JP2022052181A - Information processing program, information processing apparatus, and information processing method - Google Patents

Abstract

To provide an information processing program, an information processing apparatus, and an information processing method which allow a login state to be determined even in the case of transition from a web site requesting login authentication to another web site linked to the web site.SOLUTION: In an information processing system where a client terminal and a back-end terminal are connected via a communication network, the information processing program of the client terminal causes a computer to perform processing of: in response to successful authentication on a first web site (A site) requesting login system authentication, storing information showing the successful authentication in an information storage unit 15A of software for browsing; referring to the information storage unit in response to detecting transition from the first web site to a second web site (B site) linked to the first web site; and distinguishably displaying whether authentication is successful on the first web site or not on the second web site in accordance with presence or absence of the information.SELECTED DRAWING: Figure 6

Description

This case relates to an information processing program, an information processing device, and an information processing method.

There is known a technique for linking services provided by different businesses so that they can be used safely and mutually (see, for example, Patent Document 1).

Japanese Unexamined Patent Publication No. 2010-22507 Japanese Unexamined Patent Publication No. 2008-059038 Japanese Unexamined Patent Publication No. 2008-152666

Here, different businesses (for example, banks and businesses other than banks) may collaborate to build and provide bank web services. For example, a website created by a bank that can be viewed without logging in to the bank's web service, and a website that can be transitioned from the website created by the bank, but cannot be viewed without logging in (balance inquiry, transfer, etc.) Website) may be created by other businesses. In this case, when the user performs an operation of transitioning from a website created by a bank to a website created by another business operator, login authentication as identity verification is required on the website created by another business operator. If this login authentication is successful, a predetermined display will be displayed on the website created by another company to inform the bank's web service that it is logged in (or logged in), and the user can use the web. You will be able to check the account balance etc. on the site.

On the other hand, a user who logs in to a bank's web service from a website created by another business operator may access the website created by the bank again while maintaining the login status. In this case, the user cannot determine whether or not he / she is logged in to the bank's web service on the bank-created website.

In one aspect, the present invention provides an information processing program, an information processing device, and an information processing method capable of determining the login status even when a website that requires login authentication transitions to a website linked to the website. The purpose is to provide.

In one embodiment, if the information processing program succeeds in the authentication on the first website that requires login-type authentication, the information processing program stores information indicating that the authentication is successful in the storage unit of the browsing software. Then, when the transition from the first website to the second website linked with the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the second website is displayed. , A computer is made to perform a process of identifiablely displaying whether or not the authentication on the first website is successful.

Even when a website that requires login authentication changes to a website linked to the website, the login status can be determined.

FIG. 1 is a diagram showing an outline of an information processing system. FIG. 2 is an example of the hardware configuration of the control device. FIG. 3 is an example of a block diagram of an information processing system. FIG. 4 is a processing sequence diagram (No. 1) of the information processing system. FIG. 5 is a processing sequence diagram (No. 2) of the information processing system. FIG. 6A is an example of the top screen of the A site. FIG. 6B is an example of the login screen of the B site. FIG. 6C is another example of the top screen of the A site. FIG. 6D is an example of the top screen of the B site. FIG. 6 (e) is an example of the detailed screen of the B site. FIG. 7 is an example of an authentication telegram. FIG. 8 is an example of the logged-in flag stored in the information storage unit.

Hereinafter, a mode for carrying out this case will be described with reference to the drawings.

FIG. 1 is a diagram showing an outline of the information processing system ST. The information processing system ST includes a client terminal 100 as an information processing device and a back-end server 300. Examples of the client terminal 100 include a PC (Personal Computer) and a smart device. Examples of smart devices include smartphones and tablet terminals. The client terminal 100 and the back-end server 300 are connected to each other via the communication network NW. The communication network NW includes at least one of the Internet and a LAN (Local Area Network). The communication network NW includes at least one of a wireless communication network and a wired communication network. The back-end server 300 provides various web services such as communication services and information processing services to the client terminal 100.

