CN117763582A - Page resource access method and device, client device and storage medium - Google Patents
Page resource access method and device, client device and storage medium Download PDFInfo
- Publication number
- CN117763582A CN117763582A CN202311722622.0A CN202311722622A CN117763582A CN 117763582 A CN117763582 A CN 117763582A CN 202311722622 A CN202311722622 A CN 202311722622A CN 117763582 A CN117763582 A CN 117763582A
- Authority
- CN
- China
- Prior art keywords
- information
- target
- page
- target user
- access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 70
- 230000009191 jumping Effects 0.000 claims abstract description 12
- 230000004044 response Effects 0.000 claims description 11
- 238000004590 computer program Methods 0.000 claims description 3
- 238000010586 diagram Methods 0.000 description 9
- 238000004891 communication Methods 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 235000014510 cooky Nutrition 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000006467 substitution reaction Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Landscapes
- Storage Device Security (AREA)
Abstract
The application provides a method, a device, client equipment and a storage medium for accessing page resources, and relates to the technical field of page access, wherein the method comprises the following steps: receiving an input page access request aiming at a preset service application, wherein the page access request comprises the following steps: the first page resource to be accessed, the required target authority information and the target user identification; and determining target access authority information of the target user according to the identification of the target user and preset context information corresponding to the page access request, if the target authority information is in the target access authority information, jumping to a page of a preset service application, and displaying a first page resource in the page of the preset service application. The method and the device for authorizing the service application pertinently authorize the user, improve the utilization rate of the service application and reduce the access burden of the service application.
Description
Technical Field
The present invention relates to the field of page access technologies, and in particular, to a method, an apparatus, a client device, and a storage medium for accessing page resources.
Background
With the continuous development of internet big data, users are more and more in number through informatization construction for many years, and business systems based on computer technology are more and more increased, and each government and enterprise has a plurality of systems such as offices, personnel, mails and specific businesses, so that the users need to record more and more account numbers and passwords to deal with different business systems.
At present, the single sign-on system can realize the requirement that a user logs in a plurality of systems through an account number and a password, and the user can avoid logging in to access all system applications only through one-time identity authentication in the single sign-on process, so that the life cycle of the user account is uniformly managed.
However, the existing method only can realize that the user logs in the service application through the account number and the password, but when the user needs to access the page resource in the service application, the user cannot be authorized according to the login information of the user, so that the user needs to log in again to access the page resource, the pertinence of the service application is poor, and the access burden of the service application is increased.
Disclosure of Invention
The invention aims to provide a method, a device, equipment and a storage medium for accessing page resources, aiming at the defects in the prior art, so as to pertinently authorize a user, improve the utilization rate of service applications and reduce the access burden of the service applications.
In order to achieve the above purpose, the technical solution adopted in the embodiment of the present application is as follows:
in a first aspect, an embodiment of the present application provides a method for accessing a page resource, where the method includes:
receiving an input page access request aiming at a preset service application, wherein the page access request comprises the following steps: the first page resource to be accessed, the required target authority information and the target user identification;
determining target access right information of the target user according to the identification of the target user and preset context information corresponding to the page access request;
if the target authority information is in the target access authority information, jumping to a page of the preset service application, and displaying the first page resource in the page of the preset service application.
A possible implementation manner, the determining, according to the identifier of the target user and the preset context information corresponding to the page access request, target access permission information of the target user includes:
determining whether first identity version information is stored in the preset context information;
if the first identity version information is not stored in the preset context information, acquiring the latest identity version information and access right information corresponding to the latest identity version information from the authentication server according to the identification of the target user;
updating the latest identity version information and access right information corresponding to the latest identity version information into the preset context information;
and acquiring the target access right information from the preset context information.
A possible implementation manner, the determining, according to the identifier of the target user and the preset context information corresponding to the page access request, target access permission information of the target user, further includes:
if the first identity version information is stored in the preset context information, acquiring second identity version information and access right information corresponding to the second identity version information from the authentication server according to the identification of the target user;
determining whether the first identity version information and the second identity version information are consistent;
and if the first identity version information is consistent with the second identity version information, acquiring the target access right information from the preset context information.
A possible implementation manner, the determining, according to the identifier of the target user and the preset context information corresponding to the page access request, target access permission information of the target user, further includes:
if the first identity version information is inconsistent with the second identity version information, respectively updating the first identity version information and the corresponding authority access information from the preset context information according to the second identity version information and the access authority information corresponding to the second identity version information;
and acquiring the target access right information from the preset context information.
A possible implementation manner, the method further includes:
receiving an access request aiming at a target sub-service application and input through a page of the preset service application;
determining a second page resource from the pages of the target sub-service application according to the target access right information;
and jumping to the page of the target sub-service application, and displaying the second page resource in the page of the target sub-service application.
A possible implementation manner, the determining, according to the target access right information, a second page resource from the pages of the target sub-service application includes:
acquiring a permission tree of most target users aiming at the target sub-service application from an authentication server according to the target access permission information and the identification of the target sub-service application;
and determining the second page resource from the page resources of the target business sub-application according to the page resource authority tree of the target business sub-application and the authority tree.
A possible implementation manner, before determining the target access permission information of the target user according to the identification of the target user and the preset context information corresponding to the page access request, the method further includes:
acquiring login information of the target user;
sending a login request carrying the login information to an authentication server, so that the authentication server is used for forwarding the login request to an application server preset with service application, and if a login success message returned by the application server is received, generating login bill parameters according to the login information of the target user;
receiving a login success response carrying the login bill parameter sent by the authentication server;
sending an authentication request carrying the login bill parameter to the authentication server, so that the authentication server authenticates the login bill;
the determining the target access right information of the target user according to the identification of the target user and the preset context information corresponding to the page access request comprises the following steps:
and if an authentication success response returned by the authentication server is received, determining the target access right information according to the identification of the target user and the preset context information.
In a second aspect, another embodiment of the present application provides a page resource access device, where the device includes:
the receiving module is used for receiving an input page access request aiming at a preset service application, and the page access request comprises: the first page resource to be accessed, the required target authority information and the target user identification;
the determining module is used for determining target access right information of the target user according to the identification of the target user and preset context information corresponding to the page access request;
and the execution module is used for jumping to the page of the preset service application if the target authority information is in the target access authority information, and displaying the first page resource in the page of the preset service application.
In a third aspect, another embodiment of the present application provides a client device, including: a processor, a storage medium and a bus, the storage medium storing machine-readable instructions executable by the processor, the processor and the storage medium communicating over the bus when the client device is running, the processor executing the machine-readable instructions to perform the steps of the page resource access method as described in any of the first aspects above.
In a fourth aspect, another embodiment of the present application provides a storage medium having stored thereon a computer program which, when executed by a processor, performs the steps of the method for accessing page resources as described in any one of the first aspects above.
The beneficial effects of this application are:
the application provides a page resource access method, a device, a client device and a storage medium, wherein the application receives an input page access request aiming at a preset service application, and the page access request comprises the following steps: the first page resource to be accessed, the required target authority information and the target user identification; and determining target access authority information of the target user according to the identification of the target user and preset context information corresponding to the page access request, if the target authority information is in the target access authority information, jumping to a page of a preset service application, and displaying a first page resource in the page of the preset service application. According to the method and the device, the target access authority information of the target user is determined in the preset context information according to the target user identification in the page access request, the page of the preset service application is accessed according to the target access authority information and the target authority information corresponding to the access request, the user is authorized in a targeted manner, the utilization rate of the service application is improved, and the access burden of the service application is reduced.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are needed in the embodiments will be briefly described below, it being understood that the following drawings only illustrate some embodiments of the present application and therefore should not be considered limiting the scope, and that other related drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a flow chart of a first method for accessing page resources according to an embodiment of the present application;
fig. 2 is a flow chart of a second method for accessing page resources according to an embodiment of the present application;
fig. 3 is a flowchart of a third method for accessing page resources according to an embodiment of the present application;
fig. 4 is a flowchart of a fourth method for accessing page resources according to an embodiment of the present application;
fig. 5 is a flowchart of a fifth method for accessing page resources according to an embodiment of the present application;
fig. 6 is a flowchart of a sixth method for accessing page resources according to an embodiment of the present application;
fig. 7 is a flowchart of a seventh method for accessing page resources according to an embodiment of the present application;
fig. 8 is a schematic structural diagram of a page resource access device according to an embodiment of the present application;
fig. 9 is a schematic structural diagram of a client device according to an embodiment of the present application.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present application more clear, the technical solutions of the embodiments of the present application will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present application, and it should be understood that the accompanying drawings in the present application are only for the purpose of illustration and description, and are not intended to limit the protection scope of the present application. In addition, it should be understood that the schematic drawings are not drawn to scale. A flowchart, as used in this application, illustrates operations implemented according to some embodiments of the present application. It should be understood that the operations of the flow diagrams may be implemented out of order and that steps without logical context may be performed in reverse order or concurrently. Moreover, one or more other operations may be added to the flow diagrams and one or more operations may be removed from the flow diagrams as directed by those skilled in the art.
In addition, the described embodiments are only some, but not all, of the embodiments of the present application. The components of the embodiments of the present application, which are generally described and illustrated in the figures herein, may be arranged and designed in a wide variety of different configurations. Thus, the following detailed description of the embodiments of the present application, as provided in the accompanying drawings, is not intended to limit the scope of the application, as claimed, but is merely representative of selected embodiments of the application. All other embodiments, which can be made by those skilled in the art based on the embodiments of the present application without making any inventive effort, are intended to be within the scope of the present application.
It should be noted that the term "comprising" will be used in the embodiments of the present application to indicate the presence of the features stated hereinafter, but not to exclude the addition of other features.
The page resource access method provided in the following embodiments of the present application is applied to a browser client, where the browser client may be a browser client of a single sign-on system, and for clarity of description of the page resource access method provided in the present application, the page resource access method provided in the present application is described below with reference to a plurality of drawings, and fig. 1 is a schematic flow diagram of a first page resource access method provided in an embodiment of the present application, as shown in fig. 1, where the method includes:
s101, receiving an input page access request aiming at a preset service application.
Wherein the page access request includes: the first page resource to be accessed, the required target authority information and the target user identification; the preset service application may be an office application system, a service application system or any other application system, which is not limited in the embodiment of the present application. The page access request aiming at the preset service application can be an access request actively triggered by a user, or can be an access request which needs to automatically trigger the system to access the page of the preset service application.
S102, determining target access right information of the target user according to the identification of the target user and preset context information corresponding to the page access request.
Wherein the context information is various information and status data related to the browser client operation. The context information generally includes: browser client state information, user identity information, client rights information, and the like, and client data-related information. The context information is data which are configured by service personnel in advance according to the content such as page resources, personnel information and the like in the current preset service application.
For example, the identity information, the authority information, the role information and all information related to the client in the browser client are judged from preset context information according to the identification of the target user. And determining target access authority information of the user according to the authority information of the user.
S103, if the target authority information is in the target access authority information, jumping to a page of the preset service application, and displaying a first page resource in the page of the preset service application.
The first page resource is a page resource of a preset service application corresponding to the page access request.
Optionally, if the target authority information is in the target access authority information, it is indicated that the target access authority information of the target user can meet the first page resource to be accessed and the required target authority information, and at this time, the user jumps to a page of the preset service application according to the page access request of the user, and the first page resource of the preset service application corresponding to the page access request is displayed in the page of the preset service application.
The application provides a page resource access method, which is used for receiving an input page access request aiming at a preset service application, wherein the page access request comprises the following steps: the first page resource to be accessed, the required target authority information and the target user identification; and determining target access authority information of the target user according to the identification of the target user and preset context information corresponding to the page access request, if the target authority information is in the target access authority information, jumping to a page of a preset service application, and displaying a first page resource in the page of the preset service application. According to the method and the device, the target access authority information of the target user is determined in the preset context information according to the target user identification in the page access request, the page of the preset service application is accessed according to the target access authority information and the target authority information corresponding to the access request, the user is authorized in a targeted manner, the utilization rate of the service application is improved, and the access burden of the service application is reduced.
On the basis of the foregoing embodiments, the present application further provides a second method for accessing page resources, and fig. 2 is a flow chart of the second method for accessing page resources provided in the embodiment of the present application, as shown in fig. 2, where determining, in S102, target access permission information that a target user has according to an identifier of the target user and preset context information corresponding to a page access request includes:
s201, determining whether the first identity version information is stored in the preset context information.
The identity version information is a version number corresponding to a file generated according to information such as roles, authorities, business departments, contact ways and the like of the user, namely the identity version information. When the target user information stored in the file changes, the version number changes, i.e. the identity version information changes.
Optionally, according to the target user identifier, determining whether the first identity version information corresponding to the target user identifier is stored in the preset context information.
S202, if the first identity version information is not stored in the preset context information, acquiring the latest identity version information and access right information corresponding to the latest identity version information from an authentication server according to the identification of the target user.
The authentication server may be a single sign-on authentication server, and may be used for verifying an identity of a user in a preset service application and storing information of the user in the preset service application.
Optionally, when the first identity version information is not stored in the preset context information, the target user is described to be logged in the preset service application at the first time, and at this time, according to the user identifier of the target user, the latest identity version information of the target user and the access right information corresponding to the latest identity version information are obtained from the authentication server.
S203, updating the latest identity version information and the access right information corresponding to the latest identity version information into preset context information.
Optionally, according to the identification of the target user, updating the latest identity version information of the target user and the access right information corresponding to the latest identity version information into the context corresponding to the target user in the preset service application.
S204, acquiring target access right information from preset context information.
Optionally, according to the user identification of the target user, acquiring the target access right information of the target user from the context corresponding to the target user in the preset service application.
In the embodiment of the application, whether the identity version information of the target user is stored in the preset context is determined according to the identification of the target user, whether the user logs in the preset service application is judged, when the user is a new user, the latest identity version information of the target user and the access authority information corresponding to the latest identity version information are obtained from the authentication server according to the identification of the target user, and the reliability of the preset service application is improved.
On the basis of the foregoing embodiments, the present application further provides a third method for accessing page resources, and fig. 3 is a flow chart of the third method for accessing page resources provided in the embodiment of the present application, as shown in fig. 3, where determining, in S102, target access permission information that a target user has according to an identifier of the target user and preset context information corresponding to a page access request, further includes:
s301, if the preset context information stores the first identity version information, acquiring the second identity version information and access right information corresponding to the second identity version information from an authentication server according to the identification of the target user.
Optionally, if the first identity version information is stored in the preset context information, it is indicated that the target user logs in to the preset service application, at this time, second identity version information of the target user needs to be obtained according to the identifier of the target user, and at this time, the second identity version information is the latest identity version information of the target user.
S302, determining whether the first identity version information and the second identity version information are consistent.
Optionally, according to the first identity version information of the target user in the preset context information and the second identity version information acquired from the authentication server, whether the first identity version information and the second identity version information are consistent is determined, so that whether the target access right information of the user is changed is judged.
S303, if the first identity version information is consistent with the second identity version information, acquiring target access right information from preset context information.
Optionally, when the first identity version information and the second identity version information are consistent, the current authority information of the target user is identical to the historical authority information, and the target access authority information of the target user is obtained from the preset context information.
In the embodiment of the application, whether the target access right information of the target user is changed is determined according to the first identity version information and the second identity version information of the target user, so that the target access right information of the target user is obtained from the preset context information, and the safety of access of the preset service application is ensured.
On the basis of the foregoing embodiment, the present application further provides a fourth method for accessing page resources, and fig. 4 is a flow chart of the fourth method for accessing page resources provided in the embodiment of the present application, as shown in fig. 4, where determining, in S102, target access permission information that a target user has according to an identifier of the target user and preset context information corresponding to a page access request, further includes:
s401, if the first identity version information and the second identity version information are inconsistent, updating the first identity version information and the corresponding authority access information from preset context information according to the second identity version information and the access authority information corresponding to the second identity version information.
Optionally, when the first identity version information and the second identity version information are inconsistent, it is indicated that the target access right information of the target user is changed, and the second identity version information and the access right information corresponding to the second identity version information are updated to preset context information corresponding to the target user, so that the latest identity version information and the access right information corresponding to the latest identity version information of the target user are stored in the preset context information.
S402, acquiring target access right information from preset context information.
In the embodiment of the application, when the identity version information of the target user is changed, the preset context information is updated according to the latest identity version information and the authority model context information corresponding to the latest identity version information, so that the safety of access of the preset service application is ensured.
On the basis of the foregoing embodiments, the present application further provides a fifth method for accessing page resources, and fig. 5 is a schematic flow chart of the fifth method for accessing page resources provided in the embodiment of the present application, as shown in fig. 5, where the method further includes:
s501, determining a second page resource from the pages of the target sub-service application according to the target access right information.
The preset application service also comprises a plurality of sub-service applications, and the plurality of sub-applications in the preset service application can be logged in through login information of the target user after logging in the preset service application.
Optionally, determining a sub-service application corresponding to the target access authority information from the preset application service according to the target access authority information of the target user, and determining the second page resource according to the corresponding sub-service application.
S502, jumping to a page of the target sub-service application, and displaying a second page resource in the page of the target sub-service application.
In the embodiment of the application, after the page resource of the preset service application is accessed according to the access authority information of the target user, the sub-service application associated with the preset service application can be accessed according to the access authority information of the target user, so that the utilization rate of the service application is improved.
On the basis of the foregoing embodiment, the present application further provides a sixth method for accessing page resources, and fig. 6 is a flowchart of the sixth method for accessing page resources provided in the embodiment of the present application, as shown in fig. 6, where, as in S501, determining, according to the target access permission information, a second page resource from a page of a target sub-service application includes:
s601, acquiring a permission tree of most target users aiming at target sub-service applications from an authentication server according to target access permission information and the identification of the target sub-service applications.
The authority tree is all authority information of a target user in the service subsystem, all menu resources, page resources and button resources which can be accessed by the target user in the service subsystem can be obtained through the authority tree, the authority tree displays the authority of the target user in the service subsystem through a tree structure, and each node in the authority tree represents the authority corresponding to one page resource or the authority corresponding to a sub-page resource.
Optionally, determining the authority tree of the target user for the target sub-service application from a plurality of resources stored in advance by the authentication server according to the target access authority information of the target user and the identification of the target sub-service application.
S602, determining a second page resource from the page resources of the target business sub-application according to the page resource authority tree and the authority tree of the target business sub-application.
The page resource authority tree is authority information corresponding to all the menu resources, page resources and button resources accessed in the preset service application, and the authority required for accessing the page resources and sub-pages is displayed through the tree structure. Each node represents a right corresponding to a page resource or a right corresponding to a sub-page resource.
Optionally, determining the page resource authority tree of the target sub-service application from the page resource authority tree, thereby determining authority information required for accessing the second page resource, and determining the second page resource from the page resource of the target sub-service application according to the target access authority information when the authority tree of the target user stores the authority information required for accessing the second page resource.
In the embodiment of the application, the authority tree of the target user is determined according to the access authority information of the target user, the authority tree of the target user is compared with the page resource authority tree of the target sub-service application, and then the sub-system is accessed according to the comparison result, so that the reliability of the service application is improved.
On the basis of the foregoing embodiment, the present application further provides a seventh page resource access method, and fig. 7 is a flow chart of the seventh page resource access method provided in the embodiment of the present application, as shown in fig. 7, before determining, in S102, the target access permission information that the target user has according to the identifier of the target user and the preset context information corresponding to the page access request, the method further includes:
s701, acquiring login information of a target user.
The login information of the target user at least comprises: a login name, a login password of the target user and a target user identification.
Optionally, when the target user is an old user, the login information of the target user may be obtained from a cookie in the browser, and when the login information of the user is not stored in the cookie in the browser, it is indicated that the user is a new user and needs to input a user name and a user password to log in.
S702, a login request carrying login information is sent to an authentication server, so that the authentication server is used for forwarding the login request to an application server preset with service application, and if a login success message returned by the application server is received, login bill parameters are generated according to the login information of a target user.
Wherein the application server is a computer system preset with a service application and a plurality of service sub-applications, and can process a request from the authentication server and return corresponding responses. The login bill is used for verifying the identity of the target user later, the login bills of different users are different, and the login bill is unique and not repeated.
Optionally, after the authentication server obtains the login information of the target user, the login request and the login information of the target user are sent to an application server preset with a service application, the application server preset with the service application determines whether the login information of the target user for the preset service application is correct according to the login information of the target user, when the login information of the target user for the preset service application is correct, a login success message is returned to the authentication server, and at this time, the authentication server generates a login ticket according to the login information of the target user.
S703, receiving a login success response carrying the login bill parameter sent by the authentication server.
Optionally, after the authentication server passes the authentication, the login ticket parameter generated for the target user and the login success response of the target user sent by the authentication server are received.
S704, sending an authentication request carrying the login bill parameter to an authentication server, so that the authentication server authenticates the login bill.
Optionally, after the login ticket of the target user is obtained, the identity of the target user can be verified through the login ticket and the login information of the target user, and whether the login information of the target user and the login ticket are associated or not is judged, so that the safety of service application is ensured.
In S102, determining the target access right information of the target user according to the identifier of the target user and the preset context information corresponding to the page access request includes:
and S705, if an authentication success response returned by the authentication server is received, determining target access right information according to the identification of the target user and preset context information.
Optionally, when an authentication success response returned by the authentication server is received, it is indicated that the login information and the login ticket of the target user are consistent, at this time, the identifier of the target user is obtained from the login information of the target user, and the target access authority information of the target user is determined from the preset context information according to the identifier of the target user.
In the embodiment of the application, the login information of the target user is verified according to the login information of the target user and the authentication server, so that the target access authority of the target user is obtained according to the login information of the target user and the preset context information, and the security of service application is ensured.
Based on the same inventive concept, the embodiment of the present application further provides a page resource access device corresponding to the page resource access method, and since the principle of solving the problem by the device in the embodiment of the present application is similar to that of the page resource access method in the embodiment of the present application, the implementation of the device may refer to the implementation of the method, and the repetition is not repeated.
Fig. 8 is a schematic structural diagram of a device for accessing page resources according to an embodiment of the present application, as shown in fig. 8, where the device includes: a receiving module 81, a determining module 82, an executing module 83; the receiving module 81 is configured to receive an input page access request for a preset service application, where the page access request includes: the first page resource to be accessed, the required target authority information and the target user identification;
a determining module 82, configured to determine target access right information that the target user has according to the identifier of the target user and preset context information corresponding to the page access request;
and the execution module 83 is configured to jump to a page of the preset service application if the target permission information is in the target access permission information, and display a first page resource in the page of the preset service application.
In a possible implementation manner, the determining module 82 is specifically configured to: determining whether first identity version information is stored in preset context information;
if the first identity version information is not stored in the preset context information, acquiring the latest identity version information and access right information corresponding to the latest identity version information from an authentication server according to the identification of the target user;
updating access right information corresponding to the latest identity version information into preset context information;
and acquiring target access right information from the preset context information.
In a possible implementation manner, the determining module 82 is further configured to: if the first identity version information is stored in the preset context information, acquiring second identity version information and access right information corresponding to the second identity version information from an authentication server according to the identification of the target user;
determining whether the first identity version information and the second identity version information are consistent;
and if the first identity version information is consistent with the second identity version information, acquiring target access right information from preset context information.
In a possible implementation manner, the determining module 82 is further configured to: if the first identity version information and the second identity version information are inconsistent, updating the first identity version information and the corresponding authority access information from preset context information according to the second identity version information and the access authority information corresponding to the second identity version information;
and acquiring target access right information from the preset context information.
In one possible implementation manner, the page resource access device further includes: the second execution module is specifically configured to: receiving an access request for a target sub-service application, which is input through a page of a preset service application;
determining a second page resource from the pages of the target sub-service application according to the target access right information;
and jumping to the page of the target sub-service application, and displaying a second page resource in the page of the target sub-service application.
In a possible implementation manner, the second execution module is specifically configured to: acquiring a permission tree of most target users aiming at the target sub-service application from an authentication server according to the target access permission information and the identification of the target sub-service application;
and determining a second page resource from the page resources of the target business sub-application according to the page resource authority tree and the authority tree of the target business sub-application.
In a possible implementation manner, the receiving module 81 is further configured to: obtaining login information of a target user;
sending a login request carrying login information to an authentication server, enabling the authentication server to forward the login request to an application server preset with service application, and if a login success message returned by the application server is received, generating login bill parameters according to the login information of a target user;
receiving a login success response carrying login bill parameters sent by an authentication server;
and sending an authentication request carrying the login bill parameter to an authentication server, so that the authentication server authenticates the login bill.
In a possible implementation manner, the determining module 82 is specifically configured to: if an authentication success response returned by the authentication server is received, determining target access right information according to the identification of the target user and preset context information.
The process flow of each module in the apparatus and the interaction flow between the modules may be described with reference to the related descriptions in the above method embodiments, which are not described in detail herein.
The embodiment of the application further provides a client device, and fig. 9 is a schematic structural diagram of the client device provided in the embodiment of the application, as shown in fig. 9, which is a schematic structural diagram of the client device provided in the embodiment of the application, including: processor 91, memory 92, and optionally bus 93 may also be included. The memory 92 stores machine readable instructions executable by the processor 91, which when executed by the processor 91 perform the steps of the page resource access method described above, when the client device is running, the processor 91 communicates with the memory 92 via the bus 93.
The embodiments of the present application also provide a computer readable storage medium having stored thereon a computer program which, when executed by a processor, performs the steps of the above-described page resource access method.
It will be clearly understood by those skilled in the art that, for convenience and brevity of description, specific working procedures of the above-described system and apparatus may refer to corresponding procedures in the method embodiments, which are not described in detail in this application. In the several embodiments provided in this application, it should be understood that the disclosed systems, devices, and methods may be implemented in other manners. The above-described apparatus embodiments are merely illustrative, and the division of the modules is merely a logical function division, and there may be additional divisions when actually implemented, and for example, multiple modules or components may be combined or integrated into another system, or some features may be omitted or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be through some communication interface, indirect coupling or communication connection of devices or modules, electrical, mechanical, or other form.
In addition, each functional unit in each embodiment of the present application may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The functions, if implemented in the form of software functional units and sold or used as a stand-alone product, may be stored in a computer-readable storage medium. Based on this understanding, the technical solution of the present invention may be embodied essentially or in a part contributing to the prior art or in a part of the technical solution, in the form of a software product stored in a storage medium, comprising several instructions for causing a computer device (which may be a personal computer, a server, a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a random access Memory (RAM, random Access Memory), a magnetic disk, or an optical disk, or other various media capable of storing program codes.
The foregoing is merely a specific embodiment of the present application, but the protection scope of the present application is not limited thereto, and any person skilled in the art can easily think about changes or substitutions within the technical scope of the present application, and the changes or substitutions are covered in the protection scope of the present application.
Claims (10)
1. A method for accessing a page resource, which is applied to a browser client, the method comprising:
receiving an input page access request aiming at a preset service application, wherein the page access request comprises the following steps: the first page resource to be accessed, the required target authority information and the target user identification;
determining target access right information of the target user according to the identification of the target user and preset context information corresponding to the page access request;
if the target authority information is in the target access authority information, jumping to a page of the preset service application, and displaying the first page resource in the page of the preset service application.
2. The method according to claim 1, wherein the determining, according to the identification of the target user and the preset context information corresponding to the page access request, the target access right information possessed by the target user includes:
determining whether first identity version information is stored in the preset context information;
if the first identity version information is not stored in the preset context information, acquiring the latest identity version information and access right information corresponding to the latest identity version information from an authentication server according to the identification of the target user;
updating the latest identity version information and access right information corresponding to the latest identity version information into the preset context information;
and acquiring the target access right information from the preset context information.
3. The method according to claim 2, wherein the determining the target access right information of the target user according to the identification of the target user and the preset context information corresponding to the page access request further includes:
if the first identity version information is stored in the preset context information, acquiring second identity version information and access right information corresponding to the second identity version information from the authentication server according to the identification of the target user;
determining whether the first identity version information and the second identity version information are consistent;
and if the first identity version information is consistent with the second identity version information, acquiring the target access right information from the preset context information.
4. The method according to claim 3, wherein the determining the target access right information of the target user according to the identification of the target user and the preset context information corresponding to the page access request further includes:
if the first identity version information is inconsistent with the second identity version information, respectively updating the first identity version information and the corresponding authority access information from the preset context information according to the second identity version information and the access authority information corresponding to the second identity version information;
and acquiring the target access right information from the preset context information.
5. The method according to claim 1, wherein the method further comprises:
receiving an access request aiming at a target sub-service application and input through a page of the preset service application;
determining a second page resource from the pages of the target sub-service application according to the target access right information;
and jumping to the page of the target sub-service application, and displaying the second page resource in the page of the target sub-service application.
6. The method of claim 5, wherein determining a second page resource from the pages of the target sub-service application based on the target access rights information comprises:
acquiring a permission tree of most target users aiming at the target sub-service application from an authentication server according to the target access permission information and the identification of the target sub-service application;
and determining the second page resource from the page resources of the target business sub-application according to the page resource authority tree of the target business sub-application and the authority tree.
7. The method according to claim 1, wherein before determining the target access right information of the target user according to the identification of the target user and the preset context information corresponding to the page access request, the method further comprises:
acquiring login information of the target user;
sending a login request carrying the login information to an authentication server, so that the authentication server is used for forwarding the login request to an application server preset with service application, and if a login success message returned by the application server is received, generating login bill parameters according to the login information of the target user;
receiving a login success response carrying the login bill parameter sent by the authentication server;
sending an authentication request carrying the login bill parameter to the authentication server, so that the authentication server authenticates the login bill;
the determining the target access right information of the target user according to the identification of the target user and the preset context information corresponding to the page access request comprises the following steps:
and if an authentication success response returned by the authentication server is received, determining the target access right information according to the identification of the target user and the preset context information.
8. A page resource access device, the device comprising:
the receiving module is used for receiving an input page access request aiming at a preset service application, and the page access request comprises: the first page resource to be accessed, the required target authority information and the target user identification;
the determining module is used for determining target access right information of the target user according to the identification of the target user and preset context information corresponding to the page access request;
and the execution module is used for jumping to the page of the preset service application if the target authority information is in the target access authority information, and displaying the first page resource in the page of the preset service application.
9. A client device, comprising: a processor, a storage medium and a bus, the storage medium storing program instructions executable by the processor, the processor and the storage medium communicating over the bus when the client device is running, the processor executing the program instructions to perform the steps of the page resource access method of any one of claims 1 to 7.
10. A computer readable storage medium, characterized in that the storage medium has stored thereon a computer program which, when executed by a processor, performs the steps of the page resource access method according to any of claims 1 to 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311722622.0A CN117763582A (en) | 2023-12-14 | 2023-12-14 | Page resource access method and device, client device and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311722622.0A CN117763582A (en) | 2023-12-14 | 2023-12-14 | Page resource access method and device, client device and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117763582A true CN117763582A (en) | 2024-03-26 |
Family
ID=90315506
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311722622.0A Pending CN117763582A (en) | 2023-12-14 | 2023-12-14 | Page resource access method and device, client device and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117763582A (en) |
-
2023
- 2023-12-14 CN CN202311722622.0A patent/CN117763582A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3044987B1 (en) | Method and system for verifying an account operation | |
| CN101771532B (en) | Method, device and system for realizing resource sharing | |
| CN109873805B (en) | Cloud desktop login method, device, equipment and storage medium based on cloud security | |
| CN105592065B (en) | A kind of Website logging method and its login system based on SMS | |
| US9654480B2 (en) | Systems and methods for profiling client devices | |
| US9973513B2 (en) | Method and apparatus for communication number update | |
| US20100077467A1 (en) | Authentication service for seamless application operation | |
| US8694993B1 (en) | Virtualization platform for secured communications between a user device and an application server | |
| CN103581108A (en) | Login authentication method, login authentication client, login authentication server and login authentication system | |
| CN113271296B (en) | Login authority management method and device | |
| US11995176B2 (en) | Platform for generation of passwords and/or email addresses | |
| CN109726578B (en) | Dynamic two-dimensional code anti-counterfeiting solution | |
| US20220200999A1 (en) | Authentication Using Device and User Identity | |
| CN111818088A (en) | Authorization mode management method and device, computer equipment and readable storage medium | |
| CN107666470B (en) | Verification information processing method and device | |
| CN112887284B (en) | Access authentication method and device, electronic equipment and readable medium | |
| CN110875899B (en) | Data processing method, system and network system | |
| CN111988275A (en) | Single sign-on method, single sign-on server cluster and electronic equipment | |
| CN102143131A (en) | User logout method and authentication server | |
| CN116015824A (en) | Unified authentication method, equipment and medium for platform | |
| CN112118238A (en) | Method, device, system, equipment and storage medium for authentication login | |
| CN111092864B (en) | Session protection method, device, equipment and readable storage medium | |
| CN108924149B (en) | Token-based identity validity verification method and system | |
| CN117763582A (en) | Page resource access method and device, client device and storage medium | |
| CN115567271A (en) | Authentication method and device, page skip method and device, electronic equipment and medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |