CN1403983A - Resource access authorizing method and system - Google Patents
Resource access authorizing method and system Download PDFInfo
- Publication number
- CN1403983A CN1403983A CN 01131497 CN01131497A CN1403983A CN 1403983 A CN1403983 A CN 1403983A CN 01131497 CN01131497 CN 01131497 CN 01131497 A CN01131497 A CN 01131497A CN 1403983 A CN1403983 A CN 1403983A
- Authority
- CN
- China
- Prior art keywords
- user
- resource
- data
- end device
- authoring
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
When the terminal is connected to the resource system established by the application software service supplier, the system makes the application software service supplier authorize the terminal to access resource interactively and the system has data base for distinguishing the personality of user presenting a request and the use account of the application software. The resource access authorizing process includes the steps of: the system to receive the information from the user's termina; the system to compare in the data base to search the required data; the system to send some "no log-in" information to the terminal for the user to re-present a request in case of no required data in the data base; and when the system finds the required data, the user to send the account to the system and to transmit the information by the resource system produced to the terminal.
Description
Technical field
The invention relates to a kind of authorization method and system of resource access, more detailed it, be interactive access method and the system that makes software service supplier authorization terminal device carry out resource transmission with it about a kind of.
Background technology
Because electronic information and the Internet system fast development make the traditional commerce activity can finish actual trading activity down via interaction between computing machine and communication network and application.Therefore, the enterprise of carrying out business automation now promptly imports a cover Enterprise Resources Planning (EnterpriseResource Planning, system ERP) integrating the infosystem of enterprises all departments, and uses Enterprise Resource effectively.
The application software service supplier of many ERP system (Application ServiceProvider, ASP) by the mode of a website interface is provided, their application software of existing client/server is placed on the website, so that with ERP product mandate commercial accounts by a kind of safe, mode is directly submitted order to reliably, and the relevant data of access.Some products in addition then authorize business partner by information is provided access and self-service order transaction, promote mutual relation.And present Si Aipu system software company (the being designated hereinafter simply as SAP system software company) leading position that promptly occupies ERP system software, and also make its application software websiteization.Wherein, R/3 Internet Application Components is about to the operation program and is attached to world-wide web, for example after business partner fills commodity with virtual shopping cart, can apply for an independently price list, can check that also whether all commodity all in stock, and when just can be sent.All these information can obtain by an interface that is attached to the R/3 database, and other module of R/3 also can receive the transaction that sends by the website in the R/3 of execution system.
When the user desires software that this type of ERP system software of access dealer provided, generally need finish following steps: the first, in advance prior to the Front End that is provided by ERP system software dealer is installed in the end device separately; The second, in the customer database that ERP system software dealer is provided, set up user's authority data; The 3rd, pay to buy use authority to ERP system software dealer.
Because each user needs to install in advance the Front End in order to access ERP system software in end device separately, and buy use authority to ERP system software dealer, so except that the expense that makes the more purchase use authorities of corporate payments, simultaneously, also improve the cost that Front End is installed and disposed relatively.
Therefore, how reducing corporate payments application software service supplier's the expense of licensing, simplify installation, deployment process to Front End simultaneously, to reduce enterprise cost, promptly is the problem that needs solution at present.
Summary of the invention
In order to overcome the deficiencies in the prior art, fundamental purpose of the present invention is to provide a kind of authorization method and system of resource access, and it can reduce the expense of licensing of the access application software service supplier's of enterprise the required payment of Application and Development software.
Another object of the present invention is to provide a kind of authorization method and system of resource access, it can simplify the access application software service supplier's of enterprise the required installation of application software, the handling procedure of deployment Front End.
In order to achieve the above object, the invention provides a kind of authorization method and system of resource access.The authorization method of the resource access of invention, be to be applied in the resource system that the end device network connections is set up to the application software service supplier, make this application software service supplier authorization terminal device carry out the interactive access of resource transmission with it by this authoring system, and this authoring system is had in order to the user who proposes the request of logining is discerned user's database of many user's data of status, and the use account number of the resource system set up of this application software service of authorized user's access supplier, it may further comprise the steps: 1) receive user's data that user imports from end device by this authoring system; 2) compare with user's data that end device was transmitted in user's database by this authoring system, if when not having user's data in user's database and user's data that end device is transmitted conforming to, then proceed step 3), if when user's data being arranged and user's data that end device is transmitted conforming to, then skip to step 4); 3) transmit the information that to login resource system to end device by this authoring system, and make the user who the is positioned at end device request of re-entering login user's data of resource system, return step 1) then; 4) transmitting one by this authoring system uses in the resource system that account number set up to this application software service supplier, and the data information that this resource system produced is sent to this end device, can carry out interaction for the user who is positioned at end device with the resource system that this application software service supplier is set up by browser.
The authoring system of resource access of the present invention, it is a kind of authoring system of the resource system that the end device network connections is set up to the software service supplier, the application software that each user's access software service supplier who is positioned at end device is provided, this authoring system comprises: user's database, but in order to set up user's data of the resource system that this application software service of access supplier set up, wherein, all have an exclusive user's title and a password corresponding in each user's data with this user's title; One accepts to login request module, and the user who is positioned at end device in order to reception imports user's data that resource system is logined in request; One checking rights of using module is compared with the user's data in this user's database in order to logining user's data that request module transmits from this acceptance; Request module is logined in one response, in order to respond action according to comparison result from this checking rights of using module, if when the user's data that does not have user's data and this request to login resource system in this user's database conforms to, give the user who is positioned at end device with transmitting the information that to login resource system, and make the user that user's data of resource system is logined in the request of re-entering, if when the user's data that has user's data and this request to login resource system in this user's database conforms to, promptly produce one and can login signal; One information management module, it has one in order to login the use account number of the resource system that this application software service supplier set up, this information management module system one can login signal and the resource system that this application software service supplier is set up transmitted one use account number according to what login from this response that request module transmits, after the resource system that this application software service supplier is set up confirmed to use account number correct, the resource system that end device and this application software service supplier are set up carried out interaction; And an access processing module, in order to the interactive data information that is produced down between processing terminal device and this resource system, so that the data shape form that this resource system transmitted is represented on the browser of end device with form web page.
Wherein, authoring system of the present invention can be selected built-in in a server host.
Advantage of the present invention is: by authorization method of the present invention and system except that can preventing application software that unwarranted client access application software service supplier (ASP) is provided, can also be when minimizing enterprise be to the soft ware authorization reimbursement of expense, the also application software that can be researched and developed by the application software service supplier for multidigit employee access from the world-wide web, and carry out the access interaction with resource system that this application software service supplier is set up.
Description of drawings
The present invention is described in detail below in conjunction with drawings and Examples:
Fig. 1 is a block schematic diagram, and it shows the basic framework calcspar of the authoring system of resource access of the present invention;
Fig. 2 is a schematic flow diagram, the authoring system of its display application resource access of the present invention, and carry out the operation procedure step of the authorization method of resource access.
Symbol description among the figure:
1 end device
2 authoring systems
3 resource systems
10 browsers
20 user's databases
21 accept to login request module
22 checking rights of using modules
Request module is logined in 23 responses
24 information management modules
25 access processing modules
240 use the account number data
Embodiment
See also Fig. 1, it shows the basic framework block schematic diagram of the authoring system of resource access of the present invention.As shown in the figure, the authoring system 2 of present embodiment (person in the frame of broken lines), be built in end device 1 and world wide web (World Wide Web, WWW) between (not icon), this authoring system 2 as same server host, and resource system 3 is the application software that application software service supplier (ASP) is developed, for example the R/3Intemet Application Components system that is provided by SAP system software company.The resource system 3 that this authoring system 2 and application software service supplier are set up is contained in the world wide web, when the user who is positioned at end device 1 desires resource system 3 that this application software service of access supplier set up, at first, the user is input authoring system 2 (being server host) IP address and title on the browser 10 of separately end device 1, just can be linked to authoring system 2, then, through the user that 2 pairs of authoring systems are positioned at end device 1 finish that status is confirmed and with the resource system 3 that this application software service supplier is set up finish use account number affirmation program after, the user gets final product this resource system 3 of access, and this authoring system 2 comprises: user's database 20, one accepts to login request module 21, checking rights of using module 22, request module 23 is logined in response, data management module 24 and access processing module 25.
Wherein, user's database 20, but in order to set up many user's data of the resource system 3 that this application software service of access supplier set up, it is set up in advance by enterprise, for example but enterprise only assigns the resource system 3 that this application software service of part employee access supplier is set up, and all having an exclusive user's title and a password corresponding in each user's data with this user's title, it need be based upon in this authoring system 2 in advance.
Request module 21 is logined in this acceptance, and the user who is positioned at end device 1 in order to reception imports user's data that resource system 3 is logined in request.After end device 1 and these authoring system 2 network connections, authoring system 2 transmits forms immediately to browser 10, the user that order is positioned at end device 1 carries out corresponding action according to forms shown on the browser 10, promptly, the user who is positioned at end device 1 is when browser 10 is keyed in user's data, browser 10 can use HTML (Hypertext Markup Language) (Hyper Text Transfer Protocol, HTTP) host-host protocol, propose to login requirement to authoring system 2, and authoring system 2 just can give appropriate responsive as requested, and shows the relative Webpage material of carrying out after responding.Because the Webpage material that browser, HTTP host-host protocol and end device 1 and authoring system are 2 response is treated to the web technologies of generally knowing, not therefore following will its function and inside structure not being described in further detail.
This checking rights of using module 22, compare with the user's data in this user's database 20 in order to logining user's data that request module 21 transmitted from this acceptance, wherein, this checking rights of using module 22 can be come the user's data in the access user database 20 by SQL (Structured Query Language) program language.
Request module 23 is logined in this response, in order to respond action according to comparison result from this checking rights of using module 22, if checking rights of using module 22 is not looked for user's data when conforming to user's data of asking to login resource system 3 in user's database 20, request module 23 is logined in response will transmit the information that can't login resource system 3 to the user who is positioned at end device 1, and make the user that user's data of resource system 3 is logined in the request of re-entering, if when the user's data that has user's data and request to login resource system 3 in this user's database 20 conforms to, respond and login request module 23 and promptly transmit one and can login signal to information management module 24.
This information management module 24, it has one in order to login the use account number of the resource system 3 that (promptly licensing) this application software service supplier set up, this information management module 24 transmits one to the resource system 3 that this application software service supplier is set up and uses account number according to login the signal logined that request module 23 transmits from this response, after the resource system 3 that this application software service supplier is set up confirmed to use account number correct, the resource system 3 that end device 1 and this application software service supplier are set up carried out the access interaction.
This access processing module 25, between the resource system 3 that end device 1 and this application software service supplier are set up, carry out the data information that produced under the access interaction in order to handle, so that the data form that the resource system 3 that this application software service supplier is set up transmits represents on the browser 10 of end device 1 with form web page.When this resource system 3 for example with XML (eXtensible Markup Language, extend indicating language) indicating language during as the message exchange between the server, this access processing module 25 will obtain in this XML data form data content and label (tag), with the browser 10 of informing end device 1 should as how XML data form present a webpage (web page).
Wherein, this authoring system 2 as same center line (middleware), that is, can link resource system 3 these two different platforms that as shown in Figure 1 end device 1 and this application software service supplier are set up, by authoring system 2, make the user that is positioned at end device 1 by on the shown webpage of browser 10 directly to 3 times access instructions of this resource system, and this resource system 3 according to the user under access instruction carry out action after, transmit execution results to end device 1 by authoring system 2 again.
Need are installed Front End at end device 1 separately in advance, and each user who is positioned at end device all need buy the use authority (use account number) of logining resource system 3 in advance so as to login and the situation of this resource system 3 of access under, by authoring system 2 of the present invention, it initiatively carries out status to the user who desires to login authoring system 2 and confirms, after by status affirmation program, authoring system 2 only uses account number to propose to login and access request to the resource system 3 that this application software service supplier is set up with single pen, each user who is positioned at end device 1 is logined and this resource system 3 of access.Therefore, authoring system 2 of the present invention can reduce enterprise really to using the buying expenses that the software service supplier pays use authority (use account number), also simplifies installation and deployment program to Front End simultaneously, thereby significantly reduces enterprise cost.
See also Fig. 2, the authoring system 2 of its display application resource access of the present invention, and carry out the operation procedure step of the authorization method of resource access.Below see also Fig. 1, Fig. 2 to cooperate explanation.
At first, carry out step S1, obtain user's data that the user is imported by browser 10 from end device 1, then carry out step S2 by accepting to login request module 21.
In step S2, according to comparing with the user's data in user's database 20, then carry out step S3 from accepting to login user's data that request module 21 transmitted by checking rights of using module 22.
In step S3, judge by checking rights of using module 22 whether two user's data conform to, when conforming to, then carry out step S5; Otherwise carry out step S4.
In step S4, make response login request module 23 and promptly produce the signal that can't login resource system 3, and make the user who is positioned at end device 1 that user's data of resource system 3 is logined in the request of re-entering to end device 1, then return abovementioned steps S1.
In step S5, make response login request module 23 and promptly produce the signal that can login resource system 3 to information management module 24, then carry out step S6.
In step S6, read its stored by information management module 24 and use account number data 240, and should use the account number data transmission to give resource system 3, through its discern this use account number data correct after, can authorize to propose to login this resource system 3 of end device 1 access of resource system 3 requests, then carry out step S7.
In step S7, receive the data information that is transmitted from this resource system 3 by information management module 24, and be sent to access processing module 25, make this access processing module 25 that the data information of obtaining is presented on the browser 10 of end device 1 with the Webpage material form.Wherein, this access processing module 25 is by the business documentation exchange of XML form, and promptly can be enterprise provides inside and outside operation to integrate.
The above only is preferred embodiment of the present invention; be not in order to limit the scope of essence technology contents of the present invention; so essence technology contents of the present invention broadly is defined in claims; any technology entity or method that other people are finished; if it is identical with the definien of claims institute; or be the change of same equivalence, all will be regarded as being covered by among the protection domain of this patent.
Claims (15)
1. the authorization method of a resource access, be to be applied in the resource system that the end device network connections is set up to the application software service supplier, make this application software service supplier authorize the user who is positioned at end device to carry out the interactive access of resource transmission with it by this authoring system, and make this authoring system have a pair of proposition in advance and login user's database that the user of resource system request discerns many user's data of status, and the use account number of a resource system of being set up by the application software service supplier in order to authorized user's access, it may further comprise the steps:
(1) receives user's data that the user imports from end device by this authoring system;
(2) compare with user's data that end device was transmitted in user's database by this authoring system, if when not having user's data in user's database and user's data that end device is transmitted conforming to, then proceed step (3), if when user's data being arranged and user's data that end device is transmitted conforming to, then skip to step (4);
(3) transmit the information that to login resource system to end device by this authoring system, and make the user who the is positioned at end device request of re-entering login user's data of resource system, return this step (1) then; And
(4) transmit one by this authoring system and use account number to this resource system, and the data information that this resource system produced is sent to this end device, carry out the access interaction for the user and this resource system that are positioned at end device.
2. the authorization method of resource access according to claim 1 is characterized in that: this user's data comprises exclusive user's title and the password corresponding with this user's title.
3. the authorization method of resource access according to claim 1, it is characterized in that: the resource system that this application software service supplier is set up is the ERP system that SAP system software company is provided.
4. the authorization method of resource access according to claim 3, it is characterized in that: this ERP system is R/3 Internet Application Components, and it is in order to be attached to world-wide web with the enterprise operation program.
5. the authorization method of resource access according to claim 1, it is characterized in that: this authoring system is established in server host.
6. the authorization method of resource access according to claim 5, it is characterized in that: this authoring system is a center line.
7. the authorization method of resource access according to claim 1, it is characterized in that: this authoring system and resource system are contained in world wide web.
8. the authoring system of a resource access, it is the resource system that the end device network connections is set up to the application software service supplier, the application software that each this application software service of user's access supplier who is positioned at end device is provided, this authoring system comprises:
One user's database, but in order to set up user's data of this resource system of access;
One accepts to login request module, and user's data of this resource system request is logined in the user's input that is positioned at end device in order to reception;
One checking rights of using module is compared with the user's data in this user's database in order to logining user's data that request module transmits from this acceptance;
Request module is logined in one response, in order to respond action according to comparison result from this checking rights of using module, if when the user's data that does not have user's data and this request to login resource system in this user's database conforms to, give the user who is positioned at end device with transmitting the information that to login resource system, and make the user that user's data of resource system is logined in the request of re-entering, if when the user's data that has user's data and this request to login resource system in this user's database conforms to, promptly produce one and can login signal;
One information management module, it has one in order to login the use account number of this resource system, this information management module transmits one to this resource system and uses account number according to login the signal of logining this resource system that request module transmits from this response, after this resource system confirms to use account number correct, can make end device and this resource system carry out the access interaction;
One access processing module is in order to the data information that is produced under processing terminal device and this resource system interaction, so that the data form that resource system transmitted is presented on the browser of end device with form web page.
9. the authoring system of resource access according to claim 8, it is characterized in that: this form web page is the XML form.
10. the authoring system of resource access according to claim 8 is characterized in that: this user's data comprises exclusive user's title and the password corresponding with this user's title.
11. the authoring system of resource access according to claim 8 is characterized in that: the resource system that this application software service supplier is set up is the ERP system that SAP system software company is provided.
12. the authoring system of resource access according to claim 11 is characterized in that: this ERP system is R/3 Internet Application Components, and it is attached to world-wide web with the enterprise operation program.
13. the authoring system of resource access according to claim 8 is characterized in that: this authoring system is established in server host.
14. the authoring system of resource access according to claim 13 is characterized in that: this authoring system is a center line.
15. the authoring system of resource access according to claim 8 is characterized in that: this authoring system and resource system are contained in world wide web.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB011314974A CN1182481C (en) | 2001-09-12 | 2001-09-12 | Resource access authorizing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB011314974A CN1182481C (en) | 2001-09-12 | 2001-09-12 | Resource access authorizing method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1403983A true CN1403983A (en) | 2003-03-19 |
| CN1182481C CN1182481C (en) | 2004-12-29 |
Family
ID=4670627
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB011314974A Expired - Lifetime CN1182481C (en) | 2001-09-12 | 2001-09-12 | Resource access authorizing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1182481C (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2008025277A1 (en) * | 2006-08-24 | 2008-03-06 | Huawei Technologies Co., Ltd. | Method, system and password management server for managing user password of network device |
| CN102148867A (en) * | 2011-02-09 | 2011-08-10 | 杭州华三通信技术有限公司 | Method and device for accessing page based on user permission |
| CN102279756A (en) * | 2010-06-11 | 2011-12-14 | 英业达股份有限公司 | CPLD (Complex Programmable Logic Device) firmware updating method |
| CN102761416A (en) * | 2011-04-28 | 2012-10-31 | 中华电信股份有限公司 | Cross-platform equipment member verification method and system |
| CN106081464A (en) * | 2016-05-31 | 2016-11-09 | 惠州市精机械设备有限公司 | A kind of intelligent storage equipment and control method thereof |
-
2001
- 2001-09-12 CN CNB011314974A patent/CN1182481C/en not_active Expired - Lifetime
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2008025277A1 (en) * | 2006-08-24 | 2008-03-06 | Huawei Technologies Co., Ltd. | Method, system and password management server for managing user password of network device |
| CN102279756A (en) * | 2010-06-11 | 2011-12-14 | 英业达股份有限公司 | CPLD (Complex Programmable Logic Device) firmware updating method |
| CN102148867A (en) * | 2011-02-09 | 2011-08-10 | 杭州华三通信技术有限公司 | Method and device for accessing page based on user permission |
| CN102761416A (en) * | 2011-04-28 | 2012-10-31 | 中华电信股份有限公司 | Cross-platform equipment member verification method and system |
| CN106081464A (en) * | 2016-05-31 | 2016-11-09 | 惠州市精机械设备有限公司 | A kind of intelligent storage equipment and control method thereof |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1182481C (en) | 2004-12-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1317847C (en) | Information service system using bar code and method thereof | |
| US20040158746A1 (en) | Automatic log-in processing and password management system for multiple target web sites | |
| US7421731B2 (en) | Transparent authentication using an authentication server | |
| US20030040995A1 (en) | Benefit provider system and method | |
| US20040068568A1 (en) | Enterprise application platform | |
| US20020059369A1 (en) | Method and apparatus for creating and distributing non-sensitized information summaries to users | |
| US20010037265A1 (en) | Method and apparatus for on-line retailing of insurance goods and services | |
| CN1184290A (en) | Method and apparatus for performing computer-based on-line commerce using in intelligent agent | |
| US8150847B2 (en) | System and method to transform results of client requests using client uploaded presentation formats | |
| CN1267380A (en) | Method and system for conducting electronic commerce transactions | |
| NZ523826A (en) | System and method for integrating public and private data | |
| WO2001082183A2 (en) | Masking private billing data by assigning other billing data to use in commerce with businesses | |
| KR100372336B1 (en) | Network-based employee portal service system | |
| JP4267921B2 (en) | System for selectively enabling and disabling access to software applications across a network and method of use thereof | |
| US20040019630A1 (en) | Method and apparatus for processing workflow through a gateway | |
| CN1182481C (en) | Resource access authorizing method and system | |
| US8738517B2 (en) | Authentication data-enabled transfers | |
| US20040236674A1 (en) | Real-time credit authorization in e-commerce | |
| US20040073491A1 (en) | Off-line buying authentication system and method | |
| US6925459B2 (en) | Apparatus and method for hindering multiple http submission requests | |
| WO2001075657A2 (en) | An e-commerce based method and system for manufacturer hosting of virtual dealer stores and method for providing a systemization of machine parts | |
| JP2000285183A (en) | System and method for distributed www link inventory information management | |
| US20020152131A1 (en) | System and method for intermediating electronic commerce | |
| KR20000036491A (en) | System and Method for Operating a Cyber Landed Property Development Business | |
| JP2001351024A (en) | Method and device for settlement, settlement device switching method, and recording medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| ASS | Succession or assignment of patent right |
Owner name: I VALLEY HOLDINGS CO., LTD. Free format text: FORMER OWNER: YINGYEDA CO., LTD., TAIWAN Effective date: 20150720 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20150720 Address after: Cayman Islands, George Town Patentee after: IValley Holding Co., Ltd. Address before: Taiwan, China Patentee before: Inventec Corporation |
|
| CX01 | Expiry of patent term |
Granted publication date: 20041229 |
|
| CX01 | Expiry of patent term |