Although the details will be described later, the back-end server 300 manages various programs called APIs (Application Programming Interfaces). For example, when the API managed by the back-end server 300 is called (called) from the client terminal 100, the API to be called is executed and the application software associated with the API is executed. When the application software is executed, the back-end server 300 provides a web service according to the application software. In the present embodiment, the back-end server 300 executes the API to provide a login authentication service and the like. In this embodiment, an API in REST (REpresentational State Transfer) format will be described as an example, but the API may not be in REST format.

Hereinafter, the detailed configuration and operation of the information processing system ST will be described.

As shown in FIG. 2, the client terminal 100 includes at least a control device 10, an input device 11, and a display device 12. The control device 10 includes a CPU (Central Processing Unit) 10A and a RAM (Random Access Memory) 10B. The control device 10 includes a ROM (Read Only Memory) 10C and a network I / F (interface) 10D. The control device 10 may include an HDD (Hard Disk Drive) 10E and an input I / F 10F, if necessary. The control device 10 may include at least one of an output I / F10G, an input / output I / F10H, and a drive device 10I, if necessary. The CPU 10A and the drive device 10I are connected to each other by the internal bus 10J.

An input device 11 is connected to the input I / F10F. The input device 11 includes, for example, a keyboard, a mouse, a touch panel, and the like. A display device 12 is connected to the output I / F10G. The display device 12 includes, for example, a liquid crystal display. A semiconductor memory 13 is connected to the input / output I / F 10H. Examples of the semiconductor memory 13 include a USB (Universal Serial Bus) memory and a flash memory. The input / output I / F 10H can read the information processing program stored in the semiconductor memory 13. The input I / F10F and the input / output I / F10H include, for example, a USB port. The output I / F10G has, for example, a display port.

A portable recording medium 14 is inserted into the drive device 10I. Examples of the portable recording medium 14 include removable discs such as CD (Compact Disc) -ROM and DVD (Digital Versatile Disc). The drive device 10I can read an information processing program. The network I / F10D includes, for example, a LAN port.

The information processing program stored in at least one of the ROM 10C, the HDD 10E, and the semiconductor memory 13 is temporarily stored in the RAM 10B by the CPU 10A. The information processing program recorded on the portable recording medium 14 is temporarily stored in the RAM 10B by the CPU 10A. When the CPU 10A executes the stored information processing program, the CPU 10A realizes various functions described later and also executes various processes described later. The information processing program may be adapted to the processing sequence diagram described later. Since the back-end server 300 described with reference to FIG. 1 has basically the same hardware configuration as the control device 10, detailed description thereof will be omitted.

FIG. 3 is an example of a block diagram of the information processing system ST. FIG. 3 shows the main functions of the client terminal 100 and the back-end server 300.

The control device 10 includes a storage unit 15, a processing unit 16, an input unit 17, an output unit 18, and a communication unit 19. The storage unit 15 can be realized by the RAM 10B, the HDD 10E, the Web storage of the browsing software (so-called Web browser) installed in the control device 10, and the like. The processing unit 16 can be realized by the CPU 10A. The input unit 17 can be realized by the input I / F10F. The output unit 18 can be realized by the output I / F10G. The communication unit 19 can be realized by the network I / F10D. Therefore, the storage unit 15, the processing unit 16, the input unit 17, the output unit 18, and the communication unit 19 are connected to each other.

Here, the storage unit 15 includes the information storage unit 15A. The information storage unit 15A includes a Web storage. On the other hand, the processing unit 16 includes an information storage unit 16A as a storage unit and a display control unit 16B as a display unit. The information storage unit 16A and the display control unit 16B access the information storage unit 15A and execute various processes. For example, when the information storage unit 16A succeeds in login authentication on a website that requires login method authentication (hereinafter referred to as login authentication), the information storage unit 15A is provided with predetermined information indicating that the login authentication is successful. save.

The display control unit 16B detects a transition from a website that requires login authentication to a website that is linked to the website and does not require login authentication. By linking a plurality of websites, one web service is provided to the user, and the user can move (transition) between the linked websites. If the login authentication is successful on the website that requires login authentication, the user can log in to the web service and browse the website that requires login authentication. On the other hand, if the website does not require login authentication, even a user who is not logged in to the web service can browse the website.

When the display control unit 16B detects a transition, the display control unit 16B refers to the information storage unit 15A, and depending on the presence or absence of the above-mentioned predetermined information, the website that does not require login authentication is subjected to login authentication on the website that requires login authentication. Distinguishable display of success or failure. For example, if predetermined information is stored in the information storage unit 15A, the display control unit 16B displays a predetermined display indicating the login status for the web service on the website that does not require login authentication. The predetermined display includes, for example, the display of the name of the user who performs login authentication and the display of a symbol indicating that the user is logged in to the web service. On the other hand, if the information storage unit 15A does not store the predetermined information, the display control unit 16B does not perform the predetermined display indicating the login status for the web service on the website that does not require login authentication. Depending on the presence or absence of this predetermined display, the user can identify whether or not the login authentication on the website that requires the login authentication is successful even on the website that does not require the login authentication.

The back-end server 300 includes a login service providing unit 310. Although the details will be described later, the login service providing unit 310 receives the authentication message transmitted from the client terminal 100. Specifically, the login service providing unit 310 receives an API request including message information requesting a call of the login authentication API managed by the back-end server 300. Then, when the login service providing unit 310 determines that the login authentication is successful, the login service providing unit 310 transmits a success message to the client terminal 100. Specifically, the login service providing unit 310 transmits an API response including message information indicating a success response to the API request. If the login service providing unit 310 determines that the login authentication has failed, the login service providing unit 310 transmits a failed message to the client terminal 100. Specifically, the login service providing unit 310 transmits an API response including message information indicating a failure response to the API request.

The operation of the information processing system ST will be described with reference to FIGS. 4 to 8. In the following, as an example, it is assumed that the web service provided by the bank is constructed by a website created by the bank (site A) and a website created by a business operator other than the bank (site B). .. The A site and the B site are linked so that the transition from the A site to the B site or the transition from the B site to the A site can be performed. Further, the A site is a site that does not require login authentication, and is a site that can be browsed by a user who has not registered as a user (a user who is not a bank customer). On the other hand, the B site is a site that requires login authentication and can be viewed by a registered user (bank customer). The creators of the A site and the B site may be different businesses as described above, or may be the same business. Further, the web service is not limited to the web service provided by the bank, and may be another web service.

As shown in FIG. 4, when the display control unit 16B of the client terminal 100 detects the input of a predetermined instruction for displaying the top screen of the A site, the display control unit 16B displays the top screen of the A site (step S1). As a result, as shown in FIG. 6A, the top screen 30 of the A site is displayed through the browsing software. Since login authentication is not required for the A site, the user who can view the top screen 30 is not particularly limited. That is, the top screen 30 can be viewed by a user who does not have the right to log in (so-called account) or a user who has the right.

The top screen 30 includes a login button 31 and a first content area 33 that presents content before login (for example, advertising information). The display control unit 16B waits until it detects that the login button 31 is pressed (step S2: NO). When the display control unit 16B detects that the login button 31 is pressed (step S2: YES), the display control unit 16B displays the login screen of the B site (step S3). That is, the login button 31 is associated with address information such as a URL (Uniform Resource Locator) for transitioning to the login screen of the B site. As a result, as shown in FIG. 6B, the login screen 40 of the B site is displayed through the browsing software.

The login screen 40 includes a login button 41, an A transition button 42, a first input field 43 for inputting a user ID (identification information), and a second input field 44 for inputting a password. The display control unit 16B waits until it detects that the login button 41 is pressed (step S4: NO). When the display control unit 16B detects that the login button 41 is pressed (step S4: YES), the display control unit 16B transmits an authentication message to the back-end server 300 (step S5). As shown in FIG. 7, the authentication message includes a user ID (for example, yamada) entered in the first input field 43 and a password (for example, pass0123) entered in the second input field 44.

The login service providing unit 310 of the back-end server 300 receives the authentication message transmitted from the client terminal 100 (step S6). Upon receiving the authentication message, the login service providing unit 310 determines whether or not the login authentication is successful (step S7). Specifically, the login service providing unit 310 has the first combination of the ID and password of the authentication message, and the second ID and password registered in advance in the back-end server 300 or the database connected to the back-end server 300. Contrast with the combination. If the first combination and the second combination match, the login service providing unit 310 determines that the login authentication was successful (step S7: YES). In this case, the login service providing unit 310 transmits a success message to the client terminal 100 (step S8). The success message is a message indicating that the login authentication was successful.

On the other hand, if the first combination and the second combination do not match, the login service providing unit 310 determines that the login authentication has failed (step S7: NO). In this case, the login service providing unit 310 transmits a failed message to the client terminal 100 (step S9). The failure message is a message indicating that the login authentication has failed.

The display control unit 16B receives the telegram transmitted from the back-end server 300 (step S10). Specifically, the display control unit 16B receives either a success message or a failure message. When the display control unit 16B receives the telegram, as shown in FIG. 5, it determines whether or not the successful telegram has been received (step S11). When it is determined that the success message has been received (step S11: YES), the display control unit 16B displays the top screen of the B site (step S12). As a result, as shown in FIG. 6D, the top screen 50 of the B site is displayed through the browsing software. Since login authentication is required for the B site, the users who can view the top screen 50 are limited to the users who have the right to log in. That is, the top screen 50 is a screen dedicated to the user who has the right to log in.

The top screen 50 includes a detail button 51, an A transition button 52, a second content area 53 that presents content after login, and a login mark 54 that is a symbol indicating that the user is logged in to a web service. The top screen 50 may display the user's name in place of the logged-in mark 54 or together with the logged-in mark 54. When the process of step S12 is completed, the information storage unit 16A stores the logged-in flag as predetermined information in the information storage unit 15A (step S13). As a result, as shown in FIGS. 6B and 8, the information storage unit 15A stores the logged-in flag “T” as a flag indicating the login state for the web service. By storing the logged-in flag "T", it can be determined that the login status for the web service is logged in. The order of the processing in step S12 and the processing in step S13 may be reversed, or may be performed at the same timing.

On the other hand, when it is determined that the failed message has been received (step S11: NO), the processes of steps S12 and S13 are not executed. Therefore, the login screen 40 of the B site does not transition to the top screen 50 of the B site, and the display of the login screen 40 of the B site is maintained as shown in FIG. 6 (b). Further, in this case, the logged-in flag "T" is not stored in the information storage unit 15A. If the logged-in flag "T" is not stored in the information storage unit 15A, it means that the user has not succeeded in login authentication on the B site.

When it is determined that the failed message has been received in the process of step S11, or when the process of step S13 is completed, the display control unit 16B waits until the pressing of the A transition button is detected (step S14: NO). Specifically, when the process of step S11 is completed, the display control unit 16B waits until the pressing of the A transition button 52 shown in FIG. 6D is detected. When the process of step S13 is completed, the display control unit 16B waits until the pressing of the A transition button 42 shown in FIG. 6B is detected. The A transition buttons 42 and 52 are all associated with the same address information for transitioning to the top screen of the A site.

When the display control unit 16B detects that the A transition button is pressed (step S14: YES), the display control unit 16B refers to the information storage unit 15A (step S15) and determines whether or not there is a logged-in flag (step S16). Since the same address information for transitioning to the top screen of the A site is associated with the A transition buttons 42 and 52, the display control unit 16B differs in the A site depending on the address information and the presence / absence of the logged-in flag. Display the top screen.

First, when the display control unit 16B determines that there is a logged-in flag (step S16: YES), it sets to add a logged-in mark and a detail button (steps S17 and S18), and displays the top screen of the A site. (Step S19). In this case, the display control unit 16B also sets the login button not to appear on the top screen of the A site. As a result, as shown in FIG. 6C, the top screen 60 of the A site is displayed through the browsing software. The top screen 60 includes a detail button 61, a second content area 63, and a login mark 64, and does not include a login button. Login authentication is not required at the A site, but the login mark 64 appears on the top screen 60. As a result, even if the user transitions to the top screen 60 of the A site, the user can recognize that he / she is logged in to the web service of the bank.

On the other hand, when the display control unit 16B determines that there is no logged-in flag (step S16: NO), the process of steps S17 and S18 is skipped and the process of step S19 is executed. That is, the display control unit 16B displays the top screen of the A site without making a setting for giving a login mark and a detail button and a setting for not displaying the login button. In this case, the same screen as displayed in step S1 is displayed as shown in FIG. 6A.

In this way, if the logged-in flag is stored in the information storage unit 15A, the display control unit 16B displays on the top screen of the A site identifiable that the login authentication on the B site has been successful. On the other hand, if the logged-in flag is not stored in the information storage unit 15A, the display control unit 16B displays the top screen of the A site as it is.

When the display control unit 16B detects that the detail button 51 included in the top screen 50 of the B site or the detail button 61 included in the top screen 60 of the A site is pressed, as shown in FIG. 6 (e). The detail screen 70 of the B site is displayed. The detail buttons 51 and 61 are all associated with the same address information for transitioning to the detail screen 70 of the B site. Therefore, when the press of the detail buttons 51 and 61 is detected, the display control unit 16B displays the detail screen 70 of the B site. The detail screen 70 is a screen for presenting the details of the user's account balance. The detail screen 70 includes the login mark 74 as in the top screen 50 of the B site. That is, the display control unit 16B makes a setting to add a login mark, and displays the detail screen 70 of the B site. By including the logged-in mark 74 in the detail screen 70 in this way, the user can recognize that he / she is logged in to the web service of the bank through the detail screen 70 as well.

The logged-in flag is deleted from the information storage unit 15A when the user logs out of the web service.

As described above, according to the present embodiment, the client terminal 100 includes the control device 10, and the control device 10 includes a storage unit 15 and a processing unit 16. The storage unit 15 includes an information storage unit 15A, and the processing unit 16 includes an information storage unit 16A and a display control unit 16B. When the login authentication on the B site that requires the login method authentication is successful, the information storage unit 16A stores a logged-in flag indicating that the login authentication is successful in the information storage unit 15A of the browsing software. When the display control unit 16B detects a transition from the B site to the A site that cooperates with the B site and does not require authentication, the display control unit 16B refers to the information storage unit 15A, and depending on the presence or absence of the logged-in flag, the A site is displayed. Whether or not login authentication on the B site was successful is displayed in an identifiable manner.

As a result, even if the user displays the A site after logging in to the bank's web service on the B site, it can be determined on the A site that he / she is logged in to the bank's web service. Therefore, the user can perform continuous or integrated (seamless) screen operations without being aware of the difference between the A site created by the bank and the B site created by the business operator.

The above processing function can be realized by a computer. In that case, a program that describes the processing content of the function that the processing device should have is provided. By executing the program on a computer, the above processing function is realized on the computer. The program describing the processing content can be recorded on a computer-readable recording medium (however, the carrier wave is excluded).

When a program is distributed, it is sold in the form of a portable recording medium such as a DVD or a CD-ROM in which the program is recorded. It is also possible to store the program in the storage device of the server computer and transfer the program from the server computer to another computer via the network.

The computer that executes the program stores, for example, the program recorded on the portable recording medium or the program transferred from the server computer in its own storage device. Then, the computer reads the program from its own storage device and executes the processing according to the program. The computer can also read the program directly from the portable recording medium and execute the processing according to the program. In addition, the computer can sequentially execute processing according to the received program each time the program is transferred from the server computer.

Although the preferred embodiments of the present invention have been described in detail above, the present invention is not limited to the specific embodiments of the present invention, and various modifications are made within the scope of the gist of the present invention described in the claims.・ Can be changed. In the above embodiment, the case where the logged-in flag “T” is stored in the information storage unit 15A when the user logs in to the web service of the bank has been described, but the present invention is not limited to this. For example, depending on whether or not the user has logged in to the bank's web service, the logged-in flags stored in the information storage unit 15A are set to "F" (not logged in) and "T" (logged in). You may switch with. In this case, instead of step S16 in FIG. 5, the display control unit 16B may check whether or not the logged-in flag is “T”.

The following additional notes will be further disclosed with respect to the above explanation.
(Appendix 1) When the authentication on the first website that requires the authentication of the login method is successful, the information indicating that the authentication is successful is stored in the storage unit of the browsing software, and the first website. When the transition to the second website linked with the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the second website is displayed on the first website. An information processing program for causing a computer to execute a process that identifiablely displays whether or not the authentication has been successful.
(Appendix 2) The second website, which can be identified as having succeeded in the authentication, is set to be given information for transitioning to the first website, and the computer is further executed. The information processing program described in Appendix 1.
(Appendix 3) When the authentication on the first website that requires the authentication of the login method is successful, the storage unit that stores the information indicating that the authentication is successful in the storage unit of the browsing software, and the first. When a transition from one website to a second website linked to the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the first website is displayed. An information processing device including a display unit that identifiablely displays whether or not the authentication on the website is successful.
(Appendix 4) The display unit is set to add information for transitioning to the first website to the second website that can identify that the authentication has been successful. The information processing device described.
(Appendix 5) When the authentication on the first website that requires the authentication of the login method is successful, the information indicating that the authentication is successful is stored in the storage unit of the browsing software, and the first website. When the transition to the second website linked with the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the second website is displayed on the first website. An information processing method in which a computer executes a process of displaying whether or not the authentication has been successful in the above-mentioned authentication in an identifiable manner.

10 Control device 15A Information storage unit (storage unit)
16A Information storage unit (storage unit)
16B Display control unit (display unit)
100 Client terminal (information processing device)
300 Back-end server 310 Login service provider

Claims (4)

If the authentication on the first website that requires login method authentication is successful, the information indicating that the authentication is successful is stored in the storage unit of the browsing software.
When the transition from the first website to the second website linked with the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the second website is referred to. Distinguishing whether or not the above authentication was successful on the first website is displayed in an identifiable manner.
An information processing program that causes a computer to execute processing. A setting is made to give information for transitioning to the first website to the second website that can be identified as having succeeded in the authentication.
The information processing program according to claim 1, wherein the computer further executes the processing. When the authentication on the first website that requires login method authentication is successful, a storage unit that stores information indicating that the authentication is successful in the storage unit of the browsing software, and a storage unit.
When the transition from the first website to the second website linked with the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the second website is referred to. A display unit that identifiablely displays whether or not the authentication was successful on the first website, and a display unit.
Information processing device with. If the authentication on the first website that requires login method authentication is successful, the information indicating that the authentication is successful is stored in the storage unit of the browsing software.
When the transition from the first website to the second website linked with the first website is detected, the storage unit is referred to, and depending on the presence or absence of the information, the second website is referred to. Distinguishing whether or not the above authentication was successful on the first website is displayed in an identifiable manner.
An information processing method in which a computer executes processing.

Images