JP2021086565A - Information processing apparatus, method for controlling information processing apparatus, program, and information processing system - Google Patents

Abstract

To provide an information processing apparatus, a method for controlling the information processing apparatus, a program, and an information processing system that can prevent registration of an account not expected by an administrator.SOLUTION: An authentication service device receives a user creation request including account information and requesting creation of a user account (S101), determines whether the received account information satisfies a condition according to an organization (permission domain) (S104), when the information satisfies the condition, determines if a mail address of the account information does not overlap another mail address (S105), and when the mail address does not overlap another mail address, creates a user account (S106).SELECTED DRAWING: Figure 9

Description

The present invention relates to an information processing device, a control method for the information processing device, a program, and an information processing system.

Among various devices such as an image forming apparatus, there is a device that has an application platform and can appropriately install an application program (hereinafter, referred to as “application”) developed on the application platform.

Some of the apps installed on the device are new by linking with external services provided via networks such as the Internet (for example, cloud services and network services called ASP (Application Service Provider)). There are also apps that can provide new added value.

For example, in the case of an application installed on an image forming device, there is an application that uploads image data scanned from a document by the image forming device to cloud storage (an example of a storage area connected via a network).

According to Patent Document 1, when the image forming apparatus uses a plurality of external services, the image forming apparatus accepts inputs such as an e-mail address and a user ID, and registers a user account in the external service to provide the image forming apparatus. A technique for making a service easily available by operation is disclosed.

However, in the technique of Patent Document 1, in a tenant (service usage environment) to which a plurality of users belong, one user is registered in duplicate, or an administrator is registered with an undesired e-mail address. There was a problem that an unexpected account registration might be performed.

The present invention has been made in view of the above, and provides an information processing device, a control method for the information processing device, a program, and an information processing system capable of preventing registration of an account that the administrator does not expect. The purpose is to do.

In order to solve the above-mentioned problems and achieve the object, the present invention has a receiving unit that includes account information and receives a creation request requesting the creation of a user account from the device, and the receiving unit that receives the request. It also includes a creation unit that creates a user account when the account information included in the user creation request satisfies the conditions according to the organization.

According to the present invention, it is possible to prevent the registration of an account that the administrator does not expect.

FIG. 1 is a configuration diagram showing an example of an information processing system. FIG. 2 is a block diagram showing an example of a hardware configuration such as a PC. FIG. 3 is a block diagram showing an example of the hardware configuration of the MFP. FIG. 4 is a block diagram showing an example of the functional configuration of the information processing system. FIG. 5 is a diagram showing an example of a domain registration screen. FIG. 6 is a diagram showing an example of information associated with the tenant ID. FIG. 7 is a sequence diagram showing an example of a user account creation process of the information processing system. FIG. 8 is a diagram showing an example of screen transitions displayed on the operation panel of the MFP. FIG. 9 is a flowchart showing an example of the user account creation process of the authentication service device.

The information processing apparatus, the control method of the information processing apparatus, the program, and the embodiment of the information processing system will be described in detail with reference to the accompanying drawings.

(Configuration of information processing system)
FIG. 1 is a configuration diagram showing an example of the information processing system of the present embodiment. The information processing system 1 is a system including a plurality of information processing devices that provide different types of services. The information processing system 1 includes a user system 2, a service providing system 3, and a cloud storage 14. The user system 2, the service providing system 3, and the cloud storage 14 are connected to each other via the network N.

The user system 2 is a system including various devices operated by the user. In this embodiment, the user system 2 includes an MFP 10 and a PC 12.

The MFP 10 is a multifunction device (MFP: Multifunction Peripheral) having functions such as a copy, a scanner, and a printer. The MFP 10 is an example of a "device".

In this embodiment, the MFP 10 includes a Web browser 10A executed by a CPU or the like. The user who operates the MFP 10 can use the service provided by the service providing system 3 and the cloud storage 14 via the Web browser 10A.

The PC 12 is a device operated by a user of the MFP 10 included in the user system 2. PC12 is, for example, a known personal computer. Further, the PC 12 may be a portable device. In this case, the PC 12 is, for example, a mobile terminal, a tablet PC, a notebook PC, a smartphone, or the like. The PC 12 may be a device operated by the manager of the tenant.

In this embodiment, the PC 12 includes a Web browser 12A executed by a CPU or the like. The user who operates the PC 12 can use the service provided by the service providing system 3 and the cloud storage 14 via the Web browser 12A.

Although FIG. 1 shows a configuration in which the user system 2 includes one MFP 10 and one PC 12, the number of devices included in the user system 2 can be arbitrarily changed. For example, the user system 2 may be configured to include one or more MFPs 10 and one or more PC12s.

The cloud storage 14 is a computer system that provides a service of renting out storage (storage area) via a network.

The service providing system 3 is a system that provides a plurality of types of services. For example, the service providing system 3 provides a print service, a scan service, a mail service, and the like. In the following description, the print service and the scan service may be generically described as "MFP service".

In the present embodiment, the service providing system 3 includes a device cooperation service device 16, an authentication service device 18, and an input / output service device 20. The device cooperation service device 16, the authentication service device 18, and the input / output service device 20 are examples of the “information processing device”.

The device cooperation service device 16 provides a service for facilitating the use of the cloud storage 40 to which the service providing system 3 is linked. The authentication service device 18 provides authentication services such as user authentication of the service providing system 3 and authentication for the MFP 10 to cooperate with the cloud storage 14.

The input / output service device 20 provides services necessary for executing the cooperation processing between the service providing system 3 and the cloud storage 14.

The service providing system 3 may be configured by one information processing device (computer system), and one information processing device may provide one or a plurality of services.

It is assumed that the information processing system 1 uses an API-approved standard technology called OAuth. The service providing system 3 corresponds to an OAuth consumer. The cloud storage 14 corresponds to an OAuth service provider (SP).

Further, it is assumed that the cloud storage 14 exposes WebAPI (Application Programming Interface). Therefore, the user can use the resource stored in the cloud storage 14 and the service that handles the resource within the scope of his / her authority through WebAPI.

Further, the device that provides each service in the service providing system 3 is stored in the cloud storage 14 within the range of the authority delegated by the user by using the authorization token based on the authority delegated by the user. It is possible to use resources and services that handle those resources.

(Hardware configuration of each device in the information processing system)
Next, the hardware configuration of each device included in the information processing system 1 will be described. Here, the hardware configuration of the PC 12 included in the user system 2 will be described as an example, but the device cooperation service device 16, the authentication service device 18, and the input / output service device 20 included in the service providing system 3 are also the same as the PC 12. It has a configuration. FIG. 2 is an example of a hardware configuration diagram of the PC12.

The PC 12 includes a CPU 201, a ROM 202, a RAM 203, an HD204, an HDD (Hard Disk Drive) controller 205, a display 206, an external device connection I / F (Interface) 208, a network I / F 209, a bus line 210, a keyboard 211, and a pointing device 212. It is equipped with a DVD-RW (Digital Versatile Disk Rewritable) drive 214 and media I / F 216.

Of these, the CPU 201 controls the operation of the entire PC 12. The ROM 202 stores a program used to drive the CPU 201 such as an IPL. The RAM 203 is used as a work area of the CPU 201. The HD204 stores various data such as programs. The HDD controller 205 controls reading or writing of various data to the HD 204 according to the control of the CPU 201.

The display 206 displays various information such as cursors, menus, windows, characters, or images. The external device connection I / F 208 is an interface for connecting various external devices. The external device in this case is, for example, a USB (Universal Serial Bus) memory, a printer, or the like.

The network I / F 209 is an interface for performing data communication using a communication network. The bus line 210 is an address bus, a data bus, or the like for electrically connecting each component such as the CPU 201 shown in FIG.

Further, the keyboard 211 is a kind of input means including a plurality of keys for inputting characters, numerical values, various instructions and the like. The pointing device 212 is a kind of input means for selecting and executing various instructions, selecting a processing target, moving a cursor, and the like.

The DVD-RW drive 214 controls reading or writing of various data to the DVD-RW 213 as an example of the removable recording medium. In addition, it is not limited to DVD-RW, and may be DVD-R or the like. The media I / F 216 controls reading or writing (storage) of data to a recording medium 215 such as a flash memory.

(Hardware configuration of MFP)
Next, the hardware configuration of the MFP 10 included in the user system 2 will be described. FIG. 3 is a hardware configuration diagram of the MFP 10. The MFP 10 includes a controller 110, a short-range communication circuit 120, an engine control unit 130, an operation panel 140, and a network I / F 150.

Of these, the controller 110 is a CPU 101, a system memory (MEM-P) 102, a north bridge (NB) 103, a south bridge (SB) 104, an ASIC (Application Specific Integrated Circuit) 106, and a storage unit, which are the main parts of a computer. It has a local memory (MEM-C) 107, an HDD controller 108, and a storage unit HD109, and has a configuration in which the NB 103 and the ASIC 106 are connected by an AGP (Accelerated Graphics Port) bus 121.

Of these, the CPU 101 is a control unit that controls the entire MFP 10. The NB 103 is a bridge for connecting the CPU 101, the MEM-P102, the SB 104, and the AGP bus 121, and includes a memory controller that controls reading and writing to the MEM-P102, a PCI (Peripheral Component Interconnect) master, and an AGP target. Has.

The MEM-P102 includes a ROM 102a which is a memory for storing programs and data that realizes each function of the controller 110, and a RAM 102b used as a memory for developing programs and data and a memory for drawing at the time of memory printing.

The program stored in the RAM 102b is configured to be recorded and provided on a computer-readable recording medium such as a CD-ROM, CD-R, or DVD in an installable format or an executable format file. You may.

The SB 104 is a bridge for connecting the NB 103 to a PCI device and peripheral devices. The ASIC 106 is an IC (Integrated Circuit) for image processing applications having hardware elements for image processing, and has a role of a bridge connecting the AGP bus 121, the PCI bus 122, the HDD controller 108, and the MEM-C107, respectively.

The ASIC 106 is a PCI target and an AGP master, an arbiter (ARB) which is the core of the ASIC 106, a memory controller that controls the MEM-C107, and a plurality of DMACs (Direct Memory Access Controllers) that rotate image data by hardware logic and the like. , And a PCI unit that transfers data between the scanner unit 131 and the printer unit 132 via the PCI bus 122.

A USB (Universal Serial Bus) interface or an IEEE 1394 (Institute of Electrical and Electronics Engineers 1394) interface may be connected to the ASIC 106.

The MEM-C107 is a local memory used as a copy image buffer and a code buffer. The HD109 is a storage for accumulating image data, accumulating font data used at the time of printing, and accumulating forms.

The HD109 controls reading or writing of data to the HD109 according to the control of the CPU 101. The AGP bus 121 is a bus interface for a graphics accelerator card proposed for speeding up graphic processing, and the graphics accelerator card can be speeded up by directly accessing the MEM-P102 with high throughput. ..

Further, the short-range communication circuit 120 includes a short-range communication circuit 120a. The short-range communication circuit 120 is a communication circuit such as NFC or Bluetooth (registered trademark).

Further, the engine control unit 130 is composed of a scanner unit 131 and a printer unit 132. Further, the operation panel 140 displays a panel display unit 140a such as a touch panel that displays the current setting value, a selection screen, and the like and accepts input from the operator, and a setting value of a condition related to image formation such as a density setting condition. It is provided with an operation panel 140b including a numeric keypad for receiving and a start key for receiving a copy start instruction.

The controller 110 controls the entire MFP 10, and controls, for example, drawing, communication, input from the operation panel 140, and the like. The scanner unit 131 or the printer unit 132 includes an image processing portion such as error diffusion and gamma conversion.

The MFP 10 can sequentially switch and select the document box function, the copy function, the printer function, and the facsimile function by the application switching key on the operation panel 140.

When the document box function is selected, the document box mode is set, when the copy function is selected, the copy mode is set, when the printer function is selected, the printer mode is set, and when the facsimile mode is selected, the facsimile mode is set.

Further, the network I / F 150 is an interface for performing data communication using a communication network. The short-range communication circuit 120 and the network I / F 150 are electrically connected to the ASIC 106 via the PCI bus 122.

(Information processing system function)
Next, the function of the information processing system 1 will be described. FIG. 4 is a block diagram showing an example of the functional configuration of the information processing system.

First, the function of the MFP 10 will be described. The MFP 10 includes a display control unit 100A, a reception unit 100B, and a communication unit 100C.

The display control unit 100A controls the display of the screen on the display unit (panel display unit 140a in this example). In the present embodiment, the display control unit 100A controls the panel display unit 140a to display the screen generated by the screen management unit 160B received from the device cooperation service device 16.

For example, the display control unit 100A controls the display of the e-mail address input screen on the panel display unit 140a. The e-mail address input screen is a screen for inputting an e-mail address for creating a user account of the service providing system 3. The "email address" is an example of "account information", and the "email address" may be another identifier such as a character string other than the email address.

Further, the display control unit 100A controls to display the login screen. The login screen is a screen for logging in to the service providing system 3. Further, the display control unit 100A controls to display a screen (a screen for notifying the user of the progress of printing or scanning, etc.) necessary for providing the MFP service.

The reception unit 100B accepts input from the user. In the present embodiment, the reception unit 100B receives an input from the operation panel 140b or the like. For example, the reception unit 100B receives the e-mail address input by the user via the e-mail address input screen. In addition, the reception unit 100B accepts the e-mail address and password entered by the user via the login screen.

Further, the reception unit 100B receives an application execution instruction which is information for instructing the device cooperation service device 16 to execute the application. The application execution instruction includes information on the e-mail address of the user who is logged in to the service providing system 3. Further, in the case of an application that requires external cooperation processing, the application execution instruction includes an external cooperation ID that identifies the external cooperation processing.

The communication unit 100C communicates with various devices via the network. The communication unit 100C transmits the e-mail address received by the reception unit 100B to the device cooperation service device 16. In the present embodiment, the communication unit 100C transmits the serial number of the MFP 10 to the device cooperation service device 16 together with the e-mail address received by the reception unit 100B.

Further, the communication unit 100C transmits the login information to the device cooperation service device 16. The login information includes an email address, a password and the serial number of the MFP10. Further, the communication unit 100C receives a screen from the device cooperation service device 16. Further, the communication unit 100C transmits an application execution instruction to the device cooperation service device 16. The communication unit 100C is an example of a "transmission control unit" of the device.

In the present embodiment, the functions of the display control unit 100A, the reception unit 100B, and the communication unit 100C described above are realized by the CPU 201 executing a program stored in the ROM 202 or the like, but are limited thereto. is not it. For example, at least a part of the functions of the display control unit 100A, the reception unit 100B, and the communication unit 100C described above may be realized by a dedicated hardware circuit.

The program executed by the MFP 10 of the present embodiment is a file in an installable format or an executable format and can be read by a computer such as a CD-ROM, a flexible disk (FD), a CD-R, or a DVD (Digital Versatile Disk). It may be configured to be recorded and provided on various recording media.

Further, the program executed by the MFP 10 of the present embodiment may be stored on a computer connected to a network such as the Internet and provided by downloading via the network. Further, the program executed by the MFP 10 of the present embodiment may be configured to be provided or distributed via a network such as the Internet.

Next, the function of the device cooperation service device 16 will be described. The device cooperation service device 16 includes a communication unit 160A, a screen management unit 160B, a user creation request unit 160C, an authentication request unit 160D, and an input / output processing request unit 160E.

Further, the device cooperation service device 16 is equipped with an application for providing the MFP service. In the present embodiment, the application is mounted on the device cooperation service device 16, but the device on which the application is mounted is not limited to this. For example, the application may be mounted on the authentication service device 18.

The application can realize the cooperative processing by providing the service in cooperation with the service provided by the cloud storage 14 and the MFP 10. In this case, the device cooperation service device 16 can access the cloud storage 14 and realize the cooperation process by acquiring the authentication token for accessing the cloud storage 14 from the cloud storage 14.

The communication unit 160A communicates with various devices via the network. In the present embodiment, the communication unit 160A receives an e-mail address from the MFP 10. Further, the communication unit 160A receives the login information from the MFP 10. Further, the communication unit 160A receives the application execution instruction from the MFP 10.

The screen management unit 160B generates an image displayed by the device. Further, the screen management unit 160B transmits the created screen to the MFP 10. In the present embodiment, the screen management unit 160B generates a screen to be displayed on the panel display unit 140a of the MFP 10.

For example, the screen management unit 160B generates an e-mail address input screen for creating an account of the service providing system 3. Further, the screen management unit 160B generates a login screen for the user to log in to the service providing system 3. Further, the screen management unit 160B also generates a screen necessary for providing the MFP service.

Then, the screen management unit 160B transmits the generated screen to the MFP 10. As a result, the display control unit 100A of the MFP 10 can control the display of the screen transmitted from the screen management unit 160B.

Upon receiving the e-mail address from the MFP 10, the user creation request unit 160C generates a user creation request indicating information requesting the authentication service device 18 to create a user account. The user creation request includes an email address and the serial number of the MFP 10. The user creation request unit 160C transmits the generated user creation request to the authentication service device 18 via the communication unit 160A.

When the authentication request unit 160D receives the login information input by the user for the login screen from the MFP 10, the authentication request unit 160D indicates a user authentication request indicating information requesting confirmation that the user who requested the login has the authority to use the service providing system 3. To generate. The user authentication request includes login information. The authentication request unit 160D transmits the generated user authentication request to the authentication service device 18 via the communication unit 160A.

Further, when the application execution instruction received from the MFP 10 includes the external cooperation ID, the authentication request unit 160D generates an external cooperation authentication request for confirming whether or not the external cooperation process identified by the external cooperation ID can be executed.

The external cooperation authentication request includes an external cooperation ID, an e-mail address included in the application execution instruction, and a serial number of the MFP 10 that has received the application execution instruction. The authentication request unit 160D transmits the generated external cooperation authentication request to the authentication service device 18 via the communication unit 160A.

When it is confirmed that the input / output processing request unit 160E can execute the external cooperation processing identified by the external cooperation ID, the input / output service device 20 is required to execute the external cooperation processing. Generates an input / output processing request that is information requesting execution of.

The input / output process is a process of inputting / outputting data to / from the cloud storage 14. The input / output process is, for example, a process of downloading data from the cloud storage 14 or uploading data to the cloud storage 14.

In the present embodiment, when the input / output processing request unit 160E confirms that the authentication unit 180H of the authentication service device 18 can execute the external cooperation process identified by the external cooperation ID, the input / output processing request unit 160E causes the input / output service device 20 to execute the external cooperation process. , Generates an input / output processing request that is information requesting execution of input / output processing required to execute external cooperation processing.

The input / output process required to execute the external link processing can be specified by analyzing the scope included in the external link authentication ticket described later.

The input / output processing request unit 160E transmits the generated input / output processing execution request to the input / output service device 20 via the communication unit 160A.

In the present embodiment, each function of the communication unit 160A, the screen management unit 160B, the user creation request unit 160C, the authentication request unit 160D, and the input / output processing request unit 160E executes a program stored in the ROM 202 or the like by the CPU 201. It is realized by doing, but it is not limited to this.

For example, at least some of the above-mentioned functions of the communication unit 160A, the screen management unit 160B, the user creation request unit 160C, the authentication request unit 160D, and the input / output processing request unit 160E are dedicated hardware circuits. It may be a form realized by.

The program executed by the device cooperation service device 16 of the present embodiment is recorded in a computer-readable recording medium such as a CD-ROM, FD, CD-R, or DVD in an installable format or an executable format file. May be configured to provide.

Further, the program executed by the device cooperation service device 16 of the present embodiment may be stored on a computer connected to a network such as the Internet and provided by downloading via the network. Further, the program executed by the device cooperation service device 16 of the present embodiment may be configured to be provided or distributed via a network such as the Internet.

Next, the function of the authentication service device 18 will be described. The authentication service device 18 includes a communication unit 180A, a device number acquisition unit 180B, a tenant identification unit 180C, a verification unit 180D, a user creation unit 180E, an external cooperation setting unit 180F, a password generation unit 180G, an authentication unit 180H, and a domain registration unit 180I. Be prepared.

The communication unit 180A communicates with various devices via the network. The communication unit 180A receives a user creation request from the MFP 10 that includes account information and requests the creation of a user account. In the present embodiment, the communication unit 180A receives the above-mentioned user creation request from the device cooperation service device 16.

Since the MFP 10 is the source of the above-mentioned user creation request, it can be considered that the communication unit 180A has received the above-mentioned user creation request from the MFP 10. The communication unit 180A is an example of a “reception unit” of the information processing device.

The device number acquisition unit 180B acquires device identification information for identifying the device. In the present embodiment, the device number acquisition unit 180B acquires the serial number of the MFP 10 from the user creation request received from the device cooperation service device 16. Further, the device number acquisition unit 180B acquires the serial number of the MFP 10 from the external cooperation authentication request received from the device cooperation service device 16. The serial number of the MFP 10 is an example of "device identification information".

The tenant identification unit 180C identifies the organization from the device identification information. The tenant is a service usage environment, and indicates, for example, an organization that has concluded a usage contract for the service provided by the service providing system 3. The "tenant" is an example of the "organization", and the "tenant" may be replaced with some other group other than the tenant. The tenant specific unit 180C is an example of the “specific unit”.

In the present embodiment, the tenant identification unit 180C specifies the tenant ID of the tenant to which the MFP 10 belongs from the serial number of the MFP 10 acquired by the device number acquisition unit 180B. Specifically, the tenant ID is specified by collating the serial number of the MFP 10 with the device information 204B stored in the HD 204 of the authentication service device 18. The device information 204B will be described later.

The verification unit 180D verifies whether or not the account information included in the user creation request received from the device cooperation service device 16 satisfies the conditions according to the organization. In the present embodiment, the verification unit 180D determines whether or not the e-mail address included in the user creation request received from the device cooperation service device 16 satisfies the user creation condition in the tenant identified by the tenant ID specified by the tenant identification unit 180C. To verify.

The user creation conditions are set by the tenant administrator. That is, different user creation conditions are set in advance for each tenant.

The verification unit 180D verifies whether or not the e-mail address included in the user creation request received from the device cooperation service device 16 has a domain permitted in the organization as a condition according to the organization. The permission domain information 204C used for this verification is registered by the tenant administrator. That is, the permitted domain information 204C is different information for each tenant.

Specifically, the verification unit 180D refers to the permission domain information 204C stored in the HD204 of the authentication service device 18, and the e-mail address included in the user creation request received from the device cooperation service device 16 is the tenant identification unit 180C. Verify whether or not the tenant has the permitted domain in the tenant identified by the tenant ID specified by. The permitted domain information 204C will be described later.

If the e-mail address included in the user creation request received from the device cooperation service device 16 does not have the domain permitted by the tenant identified by the tenant ID specified by the tenant identification unit 180C, the verification unit 180D does not have the domain permitted by the tenant. Generate an instruction to generate a screen that displays an error message to that effect. The verification unit 180D transmits the generated screen generation instruction to the device cooperation service device 16 via the communication unit 180A.

Further, the verification unit 180D determines whether the account information included in the user creation request received from the device cooperation service device 16 corresponds to the account information used for the user account created in the organization as a condition according to the organization. Verify if not.

Specifically, the verification unit 180D refers to the user information 204E stored in the HD204 of the authentication service device 18, and the e-mail address included in the user creation request received from the device cooperation service device 16 is transmitted by the tenant identification unit 180C. It is verified whether or not it corresponds to the registered e-mail address in the tenant identified by the specified tenant ID. The user information 204E will be described later.

In the verification unit 180D, when the e-mail address included in the user creation request received from the device cooperation service device 16 corresponds to the e-mail address registered in the tenant identified by the tenant ID specified by the tenant identification unit 180C. , Generate an instruction to generate a screen that displays an error message to that effect. The verification unit 180D transmits the generated screen generation instruction to the device cooperation service device 16 via the communication unit 180A.

The user creation unit 180E creates a user account when the account information included in the user creation request received by the communication unit 180A satisfies the conditions according to the organization. Further, the user creation unit 180E creates a user account when the e-mail address account information included in the user creation request received by the communication unit 180A satisfies the condition corresponding to the organization specified by the tenant identification unit 180C. ..

For example, the user creation unit 180E creates a user account when the e-mail address included in the user creation request received by the communication unit 180A has a domain permitted by the organization as a condition according to the organization.

Further, for example, in the user creation unit 180E, the account information included in the user creation request received by the communication unit 180A corresponds to the account information used for the user account created in the organization as a condition according to the organization. If not, create a user account.

In the present embodiment, the user creation unit 180E sets the domain permitted by the tenant whose e-mail address included in the user creation request received from the device cooperation service device 16 is identified by the tenant ID specified by the tenant identification unit 180C. If the e-mail address does not correspond to the e-mail address registered in the tenant identified by the tenant ID specified by the tenant identification unit 180C, a user account for using the service providing system 3 is created. The user creation unit 180E is an example of the "creation unit".

The external cooperation setting unit 180F executes the cooperation setting between the service providing system 3 and the external service such as the cloud storage 14. In the present embodiment, the external cooperation setting unit 180F sets the service range of the cloud storage 14 permitted to the user created by the user creation unit 180E. The set contents are stored in the external cooperation information 204D of the HD204 of the authentication service device 18. The external cooperation information 204D will be described later.

The password generation unit 180G generates a password. In the present embodiment, the password generation unit 180G generates a password required for the user created by the user creation unit 180E to log in to the service providing system 3. The password generated by the password generation unit 180G is stored in the user information 204E of HD204 of the authentication service device 18 in association with the tenant ID and the e-mail address.

Further, the password generation unit 180G transmits the generated password to the e-mail address used for creating the user account via the communication unit 180A. The user can log in to the service providing system 3 by entering the e-mail address entered for creating the user and the received password on the login screen displayed on the MFP 10. A PIN code may be used as the password.

When the authentication unit 180H receives the user authentication request from the device cooperation service device 16, the authentication unit 180H authenticates the user. In the present embodiment, the authentication unit 180H stores the e-mail address and password included in the user authentication request received from the device cooperation service device 16 in association with the user information 204E stored in the HD 204 of the authentication service device 18. Judge whether or not.

When stored in association with each other, the authentication unit 180H confirms that the user who requested the login has the authority to use the service providing system 3, and generates a user authentication ticket.

Then, the authentication unit 180H transmits the generated user authentication ticket to the device cooperation service device 16 by the communication unit 180A. The user authentication ticket is information indicating that the login to the service providing system 3 is successful, and is information including the e-mail address of the user who has been confirmed to have the authority to use the service providing system 3.

Further, when the authentication unit 180H receives the external cooperation authentication request from the device cooperation service device 16, the authentication unit 180H performs the external cooperation authentication.

In the present embodiment, in the authentication unit 180H, the tenant ID specified from the external cooperation ID, the e-mail address, and the serial number of the MFP 10 included in the external cooperation authentication request received from the device cooperation service device 16 is the HD204 of the authentication service device 18. It is determined whether or not the external cooperation information 204D stored in is stored in association with the scope and the authentication token.

When stored in association with each other, the authentication unit 180H confirms that the external linkage process identified by the external linkage ID can be executed, and generates an external linkage authentication ticket. Then, the authentication unit 180H transmits the generated external cooperation authentication ticket to the device cooperation service device 16 via the communication unit 180A.

The external linkage authentication ticket is information indicating that the external linkage process identified by the external linkage ID can be executed. The external linkage authentication ticket is information including an external linkage ID and a scope.

The domain registration unit 180I registers the permitted domain information 204C representing the information of the permitted domain in the tenant. The domain registration unit 180I is an example of the "registration unit". The permitted domain registration will be described in detail below. FIG. 5 is a diagram showing an example of a domain registration screen. Allowed domain registration is performed by the tenant administrator.

The tenant administrator displays a login screen for logging in to the service providing system 3 with the tenant ID via the Web browser 12A of the PC 12 of the user system 2. The tenant administrator inputs the tenant ID and password, logs in to the service providing system 3 as the tenant administrator, and displays the domain registration screen via the Web browser 12A.

The tenant administrator can register the domain that is permitted to be created by the user by inputting the domain that is permitted to be created by the user using the keyboard 211 or the like of the PC 12 and pressing the domain registration button. As a result, it is possible to avoid unintended registration by the tenant administrator, such as creating a plurality of accounts by the same user using e-mail addresses including different domains.

Next, the information stored in the HD204 of the authentication service device 18 will be described. Tenant information 204A, device information 204B, permitted domain information 204C, external cooperation information 204D, and user information 204E are stored in HD204 of the authentication service device 18.

Tenant information 204A is information on tenants who use the service providing system 3. In the present embodiment, the tenant information 204A is associated with a tenant ID and a password. In addition to the above, information such as the name of the contracting company (organization) may be included. The tenant administrator can log in to the service providing system 3 as a tenant administrator by using the tenant ID and the password associated with the tenant ID.

The device information 204B is information indicating which tenant the device belongs to. The tenant administrator performs the association between the device and the tenant in advance. In the present embodiment, the device information 204B associates the tenant ID with the serial number of the MFP 10. By acquiring the serial number of the MFP10, it is possible to identify which tenant the MFP10 belongs to.

The permitted domain information 204C is the information of the domain in which the creation of the user is permitted in the tenant. In the present embodiment, the permitted domain information 204C associates the tenant ID with the domain. If the e-mail address has a domain registered in association with the tenant ID specified by the tenant identification unit 180C, the creation of a user is permitted.

The external cooperation information 204D is information indicating the service range of the cloud storage 14 permitted to the user. The external cooperation information 204D is used for external cooperation authentication. In the present embodiment, the external cooperation information 204D is associated with a tenant ID, an e-mail address, an external cooperation ID, a scope, and an authentication token.

Here, in the present embodiment, the external cooperation ID is identification information that identifies the cooperation processing (external cooperation processing) between the service providing system 3 and the cloud storage 14.

The external linkage process includes, for example, an external linkage process for uploading data to the cloud storage 14, an external linkage process for uploading data generated by executing a series of processes such as OCR and stamping on the device linkage service device 16. Examples include processing, external cooperation processing for downloading data stored in the cloud storage 14, and the like. The types of external cooperation processing are not limited to these.

The scope is information that specifies the service range. By analyzing the scope, it is possible to identify the service of the cloud storage 14 required for the external cooperation processing. The scope may be information indicating the service range and the execution authority of the service (for example, uploading a file to the cloud storage 14) indicated by the service range.

Since the external cooperation authentication ticket described above includes a scope, the input / output processing request unit 160E can identify the service of the cloud storage 14 required for the external cooperation processing by analyzing the scope. That is, the input / output processing required for the external cooperation processing can be specified.

Further, the authentication token is a token indicating access permission to the resource provided by the cloud storage 14 and the service that handles the resource. Therefore, the external linkage process identified by the external linkage ID registered in the external linkage information 204D indicates that the external linkage setting is made. The user can use the service provided by the cloud storage 14 within the range in which the external cooperation setting is made.

The user information 204E is information of a user who uses the service providing system 3. The user information 204E is used for authentication when the user logs in to the service providing system 3. In this embodiment, the tenant ID, the e-mail address, and the password are associated with each other. In addition to the above, information such as the user's last name and the user's first name may be included.

FIG. 6 is a diagram showing an example of information associated with the tenant ID. FIG. 6A is a diagram showing an example of device information 204B.

In this figure, the MFP having the serial number of "111111" and the MFP having the serial number of "222222" belong to the tenant identified by the tenant ID "123456", and are identified by the tenant ID "123457". Indicates that the MFP having the serial number of "333333" belongs to the tenant.

FIG. 6B is a diagram showing an example of the permitted domain information 204C. In this figure, the tenant identified by the tenant ID "123456" is allowed to create a user account for the email address including the domain "@ example.com", and the tenant identified by the tenant ID "123457". Indicates that there is no allowed domain.

In this embodiment, the above-mentioned communication unit 180A, device number acquisition unit 180B, tenant identification unit 180C, verification unit 180D, user creation unit 180E, external cooperation setting unit 180F, password generation unit 180G, authentication unit 180H, domain registration unit 180I Each of these functions is realized by the CPU 201 executing a program stored in the ROM 202 or the like, but the present invention is not limited to this.

For example, each of the above-mentioned communication unit 180A, device number acquisition unit 180B, tenant identification unit 180C, verification unit 180D, user creation unit 180E, external cooperation setting unit 180F, password generation unit 180G, authentication unit 180H, and domain registration unit 180I. At least a part of the functions of the above may be realized by a dedicated hardware circuit.

The program executed by the authentication service device 18 of the present embodiment records a file in an installable format or an executable format on a computer-readable recording medium such as a CD-ROM, FD, CD-R, or DVD. May be configured to provide.

Further, the program executed by the authentication service device 18 of the present embodiment may be stored on a computer connected to a network such as the Internet and provided by downloading via the network. Further, the program executed by the authentication service device 18 of the present embodiment may be configured to be provided or distributed via a network such as the Internet.

Next, the function of the input / output service device 20 will be described. The input / output service device 20 is a device that executes external cooperation processing. The input / output service device 20 includes a communication unit 200A and an input / output processing execution unit 200B. The communication unit 200A communicates with various devices via the network. In the present embodiment, the communication unit 200A receives the input / output processing execution request from the device cooperation service device 16.

The input / output process execution unit 200B executes the input / output process in accordance with the input / output process execution request. In the present embodiment, the input / output process execution unit 200B executes the input / output process according to the input / output process execution request received from the device cooperation service device 16.

In the present embodiment, the functions of the communication unit 200A and the input / output processing execution unit 200B described above are realized by the CPU 201 executing the program stored in the ROM 202 or the like, but the present invention is not limited thereto. For example, at least a part of the functions of the communication unit 200A and the input / output processing execution unit 200B described above may be realized by a dedicated hardware circuit.

The program executed by the input / output service device 20 of the present embodiment records a file in an installable format or an executable format on a computer-readable recording medium such as a CD-ROM, FD, CD-R, or DVD. May be configured to provide.

Further, the program executed by the input / output service device 20 of the present embodiment may be stored on a computer connected to a network such as the Internet and provided by downloading via the network. Further, the program executed by the input / output service device 20 of the present embodiment may be configured to be provided or distributed via a network such as the Internet.

Each function of the embodiment described above can be realized by one or more processing circuits. Here, the "processing circuit" in the present specification is a processor programmed to execute each function by software such as a processor implemented by an electronic circuit, or a processor designed to execute each function described above. It shall include devices such as ASIC (Application Specific Integrated Circuit), DSP (digital signal processor), FPGA (field programmable gate array) and conventional circuit modules.

(Processing of information processing system)
Next, the processing of the information processing system 1 will be described. In the service providing system 3 of the present embodiment, the user creation process is performed according to the procedure shown in FIG. FIG. 7 is a sequence diagram showing an example of a user account creation process of the information processing system. As a premise, it is assumed that the panel display unit 140a of the MFP 10 displays an e-mail address input screen that is displayed when "Create user and log in" is selected.

The reception unit 100B of the MFP 10 receives the e-mail address input by the user. The communication unit 100C transmits the e-mail address received by the reception unit 100B and the serial number of the MFP 10 to the device cooperation service device 16 (step S11).

The communication unit 160A of the device cooperation service device 16 receives the e-mail address and the serial number of the MFP 10 from the communication unit 100C of the MFP 10.

The user creation request unit 160C generates a user creation request including the e-mail address included in the user creation request received from the device cooperation service device 16 and the serial number of the MFP 10. The communication unit 160A transmits the user creation request created by the user creation request unit 160C to the authentication service device 18 (step S12).

The communication unit 180A of the authentication service device 18 receives the user creation request from the communication unit 160A of the device cooperation service device 16. The device number acquisition unit 180B acquires the serial number of the MFP 10 from the user creation request received from the device cooperation service device 16 (step S13).

The tenant identification unit 180C identifies the tenant ID from the serial number of the MFP 10 acquired by the device number acquisition unit 180B and the device information 204B stored in the HD 204 of the authentication service device 18 (step S14).

The verification unit 180D collates the tenant ID specified by the tenant identification unit 180C with the permission domain information 204C stored in the HD204 of the authentication service device 18, and permits according to the tenant identified by the specified tenant ID. Identify the domain. Then, the verification unit 180D verifies whether or not the e-mail address included in the user creation request received from the device cooperation service device 16 has the specified permission domain (step S15).

If it is determined that the user does not have the permitted domain as a result of the verification, the verification unit 180D transmits an instruction to generate a display screen of the error message 1 (non-permitted domain error) to the device cooperation service device 16 via the communication unit 180A. (Step S16).

The communication unit 160A of the device cooperation service device 16 receives the display screen generation instruction of the error message 1. The screen management unit 160B generates the error message 1 screen 7004, and the communication unit 160A transmits the error message 1 screen 7004 to the MFP 10. Then, the display control unit 100A of the MFP 10 displays the error message 1 "This e-mail address is not permitted" (step S17).

On the other hand, when it is determined that the user has the specified permission domain as a result of the verification in step S15, the verification unit 180D has the tenant ID specified by the tenant identification unit 180C and the user information 204E stored in the HD204 of the authentication service device 18. And verify whether the email address included in the user creation request received from the device linkage service device 16 overlaps with the email address of the user account created in the tenant identified by the specified tenant ID. (Step S18).

As a result of the verification, if it is determined that the e-mail address of the created user account is duplicated, the verification unit 180D gives an instruction to generate a display screen of error message 2 (duplicate e-mail address error) via the communication unit 180A. It is transmitted to 16 (step S19).

The communication unit 160A of the device cooperation service device 16 receives the display screen generation instruction of the error message 2. The screen management unit 160B generates the error message 2 screen 7005, and the communication unit 160A transmits the error message 2 screen 7005 to the MFP 10. Then, the display control unit 100A of the MFP 10 displays the error message 2 "This e-mail address has already been used" (step S20).

On the other hand, if it is determined that the e-mail address of the created user account does not overlap as a result of the verification in step S18, the user creation unit 180E uses the e-mail address included in the user creation request received from the device cooperation service device 16 to provide the service. Create a new user account for the provision system 3 (step S21).

The external cooperation setting unit 180F executes the cooperation setting between the user account created by the user creation unit 180E and the cloud storage 14 (step S22). The setting contents are stored in HD204 of the authentication service device 18 as external cooperation information 204D.

The password generation unit 180G generates a password for a new user account of the service providing system 3 created by the user creation unit 180E (step S23). The generated password is associated with the e-mail address and stored in HD204 of the authentication service device 18 as user information 204E.

The communication unit 180A transmits the password generated by the password generation unit 180G to the e-mail address of the user account created by the user creation unit 180E (step S24).

Then, the login screen is displayed on the panel display unit 140a of the MFP 10. The user can log in to the service providing system 3 by receiving the password from the authentication service device 18 using the PC 12 or the like and entering the e-mail address entered in the e-mail address input screen and the received password. it can.

Next, the transition of the screen displayed on the operation panel 140b of the MFP 10 will be described. FIG. 8 is a diagram showing an example of screen transitions displayed on the operation panel of the MFP. The login screen 7001 for the service providing system 3 is displayed on the panel display unit 140a of the MFP 10. The login screen 7001 is displayed when the user requests the service provided by the service providing system 3.

When the "Login with e-mail address" button is pressed by the user, the display control unit 100A of the MFP 10 controls to display the pull-down menu 7002.

The pull-down menu includes "Login with e-mail address", "Login with tenant ID", "Login with PIN code", and "Create user and log in". In this example, the case where the user selects "Create user and log in" will be described. When the user presses "Create user and log in", the display control unit 100A controls to display the e-mail address input screen 7003.

When the e-mail address is input by the user, the communication unit 100C transmits the e-mail address to the device cooperation service device 16. Then, the user creation request unit 160C of the device cooperation service device 16 generates a user creation request and transmits it to the authentication service device 18 via the communication unit 160A. The verification unit 180D of the authentication service device 18 that has received the user creation request verifies the e-mail address.

If the e-mail address entered by the user does not have a permitted domain, the display control unit 100A controls to display the error message 1 screen 7004. Further, when the e-mail address input by the user is already registered, the display control unit 100A controls to display the error message 2 screen 7005.

On the other hand, when the user creation unit 180E creates a user as a result of the verification of the verification unit 180D, the display control unit 100A again controls to display the login screen 7001. The user inputs the e-mail address and the received password. The communication unit 100C transmits the login information including the e-mail address and password entered by the user to the device cooperation service device 16.

The authentication request unit 160D of the device cooperation service device 16 transmits an authentication request including login information to the authentication service device 18 via the communication unit 160A. When the authentication unit 180H of the authentication service device 18 succeeds in authentication, the display control unit 100A controls to display the menu screen 7006.

Next, the processing of the authentication service device 18 will be described in detail. FIG. 9 is a flowchart showing an example of the user account creation process of the authentication service device 18.

First, the communication unit 180A receives the user creation request from the device cooperation service device 16 (step S101). As described above, the user creation request includes the e-mail address input on the e-mail address input screen 7003 displayed on the panel display unit 140a of the MFP 10 and the serial number of the MFP 10.

The device number acquisition unit 180B acquires the serial number of the MFP 10 from the user creation request received from the device cooperation service device 16 (step S102). The tenant identification unit 180C refers to the device information 204B stored in the HD204 of the authentication service device 18 and identifies the tenant ID from the serial number of the MFP 10 (step S103).

The verification unit 180D collates the tenant ID specified by the tenant identification unit 180C with the permission domain information 204C stored in the HD204 of the authentication service device 18, and permits according to the tenant identified by the specified tenant ID. Identify the domain. Then, the verification unit 180D verifies whether or not the e-mail address included in the user creation request received from the device cooperation service device 16 has the specified permission domain (step S104).

When the user has the permission domain (step S104: Yes), the verification unit 180D collates the tenant ID specified by the tenant identification unit 180C with the user information 204E stored in the HD204 of the authentication service device 18, and provides a device cooperation service. It is verified whether or not the e-mail address included in the user creation request received from the device 16 overlaps with the e-mail address of the user account created in the tenant identified by the specified tenant ID (step S105).

If it does not overlap with the e-mail address of the created user account (step S105: Yes), the user creation unit 180E is the e-mail address included in the user creation request received from the device cooperation service device 16, and is a new user of the service providing system 3. Create an account (step S106).

The external cooperation setting unit 180F executes the cooperation setting between the user account created by the user creation unit 180E and the cloud storage 14 (step S107). At the same time, the password generation unit 180G generates a password for the user account created by the user creation unit 180E (step S108).

The communication unit 180A transmits the password generated by the password generation unit 180G to the e-mail address used for creating the user account by the user creation unit 180E, and ends this process (step S109).

On the other hand, when the permission domain is not possessed in step S104 (step S104: No), the verification unit 180D transmits the display screen generation instruction of the error message 1 to the device cooperation service device 16 via the communication unit 180A, and this process is performed. (Step S110).

If the e-mail address of the user account created in step S105 is duplicated (step S105: No), the verification unit 180D issues a display screen generation instruction for the error message 2 via the communication unit 180A to the device cooperation service device 16. Is transmitted to, and this process is terminated (step S111).

(Effect of information processing system)
In the information processing system 1 of the present embodiment, the verification unit 180D of the authentication service device 18 verifies whether or not the e-mail address used for creating the user account of the service providing system 3 satisfies the conditions according to the tenant. I do. Then, the user creation unit 180E creates a user account based on the verification result of the verification unit 180D.

Before creating a user account, the verification unit 180D verifies whether or not the e-mail address used for creating the user account satisfies the conditions according to the tenant. Therefore, the information processing system 1 of the present embodiment is a tenant. It is possible to prevent the creation of a user account that is not expected by the administrator of the system.

Further, the information processing system 1 of the present embodiment includes a domain registration unit 180I for registering arbitrary domain information in the permitted domain information 204C representing the information of the permitted domain in the tenant. The verification unit 180D verifies whether or not the e-mail address used for creating the user account has a domain registered in the permitted domain information 204C.

As a result, only email addresses with domains permitted by the tenant administrator will be used to create user accounts, and the same user will create multiple user accounts using multiple email addresses that include different domains. You can prevent the act. That is, the information processing system 1 of the present embodiment can prevent the creation of a user account that the tenant administrator does not anticipate.

Further, the verification unit 180D refers to the user information 204E, which is information in which the e-mail address and the password are associated with each other, and the e-mail address used for creating the user account is used for the user account created in the tenant. Verify whether it corresponds to the email address.

This makes it possible to prevent the same user from creating a plurality of user accounts using the same e-mail address. That is, the information processing system 1 of the present embodiment can prevent the creation of a user account that the tenant administrator does not anticipate.

(Modification example)
In the above-described embodiment, it has been described that the user system 2 of the information processing system 1 includes the MFP 10 and the PC 12, but the MFP 10 may be another device. Examples of the device included in the user system 2 of the information processing system 1 include a projector, an electronic blackboard, a video conferencing system, and the like.

In the above-described embodiment, the verification unit 180D determines that the e-mail address used for creating the user account is "whether or not the tenant has a domain permitted" and "the e-mail address used for the created user account". It was explained that "whether or not it corresponds" is verified, but in addition to these, "whether or not the entered e-mail address actually exists" may be verified.

In this case, the communication unit 180A sends an e-mail stating "Click the URL below to register an account" or the like to the entered e-mail address. The verification unit 180D verifies "whether or not the entered e-mail address actually exists" depending on whether or not the described URL is accessed (if the entered e-mail address does not actually exist, the URL is clicked. Not).

At this time, the verification unit 180D determines that the entered e-mail address does not actually exist if the URL described in the e-mail is not accessed even after a certain period of time has passed. As a result, it is possible to prevent a user account from being created using a non-existent e-mail address due to an input error of the e-mail address or the like.

Although the embodiments of the present invention have been described above, the above-described embodiments are presented as examples and are not intended to limit the scope of the invention. The new embodiment can be implemented in various other forms, and various omissions, replacements, and changes can be made without departing from the gist of the invention. The above-described embodiment and its modifications are included in the scope and gist of the invention, and are also included in the scope of the invention described in the claims and the equivalent scope thereof.

1 Information processing system 2 User system 3 Service provision system 10 MFP
12 PC
14 Cloud storage 16 Device cooperation service device 18 Authentication service device 20 I / O service device 101 CPU
102 MEM-P
102a ROM
102b RAM
103 NB
104 SB
106 ASIC
107 MEM-C
108 HDD controller 109 HD
120 Short-range communication circuit 120a Short-range communication circuit 121 AGP bus 122 PCI bus 130 Engine control unit 131 Scanner unit 132 Printer unit 140 Operation panel 140a Panel display unit 140b Operation panel 150 Network I / F
201 CPU
202 ROM
203 RAM
204 HD
205 HDD controller 206 Display 208 External device connection I / F
209 Network I / F
210 Bass Line 211 Keyboard 212 Pointing Device 213 DVD-RW
214 DVD-RW drive 215 Recording media 216 Media I / F
100A Display control unit 100B Reception unit 100C Communication unit 160A Communication unit 160B Screen management unit 160C User creation request unit 160D Authentication request unit 160E Input / output processing request unit 180A Communication unit 180B Device number acquisition unit 180C Tenant identification unit 180D Verification unit 180E User creation Unit 180F External linkage setting unit 180G Password generation unit 180H Authentication unit 180I Domain registration unit 200A Communication unit 200B Input / output processing execution unit 204A Tenant information 204B Device information 204C Permitted domain information 204D External linkage information 204E User information

JP-A-2017-72890

Claims (8)

An information processing device that is connected to a device via a network.
A receiver that includes account information and receives a user creation request from the device that requests the creation of a user account.
A creation unit that creates a user account when the account information included in the user creation request received by the reception unit satisfies the conditions according to the organization.
Information processing device. A specific unit that identifies the organization from the device identification information that identifies the device is further provided.
The receiving unit receives the user-created request including the device identification information, and receives the user-created request.
The specific unit identifies the organization from the device identification information included in the user-created request received by the receiving unit.
The creation unit creates a user account when the account information included in the user creation request satisfies the conditions corresponding to the organization specified by the specific unit.
The information processing device according to claim 1. The information processing device according to claim 1 or 2, wherein the account information is an e-mail address. The creating unit creates a user account when the e-mail address included in the user creation request received by the receiving unit has a domain permitted by the organization, as a condition according to the organization.
The information processing device according to claim 3. The creating unit corresponds to the account information used for the user account created in the organization by the account information included in the user creation request received by the receiving unit as a condition according to the organization. If not, create a user account,
The information processing device according to any one of claims 1 to 4. It is a control method for information processing devices that are connected to devices via a network.
A receiving step that includes account information and receives a user creation request from the device that requests the creation of a user account.
When the account information included in the user creation request received by the reception step satisfies the conditions according to the organization, the creation step of creating a user account and the creation step.
A method of controlling an information processing device, including. For information processing devices connected to devices via networks
A receiving step that includes account information and receives a user creation request from the device that requests the creation of a user account.
When the account information included in the user creation request received by the reception step satisfies the conditions according to the organization, the creation step of creating a user account and the creation step.
A program that runs. An information processing system including a device and one or more information processing devices connected to the device via a network.
The device is
It is provided with a transmission control unit that includes account information and transmits a user creation request requesting the creation of a user account to the information processing apparatus.
The information processing device
A receiving unit that receives the user-created request transmitted by the transmission control unit, and
A creation unit that creates a user account when the account information included in the user creation request received by the reception unit satisfies the conditions according to the organization.
Information processing system equipped with.

Images