CN113660229A - Multi-system single sign-on method, device, equipment and medium based on RPA - Google Patents

Multi-system single sign-on method, device, equipment and medium based on RPA Download PDF

Info

Publication number
CN113660229A
CN113660229A CN202110874821.8A CN202110874821A CN113660229A CN 113660229 A CN113660229 A CN 113660229A CN 202110874821 A CN202110874821 A CN 202110874821A CN 113660229 A CN113660229 A CN 113660229A
Authority
CN
China
Prior art keywords
service system
browser
login information
system login
login
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202110874821.8A
Other languages
Chinese (zh)
Other versions
CN113660229B (en
Inventor
李希加
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangxi Sanfangda Supply Chain Technology Service Co ltd
Original Assignee
Weikun Shanghai Technology Service Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Weikun Shanghai Technology Service Co Ltd filed Critical Weikun Shanghai Technology Service Co Ltd
Priority to CN202110874821.8A priority Critical patent/CN113660229B/en
Publication of CN113660229A publication Critical patent/CN113660229A/en
Application granted granted Critical
Publication of CN113660229B publication Critical patent/CN113660229B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The application relates to the technical field of artificial intelligence, and discloses a multi-system single sign-on method, a device, equipment and a medium based on RPA, wherein the method comprises the following steps: acquiring an identity authentication request input by a user, wherein the identity authentication request carries a first account and a first password; performing identity authentication according to the first account and the first password to obtain an identity authentication result; when the identity authentication result is passed, calling the RPA robot to acquire service system login information configuration data; and calling the RPA robot, and respectively performing token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser. The token acquisition and login can be automatically performed on a plurality of service systems only by inputting the first account and the first password, the login complexity is reduced, different accounts and different passwords can be set for different service systems, and the risk of information leakage is reduced.

Description

Multi-system single sign-on method, device, equipment and medium based on RPA
Technical Field
The present application relates to the field of artificial intelligence technologies, and in particular, to a method, an apparatus, a device, and a medium for multi-system single sign-on based on RPA.
Background
In the daily routine of employees within an organization, it is often necessary to log in various business systems. In general, in order to log in various business systems, an account number and a password need to be manually input. In recent years, with the increasing risk of information leakage, in order to avoid information leakage, when logging in a system, not only a password but also a token are required to be input, and the complexity of logging in is increased. With the increasing number of business systems used by organizations, the organizations may need to log in tens of times or even tens of times a day, which reduces the efficiency of daily work.
For the convenience of login, many people set the passwords of all business systems to be the same, which undoubtedly increases the risk of information leakage. Meanwhile, because the account and the password are manually input, mistakes are difficult to avoid, and the account is easily locked under the condition of multiple times of mistakes, and the operation and maintenance personnel need to be contacted for unlocking, so that the efficiency of daily work is further reduced.
Disclosure of Invention
The main purpose of the present application is to provide a method, an apparatus, a device and a medium for single sign-on of multiple systems based on RPA, which aims to solve the technical problem that in the prior art, each business system in an organization adopts an account, a password and a token to perform login verification, thereby increasing the complexity of login, and setting the password of each business system to be the same for the convenience of login, which results in increasing the risk of information leakage.
In order to achieve the above purpose, the present application provides a multi-system single sign-on method based on RPA, where the method includes:
acquiring an identity authentication request input by a user, wherein the identity authentication request carries a first account and a first password;
performing identity authentication according to the first account and the first password to obtain an identity authentication result;
when the identity authentication result is passed, calling the RPA robot to acquire service system login information configuration data;
and calling the RPA robot, and respectively performing token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser.
Further, before the step of calling the RPA robot to obtain the service system login information configuration data, the method further includes:
when the identity authentication result is passed, acquiring a service system login information configuration request;
acquiring a service system login information set to be updated according to the service system login information configuration request;
and updating the service system login information configuration data according to the service system login information set to be updated.
Further, the step of calling the RPA robot, respectively performing token acquisition, browser startup and business system login in the browser according to the business system login information configuration data to obtain a target browser includes:
calling the RPA robot, acquiring a browser identifier to be started, and starting a browser according to the browser identifier to be started to obtain a first browser;
calling the RPA robot, and acquiring service system login information from the service system login information configuration data as target service system login information;
calling the RPA robot, and obtaining a token according to the login information of the target service system to obtain a target token;
calling the RPA robot, and accessing a service system in the first browser according to the service system access address of the target service system login information to obtain a first service system login page;
calling the RPA robot, inputting the target token, the second account of the target business system login information and the second password into the first business system login page, and generating a first business system login request;
acquiring a first service system login result corresponding to the first service system login request through the first browser;
updating a file storage space of the first browser according to the login result of the first service system through the first browser;
calling the RPA robot, repeatedly executing the step of calling the RPA robot and acquiring service system login information from the service system login information configuration data as target service system login information until the acquisition of the service system login information in the service system login information configuration data is completed;
and taking the first browser as the target browser.
Further, the step of invoking the RPA robot, inputting the target token, the second account of the target business system login information, and the second password into the first business system login page, and generating a first business system login request includes:
calling the RPA robot, inputting the target token into a token input frame of a login page of the first service system, and obtaining a token input completion signal;
calling the RPA robot, and inputting the second account into an account input frame of a login page of the first service system to obtain an account input completion signal;
calling the RPA robot, and inputting the second password into a password input frame of a login page of the first service system to obtain a password input completion signal;
calling the RPA robot, and generating the first service system login request according to the token input completion signal, the account input completion signal and the password input completion signal;
and sending the first service system login request to a service system corresponding to the target service system login information through the first service system login page.
Further, the step of obtaining, by the first browser, a first service system login result corresponding to the first service system login request includes:
acquiring a first service system login result corresponding to the first service system login request through the first browser;
and when the login result of the first service system is failure and the failure reason corresponding to the login result of the first service system is failure due to the failure of the token, repeatedly executing the steps of calling the RPA robot, acquiring the token according to the login information of the target service system and obtaining the target token until the login result of the first service system is successful.
Further, the step of invoking the RPA robot, repeatedly executing the step of invoking the RPA robot, and acquiring the service system login information from the service system login information configuration data as the target service system login information until the step of acquiring the service system login information from the service system login information configuration data is completed further includes:
and when the login result of the first service system is failed, generating a service system login failure reminding signal according to the login result of each failed first service system, wherein the service system login failure reminding signal is used for reminding a user of service system login failure.
Further, the step of calling the RPA robot, respectively performing token acquisition, browser startup and business system login in the browser according to the business system login information configuration data to obtain a target browser includes:
calling the RPA robot, and acquiring service system login information from the service system login information configuration data as service system login information to be logged in;
calling the RPA robot, determining a browser according to the browser identification of the login information of the service system to be logged in, and obtaining a second browser;
calling the RPA robot, and respectively performing token acquisition and service system login on the service system login information to be logged in according to the second browser to obtain a second service system login result;
updating a file storage space of the second browser according to the login result of the second service system through the second browser;
calling the RPA robot, repeatedly executing the step of calling the RPA robot, and acquiring service system login information from the service system login information configuration data as service system login information to be logged in until the acquisition of the service system login information in the service system login information configuration data is completed;
and taking each second browser as the target browser.
This application has still provided a multisystem single sign on device based on RPA, the device includes:
the system comprises a request acquisition module, a first password acquisition module and a second password acquisition module, wherein the request acquisition module is used for acquiring an authentication request input by a user, and the authentication request carries a first account and a first password;
the identity authentication module is used for performing identity authentication according to the first account and the first password to obtain an identity authentication result;
the configuration data acquisition module is used for calling the RPA robot to acquire the configuration data of the login information of the service system when the identity authentication result is passed;
and the target browser determining module is used for calling the RPA robot, respectively obtaining a token according to the login information configuration data of the service system, starting a browser and logging in the service system in the browser to obtain the target browser.
The present application further proposes a computer device comprising a memory and a processor, the memory storing a computer program, the processor implementing the steps of any of the above methods when executing the computer program.
The present application also proposes a computer-readable storage medium having stored thereon a computer program which, when being executed by a processor, carries out the steps of the method of any of the above.
The method comprises the steps of obtaining an identity authentication request input by a user, carrying a first account and a first password, carrying out identity authentication according to the first account and the first password to obtain an identity authentication result, calling an RPA robot to obtain business system login information configuration data when the identity authentication result passes, calling the RPA robot, respectively carrying out token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser, automatically obtaining tokens and logging in a plurality of business systems only by inputting the first account and the first password, reducing the complexity of logging in, and being beneficial to setting different accounts and different passwords for different business systems, the risk of information leakage is reduced, and the efficiency of daily work is improved.
Drawings
Fig. 1 is a schematic flowchart of a RPA-based multi-system single sign-on method according to an embodiment of the present application;
fig. 2 is a schematic block diagram illustrating a structure of an RPA-based multi-system single sign-on apparatus according to an embodiment of the present application;
fig. 3 is a block diagram illustrating a structure of a computer device according to an embodiment of the present application.
The implementation, functional features and advantages of the objectives of the present application will be further explained with reference to the accompanying drawings.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
Referring to fig. 1, in an embodiment of the present application, a multi-system single sign-on method based on RPA is provided, where the method includes:
s1: acquiring an identity authentication request input by a user, wherein the identity authentication request carries a first account and a first password;
s2: performing identity authentication according to the first account and the first password to obtain an identity authentication result;
s3: when the identity authentication result is passed, calling the RPA robot to acquire service system login information configuration data;
s4: and calling the RPA robot, and respectively performing token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser.
In the embodiment, by obtaining an authentication request input by a user, where the authentication request carries a first account and a first password, performing identity authentication according to the first account number and the first password to obtain an identity authentication result, when the identity authentication result is passed, calling the RPA robot, acquiring the configuration data of the login information of the service system, calling the RPA robot, according to the method and the device, token acquisition, browser starting and business system login in the browser are respectively carried out according to the business system login information configuration data, the target browser is obtained, the fact that tokens and login can be automatically acquired and logged in a plurality of business systems can be achieved only by inputting a first account and a first password, login complexity is reduced, different accounts and different passwords can be set for different business systems, information leakage risks are reduced, and daily work efficiency is improved.
RPA, i.e., robotic process automation, provides another way to automate an end user's manual process by mimicking the end user's manual process at a computer.
For S1, the authentication request is a request for legally verifying the identity of the user.
The first account is a user ID. The first password is a password.
It can be understood that the single sign-on in the present application means that the user only needs to input the first account and the first password to initiate the authentication request, and can log on each service system corresponding to the service system login information configuration data.
For step S2, an account and password configuration file is obtained, the first account and the first password are used as first associated data, the first associated data is matched in the account and password configuration file, when the associated data is successfully matched in the account and password configuration file, the authentication result is determined to be passed, otherwise, the authentication result is determined to be not passed.
The account and password configuration file comprises: account numbers and passwords, wherein each account number corresponds to one password.
The account and the password configuration file can be obtained from a local storage space, can also be obtained from a network storage space, and can also be obtained from a third-party application system.
For S3, when the authentication result is a pass, it means that the user corresponding to the authentication request is a legitimate user, and at this time, the RPA robot is invoked to obtain the service system login information configuration data from the local storage space.
The RPA robot is a robot that simulates a manual operation mode of a user in a computer.
The service system login information configuration data comprises one or more pieces of service system login information. Each piece of business system login information corresponds to one business system. The service system login information comprises: the system comprises service system identifications, service system access addresses, second account numbers and second passwords, wherein each service system identification corresponds to one service system access address, one second account number and one second password. The service system identifier may be a service system name, a service system ID, or other data uniquely identifying a service system. The service system access address is an IP address for accessing the service system. The second account is a user ID. The second password is a password.
Optionally, the second password in the service system login information configuration data is an encrypted password.
Optionally, when the identity verification result is that the single-point account is passed, a configuration database is obtained, a single-point account is searched from the configuration database according to the first account, and all the service system login information corresponding to the single-point account searched in the configuration database is used as the service system login information configuration data.
The configuration database includes: single-point account and business system login information.
And S4, the RPA robot is called, a browser is started, in the started browser, token acquisition and business system login are respectively carried out on each business system login information in the business system login information configuration data, and the browser which completes the business system login is taken as the target browser.
Because the domain name accessed by the browser is stored in the Cookie, the account number and the password used for logging in are also stored in the file storage space of the browser, and as long as the browser is not closed after successfully logging in the service system, whether the service system login page is closed in the browser is judged, and login verification does not need to be carried out again when the successfully logged-in service system is accessed in a new label page in the browser.
The Cookie is data stored on the user local terminal.
It can be understood that, the steps S1 to S4 may be packaged into a software module, the packaged software module is installed in a personal computer of an employee inside an organization, and after the steps S1 to S4 are executed, the employee only needs to log in the service system successfully logged in the target browser using the steps S1 to S4, and the system operation may be directly performed without performing login verification on the service system successfully logged in.
In an embodiment, before the step of calling the RPA robot to obtain the service system login information configuration data, the method further includes:
s31: when the identity authentication result is passed, acquiring a service system login information configuration request;
s32: acquiring a service system login information set to be updated according to the service system login information configuration request;
s33: and updating the service system login information configuration data according to the service system login information set to be updated.
According to the embodiment, when the identity authentication result is passed, the configuration of the login information configuration data of the service system can be carried out, so that a basis is provided for automatically acquiring tokens and logging in a plurality of service systems only by inputting the first account and the first password.
For S31, when the authentication result is pass, acquiring a service system login information configuration request input by the user.
The service system login information configuration request is a request for configuring the service system login information.
And S32, acquiring the service system login information set to be updated input by the user according to the service system login information configuration request.
The service system login information set to be updated comprises: updating mode and service system login information. The updating method comprises the following steps: adding, deleting and modifying.
For S33, updating the service system login information of the service system login information set to be updated into the service system login information configuration data according to the updating manner of the service system login information set to be updated.
In an embodiment, the step of calling the RPA robot, and performing token acquisition, browser startup, and login of the service system in the browser according to the service system login information configuration data to obtain the target browser includes:
s411: calling the RPA robot, acquiring a browser identifier to be started, and starting a browser according to the browser identifier to be started to obtain a first browser;
s412: calling the RPA robot, and acquiring service system login information from the service system login information configuration data as target service system login information;
s413: calling the RPA robot, and obtaining a token according to the login information of the target service system to obtain a target token;
s414: calling the RPA robot, and accessing a service system in the first browser according to the service system access address of the target service system login information to obtain a first service system login page;
s415: calling the RPA robot, inputting the target token, the second account of the target business system login information and the second password into the first business system login page, and generating a first business system login request;
s416: acquiring a first service system login result corresponding to the first service system login request through the first browser;
s417: updating a file storage space of the first browser according to the login result of the first service system through the first browser;
s418: calling the RPA robot, repeatedly executing the step of calling the RPA robot and acquiring service system login information from the service system login information configuration data as target service system login information until the acquisition of the service system login information in the service system login information configuration data is completed;
s419: and taking the first browser as the target browser.
According to the embodiment, the business system is logged in the first browser, and the first browser which completes the login of the business system is used as the target browser, so that a user can use the successfully logged-in business system only in the target browser, and the efficiency of daily work is improved.
For S411, the RPA robot is called, the browser identifier to be started input by the user may be obtained, the browser identifier to be started may also be obtained from the database, and the browser identifier to be started may also be written in the program implementing the present application.
The browser identification may be a browser name, a browser ID, or the like, which uniquely identifies a browser.
And calling the RPA robot, starting a browser according to the browser identifier to be started, and taking the started browser as a first browser.
For S412, the RPA robot is invoked, a piece of service system login information is obtained from the service system login information configuration data, and the obtained service system login information is used as target service system login information.
And S413, calling the RPA robot, acquiring a token from the token system according to the service system identifier of the target service system login information, and taking the acquired token as the target token.
A token system is a system that generates tokens and performs token validity verification.
The token includes a token text, an effective time, and an expiration time.
For step S414, the RPA robot is called, a service system access address of the target service system login information is input in an address bar of the first browser, and address input confirmation is performed to obtain an address input confirmation signal; and the first browser opens a login page of the service system corresponding to the login information of the target service system according to the address input confirmation signal, and when the opened login page is used as a login page of the first service system.
And the first service system login page is the service system login page corresponding to the target service system login information.
For step S415, the RPA robot is called, the target token, the second account and the second password of the target service system login information are input into the first service system login page, and a login button is triggered after the target token, the second account and the second password are input, so as to obtain a login button trigger signal; and the first service system login page generates a first service system login request according to the login button trigger signal.
The first service system login request is a request for login verification in the service system corresponding to the target service system login information.
For step S416, the service system corresponding to the target service system login information performs login verification according to the second account and the second password in the parameters of the first service system login request, uses the second account and the second password in the parameters of the first service system login request as second associated data, matches the second associated data in the local configuration file, and obtains a token verification result from the token system according to the target token; and when the associated data is successfully matched in the local configuration file and the token verification result is passed, determining that the login result of the service system is passed, otherwise, determining that the login result of the service system is not passed, generating a response value according to the login result of the service system and the login request of the first service system, and sending the response value to the first browser.
And acquiring a response value sent by the service system corresponding to the target service system login information according to the first service system login request through the first browser, analyzing a service system login result of the response value, and taking data obtained by analysis as the first service system login result.
The service system login result comprises: the login result and the failure reason comprise: success and failure, and each login result corresponds to one failure reason. The failure reason may be a non-null value or a null value.
For S417, when the first service system login result is successful, the cache data (i.e., the data in the file storage space) of the first browser is updated according to the first service system login result.
And for step S418, the RPA robot is called, and the steps S412 to S418 are repeatedly executed until the acquisition of the service system login information in the service system login information configuration data is completed.
For step S419, the first browser is used as the target browser, and the user can use the successfully logged-in service system in the target browser only by using the cache data of the target browser and the working mechanism of the browser, so that the efficiency of daily work is improved.
It should be emphasized that, in order to further reduce the risk of information leakage, the present application also relates to a block chain technology, where the first account, the service system login information configuration data, and each first service system login result are stored as one piece of associated data on a block chain of a block chain system.
The block chain is a novel application mode of computer technologies such as distributed data storage, point-to-point transmission, a consensus mechanism and an encryption algorithm. A block chain (Blockchain), which is essentially a decentralized database, is a series of data blocks associated by using a cryptographic method, and each data block contains information of a batch of network transactions, so as to verify the validity (anti-counterfeiting) of the information and generate a next block. The blockchain may include a blockchain underlying platform, a platform product services layer, and an application services layer.
The block chain underlying platform can comprise processing modules such as user management, basic service, intelligent contract and operation monitoring. The user management module is responsible for identity information management of all blockchain participants, and comprises public and private key generation maintenance (account management), key management, user real identity and blockchain address corresponding relation maintenance (authority management) and the like, and under the authorization condition, the user management module supervises and audits the transaction condition of certain real identities and provides rule configuration (wind control audit) of risk control; the basic service module is deployed on all block chain node equipment and used for verifying the validity of the service request, recording the service request to storage after consensus on the valid request is completed, for a new service request, the basic service firstly performs interface adaptation analysis and authentication processing (interface adaptation), then encrypts service information (consensus management) through a consensus algorithm, transmits the service information to a shared account (network communication) completely and consistently after encryption, and performs recording and storage; the intelligent contract module is responsible for registering and issuing contracts, triggering the contracts and executing the contracts, developers can define contract logics through a certain programming language, issue the contract logics to a block chain (contract registration), call keys or other event triggering and executing according to the logics of contract clauses, complete the contract logics and simultaneously provide the function of upgrading and canceling the contracts; the operation monitoring module is mainly responsible for deployment, configuration modification, contract setting, cloud adaptation in the product release process and visual output of real-time states in product operation, such as: alarm, monitoring network conditions, monitoring node equipment health status, and the like.
In an embodiment, the step of invoking the RPA robot, inputting the target token, the second account of the target business system login information, and the second password into the first business system login page, and generating the first business system login request includes:
s4151: calling the RPA robot, inputting the target token into a token input frame of a login page of the first service system, and obtaining a token input completion signal;
s4152: calling the RPA robot, and inputting the second account into an account input frame of a login page of the first service system to obtain an account input completion signal;
s4153: calling the RPA robot, and inputting the second password into a password input frame of a login page of the first service system to obtain a password input completion signal;
s4154: calling the RPA robot, and generating the first service system login request according to the token input completion signal, the account input completion signal and the password input completion signal;
s4155: and sending the first service system login request to a service system corresponding to the target service system login information through the first service system login page.
The RPA robot is called by the embodiment, the target token, the second account and the second password of the target business system login information are input into the first business system login page, the token and the account and the password of the business system are automatically input, the automatic token acquisition and login of a plurality of business systems can be automatically carried out only by inputting the first account and the first password, the login complexity is reduced, different accounts and different passwords can be set for different business systems, the risk of information leakage is reduced, and the efficiency of daily work is improved.
And for S4151, the RPA robot is called, the target token is input into a token input box of the first service system login page, and a token input completion signal is generated after the target token is input.
And S4152, calling the RPA robot, inputting the second account into an account input box of the first service system login page, and generating an account input completion signal after inputting.
And S4153, calling the RPA robot, inputting the second password into a password input box of the login page of the first service system, and inputting the second password to generate a password input completion signal.
And for S4154, the RPA robot is called, and when the token input completion signal, the account input completion signal and the password input completion signal are obtained, a login button in a login page of the first service system is triggered to obtain a login button trigger signal. And the first service system login page generates the first service system login request according to the login button trigger signal.
For S4155, the first service system login request is sent to the service system corresponding to the target service system login information through the first service system login page, so as to complete the request for performing login verification on the service system corresponding to the target service system login information.
In an embodiment, the step of obtaining, by the first browser, a first service system login result corresponding to the first service system login request includes:
s4161: acquiring a first service system login result corresponding to the first service system login request through the first browser;
s4162: and when the login result of the first service system is failure and the failure reason corresponding to the login result of the first service system is failure due to the failure of the token, repeatedly executing the steps of calling the RPA robot, acquiring the token according to the login information of the target service system and obtaining the target token until the login result of the first service system is successful.
According to the embodiment, when the token is invalid, the token is automatically obtained again and the business system is logged in the first browser, so that the automation degree of the method and the system for logging in the business system is improved, and the efficiency of daily work is further improved.
For S4161, acquiring, by the first browser, a response value sent by the service system corresponding to the target service system login information according to the first service system login request, performing service system login result analysis on the response value, and taking data obtained through the analysis as the first service system login result.
For S4162, when the login result of the first business system login result is a failure, and the failure reason corresponding to the first business system login result is a token failure, it means that the login result of the first business system login result is a failure because of the token failure, and at this time, step S413, step S414, step S415, step S41414161, and step S4162 are repeated until the login result of the first business system login result is a success. Therefore, when the token fails, the token is automatically acquired again and the business system is logged in the first browser.
In an embodiment, the step of invoking the RPA robot, repeatedly executing the step of invoking the RPA robot, and acquiring service system login information from the service system login information configuration data as target service system login information until the step of acquiring the service system login information from the service system login information configuration data is completed further includes:
and when the login result of the first service system is failed, generating a service system login failure reminding signal according to the login result of each failed first service system, wherein the service system login failure reminding signal is used for reminding a user of service system login failure.
In this embodiment, after the login of the service system login information in the service system login information configuration data is completed, a service system login failure reminding signal is generated for each failed first service system login result according to the login result, so that the user is reminded, the user can quickly correct the user according to the service system login failure reminding signal, and the user experience is improved.
When the login result of the first service system login result is a failure, the fact that the service system which needs to be logged in is not successfully logged in is meant to exist, and therefore the service system login failure reminding signal is generated according to the target service system login information corresponding to each first service system login result of which the login result is a failure; and performing popup reminding on the service system login failure reminding signal.
The service system login failure reminding signal carries service system login failure information.
The service system login failure information comprises: the system comprises service system access addresses, failure reasons and login failure time, wherein each service system access address corresponds to one failure reason and one login failure time.
In an embodiment, the step of calling the RPA robot, and performing token acquisition, browser startup, and login of the service system in the browser according to the service system login information configuration data to obtain the target browser includes:
s421: calling the RPA robot, and acquiring service system login information from the service system login information configuration data as service system login information to be logged in;
s432: calling the RPA robot, determining a browser according to the browser identification of the login information of the service system to be logged in, and obtaining a second browser;
s423: calling the RPA robot, and respectively performing token acquisition and service system login on the service system login information to be logged in according to the second browser to obtain a second service system login result;
s424: updating a file storage space of the second browser according to the login result of the second service system through the second browser;
s425: calling the RPA robot, repeatedly executing the step of calling the RPA robot, and acquiring service system login information from the service system login information configuration data as service system login information to be logged in until the acquisition of the service system login information in the service system login information configuration data is completed;
s426: and taking each second browser as the target browser.
According to the embodiment, the business system is logged in one or more second browsers, and the second browser which completes the login of the business system is used as the target browser, so that the use requirements of the personalized browser of the user are met, the user can use the successfully logged-in business system only in the target browser, the daily work efficiency is improved, the user experience is improved, and the daily work efficiency is further improved.
And for S421, the RPA robot is called, a piece of service system login information is obtained from the service system login information configuration data, and the obtained service system login information is used as the service system login information to be logged in.
For S422, the RPA robot is called, when a browser identifier exists in the service system login information to be logged in, whether a browser corresponding to the browser identifier in the service system login information to be logged in has been started is determined, when the browser has been started, the browser corresponding to the browser identifier in the service system login information to be logged in is used as the second browser, when the browser has not been started, the browser is started according to the browser identifier in the service system login information to be logged in, and the started browser is used as the second browser; when the business system login information to be logged in does not have a browser identification, acquiring a preset browser identification, judging whether a browser corresponding to the preset browser identification is started or not, when the browser corresponding to the preset browser identification is started, taking the browser corresponding to the preset browser identification as the second browser, when the browser is not started, starting the browser according to the preset browser identification, and taking the started browser as the second browser. Thereby obtaining a personalized browser.
For step S423, the RPA robot is called, a token is obtained according to the login information of the service system to be logged in, a token to be logged in is obtained, a service system is accessed in the second browser according to the service system access address of the login information of the service system to be logged in, a second service system login page is obtained, the token to be logged in, a second account and a second password of the login information of the service system to be logged in are input into the second service system login page, and a second service system login request is generated; and acquiring a second service system login result corresponding to the second service system login request through the second browser.
For S424, when the second service system login result is successful, updating the cache data of the second browser according to the second service system login result.
And for step S425, invoking the RPA robot, and repeatedly executing step S421 to step S425 until the acquisition of the service system login information in the service system login information configuration data is completed.
For S426, each of the second browsers is taken as one of the target browsers. That is, there may be one or more target browsers.
Referring to fig. 2, the present application further provides a multi-system single sign-on apparatus based on RPA, the apparatus including:
a request obtaining module 100, configured to obtain an authentication request input by a user, where the authentication request carries a first account and a first password;
the identity authentication module 200 is configured to perform identity authentication according to the first account and the first password to obtain an identity authentication result;
a configuration data obtaining module 300, configured to, when the identity verification result is that the authentication result passes, invoke the RPA robot to obtain configuration data of the login information of the service system;
and a target browser determining module 400, configured to invoke the RPA robot, and perform token acquisition, browser startup, and login of the service system in the browser according to the service system login information configuration data, respectively, to obtain a target browser.
In the embodiment, by obtaining an authentication request input by a user, where the authentication request carries a first account and a first password, performing identity authentication according to the first account number and the first password to obtain an identity authentication result, when the identity authentication result is passed, calling the RPA robot, acquiring the configuration data of the login information of the service system, calling the RPA robot, according to the method and the device, token acquisition, browser starting and business system login in the browser are respectively carried out according to the business system login information configuration data, the target browser is obtained, the fact that tokens and login can be automatically acquired and logged in a plurality of business systems can be achieved only by inputting a first account and a first password, login complexity is reduced, different accounts and different passwords can be set for different business systems, information leakage risks are reduced, and daily work efficiency is improved.
Referring to fig. 3, a computer device, which may be a server and whose internal structure may be as shown in fig. 3, is also provided in the embodiment of the present application. The computer device includes a processor, a memory, a network interface, and a database connected by a system bus. Wherein the computer designed processor is used to provide computational and control capabilities. The memory of the computer device comprises a nonvolatile storage medium and an internal memory. The non-volatile storage medium stores an operating system, a computer program, and a database. The memory provides an environment for the operation of the operating system and the computer program in the non-volatile storage medium. The database of the computer equipment is used for storing data such as a multi-system single sign-on method based on RPA. The network interface of the computer device is used for communicating with an external terminal through a network connection. The computer program is executed by a processor to implement an RPA-based multi-system single sign-on method. The RPA-based multi-system single sign-on method comprises the following steps: acquiring an identity authentication request input by a user, wherein the identity authentication request carries a first account and a first password; performing identity authentication according to the first account and the first password to obtain an identity authentication result; when the identity authentication result is passed, calling the RPA robot to acquire service system login information configuration data; and calling the RPA robot, and respectively performing token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser.
In the embodiment, by obtaining an authentication request input by a user, where the authentication request carries a first account and a first password, performing identity authentication according to the first account number and the first password to obtain an identity authentication result, when the identity authentication result is passed, calling the RPA robot, acquiring the configuration data of the login information of the service system, calling the RPA robot, according to the method and the device, token acquisition, browser starting and business system login in the browser are respectively carried out according to the business system login information configuration data, the target browser is obtained, the fact that tokens and login can be automatically acquired and logged in a plurality of business systems can be achieved only by inputting a first account and a first password, login complexity is reduced, different accounts and different passwords can be set for different business systems, information leakage risks are reduced, and daily work efficiency is improved.
An embodiment of the present application further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements a method for single sign-on for multiple systems based on RPA, including the steps of: acquiring an identity authentication request input by a user, wherein the identity authentication request carries a first account and a first password; performing identity authentication according to the first account and the first password to obtain an identity authentication result; when the identity authentication result is passed, calling the RPA robot to acquire service system login information configuration data; and calling the RPA robot, and respectively performing token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser.
The executed RPA-based multi-system single sign-on method obtains an identity authentication request input by a user, the identity authentication request carries a first account and a first password, performs identity authentication according to the first account and the first password to obtain an identity authentication result, when the identity authentication result is passed, calls an RPA robot to obtain service system sign-on information configuration data, calls the RPA robot, respectively performs token acquisition, browser starting and service system sign-on in the browser according to the service system sign-on information configuration data to obtain a target browser, realizes that tokens can be automatically acquired and sign-on for a plurality of service systems only by inputting the first account and the first password, reduces the complexity of sign-on, and is beneficial to setting different accounts and different passwords for different service systems, the risk of information leakage is reduced, and the efficiency of daily work is improved.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by hardware instructions of a computer program, which can be stored in a non-volatile computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. Any reference to memory, storage, database, or other medium provided herein and used in the examples may include non-volatile and/or volatile memory. Non-volatile memory can include read-only memory (ROM), Programmable ROM (PROM), Electrically Programmable ROM (EPROM), Electrically Erasable Programmable ROM (EEPROM), or flash memory. Volatile memory can include Random Access Memory (RAM) or external cache memory. By way of illustration and not limitation, RAM is available in a variety of forms such as Static RAM (SRAM), Dynamic RAM (DRAM), Synchronous DRAM (SDRAM), double-rate SDRAM (SSRSDRAM), Enhanced SDRAM (ESDRAM), synchronous link (Synchlink) DRAM (SLDRAM), Rambus Direct RAM (RDRAM), direct bus dynamic RAM (DRDRAM), and bus dynamic RAM (RDRAM).
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, apparatus, article, or method that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, apparatus, article, or method. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, apparatus, article, or method that includes the element.
The above description is only a preferred embodiment of the present application, and not intended to limit the scope of the present application, and all modifications of equivalent structures and equivalent processes, which are made by the contents of the specification and the drawings of the present application, or which are directly or indirectly applied to other related technical fields, are also included in the scope of the present application.

Claims (10)

1. A multi-system single sign-on method based on RPA is characterized in that the method comprises the following steps:
acquiring an identity authentication request input by a user, wherein the identity authentication request carries a first account and a first password;
performing identity authentication according to the first account and the first password to obtain an identity authentication result;
when the identity authentication result is passed, calling the RPA robot to acquire service system login information configuration data;
and calling the RPA robot, and respectively performing token acquisition, browser starting and business system login in the browser according to the business system login information configuration data to obtain a target browser.
2. The RPA-based multi-system single sign-on method of claim 1, wherein before the step of invoking the RPA robot to obtain the configuration data of the service system sign-on information, the method further comprises:
when the identity authentication result is passed, acquiring a service system login information configuration request;
acquiring a service system login information set to be updated according to the service system login information configuration request;
and updating the service system login information configuration data according to the service system login information set to be updated.
3. The RPA-based multi-system single sign-on method of claim 1, wherein the step of invoking the RPA robot, respectively performing token acquisition, browser startup, and logging in the business system in the browser according to the business system login information configuration data to obtain the target browser includes:
calling the RPA robot, acquiring a browser identifier to be started, and starting a browser according to the browser identifier to be started to obtain a first browser;
calling the RPA robot, and acquiring service system login information from the service system login information configuration data as target service system login information;
calling the RPA robot, and obtaining a token according to the login information of the target service system to obtain a target token;
calling the RPA robot, and accessing a service system in the first browser according to the service system access address of the target service system login information to obtain a first service system login page;
calling the RPA robot, inputting the target token, the second account of the target business system login information and the second password into the first business system login page, and generating a first business system login request;
acquiring a first service system login result corresponding to the first service system login request through the first browser;
updating a file storage space of the first browser according to the login result of the first service system through the first browser;
calling the RPA robot, repeatedly executing the step of calling the RPA robot and acquiring service system login information from the service system login information configuration data as target service system login information until the acquisition of the service system login information in the service system login information configuration data is completed;
and taking the first browser as the target browser.
4. The RPA-based multi-system single sign-on method of claim 3, wherein the step of invoking the RPA robot to input the target token, the second account of the target business system sign-on information, and the second password into the first business system sign-on page to generate the first business system sign-on request includes:
calling the RPA robot, inputting the target token into a token input frame of a login page of the first service system, and obtaining a token input completion signal;
calling the RPA robot, and inputting the second account into an account input frame of a login page of the first service system to obtain an account input completion signal;
calling the RPA robot, and inputting the second password into a password input frame of a login page of the first service system to obtain a password input completion signal;
calling the RPA robot, and generating the first service system login request according to the token input completion signal, the account input completion signal and the password input completion signal;
and sending the first service system login request to a service system corresponding to the target service system login information through the first service system login page.
5. The RPA-based multi-system single sign-on method of claim 3, wherein the step of obtaining a first service system sign-on result corresponding to the first service system sign-on request through the first browser comprises:
acquiring a first service system login result corresponding to the first service system login request through the first browser;
and when the login result of the first service system is failure and the failure reason corresponding to the login result of the first service system is failure due to the failure of the token, repeatedly executing the steps of calling the RPA robot, acquiring the token according to the login information of the target service system and obtaining the target token until the login result of the first service system is successful.
6. The RPA-based multi-system single sign-on method of claim 3, wherein the step of invoking the RPA robot, repeatedly executing the step of invoking the RPA robot, and obtaining service system login information from the service system login information configuration data as target service system login information, until the step of obtaining the service system login information in the service system login information configuration data is completed, further comprises:
and when the login result of the first service system is failed, generating a service system login failure reminding signal according to the login result of each failed first service system, wherein the service system login failure reminding signal is used for reminding a user of service system login failure.
7. The RPA-based multi-system single sign-on method of claim 1, wherein the step of invoking the RPA robot, respectively performing token acquisition, browser startup, and logging in the business system in the browser according to the business system login information configuration data to obtain the target browser includes:
calling the RPA robot, and acquiring service system login information from the service system login information configuration data as service system login information to be logged in;
calling the RPA robot, determining a browser according to the browser identification of the login information of the service system to be logged in, and obtaining a second browser;
calling the RPA robot, and respectively performing token acquisition and service system login on the service system login information to be logged in according to the second browser to obtain a second service system login result;
updating a file storage space of the second browser according to the login result of the second service system through the second browser;
calling the RPA robot, repeatedly executing the step of calling the RPA robot, and acquiring service system login information from the service system login information configuration data as service system login information to be logged in until the acquisition of the service system login information in the service system login information configuration data is completed;
and taking each second browser as the target browser.
8. An RPA-based multi-system single sign-on apparatus, the apparatus comprising:
the system comprises a request acquisition module, a first password acquisition module and a second password acquisition module, wherein the request acquisition module is used for acquiring an authentication request input by a user, and the authentication request carries a first account and a first password;
the identity authentication module is used for performing identity authentication according to the first account and the first password to obtain an identity authentication result;
the configuration data acquisition module is used for calling the RPA robot to acquire the configuration data of the login information of the service system when the identity authentication result is passed;
and the target browser determining module is used for calling the RPA robot, respectively obtaining a token according to the login information configuration data of the service system, starting a browser and logging in the service system in the browser to obtain the target browser.
9. A computer device comprising a memory and a processor, the memory storing a computer program, wherein the processor implements the steps of the method of any one of claims 1 to 7 when executing the computer program.
10. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, carries out the steps of the method of any one of claims 1 to 7.
CN202110874821.8A 2021-07-30 2021-07-30 Multi-system single sign-on method, device, equipment and medium based on RPA Active CN113660229B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110874821.8A CN113660229B (en) 2021-07-30 2021-07-30 Multi-system single sign-on method, device, equipment and medium based on RPA

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110874821.8A CN113660229B (en) 2021-07-30 2021-07-30 Multi-system single sign-on method, device, equipment and medium based on RPA

Publications (2)

Publication Number Publication Date
CN113660229A true CN113660229A (en) 2021-11-16
CN113660229B CN113660229B (en) 2023-04-07

Family

ID=78478188

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110874821.8A Active CN113660229B (en) 2021-07-30 2021-07-30 Multi-system single sign-on method, device, equipment and medium based on RPA

Country Status (1)

Country Link
CN (1) CN113660229B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114448648A (en) * 2022-04-07 2022-05-06 天聚地合(苏州)科技股份有限公司 Sensitive credential management method and system based on RPA
CN114928461A (en) * 2022-03-01 2022-08-19 达而观信息科技(上海)有限公司 Robot process automation system and data authority control method thereof

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107733847A (en) * 2017-07-25 2018-02-23 上海壹账通金融科技有限公司 Platform Website login method, apparatus, computer equipment and readable storage medium storing program for executing
CN110035088A (en) * 2019-04-26 2019-07-19 厦门商集网络科技有限责任公司 Method and apparatus based on RPA remote control operation system automated log on
CN110784450A (en) * 2019-09-24 2020-02-11 云深互联(北京)科技有限公司 Single sign-on method and device based on browser
WO2020087778A1 (en) * 2018-11-02 2020-05-07 深圳壹账通智能科技有限公司 Multiple system login method, apparatus, computer device and storage medium
US10911546B1 (en) * 2019-12-30 2021-02-02 Automation Anywhere, Inc. Robotic process automation with automated user login for multiple terminal server hosted user sessions
US20210129325A1 (en) * 2019-10-31 2021-05-06 Automation Anywhere, Inc. Productivity plugin for integration with robotic process automation

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107733847A (en) * 2017-07-25 2018-02-23 上海壹账通金融科技有限公司 Platform Website login method, apparatus, computer equipment and readable storage medium storing program for executing
WO2020087778A1 (en) * 2018-11-02 2020-05-07 深圳壹账通智能科技有限公司 Multiple system login method, apparatus, computer device and storage medium
CN110035088A (en) * 2019-04-26 2019-07-19 厦门商集网络科技有限责任公司 Method and apparatus based on RPA remote control operation system automated log on
CN110784450A (en) * 2019-09-24 2020-02-11 云深互联(北京)科技有限公司 Single sign-on method and device based on browser
US20210129325A1 (en) * 2019-10-31 2021-05-06 Automation Anywhere, Inc. Productivity plugin for integration with robotic process automation
US10911546B1 (en) * 2019-12-30 2021-02-02 Automation Anywhere, Inc. Robotic process automation with automated user login for multiple terminal server hosted user sessions

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114928461A (en) * 2022-03-01 2022-08-19 达而观信息科技(上海)有限公司 Robot process automation system and data authority control method thereof
CN114448648A (en) * 2022-04-07 2022-05-06 天聚地合(苏州)科技股份有限公司 Sensitive credential management method and system based on RPA
CN114448648B (en) * 2022-04-07 2022-08-23 天聚地合(苏州)科技股份有限公司 Sensitive credential management method and system based on RPA

Also Published As

Publication number Publication date
CN113660229B (en) 2023-04-07

Similar Documents

Publication Publication Date Title
CN112632575A (en) Authority management method and device of business system, computer equipment and storage medium
AU2018374912B2 (en) Model training system and method, and storage medium
CN113660229B (en) Multi-system single sign-on method, device, equipment and medium based on RPA
CN110620782A (en) Account authentication method and device, computer equipment and storage medium
CN110597541B (en) Interface updating processing method, device, equipment and storage medium based on block chain
CN112637282B (en) Information pushing method and device, computer equipment and storage medium
CN112383535B (en) Method and device for detecting Hash transfer attack behavior and computer equipment
CN111737963B (en) Configuration file based form filling method and device and computer equipment
CN111597424A (en) Crawler identification method and device, computer equipment and storage medium
CN112464117A (en) Request processing method and device, computer equipment and storage medium
CN112187931A (en) Session management method, device, computer equipment and storage medium
CN113326081A (en) Static resource processing method and device, computer equipment and storage medium
CN112380286B (en) Method, device, equipment and medium for generating data object relation map of database
CN112163131A (en) Configuration method and device of business data query platform, computer equipment and medium
CN112668041A (en) Document file generation method and device, computer equipment and storage medium
CN112118238B (en) Method, device, system, equipment and storage medium for authenticating login
CN112434335A (en) Business problem processing method and device, computer equipment and storage medium
CN113742776A (en) Data verification method and device based on biological recognition technology and computer equipment
CN113435990B (en) Certificate generation method and device based on rule engine and computer equipment
CN110599332A (en) Block chain-based user intention determination method, device, equipment and storage medium
CN112328285A (en) Method, device, equipment and medium for producing and updating new functions of system
CN112650659B (en) Buried point setting method and device, computer equipment and storage medium
CN112738322B (en) Call processing method and device, computer equipment and storage medium
CN113672654A (en) Data query method and device, computer equipment and storage medium
CN111865927B (en) Vulnerability processing method and device based on system, computer equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20230801

Address after: No. 2-1, Building B3, Group B, Phase I, Nanning ASEAN Enterprise Headquarters Base, No. 10, Xinji Road, High tech Zone, Guangxi Zhuang Autonomous Region, 530000

Patentee after: Guangxi sanfangda Supply Chain Technology Service Co.,Ltd.

Address before: 200000 floor 15, No. 1333, Lujiazui Ring Road, Shanghai pilot Free Trade Zone

Patentee before: Weikun (Shanghai) Technology Service Co.,Ltd.

TR01 Transfer of patent right