CN112866249B

CN112866249B - Application login management method, device and storage medium

Info

Publication number: CN112866249B
Application number: CN202110064954.9A
Authority: CN
Inventors: 秦臻; 陆明友
Original assignee: Sangfor Technologies Co Ltd
Current assignee: Sangfor Technologies Co Ltd
Priority date: 2021-01-18
Filing date: 2021-01-18
Publication date: 2023-11-07
Anticipated expiration: 2041-01-18
Also published as: CN112866249A

Abstract

The invention provides an application login management method, an application login management device and a storage medium; when a target sub-application of a terminal needs to acquire login rights, an authentication request is sent to a server, the server can verify whether the target sub-application has rights or not based on current main account information in the authentication request, then the target account information of the target sub-application is fed back to the terminal according to mark information of the target sub-application in the authentication request, and rights of account information of the sub-application are determined by the authentication of the current main account information, so that rights of a plurality of sub-account information can be acquired only by one main account information, rights management uniformity is improved, rights use flows of a plurality of applications are simplified, and the problem of mutual isolation among various types of application rights is effectively solved.

Description

Application login management method, device and storage medium

Technical Field

The embodiment of the invention relates to the technical field of Internet, in particular to an application login management method, an application login management device and a storage medium.

Background

In the service network, a plurality of application systems with independent account systems exist, accounts among the application systems are isolated, and account rights are independently managed by each application system. In the prior art, two schemes for solving the problem of mutual isolation of application accounts are provided, one scheme is that a global Wide area network (World Web) management console accesses the service of the back end of an application, and directly reads the bottom database of an application system to obtain the application accounts, so that the problem of mutual isolation of the accounts is solved; the other is that an application account is obtained by reading an externally-opened interface through an application, so that the problem of mutual isolation of the accounts is solved, but the scheme cannot obtain the application account when the application of the externally-opened interface is not faced, and cannot solve the technical problem of mutual isolation of rights between the applications.

Disclosure of Invention

The application login management method, the device and the storage medium provided by the embodiment of the invention can effectively improve the efficiency of isolating the authority among a plurality of applications.

The technical scheme of the invention is realized as follows:

the embodiment of the invention provides an application login management method, which comprises the following steps:

receiving an authentication request sent by a terminal, wherein the authentication request carries mark information of a target sub-application and current main account information; the target sub-application is an application waiting for login authentication;

responding to the authentication request, determining target account information matched with the target sub-application in a current mapping relation based on the marking information of the target sub-application and the current main account information, and feeding back the target account information to the terminal for the terminal to log in by using the target account information;

the current mapping relation characterizes mapping relation between sub account information of a plurality of sub applications and at least one piece of main account information corresponding to a main application, wherein the current main account information is used for verifying whether the target sub application has login permission.

The embodiment of the invention also provides an application login management method, which comprises the following steps:

When logging in a target sub-application, acquiring current main account information of a target object; the target sub-application is one application in at least one sub-application, and the current main account information is account information corresponding to a main application of the target object except the at least one sub-application;

the marking information of the target sub-application and the current main account information are carried in an authentication request and sent to a server;

receiving target account information of the target sub-application fed back by the server in response to the authentication request;

and finishing the login of the target sub-application based on the target account information.

The embodiment of the invention also provides an application login management device, which comprises:

the first receiving unit is used for receiving an authentication request sent by the terminal, wherein the authentication request carries the mark information of the target sub-application and the current main account information; the target sub-application is an application waiting for login authentication;

the first processing unit is used for responding to the authentication request, determining target account information matched with the target sub-application in a current mapping relation based on the marking information of the target sub-application and the current main account information, and feeding back the target account information to the terminal for the terminal to log in by using the target account information;

The embodiment of the invention also provides an application login management device, which comprises a first memory and a first processor, wherein the first memory stores a computer program which can be run on the processor, and the first processor realizes the steps in the server side method when executing the program.

The embodiment of the invention also provides a computer readable storage medium, on which a computer program is stored, which when being executed by a processor, implements the steps of the server-side method described above.

In the embodiment of the invention, when the target sub-application of the terminal needs to acquire the login right, an authentication request is sent to the server, the server can verify whether the target sub-application has the right or not based on the current main account information in the authentication request, and then the target account information of the target sub-application is fed back to the terminal according to the mark information of the target sub-application in the authentication request.

Drawings

FIG. 1 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 2 is a schematic diagram showing an optional effect of the application login management method according to the embodiment of the present disclosure;

FIG. 3 is a schematic diagram showing an optional effect of the application login management method according to the embodiment of the present disclosure;

FIG. 4 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 5 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 6 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 7 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 8 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 9 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 10 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 11 is a schematic diagram illustrating an optional effect of the application login management method according to the embodiment of the present disclosure;

FIG. 12 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 13 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 14 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure;

FIG. 15 is an interaction diagram of an application login management method according to an embodiment of the present disclosure;

fig. 16 is a schematic structural diagram of an application login management device according to an embodiment of the present disclosure;

fig. 17 is a schematic diagram of a hardware entity of an application login management device according to an embodiment of the present disclosure;

fig. 18 is a schematic diagram of a second configuration of an application login management device according to an embodiment of the present disclosure;

fig. 19 is a second hardware entity diagram of the application login management device according to the embodiment of the present disclosure.

Detailed Description

The technical solution of the present invention will be further elaborated with reference to the accompanying drawings and examples, which should not be construed as limiting the invention, but all other embodiments which can be obtained by one skilled in the art without making inventive efforts are within the scope of protection of the present invention.

In the following description, reference is made to "some embodiments" which describe a subset of all possible embodiments, but it is to be understood that "some embodiments" can be the same subset or different subsets of all possible embodiments and can be combined with one another without conflict.

If a similar description of "first/second" appears in the present document, the following description is added, in which the terms "first/second/third" merely distinguish similar objects and do not represent a specific ordering of the objects, it being understood that the "first/second/third" may, where allowed, interchange a specific order or precedence order such that the embodiments of the invention described herein can be implemented in an order other than that illustrated or described herein.

Unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. The terminology used herein is for the purpose of describing embodiments of the invention only and is not intended to be limiting of the invention.

Fig. 1 is a schematic flow chart of an alternative application login management method according to an embodiment of the present disclosure, which is applied to a server. The steps shown in fig. 1 will be described.

S01, receiving an authentication request sent by a terminal, wherein the authentication request carries marking information of a target sub-application and current main account information.

In the embodiment of the invention, a server and a plurality of terminals pre-establish communication lines. The server receives an authentication request sent by one of the terminals to the server through a communication line established with the terminals. When a target object of a terminal is logged in to a target sub-application, login authentication is required by using current primary account information. The terminal carries the current main account information and the mark information of the target sub-application in an authentication request through a pre-established communication line and sends the authentication request to a server. The server receives the authentication request.

In the embodiment of the invention, the server can be correspondingly connected with a plurality of terminals at the same time. With reference to fig. 2, the server 200 establishes a communication line 201 with the terminals 1 and 2 in advance. Wherein, terminal 1 is the mobile terminal, and terminal 2 is the computer.

In the embodiment of the invention, the server can be an identity authentication platform. The current primary account information may be account information of the target object on a primary application currently set on the corresponding terminal. The tag information may be attribute information of the target sub-application. The target sub-application may be a financial management application, a vendor application, or the like.

S02, responding to the authentication request, determining target account information matched with the target sub-application in the current mapping relation based on the marking information of the target sub-application and the current main account information, and feeding back the target account information to the terminal.

In the embodiment of the invention, the current mapping relationship is a mapping relationship between sub-account information of a plurality of current sub-applications and at least one piece of main account information corresponding to a main application, and the server finds sub-account information corresponding to a target sub-application in the current mapping relationship through the marking information of the target sub-application as target account information. The target account information comprises the following steps: marking information of the target sub-application. And the server feeds the target account information back to the terminal. After receiving the target account information, the target sub-application of the terminal jumps according to a preset program to complete single sign-on of the target sub-application.

In the embodiment of the invention, the current primary account information is used for verifying whether the target sub-application has login permission.

In the embodiment of the invention, the server firstly verifies whether the current main account information exists in the current mapping relation, namely, the mapping relation of the sub account information of a plurality of sub applications and at least one main account information corresponding to the main application. If the target sub-application has the login permission, the server finds the sub-mapping relation corresponding to the current main account information in the current mapping relation, and determines the target account information through the marking information of the target application in the sub-mapping relation. The server feeds back the target account information to the terminal through a communication line pre-established with the terminal.

In the embodiment of the present invention, the target account information may include: at least one of a login name and a login password of the target sub-application. The current primary account information may include: the login name and the login password of the main application corresponding to the target.

In the embodiment of the present invention, with reference to fig. 3, the server may respectively establish communication lines corresponding to the sub-application 1, the sub-application 2, and the sub-application 3 of the terminal. Wherein the sub-application 2 is a target sub-application. The target object of the sub-application 2 logs in to authenticate the sub-application 2 through the current main account information. The sub-application 2 of the terminal sends an authentication request to the server. The authentication request carries the current primary account information and the marking information of the sub-application 2. After the server acquires the authentication request, the server may first verify the current primary account information carried in the authentication request. Specifically, the current primary account information in the authentication request is matched with the multiple primary account information in the current mapping relation. If the current primary account information is matched in the current mapping relation, the primary account information in the authentication request is authenticated. If the primary account information in the authentication request is not matched, the primary account information in the authentication request is not authenticated. After the primary account information in the authentication request passes the authentication, the server finds out the target account information of the sub-application 2 in the sub-mapping relation of the plurality of sub-account information corresponding to the current primary account information based on the marking information of the target sub-application, and feeds back the target account information to the terminal of the sub-application 2. After receiving the target account information, the terminal can complete single sign-on of the sub-application 2 based on the target account information.

In the embodiment of the invention, when the target sub-application of the terminal needs to acquire the login right, an authentication request is sent to the server, the server can verify whether the target sub-application has the right or not based on the mark information of the target sub-application and the current main account information carried in the authentication request, then the target account information of the target sub-application is fed back to the terminal according to the mark information of the target sub-application, and the right of the account information of the sub-application is determined by the authentication of the current main account information, so that the right of a plurality of sub-account information can be acquired only by one main account information, the unification of right management is improved, the right use flow of a plurality of applications is simplified, and the problem of mutual isolation among various application rights is effectively solved.

In some embodiments, referring to fig. 4, fig. 4 is a schematic flowchart of an optional application login management method according to an embodiment of the disclosure, S02 shown in fig. 1 may also be implemented through S03 to S05, and the steps will be described in connection with.

S03, responding to the authentication request, and if the current mapping relation is matched with the current primary account information, characterizing that the primary account information passes verification.

In the embodiment of the invention, the server acquires the authentication request of one sub-application sent by the terminal. The authentication request carries the current primary account information and the marking information of the target sub-application. And the server matches the current primary account information carried in the authentication request with the primary account information in the current mapping relation, and if the current primary account information is matched in the current mapping relation, the primary account information is authenticated, and the target sub-application has login permission. If the target sub-applications are different, the authentication is not passed, and the target sub-applications do not have login rights.

In the embodiment of the invention, the current mapping relation characterizes the mapping relation between the sub account information of the plurality of sub applications and at least one main account information corresponding to the main application. For example, one target object has primary account information a set on the primary application, and the other target object has primary account information B set on the primary application. The mapping relationship of the sub account information corresponding to the plurality of sub applications is the current mapping relationship. If the target object changes the primary account information A to C, the server forms a current mapping relationship of the sub account information of the plurality of sub applications corresponding to C and B currently respectively.

And S04, if the primary account information passes verification, searching target account information corresponding to the marking information of the target sub-application in a target sub-mapping relation corresponding to the current primary account information in the current mapping relation.

In the embodiment of the invention, if the current primary account information in the authentication request passes the authentication, the server can find the sub-account information corresponding to the target sub-application through the mark information of the target sub-application in the target sub-mapping relation corresponding to the current primary account information in the current mapping relation, and the sub-account information is used as the target account information. The target account information comprises the following steps: the tag information of the target sub-application.

In the embodiment of the present invention, the target sub-mapping relationship corresponding to the current primary account information may include: mapping relation between current main account information and corresponding sub account information on a terminal of a target object. The target object may be a user of the terminal.

S05, feeding back the target account information to the terminal through the single-point communication line corresponding to the target sub-application.

In the embodiment of the invention, the server feeds back the target account information to the target sub-application in the terminal through the single-point communication line which is established with the target sub-application in advance. The target account information may include: login account information of the target sub-application.

In the embodiment of the invention, the server can establish any one of an OAUTH protocol communication line, an identity authentication standard protocol communication line (OIDC), a central authentication service protocol communication line (Central Authentication Service, CAS), a security assertion markup language communication line (Security Assertion Markup Language, SAML) and a cryptographic refill with a target sub-application of the terminal as a single-point communication line of the target sub-application. Correspondingly, the server can also establish a corresponding single-point communication line with the main application.

Fig. 5 is a schematic flow chart of an alternative method for application login management according to an embodiment of the present disclosure, which is applied to a server. The steps shown in fig. 5 will be described.

S06, obtaining the login request information of the simulated account and the query request information of the simulated account.

In the embodiment of the invention, the server records the whole request information logged in to the query account information from the main application and the sub-application through the browser plug-in or the browser with the debugger, and splits the whole request information into two pieces, wherein one piece is the simulated account login request information and the other piece is the simulated account query request information.

In the embodiment of the invention, the simulated account login request information is used for a server to simulate a back-end login program of a main application and a sub-application to log in the main application and the sub-application. The simulated account query request information is used for the server to query account information of the main application and the sub-application after logging in the back-end service of the main application and the sub-application.

In the embodiment of the invention, the simulated account login request information comprises: the method comprises the steps of simulating a plurality of first sub-requests of an account login request, a first parameter relation among the plurality of first sub-requests and a login request sequence. Since the back-end login of each application needs to be completed through multiple simulated logins, the server needs to send multiple first sub-requests to the back-end of the application. The first parameter relationship is used for defining a parameter connection relationship among a plurality of first self-requests, for example, the server sends a first sub-request to the application, the back end of the application feeds back a parameter information, and the server needs to carry the parameter information in a second first sub-request and send the parameter information to the application. The login request sequence is used for limiting the sequence in which the server sends a plurality of first sub-requests to the application.

The simulated account query request information comprises: simulating a plurality of second sub-requests of the account query request, a second parameter relationship between the plurality of second sub-requests, and a query request order. Because the query of account information in the back-end service of each application can be completed through multiple times of simulation query, the server needs to send multiple second sub-requests to the back-end of the application. The second parameter relationship is used for defining a parameter connection relationship among a plurality of second self-requests, for example, the server sends a first second sub-request to the application, the back end of the application feeds back a parameter information, and the server needs to carry the parameter information in the second sub-request and send the parameter information to the application. The login request sequence is used for limiting the sequence in which the server sends a plurality of second sub-requests to the application.

S07, at preset time intervals, according to the login query request sequence, the simulated account login request information and the simulated account query request information are sequentially sent to the terminal.

In the embodiment of the invention, the server sends the simulated account login request information and the simulated account inquiry request information to the terminal through a communication line established with the terminal at fixed intervals according to a set program. The simulated account query request information is used for feeding back main account information of the main application or sub account information of a plurality of sub applications by the terminal. The number of sub-applications of the terminal is at least one.

In the embodiment of the invention, the server respectively sends the simulated account login request information and the simulated account inquiry request information to the back-end service of the main application and the sub-application of the terminal at fixed intervals. The server may also send the simulated account login request information and the simulated account query request information to a backend service of the host application of the terminal at intervals of 1 hour. The server may also send the simulated account login request information and the simulated account query request information to at least one sub-application of the terminal, respectively, at intervals of 2 hours.

S08, the main account information of the main application and the sub account information of at least one sub application fed back by the terminal in response to the simulated account login request information and the simulated account query request information are sequentially received.

In the embodiment of the invention, after the server sends the simulated account login request information and the simulated account query request information to the terminal at fixed intervals, the terminal responds to the simulated account login request information and the simulated account query request information, and feeds back main account information of a main application and sub-account information of at least one sub-application to the server. The primary account information comprises login and login passwords of the primary application. The sub-account information comprises a login name and a login password of the corresponding sub-application.

In the embodiment of the invention, the server can receive the main account information fed back by the terminal at intervals of one hour, and the server can also receive the sub account information respectively corresponding to at least one sub account fed back by the terminal at intervals of two hours.

In the embodiment of the invention, the server can pre-establish the communication line of the main application of each terminal, and the server can receive the main account information fed back by the terminal through the communication line corresponding to the main application. The server may also pre-establish a communication line corresponding to at least one sub-application of each terminal, and the server may receive sub-account information of at least one sub-application fed back by the terminal through the communication line corresponding to the at least one sub-application.

In the embodiment of the invention, the server can receive a file fed back by the terminal through a communication line connected with the terminal. The file carries sub-account information. The type of the file may be any one of a table file, an object profile (JavaScript Object Notation, JS) format file, an extensible markup language (Extensible Markup Language, XML) format file, and a hypertext markup language (Hyper Text Markup Language, HTML) format file. The server can analyze the file to obtain main account information corresponding to the main application and sub account information corresponding to at least one sub application respectively.

S09, obtaining a key value pair relation between the main account information and the sub account information.

In the embodiment of the invention, a server acquires account key values in a plurality of pieces of primary account information fed back by a terminal for the first time; and sub-account key values in the sub-account corresponding to the at least one sub-application. And establishing key value pair relations of the sub-account information corresponding to the main account information respectively by a user of the server according to the corresponding relations of the key values of the sub-accounts and the key values of the main accounts.

In the embodiment of the present invention, for example, the first sub-account information includes a key number: * The second sub-account key value includes a mobile phone number: * **. The key values of the first primary account information all comprise key value work numbers: * The key values of the second primary account information include the mobile phone number: * **. The user of the server may establish a key value pair relationship between the first sub-account information and the first main account information, or may establish a key value pair relationship between the second sub-account information and the second main account information.

And S10, determining the current mapping relation between the sub-account information of at least one sub-application and the main account information based on the key value pair relation.

In the embodiment of the invention, the server can respectively establish a mapping relation between the sub-account information of at least one sub-application acquired at fixed intervals of each batch and a plurality of pieces of main account information based on the key value relation in the main account information and the sub-account information.

One primary account number information may include a job number: 0120. The two sub account information also comprises a work number: 0120. The server may establish a current mapping relationship between the primary account number and the two sub-account numbers.

In some embodiments, referring to fig. 6, fig. 6 is a schematic flowchart of an alternative application login management method provided in the disclosed embodiment of the present invention, and S07 to S08 shown in fig. 5 may also be implemented through S11 to S15, and each step will be described in connection with the description.

S11, a first simulated account login request and a first simulated account query request are sent to the terminal according to the login query request sequence at intervals of a first fixed time.

In the embodiment of the invention, the server can send the first simulated account login request and the first simulated account inquiry request to the main application of the terminal through the pre-established communication line at a first fixed time interval. The first simulated account query request is used for requesting the terminal to feed back the main account information of the main application.

In the embodiment of the invention, the server can send the first simulated account login request and the first simulated account query request to the terminal at intervals of 1 hour. The first simulated account login request and the first simulated account query request may be: the server simulates an http account query request sent by a web management console front-end page of the host application to a back-end server of the host application.

S12, a second simulated account login request and a second simulated account query request are respectively sent to at least one sub-application of the terminal according to the login query request sequence at intervals of a second fixed time.

In the embodiment of the invention, the server can respectively send the second simulated account login request and the second simulated account inquiry request to at least one sub-application of the terminal through a communication line which is pre-established with the terminal and is spaced by a second fixed time. The second simulated account query request is used for requesting the terminal to feed back sub-account information corresponding to at least one sub-application respectively.

In the embodiment of the invention, the server can send the second simulated account login request and the second simulated account query request to at least one sub-application of the terminal respectively at intervals of 2 hours. Similarly, the second simulated account login request and the second simulated account query request may be: the server simulates http account query requests sent by front-end pages of the web management console corresponding to at least one sub-application respectively to a back-end server of the sub-application.

And S13, logging in the back-end service of the main application and at least one sub application based on the simulated account login request information.

In the embodiment of the invention, the server respectively sends the simulated account login request information to the back-end service of the main application and at least one sub-application of the terminal, so that the server logs in the back-end service of the main application and at least one sub-application of the terminal.

S14, receiving the primary account information fed back by the terminal in response to the first simulated account inquiry request under the back-end service login state of the primary application.

In the embodiment of the invention, the server acquires the primary account information fed back by the terminal in response to the first simulated account inquiry request through the pre-established communication line in the back-end service login state of the primary application.

In the embodiment of the invention, the server can receive a file fed back by the terminal in response to the first simulated account query request through the pre-established communication line. And the server analyzes the file to obtain the primary account information.

In the embodiment of the invention, the server can receive the main account information fed back by the main application of the terminal through the communication line established with the main application in advance.

S14, receiving sub-account information corresponding to at least one sub-application respectively fed back by the terminal in response to the second simulated account inquiry request under the back-end service login state corresponding to the at least one sub-application respectively.

In the embodiment of the invention, the server receives sub-account information corresponding to at least one sub-application respectively through a pre-established communication line when the terminal responds to a second simulated account inquiry request in a back-end service login state corresponding to the at least one sub-application respectively.

In the embodiment of the invention, the server can receive a file corresponding to at least one sub-application fed back by the terminal responding to the second analog account query request through the pre-established communication line. The server analyzes the files corresponding to the at least one sub-application respectively, and sub-account information corresponding to the at least one sub-application respectively can be obtained.

In the embodiment of the invention, the server can acquire the sub-account information which is fed back by at least one sub-application of the terminal and corresponds to the sub-account information respectively through the communication line which is established with the at least one sub-application in advance.

In some embodiments, referring to fig. 7, fig. 7 is a schematic flowchart of an optional application login management method according to an embodiment of the present disclosure, and S07 shown in fig. 5 may also be implemented through S16, and will be described in connection with the steps.

S16, after the simulated account login request information is sent to the terminal according to the login query request sequence at preset time intervals, the simulated account query request information is sent.

According to the embodiment of the invention, the server sends the simulated account login request information to the terminal through a fixed time interval with a communication line established by the terminal according to a set program, the terminal feeds back a parameter information to the server after receiving the simulated account login request information, and the server carries the parameter information to send the simulated account inquiry request information to the terminal.

In some embodiments, referring to fig. 8, fig. 8 is a schematic flow chart of an alternative application login management method provided in the disclosed embodiment of the invention, and S16 shown in fig. 7 may also be implemented through S17 to S18, and will be described in connection with the steps.

S17, sending the simulated account login request information to the terminal, and receiving intermediate information fed back by the terminal in response to the simulated account login request information.

In the embodiment of the invention, a server firstly simulates front-end pages of web management consoles of a main application and a sub-application at fixed intervals and sends simulated account login request information to back-end services of the main application and the sub-application. The simulated account login request information carries account password information of a web management console of the main application and the sub-application respectively. The simulated account login request information is used for logging in the back-end service of the web management console of the main application and the sub application. After the main application and the sub-application of the terminal acquire the simulated account login request information, the main application and the sub-application of the terminal feed back intermediate information to the server. The server receives the intermediate information and stores the intermediate information. The intermediate information is used for keeping the login state of the server logging in the web management console of the main application and the sub-application so as to prevent the server from being attacked, and the subsequent server can conveniently send the simulated account query request information to acquire the main account information and the sub-account information.

In the embodiment of the invention, the server records the whole request information of the main application and the sub application logged in to the query account through the browser plug-in or the browser with the debugger, and splits the whole information into two pieces of information, wherein one piece of information is the simulated account login request information, and the other piece of information is the simulated account query request information. Firstly, a server firstly transmits simulated account login request information of a main application and a sub-application to a terminal.

S18, the intermediate information is carried in the simulated account query request information and is sent to the terminal.

In the embodiment of the invention, the server stores the intermediate information in the header field of the simulated account query request information, and sends the simulated account query request information to the main application and the sub-application of the terminal.

In the embodiment of the invention, the simulated account login request information is used for a server to login a web management console of a main application and a sub application, and the login state is maintained. The simulated account query request information is used for requesting the terminal to feed back the main account information of the main application and the sub account information of the sub application under the state that the server logs in the web management console of the main application and the sub application.

In some embodiments, S17 to S18 shown in fig. 8 may also be implemented by S19 to S24, and each step will be described in connection.

S19, according to the login request sequence, the ith first sub-request in the plurality of first sub-requests is sent to the terminal.

In the embodiment of the invention, the simulated account login request information of the main application and the sub-application respectively comprises n first sub-requests, wherein n is a positive integer. The server sends an ith first sub-request to a main application and a sub-application of the terminal respectively, wherein i is an integer which is more than or equal to 1 and less than n.

In the embodiment of the invention, the front-end pages of the web management control console of the server simulation main application and the sub-application respectively send the ith first sub-request to the back-end services of the main application and the sub-application. The ith first sub-request is for logging into the backend services of the web management console of the main application and the sub-application.

In the embodiment of the invention, a plurality of requests are required in the process of logging in the web management console of the main application and the sub-application by the server, and the web management console of the main application and the sub-application can be logged in by the server only through a plurality of logins. The server needs to configure the login-related configuration procedure before proceeding with the login procedure. Firstly, the server records the whole request process of logging in the query account number of the main application and the sub application through a browser plug-in or a browser self-contained debugger. The server extracts a plurality of first sub-requests of the login process, decomposes the plurality of first sub-requests, extracts a plurality of first sub-request uniform resource locator (Uniform Resource Locator, url) parameters, request regulation parameters, request header parameters, request trunk parameters, request response parameters and the like, and then the user configures each part of the parameters of the request to the server, configures the sequence of the plurality of first sub-requests, and the dependency parameters among the plurality of first sub-requests, and the success field or the custom parsing code of each first sub-request. In the embodiment of the invention, depending parameters exist among a plurality of first sub-requests, and certain fields returned after the previous first sub-request succeeds need to be carried in the parameters of the next first sub-request to complete the complete login request. It is necessary to specify dependent parameters of the first plurality of sub-requests and successfully parse the expression. Likewise, the server needs to query account information of the main application and the sub-application, and specific parameter configuration processes are the same as above, and are not described in detail herein.

In the embodiment of the invention, the ith first sub-request can be the first request in the process that the server logs in the back-end server of the main application and the sub-application.

S20, the receiving terminal responds to the ith login authentication information fed back by the ith first sub-request.

In the embodiment of the invention, after the main application and the sub-application of the terminal acquire the ith first sub-request, the main application and the sub-application feed back the ith login authentication information to the server. The server receives the ith login authentication information and stores the ith login authentication information. The ith login authentication information is used for keeping the state of the server logging in the web management console of the main application and the sub-application, and is convenient for a subsequent server to send simulated account query request information.

S21, according to the first parameter relation, the ith login authentication information is carried in the (i+1) th first sub-request and is sent to the terminal, until the (n-1) th login authentication information is carried in the (n) th first sub-request and is sent to the terminal, token information fed back by the terminal in response to the (n) th first sub-request is received; wherein the n-1 th login authentication information and the token information are used as intermediate information.

In the embodiment of the invention, the server carries the ith login information according to the dependent parameters among the plurality of first sub-requests, and the ith login information is carried in the (i+1) th first sub-request and is sent to the main application and the sub-application of the terminal. Until the server carries the n-1 login authentication information in the time when the n-th first sub-request is sent to the main application and the sub-application of the terminal. The client receives the nth first sub-request and feeds back token information to the server.

Wherein the token information is used for preventing the server from being attacked by the network in the process of sending the request. The server carries the n-1 login authentication information and the token information in the subsequent query request, and is used for keeping the state that the server logs in the web management console of the main application and the sub-application and preventing the server from being attacked by the network. Wherein the n-1 th login authentication information and the token information are used as intermediate information.

In the embodiment of the invention, the server sends the ith first sub-request to the main application and the sub-application of the terminal at intervals. The server receives the analytical expression fed back by the terminal in response to the ith first sub-request. The server analyzes the analysis expression and judges whether the login is successful. If the login is successful, the server acquires and stores the ith login authentication information in the analysis expression.

S22, according to the query request sequence, the intermediate information is carried in the t second sub-request in the plurality of second sub-requests and is sent to the terminal.

In the embodiment of the invention, the simulated account query request information of the main application and the sub-application respectively comprises m second sub-requests, wherein m is a positive integer. The server respectively sends a t second sub-request carrying intermediate information to a main application and a sub-application of the terminal, wherein t is an integer which is more than or equal to 1 and less than m. The intermediate information comprises n-1 login authentication information and token information corresponding to the main application and the sub application respectively.

In the embodiment of the invention, the front-end pages of the web management control console of the main application and the sub-application are simulated by the server to respectively send the t second sub-request to the back-end services of the main application and the sub-application. The t second sub-request is used for inquiring the main account information of the main application and the sub-account information of the sub-application.

S23, the receiving terminal responds to the t file information fed back by the t second sub-request.

In the embodiment of the invention, after the main application and the sub-application of the terminal acquire the t second sub-request, the main application and the sub-application feed back the t file information to the server. The server receives the t file information and stores the t file information. The t-th file information may be storage space information of location information of a file to which the main account number of the main application or the sub account number information of the sub application belongs.

S24, according to the second parameter relation, the t-th file information is carried in the t+1th second sub-request and is sent to the terminal until the m-1th file information is carried in the m-th second sub-request and is sent to the terminal.

In the embodiment of the invention, the server carries the information of the t-th file in the t+1th second sub-request to be sent to the main application and the sub-application of the terminal according to the dependent parameters among the plurality of second sub-requests. Until the server carries the m-1 file information in the m second sub-request to the main application and the sub-application of the terminal. The client receives the mth second sub-request and feeds back files respectively comprising the main account information and the sub-account information to the server.

In the embodiment of the invention, the server respectively sends the t second sub-request to the main application and the sub-application of the terminal. And the server receives the analytic expressions fed back by the main application and the sub-application of the terminal in response to the t second sub-request. The server analyzes the analysis expression and judges whether the inquiry is successful. If the query is successful, the server acquires and stores the information of the t-th file in the analysis expression.

In some embodiments, S08 shown in fig. 8 may also be implemented through S25 to S27, and will be described in connection with the steps.

S25, under the back-end service login state of the main application, the receiving terminal responds to the m main files requested to be fed back by the main application, and analyzes the main files to obtain main account information.

In the embodiment of the invention, the server carries the (m-1) th file information, the (n-1) th login authentication information and the token information to send m main application sub-requests to the main application of the terminal in the back-end service login state of the main application. And the server receives the analytic expressions of the feedback of the m main application sub-requests responded by the main application of the terminal. The server analyzes the analysis expression and judges whether the inquiry is successful. If the query is successful, the server acquires the main file in the analysis expression, and further acquires the main account information.

In the embodiment of the invention, a server acquires a table file fed back by a terminal in response to m main application sub-requests. The server analyzes the table file to obtain the primary account information corresponding to the primary application. In an embodiment of the present invention, the plurality of second sub-requests includes: m master application sub-requests.

S26, receiving the sub-files corresponding to at least one sub-application respectively responding to the sub-request feedback of the m sub-applications by the terminal in the back-end service login state corresponding to the at least one sub-application respectively.

In the embodiment of the invention, the server carries the (m-1) th file information, the (n-1) th login authentication information and the token information in the back-end service login state corresponding to at least one sub-application respectively and sends m sub-application sub-requests to at least one sub-application of the terminal respectively. The server receives the analytical expressions fed back by at least one sub-application of the terminal respectively in response to the m sub-application sub-requests. The server analyzes the analysis expression and judges whether the inquiry is successful. If the query is successful, the server obtains the subfiles within the parse expression.

S27, analyzing the sub-file to obtain sub-account information corresponding to at least one sub-application respectively, and configuring the sub-account information with the corresponding marking information of at least one sub-application respectively.

In the embodiment of the invention, the server analyzes the sub-file to obtain the sub-account information corresponding to at least one sub-application respectively, and configures the sub-account information with the mark information corresponding to at least one sub-application respectively. Meanwhile, the server configures the marking information of the corresponding sub-application for each sub-account information.

The marking information of the sub-application may be one of address information of the sub-application and attribute information of the sub-application.

In the embodiment of the present invention, in conjunction with fig. 9, a process of obtaining primary account information by a server is taken as an example. The server first initiates a login operation of the host application. The server firstly simulates a front-end page of a web management console of the main application at intervals of a first fixed time to send a user name password login request to a back-end service of the main application. And the server receives an analysis expression fed back by the terminal in response to the user name password login request. The server analyzes the analysis expression and judges whether the login is successful. If the login is successful, the server acquires the login authentication information in the analysis expression and remembers the login authentication information.

The server then sends a request for obtaining token information to the terminal. The request for obtaining the token information carries login authentication information. The server receives the analysis expression fed back by the terminal in response to the request for obtaining the token information. The server analyzes the analysis expression and judges whether the login is successful. If the login is successful, the server acquires the token information in the analysis expression and stores the token information.

Second, the server opens a query operation of the host application. In the embodiment of the invention, a server sends a request for generating an account table to a terminal. The account number table generation request carries login authentication information and token information. And the server receives an analytical expression fed back by the terminal in response to the request for generating the account number table. The server analyzes the analysis expression and judges whether the inquiry is successful. If the query is successful, the server acquires the table file names in the analytical expression and stores the table file names. The server carries the file name of the form, login authentication information and token information, sends a request for downloading the account number form to a main application of the terminal, and replaces the file name parameter with the file name returned by the previous request. And the server receives an analysis expression fed back by the terminal in response to the request of downloading the account number table. The server analyzes the analysis expression and judges whether the inquiry is successful. If the query is successful, the server acquires the account number table in the analysis expression, and further acquires the primary account number information. And the server imports the primary account information into a body-building authentication platform.

Fig. 10 is a schematic flow chart of an alternative application login management method according to an embodiment of the present disclosure, which is applied to a terminal. The steps shown in fig. 10 will be described.

S101, when logging in the target sub-application, acquiring the current main account information of the target object.

In the embodiment of the invention, the target object of the terminal firstly needs to determine the main application and the sub-application in a plurality of applications of the target object. Wherein the number of sub-applications may be at least one. If the terminal receives a login time instruction of the target sub-application, the page of the terminal jumps to the main account login page. The terminal acquires the account name and the account password of the current primary account information input by the target object on the primary account login page.

The account name may be a mobile phone number or a birthday of the target object.

In the embodiment of the invention, the main application can be any application on the terminal of the target object. The main application may be an application frequently used on the terminal, or may be an application with the lowest replacement frequency in account information corresponding to a plurality of applications, which is not limited by the embodiment of the present invention. In one embodiment, the terminal application of the target object may include: financial applications, personnel management applications, customer interface applications, vendor applications, etc., embodiments of the present invention are not limited. By way of example, personnel management applications often used in terminals may be main applications, financial applications, customer interface applications and vendor applications as sub-applications. And when the page of the terminal jumps to the main account login page. And the target object inputs the current main account information of the main application in the main account login page.

In combination with fig. 11, an effect of jumping the page of the terminal to the main account login page is shown. The target object opens a login interface of the target sub-application, clicks on login, and the terminal jumps to a main account login page. The target object can input the account name and the account password of the primary account information in the primary account login page.

S102, the marking information of the target sub-application and the current main account information are carried in an authentication request and sent to a server.

In the embodiment of the invention, the target object of the terminal logs in the target sub-application through the current primary account information. The terminal transmits an authentication request to the server through a communication line pre-established with the server. Wherein, the authentication request may include: the current main account information of the target object when logging in and the marking information of the target sub-application.

S103, receiving target account information of the target sub-application fed back by the server in response to the authentication request.

In the embodiment of the invention, the terminal receives the target account information of the target sub-application fed back by the server through the communication line pre-established with the server.

In the embodiment of the invention, the terminal can receive the target account information sent by the server through the single-point communication line corresponding to the target sub-application.

S104, completing the login of the target sub-application based on the target account information.

In the embodiment of the invention, after verifying that the current primary account information passes, the server sends the target account information to the terminal. That is, after verifying that the current primary account information passes, the server indicates that the authority of the target sub-application passes the verification, and sends the target account information to the target sub-application of the terminal. The target sub-application completes login based on a preset program.

In some embodiments, referring to fig. 12, fig. 12 is a schematic flow chart of an alternative method for application login management according to an embodiment of the disclosure.

S105, receiving simulated account login request information and simulated account query request information sent by a server.

In the embodiment of the invention, the terminal receives the simulated account login request information and the simulated account query request information which are sent to the main application and the sub-application by the server at fixed intervals.

In the embodiment of the invention, the terminal can acquire the simulated account login request information and the simulated account query request information which are sent by the server to the main application at intervals of 1 hour. The terminal can acquire the simulated account login request information and the simulated account query request information which are respectively sent by the server to at least one sub-application at intervals of 2 hours.

S106, responding to the simulated account login request information and the simulated account query request information, and sequentially feeding back main account information of the main application and sub account information of at least one sub application to the server.

In the embodiment of the invention, the terminal responds to the simulated account login request information and the simulated account inquiry request information of the main application and the sub-application, and sequentially feeds back the main account information and the sub-account information respectively corresponding to at least one sub-application to the server.

After receiving the simulated account login request information and the simulated account query request information of the main application, the terminal responds to the simulated account login request information and the simulated account query request information and feeds back the main account information to the server. The terminal responds to the simulated account login request information and the simulated account query request information respectively corresponding to the at least one sub-application, and feeds back the sub-account information respectively corresponding to the at least one sub-application to the server.

In some embodiments, referring to fig. 13, fig. 13 is a schematic flowchart of an alternative application login management method according to an embodiment of the present disclosure, and S105 to S106 shown in fig. 12 may also be implemented through S107 to S110, and each step will be described in connection with the description.

S107, a first simulated account login request and a first simulated account query request sent by a server are received.

In the embodiment of the invention, a main application of a terminal receives a first simulated account login request and a first simulated account query request which are sent by a server at fixed intervals.

In the embodiment of the invention, the master application of the terminal receives an http account query request sent by a front-end page of a web management console simulating the master application and sent by a server to a back-end server of the master application at intervals of 1 hour.

S108, receiving a second simulated account login request and a second simulated account query request which are respectively corresponding to at least one sub-application and sent by the server.

In the embodiment of the invention, the terminal receives the second simulated account login request and the second simulated account query request respectively corresponding to at least one sub-application sent by the server at fixed intervals.

In the embodiment of the invention, at least one sub-application of the terminal receives an http account query request sent by a server to simulate a front-end page of a web management console of the at least one sub-application to a back-end server of the at least one sub-application at intervals of 2 hours.

S109, responding to the first simulated account query request, and feeding back the primary account information to the server.

In the embodiment of the invention, the background service of the main application of the terminal responds to the first simulated account query request and feeds back the main account information of the main application to the server.

In the embodiment of the invention, the background service of the main application of the terminal responds to the http account query request and feeds back the main account information of the main application to the server.

S110, responding to the second simulated account query request, and feeding back sub-account information corresponding to at least one sub-application respectively to the server.

In the embodiment of the invention, the background service of at least one sub-application of the terminal responds to the second simulated account query request and feeds back the respective sub-account information to the server.

In the embodiment of the invention, the background service of at least one sub-application of the terminal responds to the http account query request and feeds back the sub-account information corresponding to the at least one sub-application to the server.

In some embodiments, referring to fig. 14, fig. 14 is a schematic flowchart of an alternative application login management method according to an embodiment of the present disclosure, and S105 shown in fig. 12 may also be implemented through S111 to S112, and will be described in connection with the steps.

S111, receiving the simulated account login request information sent by the server, responding to the simulated account login request information, and feeding back intermediate information to the server.

In the embodiment of the invention, after the back-end service of the main application and the sub-application of the terminal receives the simulated account login request information, the main application and the sub-application of the terminal respectively feed back the intermediate information to the server.

S112, receiving the simulated account query request information sent by the server.

In the embodiment of the invention, the main application and the sub-application of the terminal receive the simulated account query request information sent by the server.

In some embodiments, S111 to S106 shown in fig. 14 may also be implemented by S113 to S118, and each step will be described in connection.

S113, receiving the ith first sub-request sent by the server, and responding to the ith first sub-request and feeding back the ith login authentication information to the server.

In the embodiment of the invention, after the main application and the sub-application of the terminal acquire the ith first sub-request, the main application and the sub-application feed back the ith login authentication information to the server. The ith login authentication information is used for keeping the state of the server logging in the web management console of the main application and the sub-application, and is convenient for a subsequent server to send simulated account query request information.

S114, receiving the (i+1) th first sub-request carrying the (i) th login authentication information sent by the server, and responding to the (n) th first sub-request and feeding back token information to the server until the (n) th first sub-request carrying the (n-1) th login authentication information sent by the server is received.

In the embodiment of the invention, the main application and the sub-application of the terminal receive the (i+1) th first sub-request, respond to the (i+1) th first sub-request and feed back the (i+1) th login authentication information to the server. After the terminal receives the nth first sub-request, the main application and the sub-application respectively respond to the nth first sub-request and feed back token information respectively corresponding to the server.

S115, receiving the t second sub-request sent by the server, and responding to the t second sub-request and feeding back the t file information to the server.

In the embodiment of the invention, after the main application and the sub-application of the terminal acquire the t second sub-request, the main application and the sub-application respectively feed back the t file information to the server. The t-th file information corresponding to the application and the sub-application may include file name information where account information of the main application and the sub-application is located.

In the embodiment of the invention, the t second sub-request to the m second sub-request all carry intermediate information.

S116, receiving the (t+1) th second sub-request carrying the (t) th file information sent by the server until the (m) th second sub-request carrying the (m-1) th file information sent by the server is received.

In the embodiment of the invention, the main application and the sub-application of the terminal receive the (t+1) th second sub-request, respond to the (t+1) th second sub-request and feed back the (t+1) th file information to the server. Until the terminal receives the mth second sub-request.

S117, responding to m main application sub-requests, and feeding back the main file to the server.

In the embodiment of the invention, the master application of the terminal receives m master application sub-requests sent by the server, and the master application sends the master file comprising the master account information to the server.

S118, responding to the m sub-application sub-requests, and feeding back the sub-files corresponding to at least one sub-application respectively to the server.

In the embodiment of the invention, at least one sub-application of the terminal respectively receives m sub-application sub-requests sent by the server, and at least one sub-application respectively sends the sub-files comprising the sub-account information of the sub-application to the server.

In the embodiment of the invention, the terminal feeds back the main account information and the sub-account information to the server at fixed intervals, when any sub-application of the terminal needs to acquire rights, an authentication request is sent to the server, and the server feeds back the target account information of one sub-application to the terminal based on the mark information and the main account information of one sub-application carried in the authentication request, so that the terminal can acquire the rights of other sub-applications only through the main account information and the mark information of other sub-applications; because the sub-account information and the main account information are acquired and stored through the server in advance, the terminal can acquire the target account information only by feeding back the mark information of the sub-application to the server, a large number of programs are not required to be designed, the implementation cost is low, and the main account information and the sub-account information are acquired by sending an account inquiry request to the terminal through the simulation application management console, so that the method can be suitable for various applications and has a wide application range.

Fig. 15 is an interaction diagram of an application login management method according to an embodiment of the present disclosure. The steps shown in fig. 15 will be described.

S31, when logging in the target sub-application, acquiring the current main account information of the target object.

For specific steps, refer to S101 in fig. 10.

S32, the client carries the marking information of the target sub-application and the current main account information in an authentication request and sends the authentication request to the server.

For specific steps, refer to S102 in fig. 10.

S33, the server responds to the authentication request, determines target account information matched with the target sub-application in the current mapping relation based on the marking information of the target sub-application and the current main account information, and feeds back the target account information to the terminal.

For specific steps, please refer to S02 in fig. 1.

S34, the client side completes the login of the target sub-application based on the target account information.

For specific steps, refer to S104 in fig. 10.

Referring to fig. 16, fig. 16 is a schematic structural diagram of an application login management device according to an embodiment of the present invention.

The embodiment of the invention provides an application login management device 800, which comprises: a first receiving unit 803, and a first processing unit 804.

A first receiving unit 803, configured to receive an authentication request sent by a terminal, where the authentication request carries tag information of a target sub-application and current primary account information; the target sub-application is an application waiting for login authentication;

The first processing unit 804 is configured to respond to the authentication request, determine, in the current mapping relationship, target account information matched with the target sub-application based on the tag information of the target sub-application and the current primary account information, and feed back the target account information to the terminal, so that the terminal can log in by using the target account information;

the current mapping relation characterizes the mapping relation between the sub account information of the plurality of sub applications and at least one piece of main account information corresponding to the main application, and the current main account information is used for verifying whether the target sub application has login permission.

In the embodiment of the present invention, the first processing unit 804 of the application login management device 800 responds to the authentication request, and if the current mapping relationship matches the current primary account information, the primary account information is represented to pass verification; if the primary account information passes verification, searching target account information corresponding to the mark information based on the target sub-application in a target sub-mapping relation corresponding to the current primary account information in the current mapping relation; the target sub-mapping relation characterizes the mapping relation between the current main account information and sub-account information of a plurality of sub-applications; feeding back target account information to the terminal through a single-point communication line corresponding to the target sub-application; the single-point communication line is set in application configuration, and the application configuration is configuration information corresponding to at least one sub-application.

In the embodiment of the present invention, the application login management device 800 obtains the login request information of the simulated account and the query request information of the simulated account; the application login management device 800 sequentially sends the simulated account login request information and the simulated account query request information to the terminal according to the login query request sequence at preset time intervals; the first receiving unit 803 of the application login management device 800 sequentially receives main account information of a main application and sub account information of at least one sub application, wherein the main account information of the main application is fed back by a terminal in response to the simulated account login request information and the simulated account query request information; the application login management device 800 obtains a key value pair relationship between the main account information and the sub account information; the key value pair relation is determined based on main attribute information of the main account information and sub attribute information in the sub account information; the first processing unit 804 of the application login management device 800 determines a current mapping relationship of the sub account information of at least one sub application and the main account information, respectively, based on the key value pair relationship.

In the embodiment of the invention. The simulated account login request information comprises: simulating a plurality of first sub-requests of the account login request, a first parameter relationship among the plurality of first sub-requests and a login request sequence;

The simulated account query request information comprises: simulating a plurality of second sub-requests of the account query request, a second parameter relationship between the plurality of second sub-requests, and a query request order.

In the embodiment of the invention, the preset time interval includes: spacing a first fixed time and spacing a second fixed time; the simulated account login request information comprises: the first simulated account login request and the second simulated account login request; the simulated account query request information comprises: the first simulated account query request and the second simulated account query request; the application login management device 800 sends a first simulated account login request and a first simulated account query request to the terminal at intervals of a first fixed time according to the login query request sequence; the first simulated account query request is used for querying the primary account information; a second simulation account login request and a second simulation account query request are respectively sent to at least one sub-application of the terminal according to the login query request sequence at intervals of a second fixed time; the second simulated account query request is used for acquiring sub-account information corresponding to at least one sub-application respectively.

In the embodiment of the present invention, the application login management device 800 logs in the back-end services of the main application and at least one sub-application based on the simulated account login request information; the first receiving unit 803 of the application login management device 800 receives the primary account information fed back by the terminal in response to the first simulated account query request in the back-end service login state of the primary application; and in the back-end service login state corresponding to the at least one sub-application respectively, receiving sub-account information corresponding to the at least one sub-application fed back by the terminal in response to the second simulated account inquiry request.

In the embodiment of the present invention, the application login management device 800 sends the simulated account login request information to the terminal according to the login query sequence at preset time intervals, and then sends the simulated account query request information.

In the embodiment of the present invention, the application login management device 800 sends the simulated account login request information to the terminal, and the first receiving unit 803 of the application login management device 800 receives the intermediate information fed back by the terminal in response to the simulated account login request information; the intermediate information is used for maintaining the back-end login state of the main application; and carrying the intermediate information in the simulated account query request information and sending the intermediate information to the terminal.

In the embodiment of the present invention, the application login management device 800 sends, to the terminal, an ith first sub-request of the plurality of first sub-requests according to the login request sequence, where i is greater than or equal to 1 and less than the total number n of the plurality of first sub-requests, where n is a positive integer; receiving the ith login authentication information fed back by the terminal in response to the ith first sub-request; according to the first parameter relation, the ith login authentication information is carried in the (i+1) th first sub-request and is sent to the terminal, and token information fed back by the terminal in response to the (n) th first sub-request is received until the (n-1) th login authentication information is carried in the (n) th first sub-request and is sent to the terminal; wherein the n-1 th login authentication information and the token information are used as intermediate information.

In the embodiment of the present invention, the application login management device 800 sends the intermediate information carried in the t-th second sub-request in the plurality of second sub-requests to the terminal according to the query request sequence, where t is greater than or equal to 1 and less than the total number m of the plurality of second sub-requests, and m is a positive integer; receiving the information of the t file fed back by the terminal in response to the t second sub-request; and according to the second parameter relation, the t-th file information is carried in the t+1th second sub-request and is sent to the terminal until the m-1th file information is carried in the m-th second sub-request and is sent to the terminal.

In the embodiment of the present invention, the first simulated account query request includes: m second sub-requests. The first receiving unit 803 of the application login management device 800 receives the main file fed back by the m second sub-requests in response to the main file in the back end service login state of the main application, and analyzes the main file to obtain main account information; the type of the master file includes one of a table file, an extensible markup language file, an object profile file, and a hypertext markup language file.

In the embodiment of the present invention, the second simulated account query request includes: m second sub-requests; the first receiving unit 803 of the application login management apparatus 800 receives, in a back-end service login state corresponding to at least one sub-application, a sub-file corresponding to at least one sub-application that responds to feedback of m second sub-requests, respectively; the type of the subfiles comprises one of a table file, an extensible markup language file, an object numbered musical notation file and a hypertext markup language file; the first processing unit analyzes the sub-files to obtain sub-account information corresponding to at least one sub-application respectively, and configures corresponding marking information of at least one sub-application for the sub-account information.

In the embodiment of the present invention, when the target sub-application of the terminal needs to acquire the login rights, an authentication request is sent to the application login management device 800, the first receiving unit 803 of the application login management device 800 receives the authentication request, the first processing unit 804 of the application login management device 800 may verify whether the target sub-application has rights based on the current primary account information in the authentication request, and then the target account information of the target sub-application is fed back to the terminal according to the tag information of the target sub-application in the authentication request.

Correspondingly, the embodiment of the invention provides an application login management device 800, which comprises a first memory 802 and a first processor 801, wherein the first memory 802 stores a computer program capable of running on the first processor 801, and the first processor 801 implements the steps in the method when executing the program.

It should be noted here that: the description of the storage medium and apparatus embodiments above is similar to that of the method embodiments described above, with similar benefits as the method embodiments. For technical details not disclosed in the embodiments of the storage medium and the apparatus of the present invention, please refer to the description of the method embodiments of the present invention.

It should be noted that fig. 17 is a schematic diagram of a hardware entity of an application login management device according to an embodiment of the present invention, as shown in fig. 17, the hardware entity of the application login management device 800 includes: a first processor 801 and a first memory 802, wherein;

the first processor 801 generally controls the overall operation of the application login management apparatus 800.

The first memory 802 is configured to store instructions and applications executable by the first processor 801, and may also cache data (e.g., image data, audio data, voice communication data, and video communication data) to be processed or already processed by each module in the first processor 801 and the application login management apparatus 800, which may be implemented by a FLASH memory (FLASH) or a random access memory (Random Access Memory, RAM).

Referring to fig. 18, fig. 18 is a schematic diagram of a second configuration of an application login management device according to an embodiment of the present invention.

The embodiment of the invention provides an application login management device 900, which comprises: a first acquisition unit 903, a transmission unit 904, a fourth reception unit 906, and a login unit 907.

The first obtaining unit 903 is configured to obtain current primary account information of the target object when logging in the target sub-application; the target sub-application is one application in at least one sub-application, and the current main account information is account information corresponding to a main application of the target object except the at least one sub-application;

A sending unit 904, configured to send the tag information of the target sub-application and the current primary account information to the server, where the tag information and the current primary account information are carried in an authentication request;

a fourth receiving unit 905, configured to receive target account information of a target sub-application fed back by the server in response to the authentication request;

and a login unit 906, configured to complete login of the target sub-application based on the target account information.

In the embodiment of the present invention, the fourth receiving unit 905 of the application login management device 900 receives the simulated account login request information and the simulated account query request information sent by the server; the sending unit 905 responds to the simulated account login request information and the simulated account query request information, and sequentially feeds back the main account information of the main application and the sub-account information of at least one sub-application to the server.

In the embodiment of the present invention, the fourth receiving unit 905 of the application login management device 900 receives a first simulated account login request and a first simulated account query request sent by a server; and receiving a second simulated account login request and a second simulated account query request which are respectively corresponding to at least one sub-application and sent by the server.

In the embodiment of the present invention, the sending unit 904 of the application login management device 900 responds to the first simulated account query request and feeds back the primary account information to the server; and responding to the second simulated account query request, and feeding back sub-account information corresponding to at least one sub-application respectively to the server.

In the embodiment of the present invention, the fourth receiving unit 905 of the application login management device 900 receives the simulated account login request information sent by the server, responds to the simulated account login request information, and feeds back intermediate information to the server; and receiving the simulated account query request information sent by the server.

In the embodiment of the present invention, the fourth receiving unit 905 of the application login management device 900 receives the ith first sub-request sent by the server, and responds to the ith first sub-request to feed back the ith login authentication information to the server; i is greater than or equal to 1 and less than the total number n of the plurality of first sub-requests, n being a positive integer; receiving an (i+1) th first sub-request carrying the (i) th login authentication information sent by a server, responding to the (n) th first sub-request and feeding back token information to the server until the (n) th first sub-request carrying the (n-1) th login authentication information sent by the server is received; wherein the n-1 th login authentication information and the token information are used as intermediate information.

In the embodiment of the present invention, the fourth receiving unit 905 of the application login management device 900 receives the t second sub-request sent by the server, responds to the t second sub-request, and feeds back the information of the t file to the server; t is greater than or equal to 1 and less than the total number m of the plurality of second sub-requests, m being a positive integer; and receiving the (t+1) th second sub-request carrying the (t) th file information sent by the server until the (m) th second sub-request carrying the (m-1) th file information sent by the server is received.

In the embodiment of the present invention, the first simulated account query request includes: m second sub-requests; the transmitting unit 904 of the application login management device 900 responds to the m second sub-requests and feeds back the master file to the server; the main file carries main account information.

In the embodiment of the present invention, the second simulated account query request includes: m second sub-requests; the transmitting unit 904 of the application login management device 900 responds to the m second sub-requests and feeds back sub-files corresponding to at least one sub-application respectively to the server; the sub-files carry sub-account information.

In the embodiment of the present invention, when the target sub-application of the application login management device 900 needs to acquire the login rights, the sending unit 904 sends an authentication request to the server, the server receives the authentication request, and the server can verify whether the target sub-application has rights based on the current main account information in the authentication request, and then feed back the target account information of the target sub-application to the application login management device 900 according to the tag information of the target sub-application in the authentication request.

It should be noted that, in the embodiment of the present invention, if the above-mentioned cluster construction and subscription information processing method is implemented in the form of a software functional module, and sold or used as a separate product, the cluster construction and subscription information processing method may also be stored in a computer readable storage medium. Based on such understanding, the technical solution of the embodiments of the present invention may be embodied essentially or in a part contributing to the related art in the form of a software product stored in a storage medium, including several instructions for causing an application login management device (which may be a personal computer or the like) to perform all or part of the methods of the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read Only Memory (ROM), a magnetic disk, an optical disk, or other various media capable of storing program codes. Thus, embodiments of the invention are not limited to any specific combination of hardware and software.

Correspondingly, an embodiment of the invention provides a computer-readable storage medium, on which a computer program is stored, which computer program, when being executed by a processor, carries out the steps of the above-mentioned method.

Correspondingly, the embodiment of the invention provides an application login management device 900, which comprises a second memory 902 and a second processor 901, wherein the second memory 902 stores a computer program capable of running on the second processor 901, and the second processor 901 realizes the steps in the method when executing the program.

It should be noted that, fig. 19 is a schematic diagram of a hardware entity of an application login management device according to an embodiment of the present invention, as shown in fig. 19, the hardware entity of the application login management device 900 includes: a second processor 901 and a second memory 902, wherein;

the second processor 901 generally controls the overall operation of the application login management apparatus 900.

The second memory 902 is configured to store instructions and applications executable by the second processor 901, and may also cache data (e.g., image data, audio data, voice communication data, and video communication data) to be processed or already processed by each module in the second processor 901 and the application login management device 900, and may be implemented by a FLASH memory (FLASH) or a random access memory (Random Access Memory, RAM).

The foregoing is merely an embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily think about changes or substitutions within the technical scope of the present invention, and the changes and substitutions are intended to be covered by the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims

1. An application login management method, comprising:

determining a current mapping relation based on the obtained main account information of the main application and the sub account information of at least one sub application; the main account information of the main application and the sub account information of the at least one sub application are fed back by the terminal in response to the simulated account login request information and the simulated account query request information received at preset time intervals; the current mapping relation characterizes the mapping relation between the sub account information of the plurality of sub applications and at least one main account information corresponding to the main application respectively;

responding to the authentication request, determining target account information matched with the target sub-application in the current mapping relation based on the marking information of the target sub-application and the current main account information, and feeding back the target account information to the terminal for the terminal to log in by using the target account information;

and the current primary account information is used for verifying whether the target sub-application has login permission.

2. The application login management method according to claim 1, wherein the determining, in a current mapping relationship, target account information matched with the target sub-application based on the tag information of the target sub-application and the current main account information in response to the authentication request, and feeding back the target account information to the terminal includes:

responding to the authentication request, and if the current mapping relation is matched with the current primary account information, characterizing that the current primary account information passes verification;

if the current primary account information passes verification, the target account information corresponding to the mark information of the target sub-application is searched in a target sub-mapping relation corresponding to the current primary account information in a current mapping relation; the target sub-mapping relation characterizes the mapping relation between the current main account information and sub-account information of a plurality of sub-applications;

feeding back the target account information to the terminal through a single-point communication line corresponding to the target sub-application; the single-point communication line is set in application configuration, and the application configuration is configuration information corresponding to at least one sub-application.

3. The application login management method according to claim 1 or 2, wherein the determining the current mapping relationship based on the obtained main account information of the main application and the sub account information of at least one sub application includes:

acquiring the login request information of the simulated account and the query request information of the simulated account;

at preset time intervals, according to a login query request sequence, sequentially sending the simulated account login request information and the simulated account query request information to a terminal;

sequentially receiving main account information of a main application and sub-account information of at least one sub-application, wherein the main account information of the main application is fed back by the terminal in response to the simulated account login request information and the simulated account query request information;

acquiring a key value pair relation between the main account information and the sub account information; the key value pair relation is determined based on main attribute information of the main account information and sub attribute information in the sub account information;

and determining the current mapping relation between the sub account information of the at least one sub application and the main account information based on the key value pair relation.

4. The application login management method according to claim 3, wherein the simulated account login request information includes: simulating a plurality of first sub-requests of the account login request, a first parameter relationship among the plurality of first sub-requests and a login request sequence;

5. The application login management method according to claim 4, wherein the preset time interval includes: spacing a first fixed time and spacing a second fixed time; the simulated account login request information comprises: the first simulated account login request and the second simulated account login request; the simulated account query request information comprises: the first simulated account query request and the second simulated account query request;

the step of sequentially sending the simulated account login request information and the simulated account query request information to a terminal at preset time intervals according to a login query request sequence comprises the following steps:

the first simulation account login request and the first simulation account inquiry request are sent to the terminal according to the login inquiry request sequence at intervals of a first fixed time; the first simulated account query request is used for querying the primary account information;

the second simulation account login request and the second simulation account query request are respectively sent to at least one sub-application of the terminal according to the login query request sequence at intervals of a second fixed time; the second simulated account query request is used for acquiring the sub-account information corresponding to the at least one sub-application respectively.

6. The method for managing application login according to claim 5, wherein the sequentially receiving main account information of the main application and sub-account information of at least one sub-application, which are fed back by the terminal in response to the simulated account login request information and the simulated account query request information, includes:

logging in the back-end service of the main application and the at least one sub-application based on the simulated account login request information;

receiving the primary account information fed back by the terminal in response to the first simulated account inquiry request in a back-end service login state of the primary application;

and receiving the sub-account information respectively corresponding to the at least one sub-application fed back by the terminal in response to the second simulated account inquiry request under the back-end service login state respectively corresponding to the at least one sub-application.

7. The application login management method according to claim 6, wherein sequentially sending the simulated account login request information and the simulated account query request information to a terminal at preset time intervals in a login query request order, comprises:

and after the preset time interval, according to the login query request sequence, sending the simulated account login request information to the terminal, and then sending the simulated account query request information.

8. The application login management method according to claim 7, wherein the sending the simulated account login request information to the terminal at the preset time interval according to the login query request sequence, further includes:

sending the simulated account login request information to the terminal, and receiving intermediate information fed back by the terminal in response to the simulated account login request information; the intermediate information is used for maintaining the back-end login state of the main application;

and carrying the intermediate information in the simulated account query request information and sending the intermediate information to the terminal.

9. The application login management method according to claim 8, wherein the sending the simulated account login request information to the terminal, receiving intermediate information fed back by the terminal in response to the simulated account login request information, includes:

according to the login request sequence, an ith first sub-request in the plurality of first sub-requests is sent to the terminal, i is more than or equal to 1 and less than the total number n of the plurality of first sub-requests, and n is a positive integer;

receiving the ith login authentication information fed back by the terminal in response to the ith first sub-request;

According to the first parameter relation, the ith login authentication information is carried in the (i+1) th first sub-request and is sent to the terminal, and token information fed back by the terminal in response to the nth first sub-request is received until the (n-1) th login authentication information is carried in the nth first sub-request and is sent to the terminal; wherein the n-1 st login authentication information and the token information are used as the intermediate information.

10. The application login management method according to claim 8 or 9, wherein the sending the intermediate information to the terminal carried in the simulated account query request information includes:

according to the query request sequence, the intermediate information is carried in a t second sub-request in the plurality of second sub-requests and is sent to the terminal, wherein t is greater than or equal to 1 and is smaller than the total number m of the plurality of second sub-requests, and m is a positive integer;

receiving the information of the t-th file fed back by the terminal in response to the second sub-request of the t-th;

and according to the second parameter relation, the t-th file information is carried in the t+1th second sub-request and is sent to the terminal until the m-1th file information is carried in the m-th second sub-request and is sent to the terminal.

11. The application login management method according to claim 10, wherein said plurality of second sub-requests includes: m master application sub-requests;

and in the back-end service login state of the main application, receiving the main account information fed back by the terminal in response to the first simulated account inquiry request, including:

receiving the terminal in a back-end service login state of the main application, responding to the m main application sub-request feedback main files, and analyzing the main files to obtain the main account information; the type of the main file comprises any one of a table file, an extensible markup language file, an object profile file and a hypertext markup language file.

12. The application login management method according to claim 10, wherein said plurality of second sub-requests includes: m sub-application sub-requests;

receiving the sub-account information respectively corresponding to the at least one sub-application and fed back by the terminal in response to the second simulated account inquiry request in the back-end service login state respectively corresponding to the at least one sub-application, wherein the sub-account information respectively corresponding to the at least one sub-application comprises:

receiving subfiles corresponding to the at least one sub-application respectively, wherein the subfiles correspond to the at least one sub-application respectively, and the subfiles are fed back in response to the m sub-application sub-requests; the type of the subfiles comprises any one of a table file, an extensible markup language file, an object numbered musical notation file and a hypertext markup language file;

Analyzing the sub-file to obtain the sub-account information respectively corresponding to the at least one sub-application, and configuring the sub-account information with the respectively corresponding marking information of the at least one sub-application.

13. An application login management method, comprising:

responding to simulated account login request information and simulated account query request information sent by a server at preset time intervals, feeding back main account information of a main application and sub-account information of at least one sub-application to the server, and determining a current mapping relation by the server based on the main account information of the main application and the sub-account information of the at least one sub-application;

the marking information of the target sub-application and the current main account information are carried in an authentication request and sent to the server;

receiving target account information of the target sub-application fed back by the server in response to the authentication request; the target account information is determined by the server in the current mapping relation;

14. The application login management method according to claim 13, wherein the responding to the simulated account login request information and the simulated account query request information sent by the server, feeding back the main account information of the main application and the sub-account information of at least one sub-application to the server, includes:

receiving simulated account login request information and simulated account query request information sent by a server;

and responding to the simulated account login request information and the simulated account query request information, and sequentially feeding back the main account information of the main application and the sub-account information of the at least one sub-application to the server.

15. The application login management method according to claim 14, wherein receiving the simulated account login request information and the simulated account query request information sent by the server includes:

receiving a first simulated account login request and a first simulated account query request sent by the server;

receiving a second simulated account login request and a second simulated account query request which are respectively corresponding to the at least one sub-application and sent by the server;

Correspondingly, the responding to the simulated account login request information and the simulated account query request information sequentially feeds back the main account information of the main application and the sub-account information of the at least one sub-application to the server, including:

responding to the first simulated account query request, and feeding back the primary account information to the server;

and responding to the second simulated account query request, and feeding back sub-account information corresponding to the at least one sub-application respectively to the server.

16. The application login management method according to claim 15, wherein receiving the simulated account login request information and the simulated account query request information sent by the server includes:

receiving the simulated account login request information sent by the server, responding to the simulated account login request information, and feeding back intermediate information to the server;

receiving the simulated account query request information sent by the server;

correspondingly, the receiving the simulated account login request information sent by the server, responding to the simulated account login request information, and feeding back intermediate information to the server, including:

Receiving an ith first sub-request sent by the server, responding to the ith first sub-request, and feeding back ith login authentication information to the server; i is greater than or equal to 1 and less than the total number n of the plurality of first sub-requests, n being a positive integer;

receiving an (i+1) th first sub-request carrying the (i) th login authentication information sent by the server, and responding to the (n) th first sub-request until receiving the (n) th first sub-request carrying the (n-1) th login authentication information sent by the server, and feeding back token information to the server; wherein the n-1 th login authentication information and the token information are used as the intermediate information;

correspondingly, the receiving the simulated account query request information sent by the server includes:

receiving a t second sub-request sent by the server, responding to the t second sub-request, and feeding back t file information to the server; t is greater than or equal to 1 and less than the total number m of the plurality of second sub-requests, m being a positive integer;

and receiving the (t+1) th second sub-request carrying the (t) th file information sent by the server until receiving the (m) th second sub-request carrying the (m-1) th file information sent by the server.

17. The application login management method according to claim 16, wherein said plurality of second sub-requests includes: m master application sub-requests; the plurality of second sub-requests includes: m sub-application sub-requests;

the responding to the first simulated account query request, the feeding back the primary account information to the server, includes:

responding to the m main application sub-requests, and feeding back a main file to the server; the main account information is carried in the main file;

the responding to the second simulated account query request, feeding back sub-account information corresponding to the at least one sub-application respectively to the server, includes:

responding to the m sub-application sub-requests, and feeding back sub-files corresponding to the at least one sub-application respectively to the server; the sub-account information is carried in the sub-file.

18. An application login management device, comprising:

the first receiving unit is used for sequentially receiving main account information of a main application and sub-account information of at least one sub-application, wherein the main account information of the main application is fed back by the terminal in response to the simulated account login request information and the simulated account query request information;

The first processing unit is used for determining a current mapping relation based on the acquired main account information of the main application and the sub account information of the at least one sub application; the current mapping relation characterizes the mapping relation between sub account information of a plurality of sub applications and at least one main account information corresponding to the main application respectively;

the first processing unit is used for responding to the authentication request, determining target account information matched with the target sub-application in the current mapping relation based on the marking information of the target sub-application and the current main account information, and feeding back the target account information to the terminal for the terminal to log in by using the target account information;

19. An application login management device comprising a first memory and a first processor, the first memory storing a computer program executable on the first processor, the first processor implementing the steps of the method of any one of claims 1 to 12 when the program is executed.

20. A computer readable storage medium, on which a computer program is stored, characterized in that the computer program, when being executed by a processor, implements the steps of the method of any of claims 1 to 12.