CN114793177B - Service login method and device and electronic equipment - Google Patents
Service login method and device and electronic equipment Download PDFInfo
- Publication number
- CN114793177B CN114793177B CN202210471400.5A CN202210471400A CN114793177B CN 114793177 B CN114793177 B CN 114793177B CN 202210471400 A CN202210471400 A CN 202210471400A CN 114793177 B CN114793177 B CN 114793177B
- Authority
- CN
- China
- Prior art keywords
- application
- server
- user account
- account information
- login
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 82
- 238000013475 authorization Methods 0.000 claims abstract description 261
- 238000004590 computer program Methods 0.000 claims description 18
- 230000007246 mechanism Effects 0.000 claims description 10
- 238000004458 analytical method Methods 0.000 claims description 9
- 230000008520 organization Effects 0.000 claims description 5
- 238000004891 communication Methods 0.000 description 14
- 238000010586 diagram Methods 0.000 description 13
- 238000005516 engineering process Methods 0.000 description 8
- 230000008569 process Effects 0.000 description 7
- 230000006870 function Effects 0.000 description 5
- 230000003993 interaction Effects 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000003068 static effect Effects 0.000 description 2
- 230000008859 change Effects 0.000 description 1
- 235000014510 cooky Nutrition 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 238000003062 neural network model Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
Abstract
The application provides a service login method, a device and electronic equipment, wherein the service login method comprises the following steps: under the condition of logging in the management platform, the application front end receives an access request; the application front end acquires first authorization information generated by the management platform according to first user account information according to the access request, wherein the first user account information is account information adopted by the login management platform; the method comprises the steps that first authorization information is sent to a first server through an application terminal, and the first server is used for generating second user account information and second authorization information according to the first user account information; and the second server acquires second user account information from the first server and establishes a login state according to the second user account information. According to the login-free management platform, when the application embedded in the login management platform is logged in, login-free to the application can be achieved, and therefore the user is enabled to have complex and simple operation, and user experience is enhanced.
Description
Technical Field
The present disclosure relates to the field of computer technologies, and in particular, to a service login method, device, and electronic device.
Background
At present, a plurality of applications are embedded in one management platform, and after logging in the management platform, a user can access the corresponding applications through the management platform. And if the user needs to access the corresponding application from the management platform, the user needs to log in the management platform first, and then log in the application in the management platform through the account number and the password of the application so as to access the service corresponding to the application. Taking the management platform as a communication platform as an example, a plurality of applications such as shopping applications, living applications, game applications and the like are embedded in the communication platform. After logging in the communication platform, the user can communicate with the friends through the communication platform, if the user receives the share of the friend commodity links, the user can open the corresponding commodity links only after clicking the commodity links and logging in the shopping application through the account numbers and the passwords of the corresponding shopping application.
When the application embedded in the management platform is accessed by adopting the mode, the user is required to input an account number and a password for many times, and the problem of complicated operation exists, so that the user experience can be influenced.
Disclosure of Invention
The multiple aspects of the application provide a service login method, a device and electronic equipment, so that a user can log in a management platform without logging in an embedded application in the management platform.
The first aspect of the embodiment of the present application provides a service login method, which is applied to a terminal, the terminal is deployed with a management platform, and an application front end of an application is embedded in the management platform, and the method includes: under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information for logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; and sending second authorization information acquired from the first server to the second server by the application front end, wherein the second authorization information indicates the second server to establish a login state according to second user account information acquired from the first server, and the second server is provided with an application back end of the application.
The second aspect of the embodiments of the present application provides a service login method, which is applied to a second server, where the second server is a server deployed with an application back end, and the service login method includes: the method comprises the steps that the application front end receives second authorization information sent by an application front end of an application deployed in a terminal through an application rear end, the application front end is used for receiving an access request under the condition of a management platform of a logged-in terminal, according to the access request, obtaining first authorization information generated by the management platform according to first user account information, sending the first authorization information to a first server through the application front end, obtaining second authorization information from the first server, the first user account information is account information used for logging in the management platform, the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information, and the application front end is embedded in the management platform; acquiring second user account information from the first server according to the second authorization information through the application back end; and establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
A third aspect of the embodiments of the present application provides a service login method, which is applied to a service login system, where the service login system includes: the service login system includes: the terminal is provided with a management platform, an application front end of an application is embedded in the management platform, an application rear end of the application is deployed in the second server, and the service login method comprises the following steps: under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a unified login platform deployed in a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; the method comprises the steps that a second authorization information acquired from a first server is sent to a second server through an application front end, wherein a unified login platform is used for acquiring first user account information from a management platform according to the first authorization information, generating second user account information and second authorization information according to the first user account information, and the second user account information is account information for logging in the unified login platform; acquiring second user account information from the unified login platform according to the second authorization information through the application back end; and establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
A fourth aspect of the present embodiment provides a service login device, applied to a terminal, where the terminal is deployed with a management platform, and an application front end of an application is embedded in the management platform, where the service login device includes:
the receiving module is used for receiving the access request through the application front end under the condition that the management platform is logged in;
the acquisition module is used for acquiring first authorization information generated by the management platform according to first user account information through the application front end according to the access request, wherein the first user account information is account information for logging in the management platform;
the first sending module is used for sending first authorization information to the first server through the application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
the second sending module is used for sending second authorization information acquired from the first server to the second server through the application front end, the second authorization information indicates the second server to establish a login state according to second user account information acquired from the first server, and the application back end of the application is deployed on the second server.
A fifth aspect of the present embodiment provides a service login device, which is applied to a second server, where the second server is a server deployed with an application back end of an application, and the service login device includes:
The receiving module is used for receiving second authorization information sent by an application front end of an application deployed in the terminal through an application rear end, the application front end is used for receiving an access request for accessing the application under the condition of a management platform of a logged-in terminal, acquiring first authorization information generated by the management platform according to first user account information according to the access request, sending the first authorization information to a first server through the application front end, acquiring second authorization information from the first server, the first user account information is account information for logging in the management platform, the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information, and the management platform is embedded with the application front end;
the acquisition module is used for acquiring second user account information from the first server according to the second authorization information through the application back end;
the establishing module is used for establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
A sixth aspect of the embodiments of the present application provides a service login device,
the service login system is applied to the service login system, and comprises: the terminal is provided with a management platform, an application front end of an application is embedded in the management platform, an application rear end of the application is deployed in the second server, and the service login device comprises:
The first receiving module is used for receiving an access request through the application front end under the condition that the management platform is logged in;
the first acquisition module is used for acquiring first authorization information generated by the management platform according to first user account information through the application front end according to the access request, wherein the first user account information is account information of a login management platform;
the first sending module is used for sending first authorization information to a unified login platform deployed in the first server through the application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
the second sending module is used for sending second authorization information acquired from the first server to the second server through the application front end, wherein the unified login platform is used for acquiring first user account information from the management platform according to the first authorization information, generating second user account information and second authorization information according to the first user account information, and the second user account information is account information for logging in the unified login platform;
the second acquisition module is used for acquiring second user account information from the unified login platform according to second authorization information through the application back end;
The establishing module is used for establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
A seventh aspect of the embodiments of the present application provides an electronic device, including: a processor, a memory and a computer program stored on the memory and executable on the processor, the processor implementing the service login method of the first, second or third aspect when the computer program is executed by the processor.
The embodiment of the application is applied to a scene of an application embedded in an access management platform, and the provided service login method comprises the following steps: under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information for logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; and sending second authorization information acquired from the first server to the second server by the application front end, wherein the second authorization information indicates the second server to establish a login state according to second user account information acquired from the first server, and the second server is provided with an application back end of the application. According to the embodiment of the application, when the application embedded in the login management platform is logged in, the application can be accessed without login, so that the user is complicated and simple to operate, and the user experience is enhanced.
Drawings
The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this application, illustrate embodiments of the application and together with the description serve to explain the application and do not constitute an undue limitation to the application. In the drawings:
fig. 1 is a schematic diagram of an application scenario provided in an exemplary embodiment of the present application;
FIG. 2 is a flowchart illustrating steps of a service login method according to an exemplary embodiment of the present application;
FIG. 3 is a flowchart illustrating steps of another service login method according to an exemplary embodiment of the present application;
FIG. 4 is a flowchart illustrating steps of yet another service login method according to an exemplary embodiment of the present application;
FIG. 5 is a flowchart illustrating steps of yet another service login method according to an exemplary embodiment of the present application;
fig. 6 is a block diagram of a service registration device according to an exemplary embodiment of the present application;
FIG. 7 is a block diagram of another service sign-on device according to an exemplary embodiment of the present application;
FIG. 8 is a block diagram of a further service sign-on device according to an exemplary embodiment of the present application;
fig. 9 is a schematic structural diagram of an electronic device according to an exemplary embodiment of the present application.
Detailed Description
For the purposes, technical solutions and advantages of the present application, the technical solutions of the present application will be clearly and completely described below with reference to specific embodiments of the present application and corresponding drawings. It will be apparent that the described embodiments are only some, but not all, of the embodiments of the present application. All other embodiments, which can be made by one of ordinary skill in the art without undue burden from the present disclosure, are within the scope of the present disclosure.
Aiming at the problem of complicated operation caused by the requirement of a user to input an account number and a password for many times in the existing application scene embedded in an access management platform, the service login method provided by the embodiment of the application comprises the following steps: under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information for logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; and sending second authorization information acquired from the first server to the second server by the application front end, wherein the second authorization information indicates the second server to establish a login state according to second user account information acquired from the first server, and the second server is provided with an application back end of the application. According to the embodiment of the application, when the application embedded in the login management platform is logged in, the application can be accessed without login, so that the user is complicated and simple to operate, and the user experience is enhanced.
In this embodiment, the service login method may be implemented by using a terminal, a first server, a second server, or a combination of the three, or may be implemented by using a cloud computing system. Furthermore, the first server and the second server performing the service login method may be cloud servers in order to run various neural network models by virtue of resources on the cloud; in contrast to cloud, the service login method may be applied to a server device such as a conventional server or a server array, which is not limited herein.
For example, referring to fig. 1, a scenario diagram of a service login method provided in an embodiment of the present application is shown, and in fig. 1, a desktop 11 of a terminal 10 displays a plurality of application icons, such as application A1, application A2, application A3, and application icons of a management platform. After clicking the application icon of the management platform, the user enters the login page 12 of the management platform, and after inputting the login account number and the password corresponding to the management platform, the user enters the home page 13 of the management platform, where the home page 13 of the management platform includes various contents, such as: the user name (user A), search box, friend of user A and last chat text with the corresponding friend, such as chat text "Rakah" with friend A, indicating unread and chat text "thank you" with friend B, indicating read, further comprising: the message icon and the workbench icon enter the workbench page 14 when the user clicks the workbench, the workbench page 14 displays application icons of a plurality of applications embedded in the management platform, the applications can be micro applications, such as application icons of live broadcast applications, application images of financial applications, application icons of mailbox applications and application icons of learning applications, after the user clicks the application icons of live broadcast applications, the user does not need to input account numbers and passwords of the live broadcast applications again, the user can directly enter the first page 15 of the live broadcast applications, the first page 15 displays a plurality of video icons, such as a video icon A, a video icon B, a video icon C and a video icon D, and if the user clicks one of the video icons, such as a video icon A, the terminal 10 can acquire corresponding video content from a server (application back end) corresponding to live broadcast and display the corresponding video content on a display interface of the terminal. The embodiment of the application can realize login-free access of the application embedded in the management platform.
The following describes in detail the technical solutions provided by the embodiments of the present application with reference to the accompanying drawings.
Fig. 2 is a flowchart of steps of a service login method according to an exemplary embodiment of the present application. The service login method is applied to the terminal 10 shown in fig. 1, a management platform is deployed on the terminal, and an application front end of an application is embedded in the management platform, as shown in fig. 2, and specifically includes the following steps:
s201, when the management platform is logged in, the application front end receives an access request.
Wherein receiving, by the application front-end, the access request includes: and receiving an access request through a front-end domain name of the front end of the application, wherein the front-end domain name of the front end of the application is preconfigured in the management platform as a login-free trust domain name, and the access request is used for accessing the corresponding application.
In the embodiment of the application, the application front end and the application back end of the application are separated, that is, are deployed separately and independently, and use different domain names, so that the application is actually a micro-application. In addition, the management platform provides a login-free application of an OAuth protocol, wherein the OAuth protocol means that authorization of the user resource provides a safe, open and simple standard, and the embodiment of the application provides a login-free application capable of realizing the application under the condition that the front end of the application and the back end of the application are separated on the basis of the OAuth protocol. In the embodiment of the application, login-free refers to logging in an application without inputting an account number and a password again under the condition of logging in a management platform, and obtaining a service provided by the back end of the application.
