CN115567885A - Mobile phone short message authorization trusteeship service system - Google Patents
Mobile phone short message authorization trusteeship service system Download PDFInfo
- Publication number
- CN115567885A CN115567885A CN202211178027.0A CN202211178027A CN115567885A CN 115567885 A CN115567885 A CN 115567885A CN 202211178027 A CN202211178027 A CN 202211178027A CN 115567885 A CN115567885 A CN 115567885A
- Authority
- CN
- China
- Prior art keywords
- short message
- mobile phone
- authorization
- cloud platform
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000013475 authorization Methods 0.000 title claims abstract description 44
- 238000000034 method Methods 0.000 claims abstract description 21
- 238000012544 monitoring process Methods 0.000 claims abstract description 16
- 230000008569 process Effects 0.000 claims abstract description 6
- 238000004806 packaging method and process Methods 0.000 claims description 3
- 238000012795 verification Methods 0.000 abstract description 5
- 238000004891 communication Methods 0.000 abstract description 2
- 235000013311 vegetables Nutrition 0.000 description 4
- 230000003993 interaction Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009193 crawling Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/12—Messaging; Mailboxes; Announcements
- H04W4/14—Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Telephonic Communication Services (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a mobile phone short message authorization trusteeship service system, which uses MQTT to establish a communication link among a mobile phone application, a cloud platform and a third-party service, and realizes the step-by-step pushing of short messages meeting conditions. The APP in the system is responsible for monitoring short messages of the mobile phone and judging whether the short messages need to be pushed to the cloud platform; the cloud platform mainly realizes the shunting of the short messages except the verification of information such as authority and the like, and pushes the short messages to different third-party services according to rules; and the third-party service processes the response to the short message according to the respective service requirement. The invention relates to a method for realizing the authorization of a third party by connecting a personal mobile phone short message with a third party service by a cloud platform under the condition of ensuring the safety of the short message of a user.
Description
Technical Field
The invention relates to a mobile phone short message authorization trusteeship service system, and belongs to the technical field of Internet of things.
Background
With the development of a crawler/anti-crawler technology, when website data is crawled, due to various traffic restrictions, access permissions of a plurality of accounts are often required to realize the most efficient data crawling. At present, the main functions of the mobile phone short messages are changed, and the method is not a way for people to communicate. Most purposes are to receive login authorization codes of all platforms; a small portion of notification information; there is also part of the advertising information. The crawler writer has special needs for the short message verification code, and particularly when capturing data of some websites, the crawler writer often needs to log in the website through the short message verification code. When a user trusts the operation authority of some internet of things equipment to a third-party service, authorization is often required to be provided to the third-party service in a short message verification mode, participation is required to be considered, and processing is inconvenient.
Disclosure of Invention
The invention aims to provide a mobile phone short message authorization and trusteeship service system which is convenient for a user to trusteeship short message authorization to third-party services.
In order to achieve the purpose, the invention is realized by the following technical scheme:
a mobile phone short message authorization trusteeship service system comprises a mobile phone application terminal, a cloud platform and a third party service terminal; the mobile phone application end comprises a login authorization module, a short message pushing rule module and a short message monitoring and pushing module;
the login authorization module is used for realizing the authentication of the current user on the cloud platform by using a Shiro framework; the working process is as follows:
(1) Initializing an environment, loading information of a configuration file, and acquiring a Security manager;
(2) Acquiring a current main body and a session, and storing information into the session;
(3) Obtaining the stored content from the session and comparing whether the content is consistent with the stored value;
(4) Judging whether the current user is authenticated, if so, packaging the account and the password into a UsernamePassdorToken, and checking whether a specified role authority exists;
the short message pushing rule module can set a short message pushing rule, the matching mode of the pushing rule and the short message is realized by using a regular expression, and information conforming to the pushing rule is pushed to the cloud platform;
the short message monitoring and pushing module is used for monitoring the short message content received by the mobile phone under the condition that the user gives authorization, and pushing the short message content to be pushed to the cloud platform side in an MQTT mode after the short message content is matched with the pushing rule;
the short message monitoring is realized by monitoring a short message database through an observer mode, and the method specifically comprises the following steps: when the mobile phone receives the information, a class is created to inherit from a ContentObserver class, and an onChange method in the class is rewritten, when the short message database is changed, the onChange method is called back, and whether the short message database needs to be pushed to the cloud platform or not is judged in the onChange method;
the cloud platform mainly comprises a login and registration module, a short message application service module and a short message distribution module;
the login registration module is matched with a mobile phone user and a third party to complete registration and login functions;
the short message service application module is used for selecting a short message service opening function in the cloud platform of the service provider, and after the function is opened, the corresponding short message is forwarded to a third-party service through the cloud platform;
the short message shunting module determines a third-party service provider needing the short message, and pushes the short message to the third-party service provider needing the short message by using the MQTT.
Preferably, the login authorization module may further use an OAuth framework to implement the following specific implementation manner:
the OAuth sets an authorization layer between the mobile phone application end and the third-party server end, the mobile phone application end can only log in the authorization layer, the authorization layer token specifies the authorization range and the validity period when the mobile phone application end logs in, and after the mobile phone application end logs in the authorization layer, the third-party server end opens the data stored by the user to the mobile phone application end according to the authorization range and the validity period of the token.
The invention has the advantages that: the invention relates to a method for realizing the authorization of a third party by connecting a personal mobile phone short message with a third party service by a cloud platform under the condition of ensuring the safety of the short message of a user.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate embodiments of the invention and together with the description serve to explain the principles of the invention and not to limit the invention.
FIG. 1 is a schematic view of the flow structure of the present invention.
Fig. 2 is a schematic diagram illustrating an interaction process between a mobile phone application and a cloud platform.
Fig. 3 is a schematic view of an interaction process between a third-party server and a cloud platform.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
As shown in fig. 1, the system uses MQTT to establish a communication link between the mobile phone application terminal, the cloud platform and the third-party service terminal, so as to realize the step-by-step pushing of short messages meeting the conditions. The APP in the system is responsible for monitoring short messages of the mobile phone and judging whether the short messages need to be pushed to the cloud platform; the cloud platform mainly realizes the shunting of the short messages besides realizing the verification of information such as authority and the like, and respectively pushes the short messages to different third-party services according to rules; and the third-party service responds to the short message according to the respective service requirement.
The mobile phone application end mainly comprises the following modules:
1. login authorization module
The method is used for realizing the authentication of the current user on the cloud platform and is realized by using a Shiro or OAuth mode.
Among them, shiro is an open source security framework that provides authentication, authorization, cryptography, and session management. User, rights, roles, etc. information may be stored in various forms in different items. The main working process is as follows:
1. initializing the environment, such as loading information for the shiro.ini profile; 2. acquiring a Security manager of a Security manager; 3. acquiring a current subject (user); 4. acquiring a conversation of a current subject; 5. storing some content into the session; 6. obtaining the stored content from the session again, and comparing whether the content is consistent with the stored value; 7. judging whether the current user is authenticated; 8. packaging the account and the password into a UsernamePassWordToken; 9. it is checked whether there is a designated role right.
The authorization logic for OAuth is as follows:
OAuth provides an authorization layer between the "client" and the "service provider". The "client" cannot directly log into the "service provider" and can only log into the authorization layer, thereby distinguishing the user from the client. The token used by the "client" to log in to the authorization layer is different from the user's password. The user can specify the authority range and the validity period of the authorization layer token when logging in. After the client logs in the authorization layer, the service provider opens the data stored by the user to the client according to the authorization range and the validity period of the token.
2. Module for setting short message pushing rules
The short message pushing rule is set by the owner of the mobile phone, the rule determines which short message information is to be pushed to the cloud platform, and the matching mode of the pushing rule and the short message is generally realized by using a regular expression.
For example, the following matching rules exist:
/(\ [ vegetable and bird post ]) +
The matching text is a short message with the beginning of the [ vegetable and bird post station ], and short messages with other formats cannot be successfully matched. Text examples that failed to match:
a, xx post house is an express receiving and dispatching service point
b. An express delivery receiving and dispatching service point (vegetable bird post station)
c. Vegetable bird post station is an express delivery receiving and dispatching service point
3. Short message monitoring and pushing module
Under the condition that the user gives authorization, the module is responsible for monitoring short message contents received by the mobile phone, and after the short message contents are matched with the pushing rules, the short message contents to be pushed are pushed to the cloud platform side in an MQTT mode.
The monitoring of the short message is generally realized by monitoring a short message database in an observer mode. When the mobile phone receives a short message, the short message database changes. Android provides a ContentObserver class, and only one class is created to inherit from the ContentObserver class and rewrites an onChange method in the class, and when a short message database changes, the onChange method is called back. Judging whether the short message needs to be pushed to the cloud platform or not in the onChange method, and if the short message needs to be pushed, pushing the short message content to the cloud platform by using MQTT service.
The cloud platform mainly comprises the following modules:
1. login registration module
And the authorization functions such as registration, login and the like are completed by matching with the mobile phone user and a third party.
2. Short message service application module
After the third party completes registration in the cloud platform, a mobile phone number needing to open the short message service can be selected in the cloud platform to apply for opening the short message service function, and after the function is opened, the corresponding short message can be forwarded to the third party service through the cloud platform.
3. Short message shunting module
The short message shunting module determines which third-party service provider needs the short message, and the short message is pushed to the third-party service provider needing the short message by using the MQTT.
As shown in fig. 2 and 3, the main operation flow of the system includes:
the mobile phone user:
1. APP installed by mobile phone user and matched with cloud platform
2. Mobile phone user logs in and sets short message pushing rule
3. Mobile phone APP starts to push short messages conforming to the regulation to the cloud platform
A third-party service provider:
4. third-party service provider completes registration login on cloud platform
5. The third-party service provider applies for the short message service.
6. The cloud platform allocates the mobile phone number for the third-party service provider, and temporarily binds the mobile phone number with the third-party service provider
7. The cloud platform starts to push information bound with the third-party service provider, which is pushed by the mobile phone end, to the third-party service provider.
Finally, it should be noted that: although the present invention has been described in detail with reference to the foregoing embodiments, it will be apparent to those skilled in the art that modifications may be made to the embodiments described above, or equivalents may be substituted for elements thereof. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (2)
1. A mobile phone short message authorization trusteeship service system is characterized by comprising a mobile phone application end, a cloud platform and a third party service end; the mobile phone application end comprises a login authorization module, a short message pushing rule module and a short message monitoring and pushing module;
the login authorization module is used for realizing the authentication of the current user on the cloud platform by using a Shiro framework; the working process is as follows:
(1) Initializing an environment, loading information of a configuration file, and acquiring a Security manager;
(2) Acquiring a current main body and a session, and storing information into the session;
(3) Acquiring the stored content from the session, and comparing whether the content is consistent with the stored value;
(4) Judging whether the current user is authenticated, if so, packaging the account and the password into a UsernamePassdorToken, and checking whether a specified role authority exists;
the short message pushing rule module can set a short message pushing rule, the matching mode of the pushing rule and the short message is realized by using a regular expression, and information conforming to the pushing rule is pushed to the cloud platform;
the short message monitoring and pushing module is used for monitoring the short message content received by the mobile phone under the condition that the user gives authorization, and pushing the short message content to be pushed to the cloud platform side in an MQTT mode after the short message content is matched with the pushing rule;
the short message monitoring is realized by monitoring a short message database through an observer mode, and the method specifically comprises the following steps: when the mobile phone receives the information, a class is created to be inherited from a contentObserver class, and an onChange method in the class is rewritten, when the short message database changes, the onChange method is called back, and whether the short message database needs to be pushed to the cloud platform or not is judged in the onChange method;
the cloud platform mainly comprises a login and registration module, a short message application service module and a short message distribution module;
the login registration module is matched with a mobile phone user and a third party to complete registration and login functions;
the short message service application module is used for selecting a short message service opening function in the cloud platform of the service provider, and after the function is opened, the corresponding short message is forwarded to a third-party service through the cloud platform;
the short message shunting module determines a third-party service provider needing the short message, and pushes the short message to the third-party service provider needing the short message by using the MQTT.
2. The system of claim 1, wherein the login authorization module further uses an OAuth framework to implement the following specific implementation manner:
the OAuth sets an authorization layer between a mobile phone application end and a third-party service end, the mobile phone application end can only log in the authorization layer, the authorization range and the validity period of a token of the authorization layer are appointed when the mobile phone application end logs in the authorization layer, and after the mobile phone application end logs in the authorization layer, the third-party service end opens data stored by a user to the mobile phone application end according to the authorization range and the validity period of the token.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202211178027.0A CN115567885B (en) | 2022-09-27 | 2022-09-27 | Mobile phone short message authorized hosting service system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202211178027.0A CN115567885B (en) | 2022-09-27 | 2022-09-27 | Mobile phone short message authorized hosting service system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN115567885A true CN115567885A (en) | 2023-01-03 |
CN115567885B CN115567885B (en) | 2023-09-05 |
Family
ID=84743762
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202211178027.0A Active CN115567885B (en) | 2022-09-27 | 2022-09-27 | Mobile phone short message authorized hosting service system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN115567885B (en) |
Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104255007A (en) * | 2011-09-29 | 2014-12-31 | 甲骨文国际公司 | Oauth framework |
CN106210238A (en) * | 2016-07-14 | 2016-12-07 | 北京小米移动软件有限公司 | short message storage method and device |
CN106341234A (en) * | 2015-07-17 | 2017-01-18 | 华为技术有限公司 | Authorization method and device |
CN110990850A (en) * | 2019-11-25 | 2020-04-10 | 维沃移动通信有限公司 | Authority management method and electronic equipment |
CN111027031A (en) * | 2019-12-20 | 2020-04-17 | 深圳前海环融联易信息科技服务有限公司 | Shiro-based authority management method and device and computer equipment |
CN111062236A (en) * | 2019-05-05 | 2020-04-24 | 杭州魔蝎数据科技有限公司 | Data authorization method and device based on artificial intelligence |
CN111131301A (en) * | 2019-12-31 | 2020-05-08 | 江苏徐工信息技术股份有限公司 | Unified authentication and authorization scheme |
CN114048458A (en) * | 2021-11-15 | 2022-02-15 | 合众新能源汽车有限公司 | Oauth2 authorization mode and open platform cooperation method |
CN115002280A (en) * | 2022-05-11 | 2022-09-02 | 北京互连众信科技有限公司 | Supervision and collection system and method |
-
2022
- 2022-09-27 CN CN202211178027.0A patent/CN115567885B/en active Active
Patent Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104255007A (en) * | 2011-09-29 | 2014-12-31 | 甲骨文国际公司 | Oauth framework |
CN106341234A (en) * | 2015-07-17 | 2017-01-18 | 华为技术有限公司 | Authorization method and device |
CN106210238A (en) * | 2016-07-14 | 2016-12-07 | 北京小米移动软件有限公司 | short message storage method and device |
CN111062236A (en) * | 2019-05-05 | 2020-04-24 | 杭州魔蝎数据科技有限公司 | Data authorization method and device based on artificial intelligence |
CN110990850A (en) * | 2019-11-25 | 2020-04-10 | 维沃移动通信有限公司 | Authority management method and electronic equipment |
CN111027031A (en) * | 2019-12-20 | 2020-04-17 | 深圳前海环融联易信息科技服务有限公司 | Shiro-based authority management method and device and computer equipment |
CN111131301A (en) * | 2019-12-31 | 2020-05-08 | 江苏徐工信息技术股份有限公司 | Unified authentication and authorization scheme |
CN114048458A (en) * | 2021-11-15 | 2022-02-15 | 合众新能源汽车有限公司 | Oauth2 authorization mode and open platform cooperation method |
CN115002280A (en) * | 2022-05-11 | 2022-09-02 | 北京互连众信科技有限公司 | Supervision and collection system and method |
Non-Patent Citations (1)
Title |
---|
张榆: "《基于IMS的企业托管式融合通信解决方案设计与实现》", 《中国优秀硕士学位论文全文数据库(信息科技辑)》 * |
Also Published As
Publication number | Publication date |
---|---|
CN115567885B (en) | 2023-09-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7983399B2 (en) | Remote notification system and method and intelligent agent therefor | |
KR100683976B1 (en) | Method, arrangement and apparatus for authentication | |
CN101582762B (en) | Method and system for identity authentication based on dynamic password | |
CN103139200B (en) | A kind of method of Web service single-sign-on | |
CN110213217B (en) | Data access method, related device, gateway and data access system | |
CN107241336B (en) | Identity verification method and device | |
CN105592065A (en) | Method and system for website registration on the basis of mobile phone message | |
CN111343168B (en) | Identity authentication method and device, computer equipment and readable storage medium | |
CN100589383C (en) | Method, apparatus and system for verifying internet user identity | |
CN103944737A (en) | User identity authentication method, third-party authentication platform and operator authentication platform | |
CN102111275A (en) | User authentication and authorization method and system for implementing user authentication and authorization method | |
CN104158824A (en) | Method and system of network real name authentication | |
CN107564140A (en) | A kind of gate inhibition invites authorization identifying system | |
WO2023050524A1 (en) | Im-based user identity authentication method and apparatus, and server and storage medium | |
CN110619206A (en) | Operation and maintenance risk control method, system, equipment and computer readable storage medium | |
CN109726531A (en) | A kind of marketer terminal security control method based on block chain intelligence contract | |
EP3550488A1 (en) | System and method for credentialing access to restricted rooms | |
CN107566396A (en) | A kind of method based on dynamic password enhancing server VPN protocol securitys | |
CN107579990A (en) | Measure of managing contract and server | |
CN105306577A (en) | Data sharing system and method between handheld devices based on APP | |
CN108696538A (en) | A kind of safety communicating method of the IMS systems based on key file | |
CN102780978B (en) | Unlocking method and system of smart card | |
CN112398858A (en) | Method and system for real-name identity authentication of courier | |
CN115567885A (en) | Mobile phone short message authorization trusteeship service system | |
KR101133167B1 (en) | Method and apparatus for user verifing process with enhanced security |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |