JP6241111B2 - Service providing system, information processing system, usage restriction method and program - Google Patents

Description

  The present invention relates to a service providing system, an information processing system, a usage restriction method, and a program.

  2. Description of the Related Art Image processing apparatuses having a function of performing user authentication by login / logout (authentication function) and a function of restricting use of a device mounting function (printing function) (use restriction function) have been known (for example, Patent Document 1).

  2. Description of the Related Art Conventionally, a function for restricting use of a device-mounted function (usage restriction function) is an example of a service that is supposed to be provided in a private network such as an office environment.

  Therefore, the use restriction function of the device mounting function provided by the information processing apparatus controls the provision of the service according to the service provision destination of the user, organization, company, etc., for example, the service provision from the cloud environment. Is not assumed. For this reason, it is difficult for the use restriction function of the device mounting function provided by the information processing apparatus to control the provision of the service according to the service providing destination. Service provision from the cloud environment is an example of a service provision form.

  Embodiments of the present invention have been made in view of the above points. A service providing system, an information processing system, a usage restriction method, and a program capable of controlling the provision of a function for restricting the use of a device-mounted function according to a service provider. The purpose is to provide.

In order to achieve the above object, claim 1 of the present application is a service providing system that provides a service to a service using apparatus that is configured by one or more information processing apparatuses and is connected via a network. service identification information, the user identification information of the user who uses the service, device identification information before SL service using apparatus, and a management information storage means for storing management information that associates a service providing destination identification information of the service, the Authentication information receiving means for receiving service providing destination identification information and user authentication information used for user authentication or service providing destination identification information and device authentication information used for device authentication as authentication information from the service using device; An authentication means for executing authentication information authentication processing, and the authentication information when the authentication information is authenticated. And a service specifying unit for specifying the service associated with the authentication information based on the management information, and receiving a use request for the specified service from the service using device, processing corresponding to the use request for the service is performed. An execution means for executing, a log receiving means for receiving an operation log of a function executed in the service using apparatus from the service using apparatus that has authenticated the authentication information, and executed in the service using apparatus based on the operation log Use restriction determining means for determining whether or not to restrict use of a function; and stop instruction means for instructing the service using device to stop execution of the function based on the determination result. To do.

  According to the embodiment of the present invention, it is possible to control the provision of a function for restricting the use of a device-mounted function according to a service provider.

It is a lineblock diagram of an example of an information processing system concerning this embodiment. It is a hardware block diagram of an example of the computer system which concerns on this embodiment. It is a process block diagram of an example of the service provision system which concerns on this embodiment. It is a block diagram of an example of license information. The block diagram of an example of tenant information is shown. The block diagram of an example of user information is shown. The block diagram of an example of apparatus information is shown. The block diagram of an example of external service information is shown. It is a flowchart of an example showing the process sequence from tenant registration to service registration. It is an image figure of an example of a usage agreement screen. It is a sequence diagram of an example of user authentication and device authentication processing. It is a figure for demonstrating an example of the data processing function with which a service provision system is provided. It is a flowchart of an example showing the process sequence of the data processing function with which a service provision system is provided. It is a figure for demonstrating the data processing which divides the processing content of one data processing into the processing content of several data processing. It is a flowchart of an example of the authorization setting with respect to online storage. It is a flowchart of an example of a cooperation process with online storage. 1 is a processing block diagram of an example of an image forming apparatus. It is a processing block diagram of an example of a print service application. It is a block diagram of an example of log data. It is a block diagram of the other example of user information. It is a sequence diagram of an example of user authentication processing. It is a sequence diagram of an example of a use restriction process. It is a process block diagram of the other example of an image forming apparatus. It is a process block diagram of the other example of a print service application. It is a sequence diagram of another example of user authentication processing. It is a sequence diagram of the other example of a use restriction process.

Next, embodiments of the present invention will be described in detail.
[First Embodiment]
<System configuration>
FIG. 1 is a configuration diagram of an example of an information processing system according to the present embodiment. The information processing system 1 in FIG. 1 includes a private network N1 in the office, a network N2 of a service providing system 2 represented by a cloud service, and a network N3 such as the Internet. Networks N1 to N3 are examples of network environments.

  A firewall FW is installed in the network N1 in the office. The firewall FW restricts access from unauthorized access sources. An access control device 21 is installed in the network N2 of the service providing system 2. The access control device 21 restricts access via the network N3.

  The network N1 in the office is a private network inside the firewall FW. A terminal device 11, an image forming device 12, an authentication device 13, and other devices 14 are connected to the network N1.

  The terminal device 11 can be realized by an information processing device (computer system) equipped with a general OS or the like. The terminal device 11 is a device that can be operated by the user, such as a PC, a tablet PC, a notebook PC, a smartphone, or a mobile phone.

  The image forming apparatus 12 is an apparatus having an image forming function, such as a multifunction machine, a copier, a scanner, or a laser printer. The authentication device 13 can be realized by an information processing device equipped with a general OS or the like. The authentication device 13 provides a user authentication function. The other device 14 is a device such as a projector or an electronic blackboard device.

  Note that the terminal device 11, the image forming device 12, the authentication device 13, and the other devices 14 have wireless communication means or wired communication means. FIG. 1 shows an example in which the terminal device 11, the image forming device 12, the authentication device 13, and other devices 14 are each one, but a plurality of devices may be used.

  The service providing system 2 is a system constructed by a provider who provides a cloud service via the network N3. In addition, although this embodiment has described the cloud service as an example, it may be applied to a service provided via the network N3, such as a service provided by an ASP (Application Service Provider) or a Web service.

  The network N2 of the service providing system 2 is connected to the network N3 by the access control device 21. The network N2 includes an access control device 21, a print service providing device 22, a distribution service providing device 23, a portal service providing device 24, an authentication device 26, a data processing control device 27, a data processing execution control device 28, and a data processing device 29. It is connected.

  Details of the print service providing device 22, the distribution service providing device 23, the portal service providing device 24, the authentication device 26, the data processing control device 27, the data processing execution control device 28, and the data processing device 29 will be described later.

  Each device in the service providing system 2 such as the access control device 21 and the print service providing device 22 is realized by one or more information processing devices. That is, each device in the service providing system 2 may be realized by a single information processing device, or may be realized by being distributed to a plurality of information processing devices.

  Each device in the service providing system 2 may be realized by being integrated into one computer. In other words, the number of information processing devices constituting each device in the service providing system 2 does not limit the scope of application of the present invention.

  Also, some or all of the devices in the service providing system 2 may be realized in a private network such as the network N1 in the office. The information processing system 1 according to the present embodiment shows a preferable example. For example, the scope of the present invention is not limited by whether or not there is a firewall FW between the service providing system 2 and each device in the network N1 in the office that is accessed to use the service providing system 2.

  The service providing system 2 can be broadly divided into an apparatus that realizes a service providing function for providing various services and an apparatus that realizes a platform function that can be commonly used when providing various services.

  The print service providing device 22, the distribution service providing device 23, and the portal service providing device 24 are examples of devices that realize a service providing function for providing various services. The authentication device 26, the data processing control device 27, the data processing execution control device 28, and the data processing device 29 are examples of devices that realize a platform function that can be commonly used when providing various services.

  The general method of the service providing system 2 as described above is a conceptual way of understanding the present invention in an easy-to-understand manner, and the service providing system 2 must be configured based on such a way of understanding. It ’s not that.

  Further, a terminal device 11, a mail server 31, an online storage 32, and the like are connected to a network N3 such as the Internet. As shown in FIG. 1, the terminal device 11 may be connected to a network other than the network N1 in the office. The information processing system 1 in FIG. 1 shows an example in which a terminal device 11 is connected to a network N1 in an office and a network N3 such as the Internet.

  The mail server 31 performs processing related to electronic mail such as transmission and reception of the user's electronic mail. The online storage 32 performs a process related to a service that lends a storage area of the storage. The mail server 31 and the online storage 32 are realized by one or more information processing apparatuses.

<Hardware configuration>
The terminal device 11 and the authentication device 13 in FIG. 1 are realized by a computer system having a hardware configuration as shown in FIG. 2, for example. Similarly, each device in the service providing system 2 such as the access control device 21 and the print service providing device 22 in FIG. 1 is realized by a computer system having a hardware configuration as shown in FIG. The mail server 31 and online storage 32 of FIG. 1 are also realized by a computer system having a hardware configuration as shown in FIG. FIG. 2 is a hardware configuration diagram of an example of a computer system according to the present embodiment.

  A computer system 500 shown in FIG. 2 includes an input device 501, a display device 502, an external I / F 503, a RAM 504, a ROM 505, a CPU 506, a communication I / F 507, an HDD 508, and the like, which are mutually connected by a bus B. .

  The input device 501 includes a keyboard, a mouse, a touch panel, and the like, and is used by a user to input each operation signal. The display device 502 includes a display or the like, and displays a processing result by the computer system 500.

  The communication I / F 507 is an interface that connects the computer system 500 to the networks N1 to N3. Thereby, the computer system 500 can perform data communication via the communication I / F 507.

  The HDD 508 is a non-volatile storage device that stores programs and data. The stored programs and data include, for example, an OS that is basic software for controlling the entire computer system 500, and application software that provides various functions on the OS.

  The external I / F 503 is an interface with an external device. The external device includes a recording medium 503a. Accordingly, the computer system 500 can read and / or write the recording medium 503a via the external I / F 503. Examples of the recording medium 503a include a flexible disk, a CD, a DVD, an SD memory card, and a USB memory.

  The ROM 505 is a nonvolatile semiconductor memory (storage device) that can retain programs and data even when the power is turned off. The ROM 505 stores programs and data such as BIOS, OS settings, and network settings that are executed when the computer system 500 is started up. The RAM 504 is a volatile semiconductor memory (storage device) that temporarily stores programs and data.

  The CPU 506 is an arithmetic device that realizes control and functions of the entire computer system 500 by reading a program and data from a storage device such as the ROM 505 and the HDD 508 onto the RAM 504 and executing processing.

<Software configuration>
《Service provision system》
FIG. 3 is a processing block diagram of an example of the service providing system according to the present embodiment. The service providing system 2 of FIG. 3 implements a service application 51, a platform 52, a management data storage unit 53, and a platform API (Application Programming Interface) 54 by executing a program.

  The service application 51 of FIG. 3 includes a portal service application 61, a print service application 62, and a distribution service application 63 as an example. The service application 51 is an application having a function for providing various services.

  For example, the portal service application 61 is implemented in the portal service providing apparatus 24 of FIG. The print service application 62 is implemented in the print service providing apparatus 22. The distribution service application 63 is implemented in the distribution service providing apparatus 23.

  The portal service application 61 is an application that provides a portal site for a user to use various services such as a print service and a distribution service. The portal service application 61 performs tenant registration processing, service registration processing, and various management information registration processing described later in cooperation with the platform 52 as processing for the user to use various services.

  The print service application 62 is an application that provides a print service that realizes printing by the image forming apparatus 12 by storing, for example, print data and transmitting the print data to the image forming apparatus 12.

  The distribution service application 63 is an application that provides a distribution service that performs data processing on image data transmitted from various apparatuses such as the image forming apparatus 12 and distributes the processed data to the online storage 32 of FIG.

  The service application 51 is not limited to the example of FIG. 1, and may have an application that provides a service for transmitting stored image data (projection data) to another device 14 such as a projector. The service application 51 may include an application that provides a service for transmitting stored image data (projection data) to another device 14 such as an electronic blackboard device. As described above, the service application 51 has an application that provides some service to each apparatus such as the image forming apparatus 12 used by the user.

  The platform API 54 is an interface for the service application 51 to use the platform 52. The platform API 54 is a predefined interface provided for the platform 52 to receive a request from the service application 51, and is configured by a function, a class, or the like, for example. Note that when the service providing system 2 is configured to be distributed among a plurality of information processing apparatuses, for example, a Web API that can be used via a network can be used as the platform API 54.

