CN115062283A - Method for logging in internal system by using external system, electronic equipment and storage medium - Google Patents
Method for logging in internal system by using external system, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN115062283A CN115062283A CN202210730303.3A CN202210730303A CN115062283A CN 115062283 A CN115062283 A CN 115062283A CN 202210730303 A CN202210730303 A CN 202210730303A CN 115062283 A CN115062283 A CN 115062283A
- Authority
- CN
- China
- Prior art keywords
- account
- external
- member account
- account number
- internal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 51
- 238000013507 mapping Methods 0.000 claims abstract description 28
- 238000012545 processing Methods 0.000 claims abstract description 13
- 238000000586 desensitisation Methods 0.000 claims description 5
- 230000026676 system process Effects 0.000 claims description 3
- 238000010586 diagram Methods 0.000 description 5
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000006870 function Effects 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/107—License processing; Key processing
- G06F21/1078—Logging; Metering
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2117—User registration
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The application discloses a method for logging in an internal system by using an external system, electronic equipment and a storage medium, wherein the method comprises the following steps: the user carries an external channel account number in a login request sent to the internal gateway when the client logs in through an external channel, the member account service system converts the external channel account number into a member account number by establishing a mapping relation between different external channel account numbers and the same member account number, and the member account number is uniformly used in each system of the internal service end for service processing, so that the system can maintain the member number and expand the service conveniently.
Description
Technical Field
The present application relates to the field of internet technologies, and in particular, to a method, an electronic device, and a storage medium for logging in an internal system by using an external system.
Background
With the development of the internet, various client-oriented registrable channel end systems, merchant systems and the like appear, external merchant channels are numerous, values sent by clients through different channel registration systems are not uniform, and the functions of controlling and processing conversion between the client-oriented registrable channel end systems and external merchant member account numbers cannot be controlled and processed, so that maintenance of internal member account numbers is complicated and disordered.
Disclosure of Invention
The application at least provides a method for logging in an internal system by using an external system, an electronic device and a storage medium.
A first aspect of the present application provides a method for logging in an internal system by using an external system, including:
the member account service system generates a member account number for the user registered for the first time;
establishing mapping between member account numbers and external channel account numbers, wherein one member account number maps at least two different external channel account numbers;
receiving a login request sent by an external system and sent by an internal gateway, wherein the login request carries an external channel account;
converting the external channel account into a member account according to the mapping between the external channel account and the member account;
and returning the member account to the internal gateway, forwarding the member account to the service system by the internal gateway, and performing service processing by using the member account by the service system.
The external channel account number comprises an application account number and a third party account number.
The third-party account is generated by an external channel, the application account is generated by the member account service system in a distributed mode, and different external channels have different application accounts.
The third party account number comprises a mobile phone number or a self-defined encrypted membership number or a dynamic code.
Wherein, after generating the member account for the user who registers for the first time, still include: and establishing mapping of the member account and the member information, wherein the service system can inquire the member information through the mapping of the member account and the member information.
The member information comprises registration information, transaction information, authority and a member system table.
After the application account number is distributed and generated by the member account service system, the method further comprises the following steps: and establishing mapping between the application account and the merchant information of the external channel, wherein the business system and the member account service system can inquire the merchant information of the external channel through the mapping.
And the mobile phone number is encrypted by adopting a desensitization rule.
A second aspect of the present application provides a method for logging in an internal system by using an external system, including:
the method comprises the steps that an internal gateway receives a login request sent by an external system, wherein the login request carries an external channel account of the external system;
the internal gateway sends an external channel account number to the member account service system so that the member account service system searches a member account number corresponding to the external channel account number, and one member account number is mapped to at least two different external channel account numbers;
the internal gateway receives the member account number from the member account service system and sends the member account number to the service system, so that the service system processes the service by using the member account number.
A third aspect of the present application provides an electronic device, which includes a memory and a processor coupled to each other, wherein the processor is configured to execute program instructions stored in the memory to implement the above-mentioned method for logging in an internal system by using an external system.
A fourth aspect of the present application provides a storage medium having stored thereon program instructions that, when executed by a processor, implement the above-described method of logging in an internal system using an external system.
According to the scheme, the mapping between the external channel account and the member account is established, when a user logs in, the internal gateway inquires the corresponding member account in the member account service system for the external channel account and then forwards the member account to the internal service system, and the internal service system uses the unified member account to perform service processing, so that the system data maintenance is simple, and the system service expansion is facilitated.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the application.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present application and, together with the description, serve to explain the principles of the application.
FIG. 1 is a flow chart illustrating an embodiment of a method for logging on an internal system by using an external system according to the present application;
FIG. 2 is a schematic multi-end interaction flow diagram illustrating an embodiment of a method for logging in an internal system using an external system according to the present application;
FIG. 3 is a flow chart illustrating another embodiment of a method for logging on an internal system using an external system according to the present application;
FIG. 4 is a schematic structural diagram of an embodiment of an electronic device according to the present application;
FIG. 5 is a schematic structural diagram of an embodiment of a non-volatile computer-readable storage medium according to the present application.
Detailed Description
The following describes in detail the embodiments of the present application with reference to the drawings attached hereto.
In the following description, for purposes of explanation and not limitation, specific details are set forth such as particular system structures, interfaces, techniques, etc. in order to provide a thorough understanding of the present application.
The term "and/or" herein is merely an association describing an associated object, meaning that three relationships may exist, e.g., a and/or B, may mean: a exists alone, A and B exist simultaneously, and B exists alone. In addition, the character "/" herein generally indicates that the former and latter related objects are in an "or" relationship. Further, "plurality" herein means two or more than two. In addition, the term "at least one" herein means any one of a plurality or any combination of at least two of a plurality, for example, including at least one of A, B, C, and may mean including any one or more elements selected from the group consisting of A, B and C.
Usually, there are multiple external registration channels of an application software, such as a payment bank, a WeChat, a microblog, etc., and a user can access an internal system by using an external system, such as a WeChat, a payment bank, etc., but because the ID values sent by the WeChat and the payment bank are different, the openID of the user is sent to the WeChat; for the Ali member account numbers which are possibly uploaded by a payment device to a user, the account numbers are relatively independent, and circulation orders generated by the user are difficult to call mutually, so that a uniform account number needs to be generated in an internal system, and data generated when the user accesses the system through different channels in the past are related. Referring to fig. 1 and fig. 2, fig. 1 is a schematic flowchart illustrating a method for logging in an internal system by using an external system according to an embodiment of the present disclosure, and fig. 2 is a schematic flowchart illustrating a multi-terminal interaction process according to an embodiment of the method for logging in the internal system by using the external system according to the present disclosure. Specifically, the internal system includes a member account service system and a business system of the internal service end, and the method of the present application may include the following steps:
step S11: the member account service system generates a member account number for the user registered for the first time;
wherein, after generating the member account for the user who registers for the first time, still include: and establishing mapping of the member account and the member information, wherein the service system can inquire the member information through the mapping of the member account and the member information.
The member information comprises registration information, transaction information, authority and a member system table.
Since each system of the internal service end comprises a service system and a member account service system which uniformly use the member account number to process the service, all information of the user related to the member account number can be inquired as long as the member account number is known according to the mapping between the member account number and the member information.
Step S12: establishing mapping between member account numbers and external channel account numbers, wherein one member account number maps at least two different external channel account numbers;
the external channel account number comprises an application account number and a third party account number.
The application account number corresponds to different applications, does not belong to user data, and is used for identifying application information; the third-party account is an account generated when the user uses different applications, and the third-party account is different corresponding to different applications.
The third-party account is generated by an external channel, the application account is generated by the member account service system in a distributed mode, and different external channels have different application accounts.
Before establishing the member account and the external channel account, the member account service system allocates application accounts, such as a pay bank, a WeChat, a QQ and the like, to each external channel merchant needing to be accessed, and the allocation can be performed manually or specified by a preset program of the system.
The third party account number comprises a mobile phone number or a self-defined encrypted membership number or a dynamic code.
Different applications can send different third party account numbers to the internal gateway, and even if the same application logs in, the different third party account numbers can be sent upwards; for example, when a wechat client logs in, an application account belonging to wechat is uploaded, and besides, if a user logs in through a public number or an applet, an openID or unionID of the user is also uploaded; logging in through H5 and the like bound by application software and uploading bindID in addition to the application account; when logging in through a payment channel, an application account number of the payment treasure and a user account number of the payment treasure are uploaded; when the user logs in by other modes, other account numbers, such as a mobile phone number or a custom encrypted membership number or a dynamic code, are uploaded for identifying user information. There are other login methods such as microblog and QQ, and the login method is not limited. All login modes calling the internal gateway can send application accounts to be used for identifying channel information, and a third party account corresponding to the user can be used for identifying the user for different channels.
After the application account number is distributed and generated by the member account service system, the method further comprises the following steps: and establishing mapping between the application account and the merchant information of the external channel, wherein the business system and the member account service system can inquire the merchant information of the external channel through the mapping.
According to the mapping relation between the application account and the merchant information of the external channel, the merchant information of the external channel can be inquired through the application account, and each system of the internal server can identify which merchant the application account belongs to, for example, whether the application account belongs to a payment treasure or a WeChat.
And the mobile phone number is encrypted by adopting a desensitization rule.
In order to protect the privacy of the user, the mobile phone number adopts desensitization rule processing, namely hiding part of the number. After desensitization processing is carried out on the mobile phone number, the advanced encryption standard AES is used for transmission.
Step S13: receiving a login request sent by an external system and sent by an internal gateway, wherein the login request carries an external channel account;
step S14: receiving a login request, and converting an external channel account into a member account according to the mapping between the external channel account and the member account;
step S15: and returning the member account to the internal gateway, forwarding the member account to the service system by the internal gateway, and performing service processing by using the member account by the service system.
For example, a user wishes to log in an internal system by using WeChat as an external system, the member account service system judges that the user is a new user registered for the first time, a member account is generated for the user, mapping between the member account and the WeChat account of the user is established, the WeChat account can be converted into the member account when the user logs in again by WeChat, and each system of the internal service end uses the member account to process services, such as order generation and transaction generation; when the same client logs in other channels such as a Paibao, the Paibao account number is uploaded to an internal gateway, because the Paibao account number and the WeChat account number belong to the same client, and the user already owns a member account number, mapping of the Paibao account number and the member account number is established, and a member account service system can convert the value uploaded by the user when logging in through the Paibao into the member account number through mapping between the established member account number and the Paibao account number, and then the member account service system forwards the value to each system of the internal service end such as a business system; namely: regardless of whether the user logs in through WeChat or Paobao, the system of the internal server side is the same member account number. The internal system uses the unified account number to perform service processing, so that the historical data of a client can be conveniently inquired, and a user can also inquire order information generated when the user logins by using the WeChat account number in history through the login Paibao account number, so that each internal server system can conveniently maintain the member number and expand services.
In some possible implementation manners, a user logs in through a certain external channel, the external channel system sends a login request to an internal gateway, the login request carries external channel account numbers including an application account number and a third-party account number, the internal gateway sends the login request, the external channel account number and the third-party account number to a member account service system, the member account service system inquires corresponding member account numbers through mapping of the external channel account numbers and member account numbers, then returns the member account numbers to the internal gateway as return values, the internal gateway forwards the member account numbers to each system of an internal server side, and meanwhile, the login request is received, so that the user can log in on a client side and can display historical data information affiliated to the member account numbers.
In some possible implementation manners, the member account of the same user, the external channel account, the member information, and the external channel merchant information are uniformly stored in one table, the member account can be obtained from the external channel account by querying the table, and the internal gateway sends the obtained member account to each internal system for service processing.
Referring to fig. 3, fig. 3 is a schematic flowchart illustrating another embodiment of a method for logging in an internal system by using an external system according to the present application, including the following steps: s21: the method comprises the steps that an internal gateway receives a login request sent by an external system, wherein the login request carries an external channel account of the external system;
s22: the internal gateway sends an external channel account number to the member account service system;
s23: the member account service system searches for a member account corresponding to the external channel account, and one member account maps at least two different external channel accounts;
s24: the internal gateway receives the member account number from the member account service system and sends the member account number to the service system, so that the service system processes the service by using the member account number. Other processes in this embodiment are the same as those in the first embodiment, and are not described again.
When a user tries to log in an internal system through an external system such as WeChat on a client, a login request is firstly sent to an internal gateway, the login request carries an application account number and a unionID or openID of the WeChat, the internal gateway sends the values to a member account service system in the internal system, and the member account service system converts a received external channel account number into a member account number according to the mapping between the member account number and the external channel account number, returns the member account number to the internal gateway and forwards the member account number to a service system through the internal gateway.
It will be understood by those skilled in the art that in the method of the present invention, the order of writing the steps does not imply a strict order of execution and any limitations on the implementation, and the specific order of execution of the steps should be determined by their function and possible inherent logic.
Referring to fig. 4, fig. 4 is a schematic block diagram of an embodiment of an electronic device 20 according to the present application. The electronic device 20 comprises a memory 21 and a processor 22 coupled to each other, and the processor 22 is configured to execute program instructions stored in the memory 21 to implement the steps of any of the above-described embodiments of the method for logging in an internal system using an external system. In one particular implementation scenario, electronic device 20 may include, but is not limited to: a microcomputer, a server, and the electronic device 20 may also include a mobile device such as a notebook computer, a tablet computer, and the like, which is not limited herein.
In particular, the processor 22 is configured to control itself and the memory 21 to implement the steps of any of the above-described embodiments of a method for logging on an internal system using an external system. Processor 22 may also be referred to as a CPU (Central Processing Unit). The processor 22 may be an integrated circuit chip having signal processing capabilities. The Processor 22 may also be a general purpose Processor, a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), a Field Programmable Gate Array (FPGA) or other Programmable logic device, discrete Gate or transistor logic, discrete hardware components. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like. In addition, the processor 22 may be commonly implemented by an integrated circuit chip.
Referring to fig. 5, fig. 5 is a block diagram of an embodiment of a non-volatile computer readable storage medium 30 according to the present invention. The non-transitory computer readable storage medium 30 stores program instructions 301 executable by the processor, the program instructions 301 for implementing the steps of any of the above-described method embodiments for logging into an internal system using an external system.
In some embodiments, functions of or modules included in the apparatus provided in the embodiments of the present disclosure may be used to execute the method described in the above method embodiments, and specific implementation thereof may refer to the description of the above method embodiments, and for brevity, will not be described again here.
The foregoing description of the various embodiments is intended to highlight various differences between the embodiments, and the same or similar parts may be referred to each other, and for brevity, will not be described again herein.
In the several embodiments provided in the present application, it should be understood that the disclosed method and apparatus may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, a division of a module or a unit is merely one type of logical division, and an actual implementation may have another division, for example, a unit or a component may be combined or integrated with another system, or some features may be omitted, or not implemented. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection of devices or units through some interfaces, and may be in an electrical, mechanical or other form.
In addition, functional units in the embodiments of the present application may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present application may be substantially implemented or contributed to by the prior art, or all or part of the technical solution may be embodied in a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, a network device, or the like) or a processor (processor) to execute all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
Claims (11)
1. A method for logging on an internal system using an external system, comprising:
the member account service system generates a member account number for the user registered for the first time;
establishing mapping between the member account and external channel accounts, wherein one member account maps at least two different external channel accounts;
receiving a login request sent by an external system and uploaded by an internal gateway, wherein the login request carries the external channel account;
converting the external channel account into a member account according to the mapping between the external channel account and the member account;
and returning the member account to the internal gateway, and forwarding the member account to a service system by the internal gateway, wherein the service system uses the member account to perform service processing.
2. The method of claim 1, wherein the external channel account number comprises an application account number and a third party account number associated with the application account number.
3. The method of claim 2, wherein the third party account number is generated by an external channel, the application account number is generated by the member account service system distribution, and different external channels have different application account numbers.
4. The method of claim 1, 2 or 3, wherein the third party account number comprises a mobile phone number or a custom encrypted membership number or a dynamic code.
5. The method according to any one of claim 4, wherein after generating the member account for the user who is registered for the first time, the method further comprises: and establishing mapping between the member account and the member information, wherein the service system can inquire the member information through the mapping between the member account and the member information.
6. The method of claim 5, wherein the member information comprises registration information, transaction information, rights, and member system tables.
7. The method of claim 4, wherein after the application account number is generated by the member account service system, the method further comprises: and establishing mapping between the application account and the merchant information of the external channel, wherein the business system and the member account service system can inquire the merchant information of the external channel through the mapping.
8. The method of claim 7, wherein the mobile phone number is encrypted using a desensitization rule.
9. A method for logging on an internal system using an external system, comprising:
the method comprises the steps that an internal gateway receives a login request sent by an external system, wherein the login request carries an external channel account of the external system;
the internal gateway sends the external channel account numbers to a member account service system so that the member account number service system searches for a member account number corresponding to the channel account number, and one member account number maps at least two different external channel account numbers;
and the internal gateway receives the member account number from the member account service mapping system and sends the member account number to a service system, so that the service system processes services by using the member account number.
10. An electronic device comprising a memory and a processor coupled to each other, the processor being configured to execute program instructions stored in the memory to implement the method of logging on an internal system using an external system according to any one of claims 1 to 8.
11. A storage medium having stored thereon program instructions, which when executed by a processor, implement the method of logging on an internal system using an external system of any of claims 1 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210730303.3A CN115062283A (en) | 2022-06-24 | 2022-06-24 | Method for logging in internal system by using external system, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210730303.3A CN115062283A (en) | 2022-06-24 | 2022-06-24 | Method for logging in internal system by using external system, electronic equipment and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115062283A true CN115062283A (en) | 2022-09-16 |
Family
ID=83201594
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210730303.3A Pending CN115062283A (en) | 2022-06-24 | 2022-06-24 | Method for logging in internal system by using external system, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115062283A (en) |
-
2022
- 2022-06-24 CN CN202210730303.3A patent/CN115062283A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9866556B2 (en) | Common internet file system proxy authentication of multiple servers | |
| US8353002B2 (en) | Chaining information card selectors | |
| CN108337677B (en) | Network authentication method and device | |
| US11658963B2 (en) | Cooperative communication validation | |
| CN104054321A (en) | Security management for cloud services | |
| RU2676896C2 (en) | Method and system related to authentication of users for accessing data networks | |
| US20200244690A1 (en) | Transient Transaction Server | |
| KR20220156970A (en) | Processing electronic tokens | |
| CN112202750B (en) | Control method for policy execution, policy execution system and computing device | |
| CN108053088A (en) | A kind of Subscriber Management System, method and apparatus | |
| CN111259448A (en) | Data sharing method and device | |
| CN107181802A (en) | Intelligent hardware control method and device, server, storage medium | |
| CN113271289A (en) | Method, system and computer storage medium for resource authorization and access | |
| US20230163967A1 (en) | Decentralized authorization of user access requests in a multi-tenant distributed service architecture | |
| Chae et al. | A study on secure user authentication and authorization in OAuth protocol | |
| CN106453349A (en) | An account number login method and apparatus | |
| CN110198540B (en) | Portal authentication method and device | |
| US9641512B2 (en) | Identity protocol translation gateway | |
| FI20185307A1 (en) | Solution for establishing a communication session | |
| CN111193720A (en) | Trust service adaptation method based on security agent | |
| CN112887087B (en) | Data management method and device, electronic equipment and readable storage medium | |
| US9232078B1 (en) | Method and system for data usage accounting across multiple communication networks | |
| CN104753774A (en) | Distributed enterprise integrated access gateway | |
| CN111835523A (en) | Data request method, system and computing equipment | |
| CN115062283A (en) | Method for logging in internal system by using external system, electronic equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |