware component, and the means included therein for performing the various functions may also be considered as a structure within the hardware component. Or even means for performing the functions may be regarded as being both a software module for performing the method and a structure within a hardware component.

The systems, devices, modules or units illustrated in the above embodiments may be implemented by a computer chip or an entity, or by a product with certain functions. One typical implementation device is a computer. In particular, the computer may be, for example, a personal computer, a laptop computer, a cellular telephone, a camera phone, a smartphone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or a combination of any of these devices.

For convenience of description, the above devices are described as being divided into various units by function, and are described separately. Of course, the functionality of the various elements may be implemented in the same one or more software and/or hardware implementations in implementing one or more embodiments of the present description.

As will be appreciated by one skilled in the art, embodiments of the present description may be provided as a method, system, or computer program product. Accordingly, embodiments of the present description may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, embodiments of the present description may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and so forth) having computer-usable program code embodied therein.

Embodiments of the present description are described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the description. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.

The memory may include forms of volatile memory in a computer readable medium, Random Access Memory (RAM) and/or non-volatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). Memory is an example of a computer-readable medium.

Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.

It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.

One or more embodiments of the present description may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. One or more embodiments of the specification may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.

The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the system embodiment, since it is substantially similar to the method embodiment, the description is simple, and for the relevant points, reference may be made to the partial description of the method embodiment.

The above description is only an example of the present specification and is not intended to limit the present document. Various modifications and changes may occur to the embodiments described herein, as will be apparent to those skilled in the art. Any modifications, equivalents, improvements, etc. which come within the spirit and principle of the disclosure are intended to be included within the scope of the claims of this document.

Claims

1. An application login authentication method, comprising:

2. The method of claim 1, wherein determining whether the user terminal is a valid terminal of the target application according to the login request comprises:

acquiring legal program data storage path information corresponding to the target application program according to the user identification and the identification of the target application program;

and if the program data storage path information in the login request is the same as the legal program data storage path information, determining that the user terminal is a legal terminal of the target application program, otherwise, determining that the user terminal is not a legal terminal of the target application program.

3. The method of claim 1, the login request further comprising a terminal identification of the user terminal;

correspondingly, according to the login request, determining whether the user terminal is a valid terminal of the target application program includes:

according to the user identification and the identification of the target application program, acquiring legal program data storage path information corresponding to the target application program and a legal terminal identification corresponding to the target application program;

and if the program data storage path information in the login request is the same as the legal program data storage path information, and the terminal identifier of the user terminal in the login request is the same as the legal terminal identifier, determining that the user terminal is the legal terminal of the target application program, otherwise, determining that the user terminal is not the legal terminal of the target application program.

4. The method of claim 2, prior to obtaining a login request for a target application by a user, the method further comprising:

after the user logs in the target application program for the first time, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time;

and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program.

5. The method of claim 3, prior to obtaining a login request for a target application by a user, the method further comprising:

after the user logs in the target application program for the first time, acquiring program data storage path information of the target application program in a user terminal used by the user for logging in the target application program for the first time, and acquiring a terminal identifier of the user terminal used by the user for logging in the target application program for the first time;

and taking the acquired program data storage path information as legal program data storage path information corresponding to the target application program, and taking the acquired terminal identification as the legal terminal identification corresponding to the target application program.

6. The method of any of claims 1-5, upon determining that the target application login failed, the method further comprising:

acquiring a legal terminal setting instruction of the user for a target application program; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program;

and setting the user terminal as a legal terminal of the target application program according to the legal terminal setting instruction.

7. An application login authentication method, comprising:

8. The method of claim 7, obtaining a login request of a user for a target application, comprising:

responding to the starting operation of the user for the target application program, and acquiring a login request of the user for the target application program;

or,

and responding to the login operation of the user for the target application program, and acquiring the login request of the user for the target application program.

9. The method of claim 7, wherein the user terminal is a terminal used by the user to log in the target application program for the first time;

before acquiring a login request of a user for a target application program, the method further comprises the following steps:

after the user logs in the target application program for the first time, sending program data storage path information of the target application program in the user terminal to the server;

and the program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server.

10. The method of claim 7, wherein the user terminal is a terminal used by the user to log in the target application program for the first time; the login request also comprises a terminal identifier of the user terminal;

accordingly, before obtaining the login request of the user for the target application program, the method further comprises the following steps:

after the user logs in the target application program for the first time, sending program data storage path information of the target application program in the user terminal and a terminal identifier of the user terminal to the server;

program data storage path information of the target application program in the user terminal is used for being set as legal program data storage path information corresponding to the target application program by the server; and the terminal identification of the user terminal is used for being set as a legal terminal identification corresponding to the target application program by the server.

11. The method according to any of claims 7-10, after receiving a login failure message returned by the server according to the determination result, the method further comprising:

receiving a legal terminal setting instruction sent by the user based on the legal terminal setting page; the legal terminal setting instruction is used for setting the user terminal as a legal terminal of the target application program;

and sending the legal terminal setting instruction to the server so as to set the user terminal as a legal terminal of the target application program.

12. An application login authentication apparatus comprising:

the first acquisition module is used for acquiring a login request of a user for a target application program; the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user;

the judging module is used for judging whether the user terminal is a legal terminal of the target application program or not according to the login request;

and the determining module is used for determining that the target application program is successfully logged in or determining that the target application program is failed to be logged in according to the judgment result.

13. The apparatus of claim 12, the determination module to:

14. The apparatus of claim 12, the login request further comprising a terminal identification of the user terminal; correspondingly, the judging module:

15. An application login authentication apparatus comprising:

the second acquisition module is used for acquiring a login request of a user for the target application program; the login request carries a user identifier of the user, an identifier of the target application program and program data storage path information of the target application program in a user terminal of the user;

the first sending module is used for sending the login request to a server of the target application program, wherein the login request is used for judging whether the user terminal is a legal terminal of the target application program or not by the server;

and the receiving module is used for receiving the login success message or the login failure message returned by the server according to the judgment result.

16. The apparatus of claim 15, the user terminal is a terminal used by the user to log in the target application for the first time; the device further comprises:

the second sending module is used for sending program data storage path information of the target application program in the user terminal to the server after the user logs in the target application program for the first time before acquiring a login request of the user for the target application program;

17. The apparatus of claim 15, the user terminal is a terminal used by the user to log in the target application for the first time; the login request also comprises a terminal identifier of the user terminal; the device further comprises:

a third sending module, configured to send, to the server, program data storage path information of a target application program in the user terminal and a terminal identifier of the user terminal before obtaining a login request of a user for the target application program and after the user logs in the target application program for the first time;

18. An application login authentication device comprising: a processor; and a memory arranged to store computer executable instructions which, when executed, cause the processor to carry out the steps of the application login authentication method of any one of claims 1 to 6 above, or the steps of the application login authentication method of any one of claims 7 to 11 above.

19. A storage medium storing computer-executable instructions which, when executed, implement the steps of the application login authentication method of any one of claims 1 to 6 above, or the steps of the application login authentication method of any one of claims 7 to 11 above.