  The platform 52 includes a communication unit 71, an access control unit 72, a mail transmission unit 73, a setting registration unit 74, an authorization setting processing unit 75, a license authentication unit 76, a user authentication unit 77, a user device authentication unit 78, and an in-house cooperation authentication unit 79. The external cooperation authentication unit 80, the data processing control unit 81, one or more processing queues 82, one or more data processing requesting units 83, and one or more data processing units 84.

  The communication unit 71 is a functional unit that executes communication with each apparatus such as the image forming apparatus 12, and is implemented in the access control apparatus 21 of FIG. 1, for example. The access control unit 72 is a functional unit that executes access control according to various types of access requested from each device such as the image forming device 12 to the service providing system 2, and is implemented in the access control device 21, for example.

  The mail transmission unit 73 is a functional unit that transmits mail, and is implemented in, for example, the authentication device 26 of FIG. The setting registration unit 74 is a functional unit that sets and registers various types of management data stored in the management data storage unit 53, and is implemented in the authentication device 26, for example. The authorization setting processing unit 75 is a functional unit that executes processing for setting authorization for an external service such as the online storage 32, and is implemented in the authentication device 26, for example.

  The license authentication unit 76 is a functional unit that performs authentication related to a license based on later-described license information and tenant information stored in the management data storage unit 53, and is implemented in the authentication device 26, for example. The user authentication unit 77 is a functional unit that performs user authentication based on a login request from a device that does not require device authentication, such as the terminal device 11, and is implemented in the authentication device 26, for example. The user device authentication unit 78 is a functional unit that performs user authentication based on a login request from a device that requires device authentication, such as the image forming device 12, and is implemented in the authentication device 26, for example.

  An in-house cooperation authentication unit 79 is a functional unit that performs user authentication when a user performs authentication by the authentication device 13 of FIG. 1 and logs in using a user ID acquired from the authentication device 13 in an apparatus such as the image forming apparatus 12. For example, it is implemented in the authentication device 26. The external cooperation authentication unit 80 is a functional unit that executes an authentication process for logging in to the online storage 32 in FIG. 1, and is implemented in the authentication device 26, for example.

  The data processing control unit 81 is a functional unit that controls data processing to be executed based on a request from the service application 51, and is implemented in the data processing control device 27, for example. The one or more processing queues 82 are message queues corresponding to the type of data processing, and a request message related to data processing is registered from the data processing control unit 81. The processing queue 82 is implemented in the data processing control device 27, for example.

  The one or more data processing requesting units 83 monitor the processing queue 82 assigned to the one or more data processing requesting units 83 and receive a request message related to data processing from the processing queue 82. The data processing request unit 83 is a functional unit that requests the data processing unit 84 to execute data processing corresponding to the received message, and is implemented in the data processing execution control device 28, for example.

  The one or more data processing units 84 are functional units that execute data processing in response to a request from the data processing requesting unit 83, and are implemented in the data processing device 29, for example. Examples of the data processing executed by the data processing unit 84 include a request dividing process requested by the service application 51, a data format conversion process for converting the data format, an OCR process for executing the OCR, and the like. Furthermore, examples of data processing executed by the data processing unit 84 include upload processing for uploading data to the online storage 32.

  Depending on the type of data processing, the data processing requesting unit 83 and the data processing unit 84 may be mounted in the data processing execution control device 28, for example.

  The management data storage unit 53 includes a management information storage unit 91, a data processing information storage unit 92, and a data storage unit 93 as an example.

  The management information storage unit 91 stores management information such as license information, tenant information, user information, and device information. The management information storage unit 91 is implemented in the authentication device 26, for example. The data processing information storage unit 92 stores information related to requested data processing. The data processing information storage unit 92 is implemented in the data processing control device 27, for example. The data storage unit 93 stores other data such as application data and print data. The data storage unit 93 is implemented in the data processing control device 27, for example.

  The management data stored in the management data storage unit 53 in FIG. 3 is as follows, for example. FIG. 4 is a configuration diagram of an example of license information. The license information has a license type, an ID, a registration code, and a registration state as data items. The license type is information indicating the type of license. There are tenant, print service, distribution service, etc. as license types. The ID is an ID of each license and is information used for license authentication. The registration code is information used when registering a tenant. The registration status is information indicating whether or not the license registration (ID registration) by the user has been completed (whether registered or not registered).

  FIG. 5 shows a configuration diagram of an example of tenant information. Tenant information has tenant ID, name, service ID, service type, expiration date, external service, address information, usage area information, etc. as data items. The tenant ID is an ID whose license type is “tenant” in the license information, and is registered when the user performs tenant registration.

  The name is a name set by the user when performing tenant registration. For example, a company name or an organization name is set. The service ID is an ID of a service whose license type is “print service” or “distribution service” in the license information, and is registered when the user performs service registration after tenant registration.

  The service type is information indicating the license type (service type) corresponding to the service ID. The expiration date is the expiration date of the service ID. The expiration date of the service ID registered in a specific device is managed from the time of registration.

  The external service is information representing an external service used in cooperation with the service providing system 2. An example of the external service is the online storage 32 shown in FIG. The address information is an email address of an administrator registered at the time of tenant registration. Use area information is information about the country / region where the service is used. The online storage 32 is an example of an external service. Information such as an account, password, authorization token, and scope, which will be described later, is an example of information used when using an external service.

  The authorization is to set a use range (authority) in using the service such as which service is used and which resource is allowed to be accessed when the user uses the service. Authorization can be set using a standard API authorization technique called OAuth, for example. From the viewpoint of using an external service such as the online storage 32 from the service providing system 2, the external service serves as an OAuth service provider, and the service providing system 2 serves as an OAuth consumer.

  FIG. 6 shows a configuration diagram of an example of user information. User information includes data items such as tenant ID, login user ID and password, in-house authentication user ID, online storage account, password, authorization token and scope, and address information. Have.

  User information manages information of each user in tenant ID units. The login user ID and password are authentication information used for user authentication when logging into the service providing system 2. The user ID for login may be a user name or the like as long as the user ID can be identified when logging in to the service providing system 2. The in-house authentication user ID is user identification information for identifying a user in the authentication device 13 of the network N1 in the office, and is used for user authentication when logging in using the user identification information acquired from the authentication device 13. It is. The user ID for in-house authentication may be user identification information that can identify the user in the authentication device 13 of the network N1 in the office, and may be a card ID of an IC card carried by the user, a terminal ID of a portable terminal, or the like.

  The account and password for online storage are authentication information used when logging into the online storage 32. The authorization token is information for using the online storage 32 within a specific authority range. The scope is information for specifying a use range set by authorization.

  The account may be a user ID, a user name, an address for online storage, or the like, and may be authentication information used for authentication when the user logs in to the target online storage 32. The address information is the user's mail address.

  FIG. 7 shows a configuration diagram of an example of device information. The device information includes tenant ID, device ID, service ID, service type, use start date, use end date, and the like as data items. The device information manages information on each device in units of tenant IDs.

  The device ID is information for identifying a device, and is information used for device authentication. An example of the device ID is the machine number of the device. The service ID and service type are the same information as the service ID and service type in the tenant information, and are registered when the user registers the service ID for a specific device.

  The use start date is information on the date when the service ID is registered. The use end date is information on the date when the expiration date of the registered service ID ends. The device registered in the device information can use the service of the registered service ID from the use start date to the use end date of the service ID.

  Depending on the type of service and the type of license, there may be an indefinite expiration date (substantially no expiration date limitation). In addition, even if the device information is not registered, some of the functions provided by the service providing system 2 can be used except for services (functions) that cannot be used unless device authentication is performed.

  In the present embodiment, the terminal device 11 is shown as an example of a device that does not require registration of device information. In the present embodiment, the image forming apparatus 12 is shown as an example of an apparatus that requires registration of apparatus information.

  Examples of functions that can be used in the terminal device 11 include management data setting registration, print data input, and deletion. Examples of functions that can be used in the image forming apparatus include acquisition of print data, transmission of distribution data, and the like.

  It is up to the provider who provides the service to determine what functions are required for device authentication and what functions are not required for device authentication. There may be no service.

  FIG. 8 shows a configuration diagram of an example of external service information. The external service information includes an external service ID, a service name, a client ID, a client secret, a product name, a scope, an authorization destination URL, a redirect destination URL, and the like as data items. The external service ID is information for specifying (identifying) the external service.

  The service name is the name of the external service. The client ID is information that identifies the service providing system 2 issued by an external service. The client secret is secret information for assuring the identity of the client ID, and is information that plays a role like a password. The product name is information for specifying the service application 51. The scope is information for specifying the usage range of the external service. The authorization destination URL is the URL of the authorization system provided in the external service (for example, the URL of the authorization server provided in the external service). The redirect destination URL is a URL of the service providing system 2 redirected from an external service (for example, a URL of a function as an authorization client of the authorization setting processing unit 75).

  As can be seen from the above description, the tenant ID is related to the service provided by the service providing system 2, the user using the service, and the device using the service, and the user, device, and service are managed in the service providing system 2. Information. The tenant ID is information (use target specifying information) that specifies a use target such as which service is provided to which user and further to which device among services that the service providing system 2 can provide.

<Details of processing>
Below, the detail of the process of the information processing system 1 which concerns on this embodiment is demonstrated.

<Processing from tenant registration to service registration>
FIG. 9 is a flowchart illustrating an example of a processing procedure from tenant registration to service registration. First, a user who wants to perform tenant registration (for example, an administrator of a company or organization) acquires a tenant ID and a registration code from a service provider (for example, a person in charge of providing and selling services) of the service providing system 2.

  Examples of the method for acquiring the tenant ID and the registration code include a method of acquiring directly from the service provider, a method of acquiring and accessing the dedicated site operated by the service provider from the user terminal device 11, and the like. .

  In step S <b> 1, the user operates the input device 501 of the terminal device 11 so that the terminal device 11 accesses the portal site of the service providing system 2. The terminal device 11 accesses the portal site of the service providing system 2 based on a user operation.

  Since the access control unit 72 of the service providing system 2 is an access to the portal site, the access from the terminal device 11 is permitted and the portal service application 61 is accessed.

  The portal service application 61 displays a top screen on the display device 502 of the terminal device 11. The user operates the input device 501 of the terminal device 11 and can select whether to request a login or a new tenant registration from the top screen. Here, the description will be continued assuming that a new tenant registration request is selected. If the user is registered in the user information of the management information storage unit 91 (administrator or other user), a login request can be selected by inputting the tenant ID, user ID, and password.

  When a new tenant registration is requested, the portal service application 61 of the service providing system 2 displays an input screen for temporarily registering a tenant ID on the display device 502 of the terminal device 11 in step S2. The user operates the input device 501 of the terminal device 11 to input for temporary registration of a tenant ID, and then requests temporary registration. The terminal device 11 makes a temporary registration request to the portal site of the service providing system 2 based on a user operation.

  The information input for temporary registration of the tenant ID includes, for example, information on the country / region where the service is used (usage region information) and the terms of service displayed according to the country / region where the service is used ( Information indicating that you agree with the Terms and Conditions). The information input for the temporary registration of the tenant ID includes information such as a tenant ID, a registration code, an e-mail address, and a language used.

  Therefore, the service providing system 2 holds information on terms of use (a contract) according to the country / region to be used. The portal service application 61 of the service providing system 2 performs display control for displaying the usage rule corresponding to the usage area information input for the temporary registration of the tenant ID by the user on the display device 502 of the terminal device 11, and the usage rule. Let the user choose whether or not to agree.

  FIG. 10 is an image diagram of an example of the usage agreement screen. The usage agreement screen 1010 displays a selection column 1011 for allowing the user to select a country / region where the service is to be used, a usage agreement column 1012 for displaying a usage agreement corresponding to the selection column 1011, and whether to accept the usage agreement. And a check box 1013 to be selected.

  When provisional registration is requested from the terminal device 11 of the user, the portal service application 61 performs a license authentication process for confirming the validity of the tenant ID and the registration code included in the information input for provisional registration of the tenant ID. Request to section 76. Upon receiving the request, the license authentication unit 76 executes the license authentication process, and the license information in FIG. 4 stored in the management information storage unit 91 stores the tenant ID and the registration code requested for the validity confirmation process. It is judged (verification).

  If the tenant ID and registration code for which the validity confirmation process is requested are stored, the license authentication unit 76 determines whether the registration state associated with the tenant ID and registration code is “unregistered”. .

  If the registration state is “unregistered”, the license authentication unit 76 determines that the tenant ID and registration code for which the validity confirmation processing is requested are valid information, and authenticates the tenant ID (license). . The license authentication unit 76 notifies the portal service application 61 of the license authentication result.

  When the tenant ID and the registration code are valid information, the portal service application 61 registers the tenant ID, e-mail address, and usage area information included in the information input to temporarily register the tenant ID in the setting registration unit 74. Request registration. The setting registration unit 74 registers the tenant ID, the mail address, and the usage area information in the tenant information in the management information storage unit 91 in response to a request from the portal service application 61.

  When registration is performed by the setting registration unit 74, the portal service application 61 generates a main registration URL as an access destination for displaying a main registration screen in step S3, and the main registration URL is described. Create an email. The portal service application 61 requests the mail transmission unit 73 to transmit the created mail. The e-mail transmission unit 73 transmits an e-mail addressed to the e-mail address included in the input information for provisional registration of the tenant ID.

  When the mail is transmitted by the mail transmitting unit 73, the portal service application 61 displays a notification screen indicating that the mail has been transmitted on the display device 502 of the terminal device 11. The main registration URL is managed, for example, by an expiration date (for example, one hour) from the time of generation. In addition, it is assumed that the email transmitted from the email transmission unit 73 does not describe at least one of the tenant ID and the registration code from the viewpoint of enhancing security.

  Next, the user operates the input device 501 of the terminal device 11 so as to access the main registration URL described in the received mail. The terminal device 11 accesses the main registration URL based on a user operation. Note that the terminal device 11 that accesses the URL for main registration may not be the same as the terminal device 11 that has requested temporary registration. The access control unit 72 causes the terminal device 11 to access the portal service application.

  The portal service application 61 confirms whether the access to the main registration URL is valid (access to the generated main registration URL and access within the expiration date). If it is valid, the portal service application 61 displays the main registration screen on the display device 502 of the terminal device 11.

  The user operates the input device 501 of the terminal device 11, inputs the tenant ID for main registration on the main registration screen, and then requests main registration. Information input on the registration screen is tenant information such as a tenant ID, name, and registration code, and user information such as a login user ID, password, and address information. Note that either the tenant ID or the registration code already entered by the user in the temporary registration of the tenant ID may be displayed in a state of being input in advance. However, from the viewpoint of security enhancement, at least one of the information to be input by the user out of the tenant ID or the registration code is not described in the e-mail containing the main registration URL as described above. .

  When the main registration is requested from the user terminal device 11, the portal service application 61 performs license activation processing (main registration processing) based on the tenant ID and registration code input on the main registration screen to the license authentication unit 76. Request.

  Upon receiving the request, the license authentication unit 76 executes a license authentication process, and determines whether the tenant ID and the registration code input on the main registration screen are stored in the license information stored in the management information storage unit 91. The license authentication unit 76 stores the input tenant ID and registration code in the license information, and if the registration state associated with the tenant ID and registration code is “unregistered”, the input tenant ID and It is determined that the registration code is valid information.

  If it is determined that the input tenant ID and registration code are valid information, the license authentication unit 76 requests the setting registration unit 74 to change the status of the license information. The setting registration unit 74 changes the value of the registration state associated with the valid tenant ID and registration code in the license information stored in the management information storage unit 91 to “registered”.

  When the license activation process is completed, the portal service application 61 requests the setting registration unit 74 to register the tenant information and user information input by the user on the main registration screen in the terminal device 11. The setting registration unit 74 registers the name input as part of the tenant information on the main registration screen in the tenant information stored in the management information storage unit 91. In addition, the setting registration unit 74 registers a tenant ID, a login user ID and password, address information, and the like in the user information stored in the management information storage unit 91.

  When the registration of various information settings by the setting registration unit 74 is completed, the portal service application 61 causes the display device 502 of the terminal device 11 to display a tenant registration completion screen. Further, the portal service application 61 creates an e-mail containing a tenant registration completion notification and requests the e-mail transmission unit 73 to send an e-mail. The mail transmission unit 73 transmits an e-mail in which a tenant registration completion notification is described to an e-mail address (address information registered in the tenant information) input for the user to temporarily register the tenant ID in the terminal device 11.

  For example, the user checks the tenant registration completion screen displayed on the display device 502 of the terminal device 11. By completing the registration of the tenant ID, user ID, and password, the user can request login from the top screen of the portal site from the next time. By logging in from the top screen of the portal site, the user can perform registration processing of tenant information, user information, and device information associated with the tenant ID.

  In step S4, a user such as an administrator operates the input device 501 of the terminal device 11 to input a tenant ID, user ID, and password from the top screen of the portal site, and then requests login.

  Upon receiving the login request, the portal service application 61 requests the user authentication unit 77 for user authentication. The user authentication unit 77 determines (collates) whether the combination of the tenant ID, the user ID, and the password received from the terminal device 11 is stored in the user information stored in the management information storage unit 91.

  If the combination of the tenant ID, the user ID, and the password received from the terminal device 11 is stored, the user authentication unit 77 authenticates the user who made the login request. When the user is authenticated by the user authentication unit 77, the portal service application 61 permits login.

  A user who logs in to the portal service application 61 can register a service ID of a service to be used. The portal service application 61 displays a service registration screen for registering a service ID on the display device 502 of the terminal device 11. The user operates the input device 501 of the terminal device 11, inputs a service ID from the service registration screen displayed on the display device 502 of the terminal device 11, and then requests service registration. The terminal device 11 makes a service registration request to the portal service application 61 based on a user operation.

  When service registration is requested from the user's terminal device 11, the portal service application 61 refers to the license information stored in the management information storage unit 91, and selects an ID that matches the service ID entered on the service registration screen by the user. . The portal service application 61 acquires a license type (service type) associated with the selected ID.

  Further, the portal service application 61 refers to the tenant information stored in the management information storage unit 91 and acquires the use area information associated with the tenant ID of the logged-in user. The portal service application 61 causes the display device 502 of the terminal device 11 to display a usage rule corresponding to the acquired license type and usage area information, and allows the user to select whether or not to agree to the usage rule.

  Therefore, the service providing system 2 holds usage agreement (agreement) information corresponding to the country / region used for each service type (license type). The portal service application 61 performs display control to display the usage area information input for the temporary registration of the tenant ID by the user and the usage rule corresponding to the service type for which the service registration is requested, and whether or not to accept the usage rule. Can be selected by the user.

  When the user operates the input device 501 of the terminal device 11 and inputs a selection for agreeing to the terms of use, the portal service application 61 performs service registration based on the tenant ID of the logged-in user and the service ID input on the service registration screen. The process is requested to the license authentication unit 76.

  The license authentication unit 76 confirms (checks) whether the service ID input on the service registration screen is stored as the ID in the license information stored in the management information storage unit 91. If the service ID input on the service registration screen is stored as an ID, the license authentication unit 76 determines that the service ID is valid (authenticates the service ID). If it is determined that the service ID is valid, the license authentication unit 76 requests the setting registration unit 74 to register the service ID. The setting registration unit 74 registers the service ID and service type in association with the tenant ID of the logged-in user for the tenant information stored in the management information storage unit 91.

  In step S5, a user such as an administrator performs device registration of a service ID. The user operates the input device 501 of the terminal device 11 to display a device registration screen on the display device 502 of the terminal device 11. The user operates the input device 501 of the terminal device 11 to input a service ID and a device ID of a device that can use the service by the service ID on the device registration screen, and request device registration of the service ID. .

  When the device registration of the service ID is requested from the terminal device 11, the portal service application 61 performs license authentication for the device registration processing of the service ID based on the tenant ID of the logged-in user, the service ID input on the device registration screen, and the device ID. Request to section 76.

  The license authentication unit 76 determines (collates) whether the tenant information stored in the management information storage unit 91 stores the combination of the tenant ID of the logged-in user and the service ID input on the device registration screen.

  If the combination of the tenant ID of the logged-in user and the service ID input on the device registration screen is stored, the license authentication unit 76 refers to the license information stored in the management information storage unit 91. The license authentication unit 76 determines whether the registration state associated with the service ID input on the device registration screen is “unregistered”.

  If the registration state is “unregistered”, the license authentication unit 76 requests the setting registration unit 74 to register the service ID. A service ID whose registration status is “unregistered” is a service ID for which the device registration of the service ID is not performed. The setting registration unit 74 registers the tenant ID of the logged-in user, the service ID input on the device registration screen, and the device ID in the device information stored in the management information storage unit 91. Further, the setting registration unit 74 refers to the tenant information stored in the management information storage unit 91, and acquires the service type and expiration date specified from the tenant ID and the service ID. The setting registration unit 74 registers the service type, the use start date, and the use end date in the device information stored in the management information storage unit 91 based on the acquired service type and expiration date.

  As the use start date, the date of the day of device registration of the service ID is stored. In the use end date, the date of the final date calculated based on the expiration date (for example, one year) acquired from the tenant information and the use start date is stored. However, the use start date may be specified, for example, in the service registration request in step S4. When the use start date can be specified, the use start date specified in the service registration request is stored in the device information use start date. When the device registration of the service ID is completed, the setting registration unit 74 changes the value of the registration state associated with the service ID that has registered the device to “registered” in the license information stored in the management information storage unit 91. To do.

  As described above, through the processing from tenant registration to service registration, a user such as an administrator can perform tenant registration, service ID registration, and device registration of a service ID by accessing the service providing system 2 from the terminal device 11. Therefore, the user can easily complete the procedure necessary for receiving the provision of the service. In addition, the service providing system 2 can manage the provided service, the user who uses the service, and the device which uses the service for each tenant ID for which the license validation process has been performed.

<< User authentication / equipment authentication function of service provision system >>
FIG. 11 is a sequence diagram of an example of user authentication / device authentication processing. FIG. 11A shows user authentication from the terminal device 11 that does not require device authentication. FIG. 11B shows user device authentication from the image forming apparatus 12 requiring device authentication. FIG. 11C shows in-house cooperation authentication from the image forming apparatus 12 requiring device authentication.

  As shown in FIG. 11A, in the user authentication from the terminal device 11, the user inputs the tenant ID, the user ID, and the password as login information from the top screen or the like of the portal site. In step S11, the terminal device 11 accepts login information input by the user.

  In step S12, the terminal device 11 makes a login request to the service providing system 2 using the login information input by the user. The access control unit 72 of the service providing system 2 requests the user authentication unit 77 for user authentication.

  In step S <b> 13, the user authentication unit 77 confirms whether the login information received from the terminal device 11 exists in the user information stored in the management information storage unit 91. The user authentication unit 77 determines that the user authentication is successful if the user information stored in the management information storage unit 91 includes the login information received from the terminal device 11. If the login information received from the terminal device 11 does not exist, the user authentication unit 77 determines that user authentication has failed.

  When the user authentication is successful, the access control unit 72 permits login from the terminal device 11 to the service providing system 2 (login for using the service). In step S <b> 14, the access control unit 72 transmits a login response based on the result of user authentication by the user authentication unit 77 to the terminal device 11.

  11B and 11C, the image forming apparatus 12 uses a login user ID and password in user authentication for logging in to the service providing system 2, or a user for in-house authentication. Holds the setting of whether to use the ID. Note that the setting of whether to use a login user ID and password or an in-house authentication user ID can be changed as appropriate. Further, it is assumed that the image forming apparatus 12 holds the tenant ID and the apparatus ID in its own storage area.

  In the case of setting to use a login user ID and password, in order to log in to the service providing system 2, the image forming apparatus 12 performs user apparatus authentication as shown in FIG.

  In step S21, the image forming apparatus 12 displays an input screen that allows the user to input a login user ID and password. The user inputs a login user ID and password from the input screen displayed on the image forming apparatus 12. The image forming apparatus 12 receives the login user ID and password input by the user.

  In step S22, the image forming apparatus 12 transmits the login user ID and password input by the user and the tenant ID and apparatus ID held in its own storage area to the service providing system 2 as login information. Make a login request. The access control unit 72 of the service providing system 2 requests the user device authentication unit 78 for user device authentication.

  In step S <b> 23, the user device authentication unit 78 confirms whether the combination of the tenant ID and the device ID included in the login information received from the image forming apparatus 12 exists in the device information stored in the management information storage unit 91. If the combination of the tenant ID and the device ID exists, the user device authentication unit 78 determines that the device authentication is successful. If the combination of the tenant ID and the device ID does not exist, the user device authentication unit 78 determines that the device authentication has failed.

  Furthermore, the user device authentication unit 78 checks whether the user information stored in the management information storage unit 91 includes a combination of the tenant ID, login user ID, and password included in the login information received from the image forming device 12. To do. If the combination of the tenant ID, login user ID, and password included in the login information received from the image forming apparatus 12 exists in the user information stored in the management information storage unit 91, the user device authentication unit 78 performs user authentication. Judge that succeeded. If the combination of the tenant ID, the login user ID, and the password included in the login information received from the image forming apparatus 12 does not exist, the user apparatus authentication unit 78 determines that the user authentication has failed.

  When the device authentication and the user authentication are successful, the access control unit 72 permits login (login for using the service) from the image forming apparatus 12 to the service providing system 2. In step S <b> 24, the access control unit 72 transmits a login response based on the result of device authentication and user authentication by the user device authentication unit 78 to the terminal device 11.

  In the case of setting to use a user ID for in-house authentication, the image forming apparatus 12 performs in-house cooperation authentication shown in FIG. 11C in order to log in to the service providing system 2. First, the user performs user authentication in the image forming apparatus 12. The user authentication executed in the image forming apparatus 12 is user authentication executed for using the image forming apparatus 12 or using a specific function of the image forming apparatus 12. Here, an example in which the authentication apparatus 13 performs user authentication using a card ID stored in an IC card or the like carried by the user will be described.

  In step S31, the user authenticates the user by causing a card reader (not shown) connected to the image forming apparatus 12 to read the card ID. In step S <b> 32, the image forming apparatus 12 transmits the card ID read by the card reader to the authentication apparatus 13 to make an authentication request.

  In step S <b> 33, the authentication device 13 makes an authentication determination using the card ID received from the image forming device 12. The authentication device 13 stores user authentication information in which a card ID and a user ID are associated with each other in a storage area. The authentication device 13 refers to the user authentication information in which the card ID and the user ID are associated, and confirms whether the user ID associated with the card ID received from the image forming device 12 can be specified.

  If the user ID associated with the card ID can be identified, the authentication device 13 determines that the user authentication has succeeded. In step S <b> 34, the authentication apparatus 13 transmits the specified user ID to the image forming apparatus 12 together with the authentication result indicating the successful authentication.

  Next, for example, the user can request login to the service providing system 2 by selecting login to the service providing system 2 from the display screen of the image forming apparatus 12. In step S <b> 35, the user requests login from the image forming apparatus 12 to the service providing system 2.

  When the user is requested to log in to the service providing system 2, the image forming apparatus 12 transmits the identified user ID, the tenant ID and the device ID held in its own storage area to the service providing system 2 as login information. And make a login request. The access control unit 72 of the service providing system 2 requests the in-house cooperation authentication unit 79 for in-house cooperation authentication.

  In step S <b> 36, the in-house cooperation authentication unit 79 confirms whether the combination of the tenant ID and the device ID included in the login information received from the image forming apparatus 12 exists in the device information stored in the management information storage unit 91.

  If there is a combination of tenant ID and device ID, the in-house cooperation authentication unit 79 determines that device authentication is successful. If the combination of tenant ID and device ID does not exist, the in-house cooperation authentication unit 79 determines that device authentication has failed.

  Further, the in-house cooperation authentication unit 79 confirms whether the combination of the tenant ID and the user ID for in-house authentication included in the login information received from the image forming apparatus 12 exists in the user information stored in the management information storage unit 91. . If the combination of the tenant ID and the user ID for in-house authentication included in the login information received from the image forming apparatus 12 exists in the user information stored in the management information storage unit 91, the in-house cooperation authentication unit 79 succeeds in user authentication. Judge that

  If the combination of the tenant ID and the user ID for in-house authentication included in the login information received from the image forming apparatus 12 does not exist, the in-house cooperation authentication unit 79 determines that the user authentication has failed.

  When the device authentication and the user authentication are successful, the access control unit 72 permits login (login for using the service) from the image forming apparatus 12 to the service providing system 2. In step S <b> 37, the access control unit 72 transmits a login response based on the results of device authentication and user authentication by the in-house cooperation authentication unit 79 to the terminal device 11.

  Note that if the device authentication is successful and the user authentication is not successful by the in-house cooperation authentication unit 79, the service providing system 2 displays an input screen for allowing the user to input a login user ID and password. May be displayed.

  In this case, the user can input a login user ID and password on the input screen and request login again. The image forming apparatus 12 transmits the login user ID and password input by the user and the tenant ID stored in the storage area of the image forming apparatus 12 to the user apparatus authentication unit 78 of the service providing system 2 to make a login request.

  The user device authentication unit 78 checks whether the combination of the tenant ID, the login user ID, and the password received from the image forming device 12 exists in the user information stored in the management information storage unit 91.

  The user device authentication unit 78 determines that the user authentication is successful if the user information stored in the management information storage unit 91 includes the combination of the tenant ID, the login user ID, and the password received from the image forming device 12. . The access control unit 72 permits login to the service providing system 2.

  Further, the setting registration unit 74 stores the user ID for in-house authentication received from the image forming apparatus 12 in association with the tenant ID received from the image forming apparatus 12, the login user ID, and the password. Register in the stored user information. In this way, by registering the user ID for in-house authentication received from the image forming apparatus 12 in the user information in association with the tenant ID, login user ID and password, the user can use the user ID for in-house authentication from the next time. Login using is possible.

<< Data processing function of service provision system >>
In the service providing system 2, the data processing control unit 81, the processing queue 82, the data processing requesting unit 83, and the data processing unit 84 of the platform 52 perform various data processing requested by the processing requesting unit 101 of the service application 51 as follows. Run like so.

  FIG. 12 is a diagram for explaining an example of a data processing function provided in the service providing system. The processing request unit 101 of the service application 51 records data to be processed in the data storage unit 93 of the management data storage unit 53. Data to be processed is data to be processed such as application data and image data.

  Further, the processing request unit 101 transmits a data processing request (hereinafter referred to as a request) to the data processing control unit 81 of the platform 52. The request to be transmitted includes the processing contents of the data processing and information on the recording destination of the processing target data (for example, URI).

  The data processing control unit 81 analyzes the received request and registers a message in a processing queue (message queue) 82 corresponding to the processing content of the data processing. A processing queue 82 is provided for each processing content of data processing.

  Further, the data processing control unit 81 registers request information in the data processing information storage unit 92 of the management data storage unit 53. The request information includes a recording destination of processing target data, a processing content of data processing, a request status, and the like.

  The request status includes “accepted”, “running”, “completed”, and the like. The request status represents a status indicating the processing status of data processing. The request status is “accepted” when the data processing control unit 81 registers the request information.

  Each data processing request unit 83 monitors one or more processing queues 82 assigned to each data processing request unit 83. That is, each data processing request unit 83 monitors requests for processing contents of one or more data processing. Each data processing request unit 83 acquires a message registered in the monitored processing queue 82.

  For example, in FIG. 12, the “first data processing request unit” 83 monitors the “first processing queue” 82 and the “second processing queue” 82 having different data processing contents. The “second data processing request unit” 83 monitors “first processing queue” 82 to “third processing queue” 82 having different data processing contents. FIG. 12 illustrates an example in which the “first data processing request unit” 83 and the “second data processing request unit” 83 monitor the “first processing queue” 82 and the “second processing queue” 82 in an overlapping manner.

  Note that the assignment of the processing queue 82 monitored by each data processing requesting unit 83 can be set and changed as appropriate. For example, it is conceivable that the assignment of the processing queue 82 monitored by each data processing request unit 83 is set and changed as appropriate according to the request frequency and processing time for each processing content of the data processing.

  The data processing request unit 83 acquires request information from the data processing information storage unit 92 based on the message acquired from the monitored processing queue 82. The data processing request unit 83 causes the data processing unit 84 to execute data processing of the request based on the recording destination of the processing target data included in the acquired request information and the processing content of the data processing.

  Next, the data processing request unit 83 updates the request information from the execution result of the data processing executed by the data processing unit 84, and registers the updated request information in the data processing information storage unit 92. The update of the request information includes a process of deleting the processing contents of the data processing executed from the request, a process of changing the request state if there is a change, and the like. Further, if the request information includes the details of the data processing to be performed next, the data processing request unit 83 registers the message in the processing queue 82 corresponding to the processing details of the data processing.

  The data processing request unit 83 records the processing target data after processing in the data storage unit 93 when the processing target data before and after the data processing are different due to the data processing unit 84 executing the data processing of the request. To do. Further, the data processing request unit 83 updates the request information in accordance with the information of the recording destination of the processed data after processing.

  FIG. 13 is a flowchart illustrating an example of a processing procedure of a data processing function included in the service providing system. In step S <b> 41, the processing request unit 101 of the service application 51 records the processing target data in the data storage unit 93 of the management data storage unit 53. Further, the processing request unit 101 transmits a request (data processing request) to the data processing control unit 81 of the platform 52.

  In step S42, the data processing control unit 81 analyzes the request and registers a message in the processing queue 82 according to the processing content of the data processing. Further, the data processing control unit 81 registers request information in the data processing information storage unit 92 of the management data storage unit 53.

  In step S <b> 43, each data processing request unit 83 acquires a message registered in the monitored processing queue 82 from the processing queue 82. In step S44, the data processing request unit 83 acquires request information from the data processing information storage unit 92 based on the acquired message. Then, the data processing request unit 83 causes the data processing unit 84 to execute the data processing of the request based on the acquired request information.

  In step S45, the data processing request unit 83 updates the request information from the execution result of the data processing executed by the data processing unit 84, and after registering the updated request information in the data processing information storage unit 92, the flowchart of FIG. Terminate the process.

  If the request information includes the processing content of the next data processing, the data processing requesting unit 83 registers the message in the processing queue 82 corresponding to the processing content of the data processing and then performs the processing of the flowchart of FIG. finish.

  Hereinafter, some specific examples of the processing contents of the data processing will be described, but the processing contents of the data processing are not limited to specific examples. As a specific example of the processing contents of data processing, firstly, there is data processing for converting the data format of processing target data.

  For example, data processing for converting image data into PDF (Portable Document Format) data is an example of data processing for converting the data format of processing target data. In the data processing for converting image data into PDF data, the processing content of the data processing is expressed as “image2pdf” or the like.

  Data processing for converting PDF data into PDL (Page Description Language) data is also an example of data processing for converting the data format of processing target data. In data processing for converting PDF data to PDL data, the processing content of the data processing is expressed as “pdf2pdl” or the like.

  Further, data processing for converting Microsoft (registered trademark) Office (registered trademark) document data into PDL data is an example of data processing for converting the data format of processing target data. In the data processing for converting Office document data into PDL data, the processing content of the data processing is expressed as “office2pdl” or the like.

  As a specific example of the processing content of the data processing, secondly, the processing content of one data processing is divided into the processing content of a plurality of data processing, and the request of each data processing unit 84 according to the processing content of the divided data processing There is data processing to convert to.

  For example, data processing for converting image data into PDL data can be realized by dividing data processing for converting image data into PDF data and data processing for converting PDF data into PDL data. In the data processing for converting the image data into PDL data, the processing content of the data processing is expressed as “image2pdl” or the like.

  For example, the data processing unit 84 executes data processing that divides a data processing request of “image2pdl” into data processing requests of “image2pdf” and “pdf2pdl”. As described above, the data processing unit 84 includes a unit that performs data processing in which one data processing request is divided into a plurality of data processing requests.

  Thus, for example, even if there is no data processing unit 84 that can execute “image2pdl” data processing, the data processing of “image2pdl” and “pdf2pdl” can be linked to perform desired “image2pdl” data processing. Can be executed.

  FIG. 14 is a diagram for explaining data processing in which the processing content of one data processing is divided into a plurality of processing details of data processing. FIG. 14 illustrates a case where there is no data processing unit 84 that can execute the data processing of “image2pdl”.

  Even in such a case, FIG. 14 shows that data processing of “image2pdl” and “pdf2pdl” can be linked to each other to execute desired data processing of “image2pdl”.

  Since the service providing system 2 according to the present embodiment can perform data processing in which the processing content of one data processing is divided into a plurality of processing details, it can flexibly cope with an increase in the types of processing content of the data processing.

  Further, as a specific example of the processing contents of the data processing, thirdly, there is data processing for linking with the external storage. For example, data processing for requesting the external cooperation authentication unit 80 to log in to the online storage 32 using an online storage account and password corresponding to the logged-in user is an example of data processing for cooperation with the external storage.

  Data processing for saving data in the logged-in online storage 32 and data processing for acquiring data from the logged-in online storage 32 are examples of data processing for linking with external storage.

<Linking with online storage>
FIG. 15 is a flowchart of an example of authorization setting for online storage. A user such as an administrator operates the input device 501 of the terminal device 11 and inputs a tenant ID, user ID, and password from the top screen of the portal site, and then requests login. Upon accepting the login request, the portal service application 61 displays the external service registration screen on the display device 502 of the terminal device 11 after permitting the login.

  In step S51, the user selects an online storage (external service) 32 to be used from the list of external services stored in the external service information of the management information storage unit 91 on the external service registration screen, and requests registration. .

  The portal service application 61 that has received the registration request requests the setting registration unit 74 to register the online storage 32 selected by the user. The setting registration unit 74 registers the online storage 32 selected by the user in the tenant information in the management information storage unit 91 in association with the tenant ID of the logged-in user.

  In step S52, the user selects the user ID of the user to whom the authorization setting is to be applied, the external service ID (or service name of the external service) for which the authorization setting is to be performed, and the scope to be set for the user on the portal site authorization setting screen. Request registration of authorization settings. The portal service application 61 receives an authorization setting request.

  In step S53, the portal service application 61 that has received the authorization setting request requests the authorization setting processing unit 75 for the authorization setting. The authorization setting processing unit 75 acquires parameters necessary for authorization setting from the external service information in the management information storage unit 91. In addition to the external service ID and scope, the parameters necessary for the authorization setting include a client ID associated with the selected external service ID, a redirect destination URL, and an arbitrary session key for maintaining the session. It is.

  In step S54, the authorization setting processing unit 75 that has acquired the parameters necessary for authorization setting acquires the authorization destination URL associated with the selected external service ID from the external service information in the management information storage unit 91. The authorization setting processing unit 75 redirects a request including a parameter necessary for authorization setting (a request using a parameter necessary for authorization setting as a GET request query) from the terminal device 11 to the authorization destination URL.

  By redirecting the request from the terminal device 11 to the authorization destination URL, authorization setting is performed between the terminal device 11 and the online storage 32. After the authorization setting, the session at the HTTP level is interrupted because the online storage 32 is redirected to the authorization setting processing unit 75. Therefore, the session key is used to maintain the same session.

  The redirected online storage 32 displays a login screen on the display device 502 of the terminal device 11. The user operates the input device 501 of the terminal device 11 to input an account and password from the login screen, and then requests login. The online storage 32 that has received the login request receives the login request.

  If the login is successful, the online storage 32 displays an authorization screen on the display device 502 of the terminal device 11. The user confirms the authorization screen. When performing the authorization, the user requests the authorization by operating the input device 501 of the terminal device 11 and, for example, pressing an authorization button displayed on the authorization screen. The online storage 32 that has received the authorization request registers the authorization.

  In step S55, the online storage 32 redirects the authorization code indicating that authorization has been granted and the session key from the terminal device 11 to the redirect destination URL. In step S56, the authorization setting processing unit 75 of the service providing system 2 receives the authorization code. If the user has already logged in when redirecting to the online storage 32, the display of the login screen is omitted.

  In step S <b> 56, the authorization setting processing unit 75 that has received the authorization code acquires parameters necessary for acquiring the authorization token from the external service information in the management information storage unit 91. In addition to the received authorization code, parameters necessary for obtaining the authorization token include a client ID and a client secret associated with the external service ID of the online storage 32 that has transmitted the authorization code.

  In step S57, the authorization setting processing unit 75 sends the acquired client ID and client secret and the received authorization code to the online storage 32 and requests acquisition of the authorization token. The online storage 32 verifies the received authorization code and transmits an authorization token to the authorization setting processing unit 75 of the service providing system 2.

  In step S58, the authorization setting processing unit 75 that has received the authorization token requests the setting registration unit 74 to register the authorization token. The setting registration unit 74 registers the user information in the management information storage unit 91 in association with the user to whom the authorization setting selected on the authorization setting screen is applied, the received authorization token, and the scope. When the registration of the authorization token is completed, the authorization setting processing unit 75 notifies the portal service application 61 of the completion of registration. The portal service application 61 displays a screen showing the setting result of the authorization setting on the display device 502 of the terminal device 11.

  When the online storage 32 sends the authorization token to the service providing system 2, it sends the expiration date of the authorization token and a refresh token for reissuing the authorization token when the expiration date has expired. May be.

  FIG. 16 is a flowchart of an example of a linkage process with the online storage. In step S <b> 61, the user who has logged in to the service providing system 2 requests processing to cooperate with the online storage 32 from the terminal device 11, the image forming device 12, or the like.

  When a process to cooperate with the online storage 32 is requested, the external cooperation authentication unit 80 of the service providing system 2 performs a login process to the online storage 32 in step S62.

  For example, the external cooperation authentication unit 80 receives a login request to the online storage 32 from the data processing unit 84. The external cooperation authentication unit 80 acquires, from the user information in the management information storage unit 91, information required for the login process associated with the user who has logged into the service providing system 2 and the online storage 32 that performs the login process. Specifically, the external cooperation authentication unit 80 acquires information required for the login process of the online storage 32 associated with the tenant ID of the user who has logged in the service providing system 2, the login user ID, and the password.

  For example, in the case of the user information in FIG. 6, when receiving a login request to “online storage A”, the external cooperation authentication unit 80 acquires an account and a password as information necessary for the login processing to “online storage A”.

  In the case of the user information shown in FIG. 6, when receiving a login request to “online storage B”, the external cooperative authentication unit 80 acquires an account and an authorization token as information necessary for the login processing to “online storage B”. To do.

  If the online storage 32 to be linked is not set to be authorized like “online storage A” and is an external service that performs login processing, the external linkage authentication unit 80 uses the account and password to make “online storage A”. Require login to. The account and password are examples of authentication information for the external service. The “online storage A” requested to log in executes authentication for the received account and password. If the authentication is successful, “online storage A” transmits a response to permit login to the external cooperation authentication unit 80. If the authentication fails, “online storage A” transmits a response not permitting login to the external cooperation authentication unit 80.

  When the external cooperation authentication unit 80 receives a response indicating that login is permitted from “online storage A”, the service providing system 2 uploads (saves) data to “online storage A” or from “online storage A”. Data can be downloaded (acquired).

  As described above, when the external cooperation authentication unit 80 receives the response indicating that the login is permitted from the online storage 32, the service providing system 2 can execute the processing in cooperation with the online storage 32 in step S63.

  If the linked online storage 32 is an external service for which authorization is set such as “online storage B”, the external linkage authentication unit 80 requests login to “online storage B” using an account and an authorization token. . An account and an authorization token are examples of authorization information for an external service. The “online storage B” requested to log in confirms the validity of the received account and authorization token. If the validity can be confirmed, “online storage B” transmits a response to permit login to the external cooperation authentication unit 80. If the authentication fails, “online storage B” transmits a response to the effect that login is not permitted to the external cooperation authentication unit 80.

  When the external cooperation authentication unit 80 receives a response indicating that login is permitted from “online storage B”, the service providing system 2 performs processing to cooperate with the online storage 32 within the use range set by the scope in step S63. Can be realized.

<< Process to restrict use of device functions >>
Hereinafter, in the information processing system 1 according to the present embodiment, a process for restricting the use of the device mounting function of the image forming apparatus 12 (use restriction process) will be described as an example. For example, in the information processing system 1 according to the present embodiment, the image forming apparatus 12 is configured to include a processing block as illustrated in FIG. 17 in order to implement processing for restricting the use of the device mounting function of the image forming apparatus 12. The

  FIG. 17 is a processing block diagram of an example of the image forming apparatus. The image forming apparatus 12 includes a log application 121, an authentication request unit 122, an external device control unit 123, an external device information acquisition unit 124, an authentication communication unit 125, a main body function unit 126, a log notification unit 127, a main body control unit 128, and the like. It is a configuration.

  The log application 121 is a functional unit that manages a log (operation log) issued when the device mounting function of the image forming apparatus 12 operates. The log application 121 receives a log in page units from a log notification unit 127 described later. The log application 121 transmits the log received from the log notification unit 127 to the service providing system 2.

  The authentication request unit 122 is a functional unit that cooperates with the print service application 62 included in the service providing system 2 and provides an authentication function to a user who is a usage target of the image forming apparatus 12. The authentication request unit 122 displays, for example, a login screen (GUI: Graphical User Interface) on an operation panel included in the image forming apparatus 12 and prompts input of authentication information. The authentication request unit 122 requests the user authentication (user device authentication) by transmitting the input authentication information to the print service application 62 via the authentication communication unit 125 described later.

  As a result, the authentication request unit 122 receives the authentication result returned from the print service application 62. At this time, when the user is authenticated, the authentication request unit 122 acquires authority information together with the authentication result. The authority information is information indicating functions that can be used by an authenticated user (authenticated user).

  The external device control unit 123 is a functional unit that controls the external device I / F. The external device information acquisition unit 124 is a functional unit that acquires (reads) storage information from the external device 130 via the external device I / F.

  With these functional units, the image forming apparatus 12 can read, for example, authentication information stored in a tag in the non-contact IC card. Therefore, the authentication request unit 122 can perform not only user authentication based on the authentication information input from the login screen but also user authentication based on the authentication information acquired by the external device information acquisition unit 124. That is, the image forming apparatus 12 can perform user authentication by holding a non-contact IC card over the external device I / F.

  The authentication communication unit 125 is a functional unit that performs data communication related to user authentication performed between the service providing system 2 and the image forming apparatus 12. For example, the authentication communication unit 125 transmits and receives authentication information and an authentication result through a network I / F included in the image forming apparatus 12.

  The main body function unit 126 is a function unit that provides a predetermined service to the user in the image forming apparatus 12. The image forming apparatus 12 can be equipped with a basic function related to input / output and an extended function that can be added / deleted linked to the basic function.

  In this embodiment, functions related to printing (output) are targeted for use restriction. Therefore, for example, when the image forming apparatus 12 is an MFP, functions such as copy, printer, and facsimile, which are basic functions related to output, are collectively referred to as a main body function unit 126.

  The log notification unit 127 is a functional unit that issues / notifies the log of the main body function unit 126 that operates in response to a function use request from an authenticated user in units of pages. When the main body function unit 126 (copy function) receives a copy request from an authenticated user, the log notification unit 127 issues and notifies a log as follows.

  For example, when one copy of a 5-page document is copied, a total of 5 logs are issued / notified in the order of processed pages. When five copies of a five-page document are copied, a total of 25 logs are issued / notified in the order of processed pages. Logs in page units are passed to the log application 121 in the order processed by the main body function unit 126.

  The main body control unit 128 is a functional unit that realizes the operating environment (platform) of the main body function unit 126. In addition, the main body control unit 128 controls activation, stop, termination, etc. of the main body function unit 126 (controls the life cycle of the device-mounted function). Accordingly, the main body control unit 128 can stop the operation of the main body function unit 126 (utilization function) in accordance with an instruction from the service providing system 2.

  Further, in the information processing system 1 according to the present embodiment, the print service application 62 is configured to include a processing block as illustrated in FIG. Is done.

  FIG. 18 is a processing block diagram of an example of the print service application. The print service application 62 includes an authentication request accepting unit 135, a usage restriction determining unit 136, a stop command effecting instructing unit 137, a log accepting unit 138, and the like. Note that the processing block diagram of FIG. 18 represents processing blocks necessary for explanation of processing for restricting the use of the device mounting function of the image forming apparatus 12.

  The authentication request receiving unit 135 receives a user authentication request based on authentication information (user ID, password, etc.) transmitted from the image forming apparatus 12. The authentication request reception unit 135 requests the user device authentication unit 78 of the platform 52 to execute authentication in response to the authentication request from the image forming apparatus 12. When the authentication is successful, the authentication request receiving unit 135 returns the authority information to the image forming apparatus 12 together with the authentication result. The log receiving unit 138 is a functional unit that receives a log from the image forming apparatus 12 and manages the log. The log reception unit 138 manages the log by storing the log in the data storage unit 93, for example.

  In addition, the usage restriction determination unit 136 receives the log received by the log receiving unit 138 from the image forming apparatus 12 in units of pages. Based on the log received from the log reception unit 138, the usage restriction determination unit 136 updates the cumulative consumption value that quantitatively indicates the cumulative consumption due to the past request operation to the latest value. The use restriction determination unit 136 determines whether or not use restriction is necessary by comparing the updated value (latest cumulative consumption) with the set upper limit value (use restriction value) for consumption.

  Further, the stop command effective instruction unit 137 stops the operation of the main body function unit 126 (usage function) to the main body control unit 128 of the image forming apparatus 12 based on the determination result of the necessity of use restriction by the use restriction determination unit 136. Specify in page units.

  FIG. 19 is a configuration diagram of an example of log data. The log data (log) illustrated in FIG. 19 is operation log data issued / notified in units of pages from the log notification unit 127. The page unit definition in FIG. 19 is a surface unit (front surface / back surface). Note that the page unit in FIG. 19 may be the number of sheets.

  The log data is delivered from the log application 121 to the log reception unit 138 of the print service application 62 at the issue / notification timing by the log notification unit 127. The log data is collected by the service providing system 2 and stored and managed in the data storage unit 93 or the like.

  As shown in FIG. 19A, the log data includes user information, device information, consumption resource information, and the like. Each piece of information such as user information, device information, and consumption resource information is configured with actual values (actual data) corresponding to the following items.

  The user information is information related to the authenticated user who made the operation request, and includes, for example, a tenant ID and a value corresponding to the user ID. The user ID may be a user name or the like as long as it is information that can identify the authenticated user. The device information is information related to the image forming apparatus 12 on which the function operates, and includes a value corresponding to a device identification item such as a device ID. The device ID may be a device name or the like, as long as it is information that can be used by the device used.

  The consumed resource information is information related to the resource consumed by the requested operation, and includes values corresponding to each consumed resource item such as a counter value, a color model, duplex / single-sided, paper size, use function, and the like. Note that the data example of the consumption resource item shown in FIG. 19B shows values when a document of paper size [A3] is copied for one page with [color] [single side].

  In the present embodiment, log data having such a configuration is issued by the log notification unit 127 in units of pages. Thereby, in this embodiment, the consumption resource per page at the time of printing is obtained.

  FIG. 20 is a configuration diagram of another example of user information. For example, the user information in FIG. 20 is obtained by adding use permission authority and use restriction information to the authentication information of the user information shown in FIG. The user information in FIG. 20 is referred to by the use restriction determination unit 136 of the print service application 62.

  As shown in FIG. 20A, the user information includes authentication information, usage restriction information, and the like. Each piece of information such as authentication information and usage restriction information is composed of actual values (actual data) corresponding to the following items.

  The use permission authority is an item in which a function (authorization information) for permitting use to the authenticated user is set. In the data example of FIG. 20B, values when a copy and a printer are set as use restriction information are shown.

  The usage restriction information is information related to the usage restrictions set for the user. For example, the usage restriction information corresponds to each usage restriction item such as a consumption calculation coefficient, an upper limit (use restriction value), and a current value (cumulative consumption). Value to be included. The consumption calculation coefficient is an item in which a coefficient K for calculating the consumption per page (a value to be added to the cumulative consumption up to now) by the requested operation is set. For example, the coefficient K is set in a table format as shown in FIG.

  As shown in FIG. 20C, for the coefficient K, coefficient values per page corresponding to items such as color, monochrome, single-sided, and double-sided are set for each function / print type. For example, in the data example shown in FIG. 20C, when color copying is performed, the consumption amount per page is calculated using the coefficient [3.0]. When color printing is performed using the function N, the consumption per page is calculated using the coefficient [2.0]. In the item of consumption calculation coefficient, a weight can be set for each user with respect to the consumption per page resulting from the execution of the use function.

  The item of the upper limit value (usage limit value) is an item in which an upper limit value that is the maximum permitted consumption amount for determining whether or not the use limit is required is set. Also, the current value (cumulative consumption) item is a value obtained by accumulating the consumption by the requested action calculated using the consumption calculation coefficient (a value that indicates the cumulative consumption by the past requested action quantitatively (cumulative up to the present). Consumption))) is an item to be set.

  Therefore, [0] is set as an initial value in the current value item. The item value of the item of the current value is increased by accumulating the calculated consumption amount for each page when the operation is executed. In the data example of the use restriction item shown in FIG. 20B, the consumption per page at the time of printing is calculated using [Coefficient 1] to [Coefficient n], and the use restriction is set by the upper limit value [25]. A value when the necessity is determined is shown.

  In the present embodiment, the user information shown in FIG. As a result, the service providing system 2 can perform user authentication in the image forming apparatus 12 and use restriction during printing.

  Hereinafter, a user authentication process and a use restriction process performed for restricting the use of the device mounting function of the image forming apparatus 12 in the information processing system 1 according to the present embodiment will be described.

  FIG. 21 is a sequence diagram illustrating an example of user authentication processing. In the information processing system 1 according to the present embodiment, the following user authentication processing is performed by the service providing system 2 and the image forming apparatus 12.

  In step S <b> 101, the authentication request unit 122 of the image forming apparatus 12 displays a login screen on the operation panel and waits for input of authentication information from the user U. In step S102, the authentication request unit 122 accepts input of authentication information such as a user ID and a password by the user U from the login screen.

  In step S103, the authentication request unit 122 transmits the input authentication information and the authentication information such as the tenant ID and the device ID held in its own storage area to the service providing system 2, thereby performing user authentication. Request. In step S <b> 104, the authentication request reception unit 135 included in the print service application 62 of the service providing system 2 requests the user device authentication unit 78 of the platform 52 to execute authentication according to the authentication request from the image forming apparatus 12. In step S105, the user device authentication unit 78 performs user device authentication as described above.

  In step S <b> 106, the user device authentication unit 78 returns an authentication result to the authentication request reception unit 135. In step S <b> 107, the authentication request reception unit 135 returns an authentication result to the authentication request unit 122 of the image forming apparatus 12. When the authentication is successful, the authentication request reception unit 135 returns the authority information together with the authentication result to the authentication request unit 122 of the image forming apparatus 12.

  If the authentication is successful, in step S108, the authentication request unit 122 of the image forming apparatus 12 displays a screen (use permission function screen) for notifying the user U of a function permitted to be used after authentication based on the authority information. indicate. For example, when receiving the authority information corresponding to the usage permission authority shown in FIG. 20, the authentication request unit 122 notifies the user U of the copy function and the printer function as functions permitted to be used after authentication. If the authentication request unit 122 fails in authentication, the authentication request unit 122 displays a screen (authentication error screen) for notifying the fact on the operation panel.

  In the information processing system 1, the user U logs in to the image forming apparatus 12 and can use the device mounting function by the above processing procedure.

  FIG. 22 is a sequence diagram illustrating an example of the usage restriction process. In the information processing system 1 according to the present embodiment, the following use restriction process is performed by the service providing system 2 and the image forming apparatus 12.

  In the following description, the authenticated user U is referred to as “authenticated user U”. Hereinafter, a processing procedure when the authenticated user U requests the image forming apparatus 12 for one copy of a single-sided color copy of a 6-page document will be described. Therefore, the main body function unit 126 is a copy function.

  In step S <b> 201, the image forming apparatus 12 receives a copy request from the authenticated user U. In step S202, the main body function unit 126 of the image forming apparatus 12 starts a request operation (copy operation) from the authenticated user U.

  The image forming apparatus 12 executes the processing procedure from step S203 to step S212 described below every time the copy operation for one page is completed, thereby restricting the use in units of pages. In step S203, the main body function unit 126 requests the log notification unit 127 to issue and notify a log related to the copy operation in units of pages when the copy operation for one page is completed.

  In step S <b> 204, the log notification unit 127 issues and notifies the log application 121 of a log in page units according to the request. In step S <b> 205, the log application 121 transmits the log notified from the log notification unit 127 to the log reception unit 138 included in the print service application 62 of the service providing system 2.

  In step S206, the log receiving unit 138 manages the received log by storing it in the data storage unit 93, for example. In step S207, the log reception unit 138 requests the usage restriction determination unit 136 to update the value of the current value (consumed cumulative value) item included in the usage restriction information in FIG. 20 to the latest value. At this time, the log reception unit 138 requests the usage restriction determination unit 136 to update the usage restriction information by passing a log for each page.

  In step S208, the use restriction determination unit 136, in response to a request for updating the use restriction information, obtains the latest cumulative consumption value including the copy operation for one page that has been executed based on the received page unit log. Calculate and update the value of the current value (cumulative consumption) item.

  The usage restriction determination unit 136 uses the value of consumption resource information included in the log and the consumption per page due to the execution of the copy operation based on the setting value (coefficient K) of the “consumption calculation coefficient” item in FIG. Calculate the amount (value to be added to the cumulative consumption until now). For example, when the usage restriction determination unit 136 calculates the consumption per page due to the execution of the copy operation based on the log shown in FIG. 19 and the user information shown in FIG. .

  The image forming apparatus 12 is requested by the authenticated user U to make a one-sided color copy of a 6-page document. The usage restriction determination unit 136 refers to the “consumption calculation coefficient” item of the usage restriction information based on the consumption resource information included in the log, and a coefficient K [3.0] for calculating the consumption per page. And [1.0]. Then, the usage restriction determination unit 136 uses the acquired coefficients K [3.0] and [1.0] to consume [3.0] (= 3.0) per page due to the execution of the copy operation. × 1.0 × 1 (page)) is calculated.

  When an authenticated user U requests one double-sided color copy of a 6-page document, a coefficient K [3.0] for calculating consumption per page based on consumption resource information included in the log. And [2.0]. The usage restriction determination unit 136 calculates a consumption amount [6.0] (= 3.0 × 2.0 × 1 (page)) per page resulting from the execution of the copy operation. In this way, the usage restriction determination unit 136 can calculate the consumption per page due to the requested action.

  Subsequently, the usage restriction determination unit 136 adds the calculated consumption [3.0] to the value [15] of the “current value (cumulative consumption)” item of the usage restriction information included in the user information. Then, the latest cumulative consumption value [18] (= 15 + 3) is calculated, and the value is updated. As described above, the usage restriction determination unit 136 can update the value of the cumulative consumption quantitatively indicating the cumulative consumption due to the past requested action with the consumption of the page unit due to the current requested action.

  In step S209, the use restriction determination unit 136 determines that the updated current value (latest cumulative consumption) exceeds the set value of the “upper limit (use restriction value)” item of the use restriction information included in the user information. It is determined whether or not. In this way, the use restriction determination unit 136 compares the updated current value (latest cumulative consumption) with the upper limit value (use restriction value) related to the set consumption, thereby determining whether or not use restriction is necessary. judge.

  For example, when the use restriction determination unit 136 determines whether or not use restriction is required for the copy function based on the user information illustrated in FIG. 20, the following is performed. The use restriction determination unit 136 compares the set value [25] of the “upper limit (use restriction value)” item of the use restriction information with the updated current value [18].

  Since the updated current value does not exceed the upper limit value (25> 18), the usage restriction determination unit 136 determines that it is not necessary to perform usage restrictions on the copy function. As described above, when the updated current value does not exceed the upper limit value, the usage restriction determination unit 136 determines that it is not necessary to perform usage restrictions on the copy function, and continues the processing of the next page.

  On the other hand, when the updated current value exceeds the upper limit value, the usage restriction determination unit 136 determines that it is necessary to perform usage restrictions on the copy function. For example, in the image forming apparatus 12, the copy operation proceeds by continuing processing, and when the copy operation for the fourth page is finished, the value of the “current value (cumulative consumption)” item is updated to [27] by the processing in step S208. The As a result, the use restriction determination unit 136 determines that it is necessary to restrict the use of the copy function because the updated current value exceeds the upper limit value (25 <27).

  If the use restriction determination unit 136 determines that the use restriction needs to be performed, in step S210, the use restriction determination unit 136 notifies the stop command activation instruction unit 137 of the determination result that the use restriction needs to be performed. In step S <b> 211, the stop command effecting instruction unit 137 instructs the main body control unit 128 of the image forming apparatus 12 to issue a stop command for instructing the operation stop of the main body function unit 126. When it is determined that usage restriction is necessary, the print service application 62 instructs the main body control unit 128 to issue a command to stop the copy function.

  In step S212, the main body control unit 128 can instruct the main body function unit 126 to stop the operation in units of pages in response to an instruction from the service providing system 2. In step S213, the main body function unit 126 displays a screen (logout screen) for notifying that the user has logged out on the operation panel after stopping the operation of the copy function.

  As described above, the image forming apparatus 12 can restrict the use function in units of pages based on the operation log for each page in the installed function executed in response to the function use request from the authenticated user U. .

<Summary>
As described above, according to the image forming apparatus 12 according to the present embodiment, when the function use request is received from the authenticated user U, the log notification unit 127 displays the operation log of the used function executed in response to the request in units of pages. Issue with Based on the issued operation log, the use restriction determination unit 136 of the service providing system 2 updates the accumulated consumption value quantitatively indicating the accumulated consumption due to the past requested operation to the latest value. The usage restriction determination unit 136 compares the latest cumulative consumption amount with the set usage restriction value, and can determine whether the usage restriction is necessary based on the comparison result. Based on the determination result of whether or not usage restriction is necessary, the stop command activation instruction unit 137 of the service providing system 2 can instruct the image forming apparatus 12 to stop the operation of the usage function in units of pages.

  As a result, the image forming apparatus 12 can restrict the use function in units of pages based on the operation log for each page in the installed function executed in response to the function use request from the authenticated user U.

In the information processing system 1 according to the present embodiment, it is possible to perform highly accurate usage restrictions on the device mounting functions. Further, in the information processing system 1 according to the present embodiment, it is possible to control the use restriction of the device mounting function according to a service providing destination such as a user, an organization, or a company. Furthermore, in the information processing system 1 according to the present embodiment, services provided to service providers such as users, organizations, and companies, devices that use the services, users, and the like are managed appropriately, and the use of device-mounted functions Limits can be realized.
[Second Embodiment]
In the first embodiment, the service providing system 2 determines whether usage restriction is necessary. In the second embodiment, the image forming apparatus 12 determines whether usage restriction is necessary. When the image forming apparatus 12 determines whether or not usage restriction is necessary, the time until the main body control unit 128 is instructed to stop the operation of the main body function unit 126 (use function) in page units is shortened. In the following description, parts different from the first embodiment will be described.

  FIG. 23 is a processing block diagram of another example of the image forming apparatus. The image forming apparatus 12 in FIG. 23 includes a log application 121, an external device control unit 123, an external device information acquisition unit 124, an authentication communication unit 125, a main body function unit 126, a log notification unit 127, a main body control unit 128, an authentication application 140, and the like. It is the composition which has. The authentication application 140 includes a usage restriction determination unit 141.

  The log application 121 manages the operation log received from the log notification unit 127 by storing and holding (saving) the operation log in the log holding unit 142. The log holding unit 142 corresponds to, for example, a predetermined storage area of a storage device (for example, HDD) included in the image forming apparatus 12. In addition, the log application 121 transmits the operation log received from the log notification unit 127 to the service providing system 2. As a result, the service providing system 2 and the image forming apparatus 12 retain and manage the same log.

  The authentication application 140 is a functional unit that cooperates with the print service application 62 included in the service providing system 2 and provides an authentication function to a user who is a usage target of the image forming apparatus 12. The authentication application 140 displays a login screen on the operation panel included in the image forming apparatus 12 and prompts input of authentication information. The authentication application 140 requests user authentication by transmitting the input authentication information to the print service application 62 via the authentication communication unit 125.

  As a result, the authentication application 140 receives the authentication result returned from the print service application 62. At this time, when the user is authenticated, the authentication application 140 acquires user information as shown in FIG. 20 managed by the service providing system 2 as an authentication result.

  Further, the authentication application 140 stores and holds (saves) the acquired user information in the user information holding unit 143. The user information holding unit 143 corresponds to, for example, a predetermined storage area of a storage device (for example, HDD) included in the image forming apparatus 12.

  Further, the use restriction determination unit 141 of the authentication application 140 determines whether or not use restriction is required for the authenticated user (use restriction is necessary). The operation log received from the log notification unit 127 by the log application 121 is passed to the usage restriction determination unit 141 in units of pages. Based on the received operation log, the usage restriction determination unit 141 updates the cumulative consumption value that quantitatively indicates the cumulative consumption due to the past requested operation to the latest current value. The usage restriction determination unit 141 determines whether or not the usage restriction is necessary by comparing the updated current value (latest cumulative consumption) with the set upper limit value (usage restriction value).

  As a result, the use restriction determination unit 141 of the authentication application 140 instructs the main body function unit 126 to stop the operation for the use function in units of pages via the main body control unit 128 based on the determination result of necessity restriction. it can.

  The current value and the upper limit value are included in the user information received as an authentication result from the service providing system 2 by the authentication application 140. That is, the authentication application 140 accesses the user information holding unit 143 and updates the current value included in the user information of the authenticated user. In addition, the use restriction determination unit 141 accesses the user information holding unit 143, refers to the upper limit value included in the user information of the authenticated user, and determines whether or not use restriction is necessary.

  The authentication application 140 can perform not only user authentication based on the authentication information input from the login screen but also user authentication based on the authentication information acquired by the external device information acquisition unit 124. The main body control unit 128 can stop the operation of the main body function unit 126 (use function) in accordance with an instruction from the use restriction determination unit 141 of the authentication application 140.

  Further, in the information processing system 1 according to the present embodiment, the print service application 62 is configured to include a processing block as shown in FIG. 24 in order to realize processing for restricting the use of the device mounting function of the image forming apparatus 12. Is done.

  FIG. 24 is a processing block diagram of another example of the print service application. The print service application 62 includes an authentication request receiving unit 135, a log receiving unit 138, and the like. The processing block diagram of FIG. 24 represents processing blocks necessary for explaining processing for restricting the use of the device mounting function of the image forming apparatus 12.

  The authentication request receiving unit 135 receives a user authentication request based on authentication information (user ID, password, etc.) transmitted from the image forming apparatus 12. The authentication request reception unit 135 requests the user device authentication unit 78 of the platform 52 to execute authentication in response to the authentication request from the image forming apparatus 12. When the authentication is successful, the authentication request accepting unit 135 returns the user information as shown in FIG. 20 to the image forming apparatus 12 together with the authentication result. The log receiving unit 138 is a functional unit that receives a log from the image forming apparatus 12 and manages the log. The log reception unit 138 manages the log by storing the log in the data storage unit 93, for example.

  Hereinafter, a user authentication process and a use restriction process performed for restricting the use of the device mounting function of the image forming apparatus 12 in the information processing system 1 according to the present embodiment will be described.

  FIG. 25 is a sequence diagram of another example of user authentication processing. In the information processing system 1 according to the present embodiment, the following user authentication processing is performed by the service providing system 2 and the image forming apparatus 12.

  In step S301, the authentication application 140 of the image forming apparatus 12 displays a login screen on the operation panel and waits for input of authentication information from the user U. In step S302, the authentication application 140 receives input of authentication information from the user U from the login screen.

  In step S303, the authentication application 140 requests the user authentication by transmitting the input authentication information and the authentication information such as the tenant ID and the device ID held in its own storage area to the service providing system 2. To do. The processing in steps S304 to S306 is the same as that in steps S104 to S106 in FIG.

  In step S <b> 307, the authentication request receiving unit 135 returns an authentication result to the authentication application 140 of the image forming apparatus 12. When the authentication is successful, the authentication request receiving unit 135 returns the user information shown in FIG. 20 to the authentication application 140 of the image forming apparatus 12 together with the authentication result.

  If the authentication is successful, the authentication application 140 stores the acquired user information in the user information holding unit 143 in step S308. In step S309, the authentication application 140 notifies the user U of a function permitted to be used after authentication based on the setting value of the “use permission restriction” item included in the stored user information. Is displayed. On the other hand, if the user U is not authenticated, the authentication application 140 displays an authentication error screen notifying that on the operation panel.

  In the information processing system 1, the user U logs in to the image forming apparatus 12 and can use the device mounting function by the above processing procedure.

  FIG. 26 is a sequence diagram of another example of the usage restriction process. In the information processing system 1 according to the present embodiment, the following use restriction process is performed by the service providing system 2 and the image forming apparatus 12.

  The processing in steps S401 to S404 is the same as the processing in steps S201 to S204 in FIG. In step S <b> 405, the log application 121 stores the issued / notified log in the log holding unit 142.

  In step S <b> 406, the log application 121 requests the authentication application 140 to update the value of the “current value (consumed accumulated value)” item included in the user information held by the user information holding unit 143. At this time, the log application 121 requests the update of user information by passing a log for each page to the authentication application 140.

  In step S407, the usage restriction determination unit 141 of the authentication application 140 calculates the latest cumulative consumption value including the copy operation for one page that has been executed based on the received page unit log, and the current value (cumulative consumption). Update the value of the quantity field.

  The usage restriction determination unit 141 uses the value of consumption resource information included in the log and the consumption per page due to the execution of the copy operation based on the setting value (coefficient K) of the “consumption calculation coefficient” item in FIG. Calculate the amount (value to be added to the cumulative consumption until now).

  In step S408, the usage restriction determination unit 141 causes the updated current value (latest cumulative consumption) to exceed the set value of the “upper limit (usage restriction value)” item of the usage restriction information included in the user information. It is determined whether or not. In this way, the usage restriction determination unit 141 compares the updated current value (latest cumulative consumption amount) with the upper limit value (usage restriction value) related to the set consumption, thereby determining whether or not the usage restriction is necessary. judge.

  If the updated current value does not exceed the upper limit value (NO in step S409), the usage restriction determination unit 141 determines that it is not necessary to perform usage restrictions on the copy function, and continues processing for the next page. On the other hand, when the updated current value exceeds the upper limit value (YES in step S409), the usage restriction determination unit 141 determines that usage restriction needs to be performed on the copy function.

  If the use restriction determination unit 141 determines that the use restriction is necessary, in step S410, the use restriction determination unit 141 instructs the main body control unit 128 to issue a command to stop the copy function. In step S <b> 411, the main body control unit 128 receives an instruction from the use restriction determination unit 141 and instructs the main body function unit 126 to stop the operation.

  As described above, in the image forming apparatus 12, the use function is restricted in units of pages based on the operation log for each page in the installed function executed in response to the function use request from the authenticated user U.

  In step S412, the main body function unit 126 displays a screen (logout screen) for notifying that the user has logged out on the operation panel after stopping the operation of the copy function. In step S413, the main body function unit 126 further notifies the log application 121 that the logout has been performed.

  In step S <b> 414, the log application 121 receives the notification that the logout has been performed, and transmits the page unit log stored in the log holding unit 142 to the print service application 62 of the service providing system 2.

  In step S415, the log reception unit 138 of the print service application 62 stores the received log. In step S416, the log receiving unit 138 requests the authentication request receiving unit 135 to update the value of the “current value (consumed accumulated value)” item included in the user information held by the user information holding unit 143. .

  In step S417, the authentication request reception unit 135 calculates the latest cumulative consumption value including the executed copy operation based on the received page unit log, and the value of the “current value (cumulative consumption)” item. Update. As described above, the information processing system 1 unifies and manages user information held by the service providing system 2 and the image forming apparatus 12.

<Summary>
In the information processing system 1 according to the present embodiment, the image forming apparatus 12 can determine whether or not usage restriction is necessary, and the time until the operation stop of the main body function unit 126 (usage function) is instructed in units of pages is fast. Become.

  The present invention is not limited to the specifically disclosed embodiments, and various modifications and changes can be made without departing from the scope of the claims. For example, in the information processing system 1 according to the present embodiment, an example has been described in which the print service application 62 realizes the function on the service providing system 2 side for realizing the process of restricting the use of the device mounting function of the image forming apparatus 12. .

  The function on the service providing system 2 side for realizing the process of restricting the use of the device mounting function of the image forming apparatus 12 is realized by, for example, providing a use restriction service application in the service application 51 and using the use restriction service application. May be. Further, in the information processing system according to the present embodiment, the example in which the operation of the use function is stopped when it is determined that the use restriction is necessary has been described, but processing that leads to the use restriction, such as a warning display or notification to the administrator Any process may be used. Further, in the information processing system 1 according to the present embodiment, the use restriction is performed in units of pages. However, the use restriction may be performed in units of planes and jobs, or the use restriction may be performed during login. .

  Note that the service use device described in the claims corresponds to the terminal device 11, the image forming device 12, and the like. The authentication information receiving means corresponds to the portal service application 61 and the like. The authentication unit corresponds to the user authentication unit 77, the user device authentication unit 78, and the like. The service specifying means corresponds to the portal service application 61 or the like. The execution unit corresponds to the print service application 62, the data processing control unit 81, the processing queue 82, the data processing request unit 83, the data processing unit 84, and the like. The log receiving unit corresponds to the log receiving unit 138 and the like. The use restriction determination unit corresponds to the use restriction determination unit 136 or 141. The stop instruction means corresponds to the stop command effective instruction unit 137 and the like. The information receiving means corresponds to the authentication application 140 or the like. The stopping means corresponds to the main body control unit 128 and the like. The log transmission means corresponds to the log application 121 or the like.

DESCRIPTION OF SYMBOLS 1 Information processing system 2 Service provision system 11 Terminal apparatus 12 Image forming apparatus 13 Authentication apparatus 14 Other apparatus 21 Access control apparatus 22 Print service provision apparatus 23 Distribution service provision apparatus 24 Portal service provision apparatus 26 Authentication apparatus 27 Data processing control apparatus 28 Data processing execution control device 29 Data processing device 31 Mail server 32 Online storage 51 Service application 52 Platform 53 Management data storage unit 54 Platform API (Application Programming Interface)
61 Portal service application 62 Print service application 63 Distribution service application 71 Communication unit 72 Access control unit 73 Mail transmission unit 74 Setting registration unit 75 Authorization setting processing unit 76 License authentication unit 77 User authentication unit 78 User device authentication unit 79 Internal cooperation authentication unit 80 External Cooperation Authentication Unit 81 Data Processing Control Unit 82 Processing Queue 83 Data Processing Request Unit 84 Data Processing Unit 91 Management Information Storage Unit 92 Data Processing Information Storage Unit 93 Data Storage Unit 101 Processing Request Unit 121 Log Application 122 Authentication Request Unit 123 External Device control unit 124 External device information acquisition unit 125 Authentication communication unit 126 Main body function unit 127 Log notification unit 128 Main body control unit 130 External device 135 Authentication request reception unit 136 Usage restriction determination unit 137 Stop command effective indication Part 138 log receiving unit 141 usage restriction judging unit 142 log holding unit 143 the user information holding unit 500 the computer system 501 input device 502 display device 503 external I / F
503a Recording medium 504 RAM
505 ROM
506 CPU
507 Communication I / F
508 HDD
B bus FW firewall N1-N3 network

JP 2011-59631 A

Claims (13)

A service providing system configured to provide a service to a service using device configured by one or more information processing devices and connected via a network,
Service identification information of the service to be provided, the user identification information of the user who uses the service, device identification information before SL service using apparatus, and management information storage for storing management information that associates a service providing destination identification information of the service Means,
Authentication information receiving means for receiving service providing destination identification information and user authentication information used for user authentication or service providing destination identification information and device authentication information used for device authentication as authentication information from the service using device;
An authentication means for executing authentication processing of the received authentication information;
A service specifying means for specifying the service associated with the authentication information based on the authentication information and the management information when the authentication information is authenticated;
An execution means for executing processing according to the service use request when receiving the specified service use request from the service use device;
Log receiving means for receiving an operation log of a function executed in the service using apparatus from the service using apparatus that has authenticated the authentication information;
Based on the operation log, use restriction determination means for determining whether to perform use restriction on a function executed in the service use device;
Stop instruction means for instructing the service using device to stop execution of the function based on the result of the determination;
A service providing system comprising: The usage restriction determination means updates a cumulative consumption value that quantitatively indicates cumulative consumption by a function executed in the past in the service utilization device based on the operation log, and the updated cumulative consumption value, The service providing system according to claim 1, wherein it is determined whether or not use restriction is performed on a function executed in the service using device by comparing with a set upper limit value related to consumption. The usage restriction determination means includes consumption resource information related to resources consumed by the function executed in the service utilization device included in the operation log, and a consumption calculation coefficient for calculating consumption from the consumption resource information The service providing system according to claim 2, further comprising: calculating a consumption amount based on a function executed in the service using device. 4. The service providing system according to claim 3, wherein the cumulative consumption value, the upper limit value, and the consumption calculation coefficient are set in association with the user identification information. The log accepting unit accepts the operation log from the service using device in page units, surface units, or job units,
The usage restriction determination unit determines whether to perform usage restriction on a page unit, a surface unit, or a job unit for a function executed in the service utilization device based on the operation log. The service providing system according to any one of 1 to 4. Among the service identification information, for identifying a first service and registering the first service identification information that is a license of the first service and a service that provides the first service identification information License information storage means for storing license information associated with the information;
A license that accepts a registration request including the first service identification information and the registration information, and executes a license authentication process based on the accepted first service identification information and the registration information and the license information Authentication means;
2. A setting registration unit for registering in the management information as a service for providing the received first service identification information when validity is confirmed by a license authentication process. The service providing system according to any one of 5. The management information storage means stores first user identification information and second user identification information as user identification information of a user who logs in to the service providing system,
The authentication information receiving means receives either the first user authentication information or the second user authentication information authenticated by another authentication device as user authentication information used for user authentication from the service using device. And
The authentication means executes a user authentication process based on the first user authentication information and the first user identification information when the authentication information receiving means receives the first user authentication information, The authentication information receiving means, when receiving the second user authentication information, executes a user authentication process based on the second user authentication information and the second user identification information. The service provision system described. The management information storage means stores third user authentication information as user authentication information of a user who logs in to an external service connected to the service providing system via a network,
The execution means, based on the third user authentication information of the user authenticated by the authentication means, when the process according to the service use request includes a process linked to the external service, 8. The service providing system according to claim 6, wherein a login process to the service is executed. Execution request information storage means for storing execution request information of processing according to the service use request for each processing content;
Data processing control means for registering execution request information for executing specific data processing in the execution request information storage means for each processing content in response to a request to use the service;
A plurality of data processing means for executing data processing according to the processing content in accordance with the execution request information stored in the execution request information storage means;
With
7. The data processing means registers execution request information for the next data processing in the execution request information storage means for each processing content when there is next data processing after execution of the data processing. The service provision system as described in any one of thru | or 8. The plurality of data processing means include at least
Data for registering the generated execution request information in the execution request information storage means as execution request information for the next data processing after executing data processing for generating a plurality of the execution request information according to the execution request information Including processing means,
The service providing system according to claim 9. An information processing system comprising one or more service using devices and a service providing system including one or more information processing devices that provide services to the service using devices,
The service providing system includes:
Service identification information of the service to be provided, the user identification information of the user who uses the service, device identification information before SL service using apparatus, and management information storage for storing management information that associates a service providing destination identification information of the service Means,
Authentication information receiving means for receiving service providing destination identification information and user authentication information used for user authentication or service providing destination identification information and device authentication information used for device authentication as authentication information from the service using device;
An authentication means for executing authentication processing of the received authentication information;
A service specifying means for specifying the service associated with the authentication information based on the authentication information and the management information when the authentication information is authenticated;
An execution means for executing processing according to the service use request when receiving the specified service use request from the service use device;
Have
The service using device is:
Information receiving means for receiving information necessary for determining whether or not to restrict the use of the function executed from the service providing system;
Use restriction determination means for determining whether to restrict use of the executed function based on an operation log of the executed function and information received by the information receiving means;
Stop means for stopping the execution of the function based on the result of the determination;
Log transmission means for transmitting the operation log to the service providing system;
An information processing system comprising: A usage restriction method executed in a service providing system configured to provide a service to a service usage device configured by one or more information processing devices and connected via a network,
Service identification information of the service to be provided, the user identification information of the user who uses the service, device identification information before SL service using apparatus, and management information storage for storing management information that associates a service providing destination identification information of the service Steps,
An authentication information receiving step of receiving service providing destination identification information and user authentication information used for user authentication or service providing destination identification information and device authentication information used for device authentication as authentication information from the service using device;
An authentication step for executing authentication processing of the received authentication information;
A service specifying step of specifying the service associated with the authentication information based on the authentication information and the management information when the authentication information is authenticated;
An execution step of executing processing according to the service use request when receiving the specified service use request from the service use device;
A log receiving step for receiving an operation log of a function executed in the service using apparatus from the service using apparatus that has authenticated the authentication information;
A use restriction determination step for determining whether to perform use restriction for the function executed in the service use device based on the operation log;
Based on the result of the determination, a stop instruction step for instructing the service using device to stop execution of the function;
A use restriction method comprising: A service providing system configured to provide a service to a service using device configured by one or more information processing devices and connected via a network;
Service identification information of the service to be provided, the user identification information of the user who uses the service, device identification information before SL service using apparatus, and management information storage for storing management information that associates a service providing destination identification information of the service means,
Authentication information receiving means for receiving service providing destination identification information and user authentication information used for user authentication or service providing destination identification information and device authentication information used for device authentication as authentication information from the service using device;
An authentication means for executing authentication processing of the received authentication information;
A service specifying means for specifying the service associated with the authentication information based on the authentication information and the management information when the authentication information is authenticated;
Execution means for executing processing according to the service use request when receiving the specified service use request from the service use device;
Log receiving means for receiving an operation log of a function executed in the service using apparatus from the service using apparatus that has authenticated the authentication information;
Use restriction determination means for determining whether to perform use restriction on the function executed in the service use device based on the operation log;
Stop instruction means for instructing the service using device to stop executing the function based on the result of the determination;
Program to function as.

Images