In addition, an application front end of the application needs to be created in the management platform in advance, a cooperative relationship between the application and the management platform is established, and then a domain name of the application front end is set as a registration-free trust domain name. The login-free trust domain name refers to that when the management platform receives the access of a user to an application, the management platform can provide a login-free authorization code and a current organization identifier for the front end of the application according to the login-free trust domain name.
Further, for example, the front-end domain name of the application front-end is: www.frontend.com. The user accesses the URL (uniform resource location system) of the application front end in the management platform, such as https:// www.frontend.com/index.
S202, acquiring first authorization information generated by a management platform according to first user account information through an application front end according to an access request.
The first authorization information is generated by the management platform according to first user account information, wherein the first user account information is account information adopted by a user logging in the management platform.
In an alternative embodiment, the first authorization information includes a login-free authorization code and a current organization identifier, and the obtaining the first authorization information generated by the management platform includes: the method comprises the steps that a login-free authorization code generated by a management platform is obtained through an application front end; and acquiring a current mechanism identifier corresponding to the first user account information from a management platform through the application front end, and storing the association relationship of the authorization-free code, the current mechanism identifier and the first user account information in the management platform.
Specifically, when the access request arrives at the application front end, the application front end can detect that the access request originates from a request in the management platform according to the access request, and then the authorization code without login and the current organization identifier can be obtained from the management platform through the JS API provided by the management platform. The JS refers to JavaScript, abbreviated as 'JS', and is a lightweight, interpreted or just-in-time compiling programming language with function priority. An API generally refers to an application programming interface.
In this embodiment of the present application, the authorization-free code is generated by the management platform according to the first user account information, specifically, when the user accesses the application through the URL of the application front end, the management platform obtains the URL of the application front end, analyzes the corresponding front end domain name, if www.frontend.com, determines that the front end domain name is determined to be the authorization-free domain name of the preconfigured partner, and may generate the authorization-free code corresponding to the first user account information according to the authorization-free domain name, and determines the current institution identifier. The application front-end then obtains the authorization-exemption code and the current institution identification from the management platform.
S203, the application front end sends first authorization information to the first server.
The first server is a server deployed with a unified login platform, the first authorization information is used for indicating the first server to obtain first user account information from the management platform through the unified login platform, and generating second user account information and second authorization information according to the first user account information, wherein the second user account information is account information for logging in the unified login platform, and an application is accessed into the unified login platform in advance.
Further, before the application front end sends the first authorization information to the first server, the application front end sends an application name of the application to the first server, and the application name is used for indicating the unified login platform to determine corresponding application information according to the application name, determining a corresponding management platform according to the application information, and pre-configuring a corresponding relation between the application name and the application information and a corresponding relation between the application information and the management platform in the unified login platform.
In the embodiment of the application, the unified login platform is a login authentication platform, is a platform for identity authentication, and can be used for identity authentication of an access management platform and an application.
Further, the application front end sends the application name corresponding to the application front end to the unified login platform, wherein the application is accessed into the unified login platform in advance, that is, the corresponding relation between the application name and the application information is stored in the unified login platform, and the application information comprises: application identification and application key. In this embodiment of the present application, the unified login platform may provide services for multiple management platforms and multiple applications, so that the correspondence between the application information and the management platform is also stored in the unified login platform, and then the unified login platform may determine the corresponding management platform according to the application information, and then send the authorization code without login and the current mechanism information to the management platform corresponding to the application information.
In the embodiment of the application, the unified login platform completes the interaction of the API through the application information and the management platform, and obtains the first user account information corresponding to the login-free authorization code and the current mechanism information from the management platform.
S204, the application front end sends second authorization information acquired from the first server to the second server.
The method for sending the second authorization information acquired from the first server to the second server through the application front end comprises the following steps: acquiring second authorization information from a first server through an application front end, wherein the first server is a server deployed with a unified login platform, and the application is accessed into the unified login platform in advance; and sending second authorization information to the second server through the application front end, wherein the second authorization information is used for indicating the second server to acquire second user account information from the first server, and responding to the access request after establishing a login state according to the second user account information.
Specifically, the second authorization information is used for indicating the second server to obtain second user account information from the first server, and after a login state is established according to the second user account information, the second server responds to the access request, and is a server with an application back end deployed with the application.
Further, sending the second authorization information to the second server through the application front end includes: generating login request information according to the second authorization information and the rear domain name of the rear application through the front application end; and sending login request information to the second server by the application front end, wherein the login request information is used for indicating the second server to analyze the login request information so as to obtain second authorization information.
Specifically, the unified login platform maps the acquired first user account information into second user account information, wherein the first user account information and the second user account information are in one-to-one correspondence, and corresponding second authorization information is generated for the second user account information, wherein the second authorization information is a temporary authorization ticket and is one-time validity, so that the security of the login application back end can be ensured.
In addition, after the unified login platform generates the second authorization information, the second authorization information is sent to the application front end, the application front end generates login request information according to the second authorization information and a rear end domain name of the application rear end, for example, the rear end domain name of the application rear end is www.backend.com, the second authorization information is XXX, and the login request information is: https:// www.backend.com/getitem. Jsonsso_ticket = xxx. The application back end receives the login request information sent by the application front end, analyzes the login request information according to an SDK (analysis tool kit) configured in the application back end in advance to obtain second authorization information, sends the second authorization information to the unified login system, obtains corresponding second user account information, further establishes a login state, and then outputs a login state cookie (data stored on a user local terminal) to the access request.
In the embodiment of the application, the SDK configured by the application back end is obtained from the unified login platform in advance when the application back end is accessed to the unified login platform. In the embodiment of the application, the application front end, the management platform and the unified login platform are required to complete OAuth interaction once, so that the application front end obtains the first authorization information of the management platform and the first user account information. And then, the unified login system, the application front end and the application back end are required to complete one time of OAuth interaction, so that the unified login system generates second authorization information, the application front end acquires the second authorization information and then sends the second authorization information to the application back end, and the application back end acquires second user account information from the unified login system, thereby establishing a login state.
In the embodiment of the application, a general solution can be provided through the unified login platform, and the application with separated application front end and application back end can conveniently realize the login-free application in the management platform only by accessing the unified login platform through configuration.
The embodiment of the application is applied to a scene of an application embedded in an access management platform, and the provided service login method comprises the following steps: under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information for logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; and sending second authorization information acquired from the first server to the second server by the application front end, wherein the second authorization information indicates the second server to establish a login state according to second user account information acquired from the first server, and the second server is provided with an application back end of the application. According to the embodiment of the application, when the application embedded in the login management platform is logged in, the application can be accessed without login, so that the user is complicated and simple to operate, and the user experience is enhanced.
In the embodiment of the present application, another service login method is provided and applied to a first server, where the first server is a server deploying a unified login platform, as shown in fig. 3, and the service login method specifically includes the following steps:
s301, receiving first authorization information sent by an application front end of an application deployed in a terminal through a unified login platform.
The application front end is used for receiving an access request for accessing the application under the condition of a management platform of a logged-in terminal, acquiring first authorization information according to the access request, wherein the first authorization information is generated by the management platform according to first user account information, the first user account information is account information adopted by a user for logging in the management platform, the application front end is embedded in the management platform, and the application is accessed into the unified login platform in advance;
s302, acquiring first user account information from a management platform through a unified login platform according to the first authorization information.
S303, generating second user account information and second authorization information according to the first user account information through the unified login platform.
The second user account information is an account for logging in the unified login platform.
S304, sending second authorization information to the application front end through the unified login platform.
The second authorization information is used for indicating the front end of the application to send second authorization information to a second server, the second server obtains second user account information from the first server according to the second authorization information, and establishes a login state according to the second user account information, wherein the second server establishing the login state is used for responding to an access request, and the second server is a server of the back end of the application deployed with the application.
The specific implementation process of the embodiment of the present application refers to the above and is not described herein.
In the embodiment of the application, a general solution can be provided through the unified login platform, and the application with separated application front end and application back end can conveniently realize the login-free application in the management platform only by accessing the unified login platform through configuration.
In an embodiment of the present application, a service login method is provided and applied to a second server, where the second server is a server deployed with an application back end of an application, as shown in fig. 4, and the service login method specifically includes the following steps:
s401, receiving second authorization information sent by an application front end of the application in the terminal through the application rear end.
The application front end is used for receiving an access request under the condition of a management platform of a logged-in terminal, acquiring first authorization information generated by the management platform according to first user account information according to the access request, sending the first authorization information to the first server through the application front end, acquiring second authorization information from the first server, wherein the first user account information is account information of the logged-in management platform, the first authorization information indicates the first server to generate second user account information and the second authorization information according to the first user account information, and the application front end is embedded in the management platform.
The application front end is used for receiving an access request for accessing an application under the condition of a management platform of a logged-in terminal, acquiring first authorization information according to the access request, sending the first authorization information to a unified login platform deployed in a first server, acquiring second authorization information from the first server, wherein the first server is used for acquiring first user account information corresponding to the first authorization information from the management platform, generating second user account information and second authorization information according to the first user account information, the second user account information is account information for logging in the unified login platform, the application front end is embedded in the management platform, and the application is accessed into the unified login platform in advance.
Further, receiving, by the application back end, second authorization information sent by the application front end of the deployed application in the terminal, including: the application back end receives login request information sent by the application front end, wherein the login request information is generated by the application front end according to the second authorization information and a back end domain name of the application back end; and analyzing the login request information according to a pre-configured analysis tool package to obtain second authorization information, wherein the analysis tool package is provided for a second server in advance by a first server.
S402, acquiring second user account information from the first server according to the second authorization information through the application back end.
S403, establishing a login state according to the second user account information through the application back end.
The second server establishing the login state is used for responding to the access request.
The specific implementation process of the embodiment of the present application refers to the above and is not described herein.
In the embodiment of the application, a general solution can be provided through the unified login platform, and the application with separated application front end and application back end can conveniently realize the login-free application in the management platform only by accessing the unified login platform through configuration.
In an embodiment of the present application, there is provided a service login method, applied to a service login system, where the service login system includes: the method specifically comprises the following steps of:
s501, in the case of having logged in the management platform, the access request is received by the application front end.
S502, acquiring first authorization information generated by the management platform according to the first user account information through the application front end according to the access request.
The first authorization information is generated by the management platform according to the first user account information. The first user account information is account information adopted by a user to log in to the management platform;
s503, sending first authorization information to a unified login platform deployed in the first server through the application front end.
The first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information, and the application is accessed into a unified login platform in advance, wherein the first user account information is acquired from the management platform through the unified login platform according to the first authorization information; and generating second user account information and second authorization information according to the first user account information through the unified login platform. The second user account information is account information for logging in the unified login platform.
S504, the application front end sends second authorization information acquired from the first server to the second server.
S505, acquiring second user account information from the unified login platform according to the second authorization information through the application back end.
S506, establishing a login state according to the second user account information through the application back end.
The second server establishing the login state is used for responding to the access request.
The specific implementation process of the embodiment of the present application refers to the above and is not described herein.
In the embodiment of the application, a general solution can be provided through the unified login platform, and the application with separated application front end and application back end can conveniently realize the login-free application in the management platform only by accessing the unified login platform through configuration.
In the embodiment of the present application, in addition to providing a service login method, a service login device is provided, where the service login device is applied to a terminal, the terminal is deployed with a management platform, and an application front end of an application is embedded in the management platform, and as shown in fig. 6, the service login device includes:
a receiving module 61, configured to receive, by an application front end, an access request in a case where the management platform has been logged in;
the obtaining module 62 is configured to obtain, by using an application front end, first authorization information generated by the management platform according to first user account information according to an access request, where the first user account information is account information of a login management platform;
A first sending module 63, configured to send, through the application front end, first authorization information to the first server, where the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
the second sending module 64 is configured to send, by the application front end, second authorization information obtained from the first server to the second server, where the second authorization information indicates the second server to establish a login state according to second user account information obtained from the first server, and an application back end of the application is deployed on the second server.
In an alternative embodiment, the first authorization information includes a license-exemption code and a current institution identification, and the obtaining module 62 is specifically configured to: the method comprises the steps that a login-free authorization code generated by a management platform is obtained through an application front end, wherein the login-free authorization code is generated by the management platform according to first user account information; and acquiring a current mechanism identifier corresponding to the first user account information from a management platform through the application front end, and storing the association relationship of the authorization-free code, the current mechanism identifier and the first user account information in the management platform.
In an alternative embodiment, the receiving module 61 is specifically configured to: and receiving an access request through a front-end domain name of the front end of the application, wherein the front-end domain name of the front end of the application is preconfigured in the management platform as a login-free trust domain name, and the access request is used for accessing the application.
In an alternative embodiment, the second transmitting module 64 is specifically configured to: acquiring second authorization information from a first server through an application front end, wherein the first server is a server deployed with a unified login platform, and the application is accessed into the unified login platform in advance; and sending second authorization information to the second server through the application front end, wherein the second authorization information is used for indicating the second server to acquire second user account information from the first server, and responding to the access request after establishing a login state according to the second user account information.
In an alternative embodiment, the second sending module 64 is specifically configured to, when sending the second authorization information to the second server through the application front end: generating login request information according to the second authorization information and the rear domain name of the rear application through the front application end; and sending login request information to the second server by the application front end, wherein the login request information is used for indicating the second server to analyze the login request information so as to obtain second authorization information.
In an alternative embodiment, the method further comprises: the transmitting module (not shown) is configured to: before the application front end sends the first authorization information to the first server, the application front end sends the application name of the application to the first server, and the application name is used for indicating the unified login platform to determine corresponding application information according to the application name, determine a corresponding management platform according to the application information, and pre-configure the corresponding relation between the application name and the application information and the corresponding relation between the application information and the management platform in the unified login platform.
According to the service login device provided by the embodiment of the application, a general solution can be provided through the unified login platform, and the application with the separated application front end and application back end can conveniently realize login-free application in the management platform only by being configured to access the unified login platform.
In an embodiment of the present application, another service registration apparatus is provided and applied to a second server, where the second server is a server deployed with an application back end of an application, as shown in fig. 7, the service registration apparatus 70 includes:
the receiving module 71 is configured to receive, through an application back end, second authorization information sent by an application front end that deploys an application in the terminal, where the application front end is configured to receive, in a case of having logged into a management platform of the terminal, an access request for accessing the application, and obtain, according to the access request, first authorization information generated by the management platform according to first user account information, send, through the application front end, the first authorization information to the first server, obtain, from the first server, second authorization information, the first user account information being account information for logging into the management platform, the first authorization information indicating that the first server generates, according to the first user account information, second user account information and second authorization information, and embed the application front end in the management platform;
An obtaining module 72, configured to obtain, by using the application backend, second user account information from the first server according to the second authorization information;
the establishing module 73 is configured to establish a login state according to the second user account information through the application back end, where the second server that establishes the login state is configured to respond to the access request.
In an alternative embodiment, the receiving module 71 is specifically configured to: the application back end receives login request information sent by the application front end, wherein the login request information is generated by the application front end according to the second authorization information and a back end domain name of the application back end; and analyzing the login request information according to a pre-configured analysis tool package to obtain second authorization information, wherein the analysis tool package is provided for a second server in advance by a first server.
According to the service login device provided by the embodiment of the application, a general solution can be provided through the unified login platform, and the application with the separated application front end and application back end can conveniently realize login-free application in the management platform only by being configured to access the unified login platform.
In an embodiment of the present application, there is provided a service registration apparatus applied to a service registration system including: the terminal is deployed with a management platform, an application front end of an application is embedded in the management platform, and an application back end of the application is deployed in the second server, as shown in fig. 8, the service login device 80 includes:
A first receiving module 81, configured to receive, by an application front end, an access request in a case where the management platform has been logged in;
the first obtaining module 82 is configured to obtain, by using the application front end, according to the access request, first authorization information generated by the management platform according to first user account information, where the first user account information is account information of the login management platform;
the first sending module 83 is configured to send, through the application front end, first authorization information to a unified login platform deployed in the first server, where the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
the second sending module 84 is configured to send, to the second server through the application front end, second authorization information acquired from the first server, where the unified login platform is configured to acquire first user account information from the management platform according to the first authorization information, and generate second user account information and second authorization information according to the first user account information, where the second user account information is account information for logging in the unified login platform;
the second obtaining module 85 is configured to obtain, by using the application back end, second user account information from the unified login platform according to the second authorization information;
The establishing module 86 is configured to establish a login state according to the second user account information through the application back end, where the second server that establishes the login state is configured to respond to the access request.
According to the service login device provided by the embodiment of the application, a general solution can be provided through the unified login platform, and the application with the separated application front end and application back end can conveniently realize login-free application in the management platform only by being configured to access the unified login platform.
In addition, in some of the flows described in the above embodiments and the drawings, a plurality of operations appearing in a particular order are included, but it should be clearly understood that the operations may be performed out of order or performed in parallel in the order in which they appear herein, merely for distinguishing between the various operations, and the sequence number itself does not represent any order of execution. In addition, the flows may include more or fewer operations, and the operations may be performed sequentially or in parallel. It should be noted that, the descriptions of "first" and "second" herein are used to distinguish different messages, devices, modules, etc., and do not represent a sequence, and are not limited to the "first" and the "second" being different types.
Fig. 9 is a schematic structural diagram of an electronic device according to an exemplary embodiment of the present application. The electronic equipment is used for running the service login method. As shown in fig. 9, the electronic device 90 includes: a memory 94 and a processor 95.
Memory 94 is used to store computer programs and may be configured to store various other data to support operations on the electronic device. The memory 94 may be an object store (Object Storage Service, OSS).
The memory 94 may be implemented by any type or combination of volatile or nonvolatile memory devices such as Static Random Access Memory (SRAM), electrically erasable programmable read-only memory (EEPROM), erasable programmable read-only memory (EPROM), programmable read-only memory (PROM), read-only memory (ROM), magnetic memory, flash memory, magnetic or optical disk.
A processor 95 coupled to the memory 94 for executing the computer program in the memory 94 for use;
under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information for logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; and sending second authorization information acquired from the first server to the second server by the application front end, wherein the second authorization information indicates the second server to establish a login state according to second user account information acquired from the first server, and the second server is provided with an application back end of the application.
Further alternatively, the first authorization information includes a login-free authorization code and a current organization identifier, and when the processor 9 obtains the first authorization information generated by the management platform according to the first user account information, the method is specifically used for: the method comprises the steps that a login-free authorization code generated by a management platform is obtained through an application front end, wherein the login-free authorization code is generated by the management platform according to first user account information; and acquiring a current mechanism identifier corresponding to the first user account information from a management platform through the application front end, and storing the association relationship of the authorization-free code, the current mechanism identifier and the first user account information in the management platform.
Further optionally, the processor 95 is specifically configured to receive, when the access request is received by the application front end in the case of having logged into the management platform, the access request through the front end domain name of the application front end, where the front end domain name of the application front end is preconfigured in the management platform as a trusted-free domain name, and the access request is used for accessing the application.
Further optionally, the processor 95 is specifically configured to, when sending, through the application front end, the second authorization information acquired from the first server to the second server: acquiring second authorization information from a first server through an application front end, wherein the first server is a server deployed with a unified login platform, and the application is accessed into the unified login platform in advance; and sending second authorization information to the second server through the application front end, wherein the second authorization information is used for indicating the second server to acquire second user account information from the first server, and responding to the access request after establishing a login state according to the second user account information.
Further optionally, the processor 95 is specifically configured to, when sending, by the application front end, the second authorization information to the second server: generating login request information according to the second authorization information and the rear domain name of the rear application through the front application end; and sending login request information to the second server by the application front end, wherein the login request information is used for indicating the second server to analyze the login request information so as to obtain second authorization information.
In an alternative embodiment, processor 95 is also configured to: before the application front end sends the first authorization information to the first server, the application front end sends the application name of the application to the first server, and the application name is used for indicating the unified login platform to determine corresponding application information according to the application name, determine a corresponding management platform according to the application information, and pre-configure the corresponding relation between the application name and the application information and the corresponding relation between the application information and the management platform in the unified login platform.
A processor 95 coupled to the memory 94 for executing the computer program in the memory 94 for: the method comprises the steps that the application front end receives second authorization information sent by an application front end of an application deployed in a terminal through an application rear end, the application front end is used for receiving an access request under the condition of a management platform of a logged-in terminal, according to the access request, obtaining first authorization information generated by the management platform according to first user account information, sending the first authorization information to a first server through the application front end, obtaining second authorization information from the first server, the first user account information is account information used for logging in the management platform, the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information, and the application front end is embedded in the management platform; acquiring second user account information from the first server according to the second authorization information through the application back end; and establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
In an alternative embodiment, when the processor 95 receives, through the application back-end, the second authorization information sent by the application front-end of the deployed application in the terminal, the specific method is that: the application back end receives login request information sent by the application front end, wherein the login request information is generated by the application front end according to the second authorization information and a back end domain name of the application back end; and analyzing the login request information according to a pre-configured analysis tool package to obtain second authorization information, wherein the analysis tool package is provided for a second server in advance by a first server.
A processor 95 coupled to the memory 94 for executing the computer program in the memory 94 for use; under the condition of logging in the management platform, receiving an access request through an application front end; acquiring first authorization information generated by a management platform according to first user account information, which is account information logging in the management platform, through an application front end according to an access request; the method comprises the steps that first authorization information is sent to a unified login platform deployed in a first server through an application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to first user account information; the method comprises the steps that a second authorization information acquired from a first server is sent to a second server through an application front end, wherein a unified login platform is used for acquiring first user account information from a management platform according to the first authorization information, generating second user account information and second authorization information according to the first user account information, and the second user account information is account information for logging in the unified login platform; acquiring second user account information from the unified login platform according to the second authorization information through the application back end; and establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
Further, as shown in fig. 9, the electronic device further includes: firewall 91, load balancer 92, communication component 96, power component 93, and other components. Only some of the components are schematically shown in fig. 9, which does not mean that the electronic device only comprises the components shown in fig. 9.
According to the electronic equipment provided by the embodiment of the application, a universal solution can be provided through the unified login platform, and the application with the separated application front end and application back end can conveniently realize the login-free application in the management platform only by being configured to access the unified login platform.
Accordingly, embodiments of the present application also provide a computer-readable storage medium storing a computer program, which when executed by a processor causes the processor to implement steps in the methods shown in any one of fig. 2 to 5.
Accordingly, embodiments of the present application also provide a computer program device comprising computer programs/instructions which, when executed by a processor, cause the processor to implement the steps of the method shown in any of fig. 2 to 5.
The communication assembly of fig. 9 described above is configured to facilitate wired or wireless communication between the device in which the communication assembly is located and other devices. The device where the communication component is located can access a wireless network based on a communication standard, such as a mobile communication network of WiFi,2G, 3G, 4G/LTE, 5G, etc., or a combination thereof. In one exemplary embodiment, the communication component receives a broadcast signal or broadcast-related text from an external broadcast management platform via a broadcast channel. In one exemplary embodiment, the communication component further includes a Near Field Communication (NFC) module to facilitate short range communications. For example, the NFC module may be implemented based on Radio Frequency Identification (RFID) technology, infrared data association (IrDA) technology, ultra Wideband (UWB) technology, bluetooth (BT) technology, and other technologies.
The source module of fig. 9 provides power to the various components of the device in which the power module is located. The power components may include a power management platform, one or more power supplies, and other components associated with generating, managing, and distributing power for the devices in which the power components are located.
It will be appreciated by those skilled in the art that embodiments of the invention may be provided as a method, system, or computer program device. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program device embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program devices according to embodiments of the invention. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable electronic device to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable electronic device, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable electronic device to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable electronic device to cause a series of operational steps to be performed on the computer or other programmable device to produce a computer implemented process such that the instructions which execute on the computer or other programmable device provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
In one typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
The memory may include volatile memory in a computer-readable medium, random Access Memory (RAM) and/or nonvolatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). Memory is an example of computer-readable media.
Computer readable media, including both permanent and non-permanent, removable and non-removable media, may implement text storage by any method or technology. The text may be computer readable instructions, data structures, modules of a program, or other data. Examples of storage media for a computer include, but are not limited to, phase change memory (PRAM), static Random Access Memory (SRAM), dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), read Only Memory (ROM), electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium, which can be used to store text that can be accessed by a computing device. Computer-readable media, as defined herein, does not include transitory computer-readable media (transmission media), such as modulated data signals and carrier waves.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article or apparatus that comprises an element.
The foregoing is merely exemplary of the present application and is not intended to limit the present application. Various modifications and changes may be made to the present application by those skilled in the art. Any modifications, equivalent substitutions, improvements, etc. which are within the spirit and principles of the present application are intended to be included within the scope of the claims of the present application.
Claims (13)
1. The service login method is characterized by being applied to a terminal, wherein the terminal is provided with a management platform, an application front end of an application is embedded in the management platform, and the service login method comprises the following steps:
receiving an access request through the application front end under the condition that the management platform is logged in;
acquiring first authorization information generated by the management platform according to first user account information by the application front end according to the access request, wherein the first user account information is account information logging in the management platform;
the first authorization information is sent to a first server through the application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
and sending the second authorization information acquired from the first server to a second server through the application front end, wherein the second authorization information indicates the second server to establish a login state according to the second user account information acquired from the first server, and the second server is provided with an application back end of the application.
2. The service login method according to claim 1, wherein the first authorization information includes a login-free authorization code and a current organization identifier, and the obtaining the first authorization information generated by the management platform according to the first user account information includes:
the login-free authorization code generated by the management platform is obtained through the application front end, and the login-free authorization code is generated by the management platform according to the first user account information;
and acquiring a current mechanism identifier corresponding to the first user account information from the management platform through the application front end, wherein the management platform stores the association relationship among the authorization-free code, the current mechanism identifier and the first user account information.
3. The service login method according to claim 1, wherein said receiving, by the application front end, an access request includes:
and receiving an access request through the front-end domain name of the front-end of the application, wherein the front-end domain name of the front-end of the application is preconfigured in the management platform to be a login-free trust domain name, and the access request is used for accessing the application.
4. The service login method according to claim 1, wherein the transmitting, by the application front end, the second authorization information acquired from the first server to a second server includes:
Acquiring the second authorization information from the first server through the application front end, wherein the first server is a server deployed with a unified login platform, and the application is accessed into the unified login platform in advance;
and sending, by the application front end, the second authorization information to the second server, where the second authorization information is used to instruct the second server to obtain the second user account information from the first server, and after a login state is established according to the second user account information, respond to the access request.
5. The service login method according to claim 4, wherein the sending, by the application front end, the second authorization information to the second server includes:
generating login request information by the application front end according to the second authorization information and the rear end domain name of the application rear end;
and sending the login request information to the second server through the application front end, wherein the login request information is used for indicating the second server to analyze the login request information so as to obtain the second authorization information.
6. The service login method according to any one of claims 1 to 5, further comprising:
Before the first authorization information is sent to the first server through the application front end, sending an application name of the application to the first server through the application front end, wherein the application name is used for indicating a unified login platform to determine corresponding application information according to the application name and determine a corresponding management platform according to the application information, and the corresponding relation between the application name and the application information and the corresponding relation between the application information and the management platform are preconfigured in the unified login platform.
7. A service login method, which is applied to a second server, wherein the second server is a server deployed with an application back end, and the service login method includes:
the method comprises the steps that a second authorization information sent by an application front end for deploying an application in a terminal is received through an application rear end, the application front end is used for receiving an access request under the condition that the application front end logs in a management platform of the terminal, acquiring first authorization information generated by the management platform according to first user account information according to the access request, sending the first authorization information to a first server through the application front end, acquiring second authorization information from the first server, the first user account information is account information for logging in the management platform, the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information, and the management platform is embedded with the application front end;
Acquiring the second user account information from the first server according to the second authorization information through the application back end;
and establishing a login state according to the second user account information through the application back end, wherein the second server establishing the login state is used for responding to the access request.
8. The service login method according to claim 7, wherein the receiving, by the application back-end, the second authorization information sent by the application front-end that deploys the application in the application back-end terminal includes:
receiving login request information sent by the application front end through the application back end, wherein the login request information is generated by the application front end according to the second authorization information and a back end domain name of the application back end;
and analyzing the login request information according to a pre-configured analysis tool package to obtain the second authorization information, wherein the analysis tool package is provided for the second server in advance by the first server.
9. A service login method, applied to a service login system, the service login system comprising: the terminal is provided with a management platform, an application front end of an application is embedded in the management platform, an application rear end of the application is deployed in the second server, and the service login method comprises the following steps:
Receiving an access request through the application front end under the condition that the management platform is logged in;
acquiring first authorization information generated by the management platform according to first user account information by the application front end according to the access request, wherein the first user account information is account information logging in the management platform;
the first authorization information is sent to a unified login platform deployed in a first server through the application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
the second authorization information acquired from the first server is sent to a second server through the application front end, wherein the unified login platform is used for acquiring the first user account information from the management platform according to the first authorization information, generating second user account information and second authorization information according to the first user account information, and the second user account information is account information for logging in the unified login platform;
acquiring the second user account information from the unified login platform according to the second authorization information through the application back end;
And establishing a login state according to the second user account information through the application back end, wherein the second server establishing the login state is used for responding to the access request.
10. A service login device, applied to a terminal, where the terminal is deployed with a management platform, and an application front end of an application is embedded in the management platform, the service login device includes:
the receiving module is used for receiving an access request through the application front end under the condition that the management platform is logged in;
the acquisition module is used for acquiring first authorization information generated by the management platform according to first user account information through the application front end according to the access request, wherein the first user account information is account information logged in the management platform;
the first sending module is used for sending the first authorization information to a first server through the application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
the second sending module is configured to send, through the application front end, the second authorization information acquired from the first server to a second server, where the second authorization information indicates the second server to establish a login state according to the second user account information acquired from the first server, and an application back end of the application is deployed on the second server.
11. A service login device, applied to a second server, the second server being a server on which an application back end of an application is deployed, the service login device comprising:
the receiving module is used for receiving second authorization information sent by an application front end for deploying the application in the terminal through the application rear end, the application front end is used for receiving an access request for accessing the application under the condition that the application front end logs in a management platform of the terminal, acquiring first authorization information generated by the management platform according to first user account information according to the access request, sending the first authorization information to a first server through the application front end, acquiring the second authorization information from the first server, wherein the first user account information is account information for logging in the management platform, the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information, and the application front end is embedded in the management platform;
the acquisition module is used for acquiring the second user account information from the first server according to the second authorization information through the application back end;
The establishing module is used for establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
12. A service login device, applied to a service login system, the service login system comprising: the terminal is provided with a management platform, an application front end of an application is embedded in the management platform, an application rear end of the application is deployed in the second server, and the service login device comprises:
the first receiving module is used for receiving an access request through the application front end under the condition that the management platform is logged in;
the first acquisition module is used for acquiring first authorization information generated by the management platform according to first user account information through the application front end according to the access request, wherein the first user account information is account information logged in the management platform;
the first sending module is used for sending the first authorization information to a unified login platform deployed in a first server through the application front end, and the first authorization information indicates the first server to generate second user account information and second authorization information according to the first user account information;
The second sending module is used for sending the second authorization information acquired from the first server to a second server through the application front end, wherein the unified login platform is used for acquiring the first user account information from the management platform according to the first authorization information, generating second user account information and second authorization information according to the first user account information, and the second user account information is account information for logging in the unified login platform;
the second acquisition module is used for acquiring the second user account information from the unified login platform according to the second authorization information through the application back end;
the establishing module is used for establishing a login state according to the second user account information through the application back end, wherein the second server for establishing the login state is used for responding to the access request.
13. An electronic device, comprising: a processor, a memory and a computer program stored on the memory and executable on the processor, the processor implementing the service login method according to any one of claims 1 to 9 when the computer program is executed.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210471400.5A CN114793177B (en) | 2022-04-28 | 2022-04-28 | Service login method and device and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210471400.5A CN114793177B (en) | 2022-04-28 | 2022-04-28 | Service login method and device and electronic equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114793177A CN114793177A (en) | 2022-07-26 |
| CN114793177B true CN114793177B (en) | 2024-01-05 |
Family
ID=82461538
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210471400.5A Active CN114793177B (en) | 2022-04-28 | 2022-04-28 | Service login method and device and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114793177B (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104348777A (en) * | 2013-07-24 | 2015-02-11 | 腾讯科技(深圳)有限公司 | Method and system for controlling access of mobile terminal to third party server |
| CN106209749A (en) * | 2015-05-08 | 2016-12-07 | 阿里巴巴集团控股有限公司 | Single-point logging method and the processing method and processing device of device, relevant device and application |
| WO2018113690A1 (en) * | 2016-12-23 | 2018-06-28 | 腾讯科技(深圳)有限公司 | Login authorisation method and apparatus, and login method and apparatus |
| CN111625810A (en) * | 2020-05-28 | 2020-09-04 | 百度在线网络技术(北京)有限公司 | Device login method, device and system |
| CN111988318A (en) * | 2020-08-21 | 2020-11-24 | 上海浦东发展银行股份有限公司 | Authorization authentication system and method thereof |
| CN112968871A (en) * | 2021-01-29 | 2021-06-15 | 北京字节跳动网络技术有限公司 | Login method and device of application program, readable medium and electronic equipment |
| CN113472774A (en) * | 2021-06-29 | 2021-10-01 | 平安普惠企业管理有限公司 | Account login-free method, system, device and computer readable storage medium |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109598115B (en) * | 2018-07-27 | 2020-01-21 | 北京字节跳动网络技术有限公司 | Method, device, equipment, system, platform and medium for realizing authorized login |
| KR20210049913A (en) * | 2018-09-03 | 2021-05-06 | 후아웨이 테크놀러지 컴퍼니 리미티드 | Login method, token sending method and device |
| US11368461B2 (en) * | 2019-09-30 | 2022-06-21 | Ebay Inc. | Application programming interface authorization transformation system |
| US11303635B2 (en) * | 2020-06-08 | 2022-04-12 | Capital One Services, Llc | Assisted third-party password authentication |
-
2022
- 2022-04-28 CN CN202210471400.5A patent/CN114793177B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104348777A (en) * | 2013-07-24 | 2015-02-11 | 腾讯科技(深圳)有限公司 | Method and system for controlling access of mobile terminal to third party server |
| CN106209749A (en) * | 2015-05-08 | 2016-12-07 | 阿里巴巴集团控股有限公司 | Single-point logging method and the processing method and processing device of device, relevant device and application |
| WO2018113690A1 (en) * | 2016-12-23 | 2018-06-28 | 腾讯科技(深圳)有限公司 | Login authorisation method and apparatus, and login method and apparatus |
| CN111625810A (en) * | 2020-05-28 | 2020-09-04 | 百度在线网络技术(北京)有限公司 | Device login method, device and system |
| CN111988318A (en) * | 2020-08-21 | 2020-11-24 | 上海浦东发展银行股份有限公司 | Authorization authentication system and method thereof |
| CN112968871A (en) * | 2021-01-29 | 2021-06-15 | 北京字节跳动网络技术有限公司 | Login method and device of application program, readable medium and electronic equipment |
| CN113472774A (en) * | 2021-06-29 | 2021-10-01 | 平安普惠企业管理有限公司 | Account login-free method, system, device and computer readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114793177A (en) | 2022-07-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107612909B (en) | Information interaction method, device and equipment about Internet of things equipment | |
| US8844013B2 (en) | Providing third party authentication in an on-demand service environment | |
| US10362026B2 (en) | Providing multi-factor authentication credentials via device notifications | |
| US9794227B2 (en) | Automatic detection of authentication methods by a gateway | |
| US20170032111A1 (en) | Approaches for providing multi-factor authentication credentials | |
| CN108965103B (en) | Electronic device, server and method for providing conversation content | |
| CN105122931A (en) | Electronic device and method of registering personal cloud apparatus in user portal server thereof | |
| US20210136577A1 (en) | Method and a device for wireless connection | |
| US11658963B2 (en) | Cooperative communication validation | |
| US11057821B2 (en) | Method and device for connecting to hidden wireless access point | |
| RU2654854C1 (en) | Method for collecting data on wireless communication device user and machine-readable medium for method implementation | |
| CN110430292B (en) | Method and device for inviting login of network platform, electronic equipment and readable medium | |
| CN111447133A (en) | Message transmission method and device, storage medium and electronic device | |
| US20190288998A1 (en) | Providing multi-factor authentication credentials via device notifications | |
| KR20130022533A (en) | System and method for automatically installing applications | |
| US10382305B2 (en) | Applying sequenced instructions to connect through captive portals | |
| CN106658666B (en) | Method and equipment for establishing wireless connection | |
| CN114793177B (en) | Service login method and device and electronic equipment | |
| US20140089430A1 (en) | Data-sharing method, terminal, server, and system | |
| US9723436B2 (en) | Mobile device location | |
| EP3329650B1 (en) | Providing multi-factor authentication credentials via device notifications | |
| CN104993935A (en) | Method, equipment and system for prompting network threat | |
| US20170078258A1 (en) | Systems and methods for authorizing a session between a browser and a terminal server | |
| US20230048931A1 (en) | Split input and output remote access | |
| KR101379551B1 (en) | Method, Terminal, Server, and Recording Medium for Exclusive Authentication in OPMD System |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |