CN114722374A - Data processing method, device, equipment and storage medium - Google Patents
Data processing method, device, equipment and storage medium Download PDFInfo
- Publication number
- CN114722374A CN114722374A CN202110009760.9A CN202110009760A CN114722374A CN 114722374 A CN114722374 A CN 114722374A CN 202110009760 A CN202110009760 A CN 202110009760A CN 114722374 A CN114722374 A CN 114722374A
- Authority
- CN
- China
- Prior art keywords
- server
- identification
- target user
- token
- identity
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The embodiment of the invention discloses a data processing method, a device, equipment and a storage medium; the embodiment of the invention can inquire the identity of the target user when receiving the identity inquiry request of the second server for the target user; when the identity of the target user exists in the first server, generating an identity token of the target user; sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token; receiving an identification obtaining request of a second server; acquiring the identity certificate of the target user according to the identity certificate token; and sending the identification to the second server so that the second server opens the financial account according to the identification. In the embodiment of the invention, when the second server sets up the financial account for the target user, the identity certificate can be obtained through the first server, and the operation is simple. Therefore, the efficiency of opening the financial account can be improved.
Description
Technical Field
The present invention relates to the field of computer technologies, and in particular, to a data processing method, apparatus, device, and storage medium.
Background
With the rapid development of technologies such as internet, cloud computing and big data, internet banking is also a different military project. The internet bank can absorb deposit, release loan and make settlement payment; the service is global, the flow is simple, the service is convenient, efficient and reliable, and the method is a necessary development direction of banks in the future. The user can complete the account opening operation of the internet bank card under various network environments.
However, when the user opens an account at present, the operation is cumbersome, and the efficiency is low. Therefore, how to rapidly open an account of the internet bank card and improve efficiency are problems to be solved urgently.
Disclosure of Invention
Embodiments of the present invention provide a data processing method, apparatus, device, and storage medium, which can improve efficiency of opening a financial account.
The embodiment of the invention provides a data processing method, which is suitable for a first server, wherein the first server is a server set for a payment platform and comprises the following steps:
when receiving an identification query request of a second server for a target user, querying the identification of the target user, wherein the second server is a server set by a financial institution;
when the identity of the target user exists in the first server, generating an identity token of the target user, wherein the identity token is used for representing that the identity of the target user exists in the first server;
sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token;
receiving an identification obtaining request of a second server, wherein the identification obtaining request comprises an identification token;
acquiring the identity certificate of the target user according to the identity certificate token;
and sending the identification to the second server so that the second server opens the financial account according to the identification.
The embodiment of the invention provides a data processing method, which is suitable for a second server, wherein the second server is a server set by a financial institution, and the method comprises the following steps:
receiving an account opening request of a target user;
sending an identification query request aiming at a target user to a first server based on an account opening request of the target user, wherein the first server is a server set up for a payment platform;
receiving an identity certificate token sent by a first server, wherein the identity certificate token is used for representing that identity certificate of a target user exists in the first server;
setting up a financial account for the target user according to the identification token;
sending an identification obtaining request to a first server, wherein the identification obtaining request comprises an identification token;
and when the identity certificate of the first server is received, completing opening the financial account of the target user.
An embodiment of the present invention further provides a data processing apparatus, including:
the query unit is used for querying the identification of the target user when receiving an identification query request of a second server for the target user, wherein the second server is a server set by the financial institution;
the generating unit is used for generating an identity certificate token of the target user when the identity certificate of the target user exists in the first server, wherein the identity certificate token is used for representing the identity certificate of the target user in the first server;
a sending unit, configured to send an identification token of the target user to the second server, so that the second server sets up a financial account for the target user according to the identification token;
a receiving unit, configured to receive an identification obtaining request of the second server, where the identification obtaining request includes an identification token;
the obtaining unit is used for obtaining the identity certificate of the target user according to the identity certificate token;
and the sending unit is also used for sending the identification to the second server so that the second server opens the financial account of the target user according to the identification.
In some embodiments, the identification token has a validity period, and the obtaining unit is specifically configured to:
verifying whether the identification token is within a validity period;
when the identity certification token is in the validity period, obtaining the identity certification of the target user;
and when the identity certification token is not in the validity period, refusing to acquire the identity certification of the target user, and feeding back refusing information to the second server.
In some embodiments, the first server stores a generation time corresponding to the identification token, and the obtaining unit is specifically configured to:
when the time difference between the current time and the generation time is not greater than the validity period, the identity token is within the validity period;
when the time difference between the current time and the generation time is greater than the validity period, the identification token is not within the validity period.
In some embodiments, the data processing apparatus is further configured to:
when the first server is inquired that the identity certificate of the target user does not exist, the inquiry failure information is fed back to the second server, so that the second server prompts the target user to upload the identity certificate according to the inquiry failure information.
In some embodiments, the data processing apparatus is further configured to:
acquiring the identity certificate of a target user;
calling an identity authentication interface according to the identity certificate to carry out identity authentication processing on the target user, wherein the identity authentication interface is provided by a government organization for managing the identity certificate;
when the target user authentication process is passed, the identification of the target user is stored.
In some embodiments, the generating unit is to:
and acquiring a target token from the token bucket as an identity authentication token of a target user, generating the tokens in the token bucket according to a fixed rate, and enabling the number of the tokens in the token bucket not to exceed a preset token number threshold value.
In some embodiments, the data processing apparatus is further configured to:
and when the identity certificate sent to the second server fails, executing the step of receiving the identity certificate acquisition request sent by the second server.
In some embodiments, the second server is equipped with an internet banking system, the first server is equipped with a payment system of instant messaging software, the identification card is an identification card image, and the data processing device is further configured to:
when an inquiry request of an internet banking system for an identity card image of a target user is received, inquiring the identity card image of the target user;
when the identity card image of the target user exists in the payment system of the instant messaging software, generating an identity certificate token of the target user, wherein the identity certificate token is used for representing the identity card image of the target user existing in the payment system of the instant messaging software;
sending the identification token of the target user to the Internet banking system so that the Internet banking system can set up an Internet banking account for the target user according to the identification token;
receiving an identity card image acquisition request of an internet banking system, wherein the identity card image acquisition request comprises an identity certificate token;
acquiring an identity card image of a target user according to the identity card token;
and sending the identity card image to an Internet banking system so that the Internet banking system opens an Internet banking account of the target user according to the identity card image.
An embodiment of the present invention further provides a data processing apparatus, including:
the receiving unit is used for receiving an account opening request of a target user;
the payment platform comprises a sending unit, a payment processing unit and a payment processing unit, wherein the sending unit is used for sending an identification query request aiming at a target user to a first server based on an account opening request of the target user, and the first server is a server set up for the payment platform;
the receiving unit is further used for receiving an identity certificate token sent by the first server, and the identity certificate token is used for representing that the identity certificate of the target user exists in the first server;
a setup unit for setting up a financial account for the target user according to the identification token;
the sending unit is further used for sending an identification obtaining request to the first server, wherein the identification obtaining request comprises an identification token;
and the opening unit is used for completing opening the financial account of the target user when the identification of the first server is received.
In some embodiments, the data processing apparatus is further configured to:
receiving query failure information fed back by a first server;
and prompting the target user to upload the identity certificate according to the query failure information.
In some embodiments, the data processing apparatus is further configured to:
and when the identification of the first server is not received, executing the step of sending an identification acquisition request to the first server.
The embodiment of the invention also provides the electronic equipment, which comprises a memory, a storage and a control unit, wherein the memory stores a plurality of instructions; the processor loads instructions from the memory to execute the steps of any data processing method provided by the embodiment of the invention.
The embodiment of the present invention further provides a computer-readable storage medium, where a plurality of instructions are stored, and the instructions are suitable for being loaded by a processor to perform the steps in any data processing method provided in the embodiment of the present invention.
The embodiment of the invention can inquire the identity of the target user when receiving the identity inquiry request of the second server for the target user; when the first server is inquired that the identity of the target user exists, generating an identity token of the target user; sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token; receiving an identification obtaining request of a second server, wherein the identification obtaining request comprises an identification token; acquiring the identity certificate of the target user according to the identity certificate token; and sending the identification to the second server so that the second server opens the financial account according to the identification.
In the invention, when the second server sets up a financial account for a target user, the second server can send an identification query request to the first server; after receiving the identity certification query request, the first server can query whether the identity certification of the target user exists, and when the identity certification exists, the first server sends an identity certification token to the second server; the second server can set up a financial account for the target user according to the token; and the identity certificate can be asynchronously obtained according to the token, the target user does not need to upload the identity certificate in real time, and the operation is simple. Therefore, the efficiency of opening the financial account is improved.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings needed to be used in the description of the embodiments will be briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
FIG. 1a is a schematic view of a data processing method according to an embodiment of the present invention;
FIG. 1b is a schematic diagram of a data sharing connection provided by an embodiment of the present invention;
fig. 1c is a schematic structural diagram of a block chain according to an embodiment of the present invention;
FIG. 1d is a schematic flow chart of a data processing method according to an embodiment of the present invention;
FIG. 2a is a schematic flow chart of a data processing method according to an embodiment of the present invention;
fig. 2b is a schematic view of a scenario for applying for account opening according to an embodiment of the present invention;
fig. 3 is a schematic flow chart of a data processing method applied in a scene of opening an internet bank account according to an embodiment of the present invention;
FIG. 4 is a schematic diagram of a first structure of a data processing apparatus according to an embodiment of the present invention;
FIG. 5 is a schematic diagram of another structure of a data processing apparatus according to an embodiment of the present invention;
fig. 6 is a schematic structural diagram of a first server according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The embodiment of the invention provides a data processing method, a data processing device, data processing equipment and a storage medium.
An embodiment of the present invention further provides a data processing system, including: the data processing apparatus provided by the embodiment of the present invention includes, for example, a data processing apparatus suitable for a first server, a data processing apparatus suitable for a second server, and the like.
In some embodiments, the data processing system may be comprised of one or more of the data processing apparatus described above as being adapted for use with a first server and a data processing apparatus adapted for use with a second server. For example, the data processing system may be comprised of a data processing apparatus adapted to a first server, a data processing apparatus adapted to a second server; for another example, the data processing system may be comprised of one data processing apparatus adapted to a first server, and a plurality of data processing apparatuses adapted to a second server.
The first server may be a single server or a server cluster composed of a plurality of servers; the second server may be a single server or a server cluster including a plurality of servers.
For example, referring to the schematic diagram of a scenario provided in fig. 1a, the data processing system may specifically include a first server and a second server. The first server is a server established for a payment platform, and the payment platform can be a payment platform of instant messaging software, a payment platform of e-commerce software and the like, such as a payment system of WeChat; the second server is a server set up by a financial institution, which may be an internet bank, an internet security company, or the like.
The data processing system may also include a data storage device and a user terminal. The data storage device may be a server on which a database is installed, and the server may be a first server, a part of servers in a first server cluster, or a server additionally set up by the payment platform; the data storage device may also be a storage medium such as a floppy disk, hard disk, optical disk, etc. The user terminal can be an electronic device such as a mobile terminal, a server and the like, and the electronic device is provided with software with a payment platform, such as instant messaging software (e.g. WeChat); the mobile terminal may include a mobile phone, a tablet Computer, an intelligent bluetooth device, a notebook Computer, or a Personal Computer (PC).
In fig. 1a, a target user may send an account opening request to a second server through a user terminal, and after receiving the account opening request of the target user, the second server sends an identification query request to a first server; when the first server receives an identification query request of a second server for a target user, querying the identification of the target user in the data storage equipment; when the identity of the target user exists in the data storage device, generating an identity token of the target user, and sending the identity token of the target user to the second server; the second server receives the identification token sent by the first server, and sets up a financial account for the target user according to the identification token; meanwhile, an identity certificate acquisition request is sent to the first server through the asynchronous task, wherein the identity certificate acquisition request comprises an identity certificate token; the first server receives an identification obtaining request of the second server, obtains identification of a target user from the data storage device according to the identification token, and sends the identification to the second server; and when the second server receives the identity certificate of the first server, completing the opening of the financial account of the target user. The embodiment of the invention can asynchronously obtain the identity certificate according to the token without uploading the identity certificate by the target user, and has simple operation. Therefore, the efficiency of opening the financial account is improved.
The following are detailed below. The numbers in the following examples are not intended to limit the order of preference of the examples.
In some embodiments, the data processing system shown in fig. 1a may be connected through the data sharing connection shown in fig. 1b, where the data sharing connection means that data sharing may be performed between nodes, the data processing system may include a plurality of nodes 101, and the plurality of nodes 101 may refer to the first server, the second server, and the data storage device in fig. 1 a. Each node 101 may receive input information during normal operation and maintain shared data within the data processing system based on the received input information. In order to ensure information intercommunication within a data processing system, information connections may exist between each node in the data processing system, and information transmission may be performed between the nodes through the information connections. For example, when an arbitrary node in the data processing system receives input information, other nodes in the data processing system acquire the input information according to a consensus algorithm, and store the input information as data in shared data, so that the data stored on all nodes in the data processing system are consistent. Data processing
Each node in the data processing system stores one and the same blockchain. The block chain is composed of a plurality of blocks, referring to fig. 1c, the block chain is composed of a plurality of blocks, the starting block comprises a block head and a block main body, the block head stores an input information characteristic value, a version number, a timestamp and a difficulty value, and the block main body stores input information; the next block of the starting block takes the starting block as a parent block, the next block also comprises a block head and a block main body, the block head stores the input information characteristic value of the current block, the block head characteristic value of the parent block, the version number, the timestamp and the difficulty value, and the like, so that the block data stored in each block in the block chain is associated with the block data stored in the parent block, and the safety of the input information in the block is ensured.
In this embodiment, a data processing method is provided, which is applicable to a first server, and as shown in fig. 1d, a specific flow of the data processing method may be as follows:
101. and when an identification query request of the second server for the target user is received, querying the identification of the target user.
The identification query request is used for requesting the first server to query whether the identification of the target user exists. The identification query request may include, but is not limited to, an identification of the second server and a user identification of the target user; the identity of the second server may be used to identify a financial institution, such as an internet bank id (identity document), etc.; the user identification may be used to characterize the user identity of the target user in the payment platform, such as a micro-signal.
The identity certificate can be used for verifying the identity of the holder, and the concrete representation form of the identity certificate is not limited, and for example, the identity certificate can be an identity card image (such as a copy, a scanned piece or a photo of an identity card) and can also be some future-developed certificate which can verify the identity of the holder. The first server may query the data storage device shown in fig. 1a for the existence of the identification of the target user; for example, the first server may query the data storage device for the presence of identification based on the user identification of the target user.
Optionally, the first server may receive an identification query request of the second server for the target user through a wireless hotspot, bluetooth, or network communication.
Optionally, before receiving the identification query request of the second server for the target user, the first server further performs the following steps.
The first server obtains the identification of the target user. For example, the target user may apply for registering the payment platform through the user terminal, and when registering the payment platform, the target user may upload the identity certificate through the user terminal and send the identity certificate to the first server, and accordingly, the first server receives the identity certificate.
The first server calls an authentication interface according to the identification to perform authentication processing on the target user, wherein the authentication interface is provided by a body unit managing the identification. The authority unit for managing the identity certificate may be a public security department, the identity verification interface is developed and provided by the authority unit, and the identity verification processing can be performed by calling the interface, such as verifying whether the identity certificate of the target user is legal or not, whether the identity certificate is consistent with the target user (holder) or not, and the like.
When the target user authentication process is passed, the identification of the target user is stored. In one implementation, the target user's identification may be stored in a data storage device; for example, the information may be stored in a database, which may be a relational database or a non-relational database, and the embodiments of the present invention are not limited thereto. In another implementation manner, the identification of the target user may be stored by using a blockchain shown in fig. 1c, where the first server and the server corresponding to the government entity may serve as nodes in the data processing system, and the identification of the target user may serve as input information; and when the identity authentication is passed, storing the identity certificate in the block chain.
Illustratively, the target user opens the instant messaging software at the user terminal, enters the payment system, then applies for registering the payment system and uploads the identity card photo, and the user terminal sends the application request and the identity card photo to the first server. And after receiving the application and the identity card photo, the first server calls an identity verification interface to carry out identity verification on the target user. And if the verification is passed, storing the identification of the target user in a database.
102. And when the first server is inquired that the identification of the target user exists, generating an identification token of the target user.
The identity certificate token is used for representing the identity certificate of the target user in the first server; the identification token is a random string, and the specific implementation of generating the identification token is not limited, and may include, but is not limited to, the following embodiments.
In some embodiments, the identification token is randomly generated by the first server when querying that the identification of the target user exists in the first server.
In some embodiments, when querying that the identification of the target user exists in the first server, the target Token may be obtained from a Token Bucket (Token Bucket) as the identification Token of the target user. Wherein the target token may be any token in the token bucket. Tokens in the token bucket are generated at a fixed rate that characterizes the periodic addition of tokens to the token bucket at that rate. The number of tokens in the token bucket does not exceed a preset token number threshold value, the token number threshold value is used for representing the size of the token bucket, and the threshold value can be adaptively changed according to the overall load of the first server or preset, such as manually configured by an operation system. The above manner of generating the identification token may be referred to as a token bucket algorithm, and if there is a token in the token bucket, the identification token is allowed to be sent to the second server; and if no token exists in the token bucket, the identification token is not allowed to be sent to the second server. Thus, the token bucket algorithm may be used to control the amount of data sent onto the network and allow the transmission of bursts of data. The flow of the first server can be enabled not to exceed the maximum load, and the server breakdown can be effectively avoided.
Optionally, when it is queried that the identity of the target user does not exist in the first server, the first server feeds back query failure information to the second server, so that the second server prompts the target user to upload the identity according to the query failure information. The query failure information is used for representing that the identification of the target user does not exist in the first server.
Therefore, when the identity of the target user is found in the first server, the second server can obtain the identity of the target user through the identity token, the target user does not need to upload the identity in real time, the operation is simple, the frequency of uploading the identity by the user can be reduced, and the user experience is improved. The second server does not need to call an identity authentication interface to authenticate the identity certificate of the target user, so that the load of the server is reduced, and the efficiency of opening the financial account is improved.
103. And sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token.
For a specific embodiment in which the second server sets up a financial account for the target user according to the identification token, reference may be made to step 204 in the data processing method shown in fig. 2a, which is not described herein again.
104. An identification acquisition request of the second server is received, the identification acquisition request including an identification token.
In some embodiments, sending the identification token from the first server to the second server is equivalent to granting the second server the right to obtain the identification from the first server. Thus, the first server will only respond to the second server's acquisition request when the identification acquisition request includes the identification token; the acquisition request of the second server is not responded to if the identification acquisition request does not include the identification token.
105. And acquiring the identity certificate of the target user according to the identity certificate token.
Optionally, the identity token has a validity period for characterizing a period of rights that the second server may obtain for identity by means of the identity token. When the first server receives the identification obtaining request of the second server, the following steps can be further executed.
The first server verifies whether the identification token is within a validity period. The validity period may be set in advance, for example, the validity period is set to be 1 hour, 12 hours, 24 hours, and the like, and the embodiment of the present invention is not limited. Optionally, the specific implementation of the first server verifying whether the identification token is within the validity period is not limiting. Illustratively, the first server stores a generation time corresponding to the identification token, and the generation time is used for characterizing the time for generating the identification token. For example, a token information table is maintained in the first server, as shown in table 1, the token information table may include, but is not limited to, an identification token, a generation time corresponding to the token, a user identifier of a target user corresponding to the token, and an identification corresponding to the token. The token information table is shown in table 1.
| Identification token | Generating time | User identification | Identification certificate | … |
| Token 1 | 19/6/10 12:30:12 | xxxxx | xxxx | |
| … |
TABLE 1
The first server can obtain the current time after receiving the identification obtaining request of the second server, and the current time is compared with the generation time. When the time difference between the current time and the generation time is not greater than the validity period, the identity token is within the validity period; when the time difference between the current time and the generation time is greater than the validity period, the identification token is not within the validity period.
When the identity certification token is within the validity period, the first server obtains the identity certification of the target user. For example, the first server obtains the identification corresponding to the identification token from the data storage device according to the identification token.
And when the identity certification token is not in the validity period, refusing to acquire the identity certification of the target user, and feeding back refusing information to the second server. Wherein the denial information is used to prompt the second server identification token not to be within the validity period. Therefore, when the identity certification token is within the validity period, the second server can obtain the identity certification of the target user from the first server, and the security of the whole data processing system is improved.
106. And sending the identification to the second server so that the second server opens the financial account of the target user according to the identification.
Optionally, when the network is jittered, data communication between the first server and the second server may be affected, for example, a packet loss situation may occur. And when the first server fails to send the identification to the second server, executing the step of receiving the identification acquisition request sent by the second server. Therefore, when the network shakes, the second server can obtain the identification of the target user again according to the identification token, the success rate of finally obtaining the identification is improved, and the efficiency of opening the financial account is improved.
The data processing scheme provided by the embodiment of the invention can be applied to various scenes of opening financial accounts. For example, taking the opening of an internet bank account as an example, in this scenario, a target user may apply for opening the internet bank account in instant messaging software of a user terminal, and after receiving an account opening request of the target user, an internet bank system (a second server) may query whether an identity certificate of the target user exists through a payment system (a first server) of the instant messaging software, and when the identity certificate exists, a token is returned; the Internet bank system can set up an Internet bank account for the target user according to the token; and the identity certificate can be asynchronously obtained according to the token, the target user does not need to upload the identity certificate in real time, and the operation is simple. By adopting the scheme provided by the embodiment of the invention, the frequency of uploading the identity certificate by the user can be reduced, the physical examination of the user is improved, and the load of the server can be reduced by asynchronously acquiring the identity certificate, so that the efficiency of opening the financial account is improved.
As can be seen from the above, in the embodiment of the present invention, when an identification query request of the second server for the target user is received, the identification of the target user may be queried; when the identity of the target user exists in the first server, generating an identity token of the target user; sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token; receiving an identification obtaining request of a second server, wherein the identification obtaining request comprises an identification token; acquiring the identity certificate of the target user according to the identity certificate token; and sending the identity certificate to the second server so that the second server opens the financial account according to the identity certificate. Therefore, the efficiency of opening the financial account is improved.
Therefore, after the identity certificate of the target user passes the identity verification processing, the first server can store the identity certificate in the database; when the second server requests to inquire the identification of the target user, an identification token can be returned so that the second server can set up a financial account according to the identification token; and allowing the second server to asynchronously obtain the identification of the target user based on the identification token. The frequency of uploading the identity certificate by the user is reduced, and the frequency of calling the identity verification interface is also reduced, so that the user is easy and convenient to operate, the load of the server is reduced, and the efficiency of opening the financial account is improved.
In this embodiment, a data processing method is provided, which is applicable to a second server, and as shown in fig. 2a, a specific flow of the data processing method may be as follows:
201. and receiving an account opening request of a target user.
The target user may be any user using the user terminal. The account opening request may be a request initiated by the target user through the user terminal to open a financial account. The financial account can be a basic bank user, a general bank user, a temporary bank user and the like; or other financial accounts such as stock accounts, financial accounts, etc., and embodiments of the present invention are not limited thereto. The account opening request may include, but is not limited to, basic information of the target user (e.g., name, contact address, etc.), user identification, etc.
Illustratively, as shown in fig. 2b, the target user opens the instant messaging software installed in the user terminal to enter the payment system, and a link to enter the internet bank is displayed in the user interface of the payment system. The user clicks the link to enter an account opening interface of the Internet bank, and after basic information is filled in the interface, an account opening application button can be clicked to submit an account opening application. The user terminal responds to the operation of the user and sends an account opening application to a second server (an internet banking system), and accordingly the second server receives an account opening request of a target user.
202. And sending an identification query request aiming at the target user to the first server based on the account opening request of the target user.
For example, after receiving an account opening request of a target user, the second server responds to the account opening request, and when it is detected that the identity of the target user is required, an identity query request for the target user is sent to the first server.
203. And receiving an identification token sent by the first server, wherein the identification token is used for representing that the identification of the target user exists in the first server.
Optionally, when the identity of the target user does not exist in the first server, the second server receives query failure information fed back by the first server, and prompts the target user to upload the identity according to the query failure information. The query failure information is used for representing that the identification of the target user does not exist in the first server. For example, the second server receives the query failure information fed back by the first server, and then notifies the user terminal that the target user needs to upload the identity certificate; the user terminal displays an identification uploading interface which is used for prompting the target user to upload the identification.
204. A financial account is set up for the target user based on the identification token.
Here, the setting up of the financial account for the target user is some operations after passing through the authentication process, and may include, but is not limited to, operations of allocating an account number (bank card number) to the target user, prompting the user to set up a password, and the like. But the financial account has not been opened, that is, the success of opening the financial account is not fed back to the target user. When the identification token of the first server is received, the second server can start to execute the operation after passing the identification processing, and the second server does not need to wait for the identification result all the time, so that the efficiency of opening the financial account can be improved.
205. An identification acquisition request is sent to the first server, the identification acquisition request including an identification token.
It should be noted that the second server may place the identification obtaining request sent to the first server into the asynchronous task queue, and wait for the task arranged in the asynchronous task queue before completing the execution. That is, step 204 and step 205 may be executed simultaneously, or step 204 may be executed first and then step 205 may be executed, or step 205 and then step 204 may be executed first, and the embodiment of the present invention is not limited. Therefore, the second server can asynchronously acquire the identity certificate through the identity certificate token in the low-peak period of the service, and the load of the server is reduced.
Optionally, the second server receives rejection information of the first server when the identity token included in the identity credential obtaining request is not within the validity period. Wherein the denial information is used to prompt the second server identification token not to be within the validity period. After receiving the rejection information, the second server can send an identity certificate query request to the first server again, so that a new identity card token within the validity period can be obtained, and the new identity card token is used for obtaining the identity certificate of the target user; or, the second server may notify the user terminal that the target user is required to upload the identification; the user terminal displays an identification uploading interface which is used for prompting a target user to upload identification. Therefore, when the identity certification token is within the validity period, the second server can obtain the identity certification of the target user from the first server, and the security of the whole data processing system can be improved.
206. And when the identity certificate of the first server is received, completing opening the financial account of the target user.
Optionally, after completing the opening of the financial account of the target user, the second server may feed back a financial account opening success message to the user terminal, and the user terminal prompts the successful opening of the financial account of the target user through an opening success interface.
Optionally, when the network is jittered, data communication between the first server and the second server may be affected, for example, a packet loss situation may occur. And when the second server does not receive the identification of the first server, the step of sending the identification acquisition request to the first server is executed. Therefore, when the network shakes, the second server can obtain the identification of the target user again according to the identification token, the success rate of finally obtaining the identification can be improved, and the efficiency of opening the financial account is improved.
As can be seen from the above, the embodiment of the present invention may receive an account opening request of a target user; sending an identification query request aiming at a target user to a first server based on an account opening request of the target user, wherein the first server is a server set up for a payment platform; receiving an identity certificate token sent by a first server, wherein the identity certificate token is used for representing that identity certificate of a target user exists in the first server; setting up a financial account for the target user according to the identification token; sending an identification obtaining request to a first server, wherein the identification obtaining request comprises an identification token; and when the identity certificate of the first server is received, completing opening the financial account of the target user. Therefore, the efficiency of opening the financial account is improved.
Thus, in this embodiment, the second server may send an identification query request to the first server when setting up a financial account for the target user; when the identity certificate exists in the first server, the second server receives the identity certificate token sent by the first server; the second server can set up a financial account for the target user according to the token; and the identity certificate can be asynchronously obtained according to the token, the target user does not need to upload the identity certificate in real time, and the operation is simple. Therefore, the efficiency of opening the financial account is improved.
The method described in the above embodiments is further described in detail below.
In this embodiment, a payment system with a WeChat installed on a first server, which is hereinafter referred to as a payment system for short, and an internet banking system installed on a second server are taken as examples, and a method according to an embodiment of the present invention will be described in detail with reference to a schematic structural diagram of a data processing system shown in fig. 3.
As shown in fig. 3, the first server may be a server cluster, and the first server cluster further includes a server on which the database is installed. The data processing system also comprises a user terminal provided with the WeChat, and the user terminal can be a smart phone. The data processing system further comprises a third server, the third server being a server providing an authentication interface, the third server being set up for a public security department managing identification.
As shown in fig. 3, a specific flow of the data processing method is as follows:
301. and the target user sends a registration WeChat payment request through the user terminal.
302. The user terminal prompts the target user to upload an identification card image (e.g., a photograph of an identification card) and sends the identification card image to the payment system.
303. And the payment system calls an identity authentication interface of the third server and performs identity authentication processing on the target user according to the identity card image.
304. When the target user passes the authentication processing, the payment system stores the identification card image of the target user into the database. Optionally, if the target user authentication processing is not passed, the registration request of the target user is ignored.
305. The target user sends an account opening request to the Internet banking system through the user terminal to open the Internet second-class card (financial account). The second-class Internet card is a virtual bank card of an Internet bank, and a user needing to open the second-class Internet card is required to upload an identity card image and successfully perform identity verification processing.
306. The internet banking system sends an identification query request aiming at the target user to the payment system based on the account opening request of the target user, wherein the identification query request is used for requesting the first server to query whether the identification card image of the target user exists.
307. When the payment system receives an identity card inquiry request aiming at a target user, whether the identity card image of the target user exists in the database is inquired, namely whether the identity card image is successfully uploaded when the target user applies for registration WeChat payment is inquired.
308. When the target user identity card image exists in the database, the payment system generates the target user identity card token. For example, the payment system generates a token (identification token) for the target user according to a token bucket algorithm.
309. And the payment system sends the token to the Internet banking system so that the Internet banking system sets the Internet second-class card for the target user according to the token.
310. After the internet banking system receives the token, the internet second-type card can be set for the target user.
311. The internet banking system sends an identification obtaining request to the payment system, and asynchronously obtains an identification image of the target user, wherein the identification obtaining request comprises a token.
312. And the payment system acquires the identity card image of the target user in the database according to the token.
313. And the payment system sends the identity card image to the Internet bank system, and accordingly, when the Internet bank system receives the identity card image of the payment system, the Internet class II card of the target user is opened.
314. The internet banking system feeds back the successful card opening to the user terminal, and the user terminal prompts the successful opening of the second class of internet cards of the target user through an account opening success interface.
Therefore, the embodiment of the invention can inquire the identity of the target user when receiving the identity inquiry request of the internet banking system for the target user; when the identity of the target user exists in the WeChat payment system, generating an identity token of the target user; sending the identification token of the target user to the Internet banking system so that the Internet banking system can set up a financial account for the target user according to the identification token; receiving an identity certificate acquisition request of an internet banking system, wherein the identity certificate acquisition request comprises an identity certificate token; acquiring the identity certificate of the target user according to the identity certificate token; and sending the identity certificate to the Internet banking system so that the Internet banking system opens the financial account according to the identity certificate.
Therefore, when the internet banking system sets up a financial account for a target user, the internet banking system can send an identity card image query request to the WeChat payment system; after receiving the identity card image query request, the payment system of the WeChat can query whether the identity card image of the target user exists or not, and when the identity card image exists, the payment system sends an identity card image token to the Internet banking system; the Internet banking system can set up a financial account for the target user according to the token; and the identity card image can be asynchronously obtained according to the token, the target user is not required to upload the identity card image, and the operation is simple. Therefore, the efficiency of opening the internet bank account is improved.
In order to better implement the above method, an embodiment of the present invention further provides a data processing apparatus, where the data processing apparatus may be specifically integrated in an electronic device, and the electronic device may be a terminal, a server, or other devices. The terminal can be a mobile phone, a tablet computer, an intelligent Bluetooth device, a notebook computer, a personal computer and other devices; the server may be a single server or a server cluster composed of a plurality of servers.
For example, in the present embodiment, the method according to the embodiment of the present invention will be described in detail by taking an example in which the data processing apparatus is specifically integrated in the first server.
For example, as shown in fig. 4, the data processing apparatus may include an inquiring unit 401, a generating unit 402, a transmitting unit 403, a receiving unit 404, and an acquiring unit 405 as follows:
query unit 401:
the querying unit 401 is configured to query the identification of the target user when receiving an identification query request of the second server for the target user, where the second server is a server established by the financial institution.
In some embodiments, querying unit 401 may be further configured to perform the following steps:
when the first server is inquired that the identity certificate of the target user does not exist, the inquiry failure information is fed back to the second server, so that the second server prompts the target user to upload the identity certificate according to the inquiry failure information.
(II) generating unit 402:
a generating unit 402, configured to generate an identification token of the target user when it is queried that the identification of the target user exists in the first server, where the identification token is used to characterize that the identification of the target user exists in the first server.
In some embodiments, the generating unit 402 may be further configured to perform the following steps:
and acquiring a target token from the token bucket as an identity authentication token of a target user, generating the tokens in the token bucket according to a fixed rate, and enabling the number of the tokens in the token bucket not to exceed a preset token number threshold value.
(iii) transmission section 403:
a sending unit 403, configured to send the identification token of the target user to the second server, so that the second server sets up a financial account for the target user according to the identification token.
(iv) receiving unit 404:
a receiving unit 404, configured to receive an identity obtaining request of the second server, where the identity obtaining request includes an identity token;
(V) acquisition Unit 405:
an obtaining unit 405, configured to obtain the identity of the target user according to the identity token.
In some embodiments, the identification token has a validity period, and the obtaining unit 405 may be further configured to perform the following steps:
verifying whether the identification token is within a validity period;
when the identity certification token is within the validity period, acquiring the identity certification of the target user;
and when the identity certification token is not in the validity period, refusing to acquire the identity certification of the target user, and feeding back refusing information to the second server.
In some embodiments, the first server stores a generation time corresponding to the identification token, and the obtaining unit 405 may be further configured to perform the following steps:
when the time difference between the current time and the generation time is not greater than the validity period, the identity token is within the validity period;
when the time difference between the current time and the generation time is greater than the validity period, the identification token is not within the validity period.
(sixth) transmission section 403:
the sending unit 403 is further configured to send the identification to the second server, so that the second server opens the financial account of the target user according to the identification.
In some embodiments, the data processing apparatus may be further configured to perform the following steps:
acquiring the identity certificate of a target user;
calling an identity authentication interface according to the identity certificate to perform identity authentication processing on the target user, wherein the identity authentication interface is provided by a government organization for managing the identity certificate;
when the target user authentication process is passed, the identification of the target user is stored.
In some embodiments, the data processing apparatus may be further configured to perform the following steps:
and when the identity certificate sent to the second server fails, executing the step of receiving the identity certificate acquisition request sent by the second server.
In some embodiments, the second server is equipped with an internet banking system, the first server is equipped with a payment system of instant messaging software, the identification card is an identification card image, and the data processing device is further configured to perform the following steps:
when an inquiry request of an internet banking system for an identity card image of a target user is received, inquiring the identity card image of the target user;
when the identity card image of the target user exists in the payment system of the instant messaging software, generating an identity certificate token of the target user, wherein the identity certificate token is used for representing the identity card image of the target user existing in the payment system of the instant messaging software;
sending the identification token of the target user to the Internet banking system so that the Internet banking system can set up an Internet banking account for the target user according to the identification token;
receiving an identity card image acquisition request of an internet banking system, wherein the identity card image acquisition request comprises an identity certificate token;
acquiring an identity card image of a target user according to the identity card token;
and sending the identity card image to an Internet banking system so that the Internet banking system opens an Internet banking account of the target user according to the identity card image.
As can be seen from the above, in the embodiment of the present invention, when an identification query request of the second server for the target user is received, the identification of the target user may be queried; when the first server is inquired that the identity of the target user exists, generating an identity token of the target user; sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token; receiving an identification obtaining request of a second server, wherein the identification obtaining request comprises an identification token; acquiring the identity certificate of the target user according to the identity certificate token; and sending the identification to the second server so that the second server opens the financial account according to the identification. Therefore, the efficiency of opening the financial account is improved.
Therefore, after the identity certificate of the target user passes the identity verification processing, the first server can store the identity certificate in the database; when the second server requests to inquire the identification of the target user, an identification token can be returned so that the second server can set up a financial account according to the identification token; and allowing the second server to asynchronously obtain the identification of the target user based on the identification token. The frequency of uploading the identity certificate by the user is reduced, and the frequency of calling the identity verification interface is also reduced, so that the user is easy and convenient to operate, the load of the server is reduced, and the efficiency of opening the financial account is improved.
In order to better implement the above method, an embodiment of the present invention further provides a data processing apparatus, where the data processing apparatus may be specifically integrated in an electronic device, and the electronic device may be a terminal, a server, or other devices. The terminal can be a mobile phone, a tablet computer, an intelligent Bluetooth device, a notebook computer, a personal computer and other devices; the server may be a single server or a server cluster composed of a plurality of servers.
For example, in this embodiment, the method according to the embodiment of the present invention will be described in detail by taking an example in which the data processing apparatus is specifically integrated in the second server.
For example, as shown in fig. 5, the data processing apparatus may include a receiving unit 501, a transmitting unit 502, a setup unit 503, and a turn-on unit 504, as follows:
reception unit 501:
the receiving unit 501 is configured to receive an account opening request of a target user.
(II) Transmission section 502:
a sending unit 502, configured to send an identification query request for a target user to a first server based on an account opening request of the target user, where the first server is a server set up for a payment platform.
The receiving unit 501 is further configured to receive an identification token sent by the first server, where the identification token is used to characterize that an identification of a target user exists in the first server.
(III) setup unit 503:
a setup unit 503 for setting up a financial account for the target user based on the identification token.
The sending unit 502 is further configured to send an identification obtaining request to the first server, where the identification obtaining request includes an identification token.
(IV) opening unit 504
An opening unit 504, configured to complete opening of the financial account of the target user when the identification of the first server is received.
In some embodiments, the receiving unit 501 is further configured to perform the following steps:
receiving query failure information fed back by a first server;
and prompting the target user to upload the identity certificate according to the query failure information.
In some embodiments, the sending unit 502 is further configured to perform the following steps:
and when the identification of the first server is not received, the step of sending the identification acquisition request to the first server is executed.
As can be seen from the above, the embodiment of the present invention may receive an account opening request of a target user; sending an identification query request aiming at a target user to a first server based on an account opening request of the target user, wherein the first server is a server set up for a payment platform; receiving an identity certificate token sent by a first server, wherein the identity certificate token is used for representing that the identity certificate of a target user exists in the first server; setting up a financial account for the target user according to the identification token; sending an identification obtaining request to a first server, wherein the identification obtaining request comprises an identification token; and when the identity certificate of the first server is received, completing opening the financial account of the target user. Therefore, the efficiency of opening the financial account is improved.
Thus, in this embodiment, the second server may send an identification query request to the first server when setting up a financial account for the target user; when the identity certificate exists in the first server, the second server receives the identity certificate token sent by the first server; the second server can set up a financial account for the target user according to the token; and the identity certificate can be asynchronously obtained according to the token, the target user does not need to upload the identity certificate in real time, and the operation is simple. Therefore, the efficiency of opening the financial account is improved.
In a specific implementation, the above units may be implemented as independent entities, or may be combined arbitrarily to be implemented as the same or several entities, and the specific implementation of the above units may refer to the foregoing method embodiments, which are not described herein again.
The embodiment of the invention also provides the electronic equipment which can be equipment such as a terminal, a server and the like. The terminal can be a mobile phone, a tablet computer, an intelligent Bluetooth device, a notebook computer, a personal computer and the like; the server may be a single server, a server cluster composed of a plurality of servers, or the like.
In some embodiments, the data processing apparatus may also be integrated in a plurality of electronic devices, for example, the data processing apparatus may be integrated in a plurality of servers, and the data processing method of the present invention is implemented by the plurality of servers.
In this embodiment, a detailed description will be given by taking the electronic device of this embodiment as an example of a first server, for example, as shown in fig. 6, a schematic structural diagram of the first server according to the embodiment of the present invention is shown, specifically:
the first server may include components such as a processor 601 of one or more processing cores, memory 602 of one or more computer-readable storage media, a power supply 603, an input module 604, and a communication module 605. Those skilled in the art will appreciate that the first server architecture shown in fig. 6 does not constitute a limitation of the first server and may include more or fewer components than shown, or some components may be combined, or a different arrangement of components. Wherein:
the processor 601 is a control center of the first server, connects various parts of the whole first server by using various interfaces and lines, and executes various functions and processing data of the first server by running or executing software programs and/or modules stored in the memory 602 and calling data stored in the memory 602, thereby performing overall monitoring of the first server. In some embodiments, processor 601 may include one or more processing cores; in some embodiments, processor 601 may integrate an application processor, which primarily handles operating systems, user interfaces, applications, etc., and a modem processor, which primarily handles wireless communications. It will be appreciated that the modem processor described above may not be integrated into the processor 601.
The memory 602 may be used to store software programs and modules, and the processor 601 executes various functional applications and data processing by operating the software programs and modules stored in the memory 602. The memory 602 may mainly include a program storage area and a data storage area, wherein the program storage area may store an operating system, an application program required by at least one function (such as a sound playing function, an image playing function, etc.), and the like; the storage data area may store data created according to use of the first server, and the like. Further, the memory 602 may include high speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid state storage device. Accordingly, the memory 602 may also include a memory controller to provide the processor 601 with access to the memory 602.
The first server further includes a power supply 603 for supplying power to the various components, and in some embodiments, the power supply 603 may be logically connected to the processor 601 through a power management system, such that functions of managing charging, discharging, and power consumption are performed through the power management system. The power supply 603 may also include any component of one or more dc or ac power sources, recharging systems, power failure detection circuitry, power converters or inverters, power status indicators, and the like.
The first server may also include an input module 604, the input module 604 being operable to receive input numeric or character information and generate keyboard, mouse, joystick, optical or trackball signal inputs related to user settings and function control.
The first server may also include a communication module 605, and in some embodiments the communication module 605 may include a wireless module, and the first server may perform short-range wireless transmission via the wireless module of the communication module 605 to provide wireless broadband internet access to the user. For example, the communication module 605 may be used to assist a user in emailing, browsing web pages, accessing streaming media, and the like.
Although not shown, the first server may further include a display unit and the like, which are not described in detail herein. Specifically, in this embodiment, the processor 601 in the first server loads the executable file corresponding to the process of one or more application programs into the memory 602 according to the following instructions, and the processor 601 runs the application program stored in the memory 602, thereby implementing various functions as follows:
when receiving an identification query request of a second server for a target user, querying the identification of the target user, wherein the second server is a server set by a financial institution; when the identity of the target user exists in the first server, generating an identity token of the target user, wherein the identity token is used for representing that the identity of the target user exists in the first server; sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token; receiving an identification obtaining request of a second server, wherein the identification obtaining request comprises an identification token; acquiring the identity certificate of the target user according to the identity certificate token; and sending the identification to the second server so that the second server opens the financial account of the target user according to the identification.
For example, in some embodiments, the identification token has a validity period, and may further implement the following functions:
verifying whether the identification token is within a validity period; when the identity certification token is within the validity period, acquiring the identity certification of the target user; and when the identity certification token is not in the validity period, refusing to acquire the identity certification of the target user, and feeding back refusing information to the second server.
For example, in some embodiments, the first server stores the generation time corresponding to the identification token, and may further implement the following functions:
when the time difference between the current time and the generation time is not greater than the validity period, the identity token is within the validity period; when the time difference between the current time and the generation time is greater than the validity period, the identification token is not within the validity period.
For example, in some embodiments, the following functions may also be implemented:
when the first server is inquired that the identity certificate of the target user does not exist, the inquiry failure information is fed back to the second server, so that the second server prompts the target user to upload the identity certificate according to the inquiry failure information.
For example, in some embodiments, the following functions may also be implemented:
acquiring the identity certificate of a target user; calling an identity authentication interface according to the identity certificate to carry out identity authentication processing on the target user, wherein the identity authentication interface is provided by a government organization for managing the identity certificate; when the target user authentication process is passed, the identification of the target user is stored.
For example, in some embodiments, the following functions may also be implemented:
and acquiring a target token from the token bucket as an identity authentication token of a target user, generating the tokens in the token bucket according to a fixed rate, and enabling the number of the tokens in the token bucket not to exceed a preset token number threshold value.
For example, in some embodiments, the following functions may also be implemented:
and when the identity certificate sent to the second server fails, executing the step of receiving the identity certificate acquisition request sent by the second server.
For example, in some embodiments, the second server is equipped with an internet banking system, the first server is equipped with a payment system of instant messaging software, and the identity certificate is an identity card image, and the following functions can be realized:
when an inquiry request of an internet banking system for an identity card image of a target user is received, inquiring the identity card image of the target user; when the identity card image of the target user exists in the payment system of the instant messaging software, generating an identity certificate token of the target user, wherein the identity certificate token is used for representing the identity card image of the target user existing in the payment system of the instant messaging software; sending the identification token of the target user to the Internet banking system so that the Internet banking system can set up an Internet banking account for the target user according to the identification token; receiving an identity card image acquisition request of an internet banking system, wherein the identity card image acquisition request comprises an identity certificate token; acquiring an identity card image of a target user according to the identity card token; and sending the identity card image to an Internet banking system so that the Internet banking system opens an Internet banking account of the target user according to the identity card image.
The above operations can be implemented in the foregoing embodiments, and are not described in detail herein.
As can be seen from the above, in the present invention, the second server may send an identification query request to the first server when setting up a financial account for the target user; after receiving the identity certification query request, the first server can query whether the identity certification of the target user exists, and when the identity certification exists, the first server sends an identity certification token to the second server; the second server can set up a financial account for the target user according to the token; and the identity certificate can be asynchronously obtained according to the token, the target user does not need to upload the identity certificate in real time, and the operation is simple. Therefore, the efficiency of opening the financial account is improved.
It will be understood by those skilled in the art that all or part of the steps of the methods of the above embodiments may be performed by instructions or by associated hardware controlled by the instructions, which may be stored in a computer readable storage medium and loaded and executed by a processor.
To this end, the embodiment of the present invention provides a computer-readable storage medium, in which a plurality of instructions are stored, and the instructions can be loaded by a processor to execute the steps in any data processing method provided by the embodiment of the present invention. For example, the instructions may perform the steps of:
when receiving an identification query request of a second server for a target user, querying the identification of the target user, wherein the second server is a server set by a financial institution;
when the identity of the target user exists in the first server, generating an identity token of the target user, wherein the identity token is used for representing that the identity of the target user exists in the first server;
sending the identification token of the target user to the second server so that the second server sets up a financial account for the target user according to the identification token;
receiving an identification obtaining request of a second server, wherein the identification obtaining request comprises an identification token;
acquiring the identity certificate of the target user according to the identity certificate token;
and sending the identification to the second server so that the second server opens the financial account according to the identification.
Wherein the storage medium may include: read Only Memory (ROM), Random Access Memory (RAM), magnetic or optical disks, and the like.
According to an aspect of the application, a computer program product or computer program is provided, comprising computer instructions, the computer instructions being stored in a computer readable storage medium. The processor of the computer device reads the computer instructions from the computer readable storage medium, and executes the computer instructions, so that the computer device executes the method provided in the various optional implementation modes of the aspect of opening the internet bank account or the aspect of opening the internet two-type card provided in the above embodiments.
Since the instructions stored in the storage medium can execute the steps in any data processing method provided in the embodiment of the present invention, the beneficial effects that can be achieved by any data processing method provided in the embodiment of the present invention can be achieved, which are detailed in the foregoing embodiments and will not be described herein again.
The data processing method, the data processing apparatus, the electronic device, and the computer-readable storage medium according to the embodiments of the present invention are described in detail, and a specific example is applied to illustrate the principles and embodiments of the present invention, and the description of the embodiments is only used to help understand the method and the core idea of the present invention; meanwhile, for those skilled in the art, according to the idea of the present invention, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present invention.
Claims (15)
1. A data processing method applied to a first server, the first server being a server set up for a payment platform, comprising:
when receiving an identification query request of a second server for a target user, querying the identification of the target user, wherein the second server is a server set up by a financial institution;
when the first server is inquired that the identification of the target user exists, generating an identification token of the target user, wherein the identification token is used for representing the identification of the target user existing in the first server;
sending the identification token of the target user to the second server so that the second server can set up a financial account for the target user according to the identification token;
receiving an identification obtaining request of the second server, wherein the identification obtaining request comprises the identification token;
acquiring the identity certificate of the target user according to the identity certificate token;
and sending the identification to the second server so that the second server opens the financial account of the target user according to the identification.
2. The data processing method of claim 1, wherein the identification token has a validity period, and wherein obtaining the identification of the target user from the identification token comprises:
verifying whether the identification token is within a validity period;
when the identification token is within the validity period, acquiring the identification of the target user;
and when the identification token is not in the validity period, refusing to acquire the identification of the target user, and feeding back refusing information to the second server.
3. The data processing method of claim 2, wherein the first server stores a generation time corresponding to the identification token, and the verifying whether the identification token is within a validity period comprises:
when the time difference between the current time and the generation time is not greater than the validity period, the identification token is within the validity period;
when the time difference between the current time and the generation time is greater than a validity period, the identification token is not within the validity period.
4. The data processing method of claim 1, further comprising:
when the first server is inquired that the identification of the target user does not exist, the inquiry failure information is fed back to the second server, so that the second server prompts the target user to upload the identification according to the inquiry failure information.
5. The data processing method of claim 1, wherein before receiving the identification query request of the second server for the target user, further comprising:
acquiring the identity certificate of the target user;
calling an identity authentication interface according to the identity certificate to perform identity authentication processing on the target user, wherein the identity authentication interface is provided by a government organization for managing the identity certificate;
and when the target user passes the authentication processing, storing the identification of the target user.
6. The data processing method of claim 1, wherein the generating the identification token for the target user comprises:
and acquiring a target token from a token bucket as an identity authentication token of the target user, wherein the tokens in the token bucket are generated according to a fixed rate, and the number of the tokens in the token bucket does not exceed a preset token number threshold.
7. The data processing method of claim 1, further comprising:
and when the identity certificate is failed to be sent to the second server, executing the step of receiving the identity certificate acquisition request sent by the second server.
8. The data processing method of claim 1, wherein the second server hosts an internet banking system, the first server hosts a payment system of instant messaging software, and the identification is an identification card image, the data processing method further comprising:
when an inquiry request of an internet banking system for an identity card image of a target user is received, inquiring the identity card image of the target user;
when the identity card image of the target user exists in the payment system of the instant messaging software, generating an identity certificate token of the target user, wherein the identity certificate token is used for representing the identity card image of the target user existing in the payment system of the instant messaging software;
sending the identification token of the target user to the Internet banking system so that the Internet banking system can set up an Internet banking account for the target user according to the identification token;
receiving an identity card image acquisition request of the Internet banking system, wherein the identity card image acquisition request comprises the identity certificate token;
acquiring an identity card image of the target user according to the identity card token;
and sending the identity card image to the Internet banking system so that the Internet banking system opens the Internet banking account of the target user according to the identity card image.
9. A data processing method applied to a second server which is a server set up by a financial institution, comprising:
receiving an account opening request of a target user;
sending an identification query request aiming at the target user to a first server based on the account opening request of the target user, wherein the first server is a server set up for a payment platform;
receiving an identification token sent by the first server, wherein the identification token is used for representing that the identification of the target user exists in the first server;
setting up a financial account for the target user according to the identification token;
sending an identification acquisition request to the first server, the identification acquisition request including the identification token;
and completing opening the financial account of the target user when the identification of the first server is received.
10. The data processing method of claim 9, further comprising:
receiving query failure information fed back by the first server;
and prompting the target user to upload the identity certificate according to the query failure information.
11. The data processing method of claim 9, further comprising:
when the identification of the first server is not received, an identification acquisition request step is executed to the first server.
12. A data processing apparatus, comprising:
the system comprises a query unit, a query unit and a query unit, wherein the query unit is used for querying the identification of a target user when receiving an identification query request of a second server for the target user, and the second server is a server set by a financial institution;
the generating unit is used for generating an identification token of the target user when the identification of the target user is inquired to exist in the first server, wherein the identification token is used for representing the identification of the target user existing in the first server;
a sending unit, configured to send an identification token of the target user to the second server, so that the second server sets up a financial account for the target user according to the identification token;
a receiving unit, configured to receive an identification obtaining request of the second server, where the identification obtaining request includes the identification token;
the obtaining unit is used for obtaining the identity certificate of the target user according to the identity certificate token;
the sending unit is further configured to send the identification to the second server, so that the second server opens the financial account according to the identification.
13. A data processing apparatus, comprising:
the receiving unit is used for receiving an account opening request of a target user;
the system comprises a sending unit, a receiving unit and a processing unit, wherein the sending unit is used for sending an identification query request aiming at a target user to a first server based on an account opening request of the target user, and the first server is a server set up by a payment platform;
the receiving unit is further configured to receive an identification token sent by the first server, where the identification token is used to characterize that the identification of the target user exists in the first server;
a setup unit for setting up a financial account for the target user according to the proof of identity token;
the sending unit is further configured to send an identification obtaining request to the first server, where the identification obtaining request includes the identification token;
and the opening unit is used for completing opening the financial account of the target user when the identification of the first server is received.
14. An electronic device comprising a processor and a memory, the memory storing a plurality of instructions; the processor loading instructions from the memory to perform the steps of the data processing method of any one of claims 1 to 8; and/or the processor loads instructions from the memory to perform the steps of the data processing method according to any one of claims 9 to 11.
15. A computer readable storage medium storing a plurality of instructions adapted to be loaded by a processor to perform the steps of the data processing method according to any one of claims 1 to 8 and/or adapted to be loaded by a processor to perform the steps of the data processing method according to any one of claims 9 to 11.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110009760.9A CN114722374A (en) | 2021-01-05 | 2021-01-05 | Data processing method, device, equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110009760.9A CN114722374A (en) | 2021-01-05 | 2021-01-05 | Data processing method, device, equipment and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114722374A true CN114722374A (en) | 2022-07-08 |
Family
ID=82234512
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110009760.9A Pending CN114722374A (en) | 2021-01-05 | 2021-01-05 | Data processing method, device, equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114722374A (en) |
-
2021
- 2021-01-05 CN CN202110009760.9A patent/CN114722374A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111556006B (en) | Third-party application system login method, device, terminal and SSO service platform | |
| CN108769230B (en) | Transaction data storage method, device, server and storage medium | |
| US20190139047A1 (en) | Block chain based resource management | |
| WO2018145605A1 (en) | Authentication method and server, and access control device | |
| CN110177124B (en) | Identity authentication method based on block chain and related equipment | |
| US20230037932A1 (en) | Data processing method and apparatus based on blockchain network, and computer device | |
| US9916308B2 (en) | Information processing system, document managing server, document managing method, and storage medium | |
| US9971901B2 (en) | Content management apparatus and content management method | |
| CN111881483B (en) | Resource account binding method, device, equipment and medium based on blockchain | |
| US9332433B1 (en) | Distributing access and identification tokens in a mobile environment | |
| CN111192186A (en) | Method, device, computer equipment and storage medium for government affair processing | |
| CN111291394B (en) | False information management method, false information management device and storage medium | |
| CN111064749A (en) | Network connection method, device and storage medium | |
| CN111523142B (en) | Data processing method, device, electronic equipment and medium | |
| CN111241523B (en) | Authentication processing method, device, equipment and storage medium | |
| KR102308859B1 (en) | Surrogate authentication service system and method based on biometric information | |
| CN104639546A (en) | Multi-biometric feature comprehensive authentication method, device and system | |
| CN113872990B (en) | VPN network certificate authentication method and device based on SSL protocol and computer equipment | |
| CN109995699A (en) | Management of multimedia equipment system and management method | |
| CN106709768B (en) | Method and system for asynchronously downloading invoice | |
| CN114168923A (en) | Group CA certificate generation method and system based on digital certificate | |
| CN115203666A (en) | Identity authentication method and device, storage medium and electronic equipment | |
| CN116170234B (en) | Single sign-on method and system based on virtual account authentication | |
| CN113343216B (en) | Issuer management method, issuer management device, storage medium and server | |
| CN114722374A (en) | Data processing method, device, equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |