WO2009132529A1 - Procédé et dispositif pour valider des données de formulaire web - Google Patents

Procédé et dispositif pour valider des données de formulaire web Download PDF

Info

Publication number
WO2009132529A1
WO2009132529A1 PCT/CN2009/070473 CN2009070473W WO2009132529A1 WO 2009132529 A1 WO2009132529 A1 WO 2009132529A1 CN 2009070473 W CN2009070473 W CN 2009070473W WO 2009132529 A1 WO2009132529 A1 WO 2009132529A1
Authority
WO
WIPO (PCT)
Prior art keywords
verifier
module
client
script code
data
Prior art date
Application number
PCT/CN2009/070473
Other languages
English (en)
Chinese (zh)
Inventor
刘建军
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2009132529A1 publication Critical patent/WO2009132529A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures

Definitions

  • the present invention relates to the field of network applications, and in particular, to a method and apparatus for web page form data verification.
  • the above verification of the data input by the user can be divided into two ways: the first is to verify the data of each input field of the form through the script language on the client browser side, for example, the user name cannot be empty, then The script language can be used to determine whether there is a value in the user name input box of the form; the second way is to perform verification on the server side, that is, through server-side logic code (such as Java).
  • server-side logic code such as Java
  • the WEB framework can save a lot of code writing, it is common in WEB-based applications.
  • the WEB framework is used, and the verification function of the web form data is completed through the WEB framework.
  • a scheme for realizing web form data verification based on WEB framework in the prior art is: realizing client and server side verification; on the server side, script logic code is generated by a template module using a template technology. After generating the form, the script module finds the validator identifier associated with each input field by finding the correspondence relationship between the user input field of the configured form and the validator identifier required by the domain, and generates a verification script by using the identifier. Code, these verification script code is used by the client to verify the data in the input field. And the data verification of the server end is completed by the verifier corresponding to the verifier identifier associated with the input domain.
  • the verification logic implementation of the server side is completed in the validator, which is completed by the verification logic of the validator itself, and the logic code for the data verification of the client is generated by the script module of the client according to the verification identifier through the template. Because the client's verification logic code and the server-side verification logic are implemented by different objects, that is, the logical implementation of the two is separated, which easily leads to inconsistency between the client and server side verification logic, and the verification logic is more different. , which increases the chances of system errors and maintenance costs.
  • the embodiment of the invention provides a method and a device for verifying data of a webpage form, so as to reduce the inconsistency between the verification logic of the client and the server, thereby reducing the probability of system errors.
  • a validator including:
  • the interface module includes a specified interface, and after the specified interface is called, outputting a script code for client data verification;
  • the verification module is used to verify the data in the form field in the web form to be verified after being triggered for data verification on the server side.
  • a device for verifying web form data comprising:
  • a verifier management module for managing at least one verifier
  • a script module configured to receive a call request for generating script code, according to a webpage included in the call request Form field information in the form, obtaining a validator associated with the form field in the validator managed by the validator management module, and obtaining the script code for client data verification by calling the validator, the script Code output, the script code is used by the client to verify data in the form field
  • a web framework comprising:
  • the framework main module is configured to receive a web request sent by the client to obtain a form page, generate a page content of the form page, invoke a script module to generate a script code, and return the content of the page and the script code returned by the script module to The client;
  • a verifier management module for managing at least one verifier
  • a script module configured to: after receiving the call request for generating the script code, obtain the validator and the webpage form managed by the validator management module according to the form field information in the webpage form included in the call request A validator associated with the form field in the library, obtains script code for client data verification by calling the validator, and returns the script code to the framework main module.
  • a method for data validation of web form forms comprising:
  • the embodiment of the present invention reduces the need for the webpage form by causing the verifier to be responsible for both the server-side data verification and the client-side data verification script code. After data validation, there is a disagreement between the server-side and client-side validation logic.
  • FIG. 1 is a schematic structural diagram of a verifier according to an embodiment of the present invention
  • FIG. 2 is a schematic structural diagram of an apparatus for verifying data of a webpage form according to an embodiment of the present invention
  • FIG. 3 is a schematic structural diagram of a web framework according to an embodiment of the present invention.
  • FIG. 4 is a flowchart of a method for verifying data of a webpage form according to an embodiment of the present invention
  • FIG. 5 is a first interaction flowchart of a method for verifying data of a webpage form according to an embodiment of the present invention
  • 6 is a second interaction flowchart of a method for verifying data of a webpage form according to an embodiment of the present invention
  • FIG. 7 is a schematic diagram of a processing procedure of adding a verifier according to an embodiment of the present invention
  • FIG. 8 is a schematic diagram of a processing procedure of a modified verifier according to an embodiment of the present invention.
  • FIG. 9 is a schematic diagram of a processing procedure of a deletion verifier according to an embodiment of the present invention.
  • the embodiment of the invention provides a method for verifying webpage form data and a corresponding device.
  • the verification of the server and the verification of the client are related by a mechanism.
  • the verification logic of the server and the client may be uniformly defined by the association verifier and the verification domain, and the verification device of the embodiment of the present invention It is responsible for both server-side data validation and script code for outputting client-side data validation, thereby reducing the inconsistency between server-side and client-side validation logic. The details are explained below.
  • the communication system includes a server end and a client end, wherein the server end is configured to receive a web request for obtaining a form page from the client, generate a page content of the corresponding form page, and use the client for the page content.
  • the script code of the end data verification is returned to the client for the browser of the client to parse and display the corresponding interface.
  • the script code for client data verification herein refers to script code for the client to verify the data input in the form field in the web form; wherein the form field in the web form may be associated with one or Multiple validators; for example: A form field in a web form, such as the "user name" field, can be associated with two validators.
  • One is to verify that the null cannot be valid, and the other is a validator that detects the length.
  • the client is configured to send a web request for obtaining a form page to the server, and receive data submitted (or input) in each form field of the webpage form displayed by the user, according to a script code pair returned by the server side.
  • the data in the corresponding form field is verified.
  • the server uses the validator for the corresponding The data in the form field is verified.
  • the structure of the validator provided by the embodiment of the present invention is as shown in FIG. 1 , wherein the validator is used for data verification on the server side (ie, providing server-side Verification logic), providing relevant interface to realize the output of the client verification script code, and other modules obtain the script code for client data verification by calling the interface; mainly including the following modules [46]
  • the verification module 11 is configured to verify data in the form field in the webpage form that needs to be verified after being triggered to perform data verification on the server side; in an implementation, the verification module 11 is specifically used to be After triggering the server-side data verification, the data in the form field in the web form to be verified is verified according to the set verification logic for server-side verification.
  • one or more verification logics may be set in one verifier
  • the data verification script code of the client may be at least one of multiple verification logics, for example: three verifications of A, B, and C exist in the verifier Logic
  • the client's data validation script code can be A, or A, B, or A, B, C.
  • the interface module 12 includes a specified interface, and after the specified interface is called, outputs script code for client data verification. Depending on the needs of client-side validation, developers can allow a small amount of difference between the client and server-side authentication logic.
  • the interface module 12 is a second interface module, and includes a second designated interface. After the specified interface is invoked, a script code for client data verification is generated, and is output. The script code;
  • the interface module 12 is pre-configured with script code for client data verification, and the interface module 12 is a third interface module, including a third designated interface. After the specified interface is invoked, the output is pre- Configured script code for client data validation.
  • the interface module 12 is a first interface module, and is configured to provide a first designated interface, where the first designated interface is invoked. , outputting the same script code as the verification logic of the verification module 11, which is used for client data verification.
  • the verifier in the embodiment of the present invention is also called and outputs script code for client data verification to the client, and the browser of the client uses the script code to perform data verification.
  • Verification which reduces the server-side and client-side verification logic inconsistency, and can also output the same script code as the verification module's verification logic through the verifier, so that the server-side and client-side verification logics are consistent, thereby reducing the chance of system errors and System maintenance costs.
  • FIG. 2 A schematic structural diagram of an apparatus for verifying webpage form data provided by an embodiment of the present invention is shown in FIG. 2, and includes the following modules: [53]
  • the verifier management module 24 is configured to manage at least one verifier, and maintain correspondence information between the identifier of the verifier and the verifier, wherein different verifiers implement different verification logics, and each verifier corresponds to Authenticator ID, by the identity of the validator,
  • the identifier of the verifier is information for identifying and distinguishing different verifiers, which may be a verifier name, a verifier number, etc., which may be in the form of a number, or a character, or A combination of numbers and characters, for example: ⁇ use different strings to represent the validator names of different validators;
  • the script module 22 is configured to receive a call request for generating a script code, where the call request includes form field information of a webpage form, and obtain the verifier management module 24 according to the form domain information included in the call request. a verifier in the managed verifier associated with the form field in the web form, by calling the verifier to obtain script code for client data verification, outputting the script code, the script code being used for the client Verify the data in the form field.
  • the web form involves multiple form fields, and each form field is associated with one or more validators.
  • the form field and the validator can be associated with each other.
  • the above is to maintain the association information between the form field identifier and the validator identifier; here, the form field identifier is information for identifying and distinguishing different form fields, for example: the form field name, etc.; correspondingly, the above web form data verification
  • the device can also include:
  • the association module 23 is configured to store association information between the form field identifier and the validator identifier. For example, the age field in the form to add a new user must enter a range of integers, so the age field can be associated with a validator that verifies the range and validates the input data as an integer.
  • a form field ID can be associated with one or more validator IDs.
  • the script module 22 is a first script module, configured to obtain, after receiving the call request for generating the script code, the associated domain module according to the form field identifier information of the webpage form included in the call request.
  • the form field identifies the associated verifier identifier, and obtains the corresponding verifier from the verifier management module 24 through the verifier identifier, and obtains a script code for client data verification by calling the verifier, preferably,
  • the script code is the same script code as the verification logic of the verifier, and the script code is output, and the script code is used by the client to verify data in the form field.
  • the apparatus for verifying webpage form data may further include: at least one verifier; wherein The verifier is used by the verifier management module 24 to provide a specified interface. After the specified interface is called by the script module 22, the script code for client data verification is returned. In one implementation, the script code returned by the validator for client data validation is the same script code as the validator's validation logic.
  • the device for verifying webpage form data may further include:
  • the server verification module 21 is configured to: after receiving the data input by the client and the content of the webpage interface, obtain the verification associated with the form field in the webpage form according to the association information stored in the association module 23.
  • the identifier of the identifier is obtained, and the corresponding verifier managed by the verifier management module 24 is obtained according to the identifier of the verifier, and the obtained data in the form field in the webpage form passed by the client is verified by the verifier. authenticating.
  • the verifier management module 24 can perform management operations such as adding, deleting, and/or modifying the verifier without modifying other modules.
  • the verifier management module 24 The first verifier management module 24 is configured to add, delete, and/or modify the verifier according to the obtained configuration information, where the configuration information includes verifier information related to the verifier to be updated, and maintains the verification. Correspondence information between the identifier of the device and the validator. Specifically, the information about the validator can be obtained by reading the configuration file, for example: According to the actual application, if a new validator needs to be added, it can be obtained by reading the configuration file containing the related information of the new validator. The new validator information is thus completed by adding a validator.
  • the framework is used to complete the verification function of the webpage form data.
  • FIG. 3 a schematic diagram of the structure of the web framework provided by the embodiment of the present invention is used to obtain a verifier associated with the form field in the webpage form, by calling the verification.
  • the framework main module 31 is configured to receive a web request for acquiring a form page sent by the client, generate a page content of the form page, invoke a script module to generate a script code, and send the page content and the script code returned by the script module to The client.
  • a verifier management module 34 for managing at least one verifier and maintaining the identity and verification of the verifier Correspondence information between the devices themselves can be added, deleted, and/or modified to the manager without modifying other modules.
  • a script module 35 configured to acquire, in the verifier managed by the verifier management module 34 , the webpage managed by the verifier management module 34 , according to the form field information of the webpage form included in the invocation request, after receiving the invoking request for generating the script code
  • a form field associated verifier in the form obtains script code for client data verification by calling the verifier, and returns the script code to the framework main module 31.
  • the script code for client data validation herein may be the same scripting code as the verifier's validation logic, such that the client and server side validation logic is consistent.
  • the web framework for web page data verification described above may further include:
  • the association module 33 is configured to store association information between the form domain identifier and the authenticator identifier.
  • the identifier of the verifier is information for identifying and distinguishing different verifiers, which may be a verifier name, a verifier number, etc., and may be in the form of a number, or a character, or a combination of numbers and characters, for example: Use different strings to represent the validator names of different validators; form fields are identified as information used to identify and distinguish between different form fields, such as: form field name, etc.; for example, the age field in the form to add a new user must be entered A range of integers, so the age field can be associated with a validator that verifies the range and validates the input data as an integer.
  • a form field can be associated with one or more validators, that is, a form field identifier can be associated with one or more validator IDs.
  • the script module 35 is a first script module 35, specifically for receiving the request for generating the script code, according to the form field identification information of the webpage form included in the call request, from the association module 3 3 Obtaining a validator identifier associated with the form field identifier in the web form, and obtaining the corresponding validator from the verifier management module 34 through the verifier identifier, and obtaining the script code for client data verification by calling the verifier, preferably
  • the script code may be the same script code as the verification logic of the verifier, and the script code is returned to the framework main module 31, and the script code is used by the client to verify the data in the form field.
  • the same script code as the verification logic of the verifier can be obtained by calling the specified interface of the verifier.
  • the framework main module 31 is also used to input the data and webpage input by the client.
  • the interface content is output to the server verification module 32;
  • the web framework for web page data verification described above may further include:
  • the server verification module 32 is configured to obtain, according to the user input data and the webpage interface content submitted by the client output by the framework main module 31, according to the association information stored in the association module 33, and the webpage form.
  • the identifier of the validator associated with the form field, and the corresponding verifier is obtained from the verifier managed by the verifier management module 34 according to the identifier of the verifier, and the obtained verifier is verified by the verifier.
  • the data in the form field in the web form is verified.
  • the web framework for web page data verification may further include: at least one verifier, wherein the verifier is used by the verifier management module 34 to provide a specified interface, and the specified interface is After the script module 35 is called, it returns the script code for client data validation, and is responsible for server-side validation of the data in the corresponding form field of the web form.
  • the framework main module 31 is a first framework main module, configured to receive a web request sent by a client to obtain a form page, generate a page content of the form page, and invoke the script module 35 to generate a script. Code, and the script code returned by the script module 35 is included in the page content of the generated (form page) web form to be returned to the client;
  • the framework main module 31 is a second framework main module, configured to receive a web request sent by a client to obtain a form page, generate a page content of the form page, and invoke the script module 35 to generate a script code, and sending the page content of the webpage form and the script code returned by the script module 35 to the client respectively, for example: returning the page content of the generated form page separately, and returning the script code as a script file To the client.
  • the client browser can verify the data of the client by executing a script in the script file.
  • the method for verifying the data of the webpage form data provided by the embodiment of the present invention is as shown in FIG. 4, and can be applied to a server, which may be a web server or a web framework, and includes the following steps:
  • Step 4-1 Receive a web request sent by the client to obtain a webpage form page.
  • Step 4-2 Generate a page content of the corresponding form page according to the web request
  • the script code may be the verification
  • the verification logic of the device is the same script code, which makes the logic implementation of the client and server side consistent. It should be noted that: the steps of generating the page content of the form page and the steps of obtaining the script code are not The order of the order.
  • the step of obtaining the validator associated with the form field in the webpage form page includes:
  • the verifier corresponding to the verifier identifier associated with the form field is obtained.
  • the form fields in the web form may be associated with one or more validators, in other words, the form field identifiers in the web form are associated with one or more validator identifications.
  • Step 4-3 Return the page content of the form page and the script code to the client, where the script code is used by the client to verify data in the form field.
  • Step S51 The client sends a web request for obtaining the form page to the server, which may be: the user inputs a webpage address in the browser (url, Uniform Resource)
  • Locator submit a web request to the server corresponding to the above uri.
  • the above url can be a url for a user to register user profiles with a website. For example: On the client side, the user enters a URL through the browser to submit a request to register as a member of a website.
  • Step S52 After receiving the web request, the server generates a page content of the webpage by using a preset framework, and the page content includes various form interfaces.
  • Step S53 The framework main module calls the script module to generate script code, which is used by the client to verify the data input by the user in the corresponding form field in the form.
  • Step S54 The script module receives a call request for generating a script code, where the call request includes a form field identifier information of the webpage form, according to the form field identifier included in the call request (for example
  • Form domain name Query the associated module for the validator ID associated with each form field identifier, where each form field identifier can have one or more validator IDs associated with it.
  • the association module returns the identification information of the validator associated with each form field identifier to the script module.
  • Step S55 the script module uses the identifier of the verifier returned by the association module, and obtains a specific verifier from the verifier management module; [90] In an implementation manner, specifically, the script module uses the identifier of the returned verifier, and obtains a specific verifier object instance from the verifier management module.
  • Step S56 After obtaining the validator, the script module obtains a script code for client data verification by calling an externally provided interface of the verifier, and in one implementation, the script code is verified with the verifier. Logically identical script code.
  • the script module obtains the script code of the client data verification of each form field one by one according to the above processing procedure.
  • Step S57 The script module returns the script code of the client data verification of the form field obtained above to the framework main module.
  • Step S58 The main module of the framework combines the script code into the webpage, that is, the script code is included in the generated page content and returned to the client.
  • the client browser is parsed to display the corresponding web interface.
  • steps S53 to S57 may also be performed before step S52, that is, the script code is first obtained by the script module, and then the page content is generated by the framework main module.
  • Step S59 The user inputs data in each form field in the webpage interface through the client browser, and submits data.
  • Step S510 The above script code responsible for client verification verifies the data input by the user in the corresponding form domain. If the user data input error is found, the script code can give a corresponding prompt.
  • Step S511 when the above script code responsible for client verification verifies that the data input by the user in the corresponding form field is correct, the client submits the data input by the user and the web interface content to the server side.
  • Step S512 When the server receives the data input by the user and the content of the webpage interface, the framework main module calls the server verification module to process;
  • Step S513 The server verification module queries the association module according to each form field in the content of the webpage interface, and obtains identifier information of the verifier associated with each form field.
  • Step S514 The server verification module queries the verifier management module according to the identifier information of the obtained verifier, and obtains the verifier corresponding to each verifier identifier associated with each form field.
  • Step S515 the server verification module verifies the data input by the user in each form field by using the corresponding verifier, and when the server verification module verifies that the data input by the user has an error, step S516 is performed; when the server verification module After verifying that all the data input by the user is passed, step S517 is performed.
  • the server verification module returns the content of the webpage interface to the client browser through the framework main module, and prompts corresponding error information.
  • step S59 After the client browser is parsed, the corresponding webpage interface is displayed, and the user continues to input data in each form field of the webpage interface, and step S59 is performed.
  • Step S517 The server verification module returns verification correct information to the framework main module.
  • Step S518 The main module of the framework invokes the service module to process the data input by the user and the content of the webpage interface.
  • Step S519 when the business module is processed, the framework main module returns the processing result to the client browser.
  • FIG. 6 The second processing flow of the method for verifying the data of the webpage form provided by the embodiment of the present invention is as shown in FIG. 6, and includes the following steps:
  • Step S61 The client sends a web request for obtaining a form page to the server, which may be: the user inputs a url in the browser, and submits a web request to the server corresponding to the url.
  • Step S62 After receiving the web request, the web request is processed by the framework main module.
  • the main module of the framework After receiving the web request, the main module of the framework generates a page content of the webpage by using a preset framework, and the page content includes various form interfaces.
  • the framework master module also generates a link to the script code, which is a URL.
  • Step S63 The framework main module returns the generated page content and the script code link to the client browser, and specifically: the script code link is included in the webpage content and returned to the client browser.
  • Step S64 After receiving the script code link, the client browser sends a request for obtaining the client verification script code (referred to as a script acquisition request) to the server after parsing the script code link.
  • a script acquisition request a request for obtaining the client verification script code
  • Step S65 the server receives the script to obtain the request, and is generated by the framework main module calling the script module.
  • the client verifies the script code, in other words, the call request that generates the generated script code, which contains the form field identification information of the form.
  • Step S66 After receiving the call request for generating the script code, the script module queries the association module according to each form domain identifier information in the form included in the call request, and obtains the association of each form field identifier returned by the association module.
  • the validator ID, each form field identifier associated with the validator can have one or more identifiers.
  • the method may be: querying the association module according to the form domain name, and obtaining a validator identifier associated with each form domain name returned by the association module, such as a validator name.
  • Step S67 The script module uses the identifier of the verifier returned by the above associated module, and obtains the corresponding verifier from the verifier management module.
  • Step S68 the script module uses the verifier to obtain the script code of the client verification, which may be: after the script module obtains the verifier, obtain the same verification logic as the verifier by calling the externally provided interface of the verifier Script code.
  • the script module obtains the script code for the client to verify each form field one by one according to the above process.
  • Step S69 The script module returns the script code obtained above to the framework main module.
  • Step S610 The framework main module returns the script code to the address corresponding to the link of the script code.
  • the client browser obtains the above script code from the above address according to the link of the above script code.
  • the framework main module returns the required verification script code to the client browser as a script file;
  • the client browser parses the above page content and script code to display the corresponding web interface.
  • Step S611 the client receives the data input by the user in each form field in the webpage interface, and specifically: the user inputs data in each form field in the webpage interface through the client browser, and submits the data. .
  • Step S612. The script code responsible for client verification verifies the data input by the above user in each form field. If the user data input error is found, the script code can give a corresponding prompt.
  • Step S613 when the script code responsible for client verification verifies the data entered by the user in all form fields After all are correct, submit the data input by the above user and the content of the web interface to the server.
  • Step S614 The user input data and the webpage interface content received by the server end are processed by the framework main module by calling the server verification module.
  • Step S615 The server verification module queries the association module according to each form field in the web interface content, and obtains identifier information of the validator associated with each form field returned by the association module.
  • Step S616 The server verification module obtains the validator corresponding to the form field, and specifically:: querying the verifier management module according to the identifier information of the obtained verifier, and obtaining the verifier corresponding to each verifier identifier.
  • Step S617 the server verification module uses the verifier to perform server-side data verification, which may be: the server verification module verifies the data input by the user in each of the form fields through the corresponding verifier, and the server verification module verifies the user. After the input data has an error, step S618 is performed; and after the server verification module verifies that all the data input by the user is passed, step S619 is performed.
  • Step S618 The server verification module returns the content of the webpage interface to the client browser, and prompts corresponding error information.
  • Step S619 The server verification module returns the correct information to the framework main module
  • Step S620 The main module of the framework invokes the service module to process the data input by the user and the content of the webpage interface.
  • Step S621 When the business module is processed, the framework main module returns the processing result to the client browser.
  • the embodiment of the present invention is responsible for data verification on the server side through the verifier, and also provides an external interface through the interface, and outputs the script code of the client data verification through the interface, thereby reducing data on the webpage form.
  • the server-side and client-side verification logic is inconsistent, which reduces the system's error probability and system maintenance cost.
  • FIG. 7 The schematic diagram of the process of adding a validator provided by the embodiment of the present invention is shown in FIG. 7 and is applied to the web framework, which is specifically processed by the verifier management module 34 in the web framework. It should be noted that: Other modules in the framework, the specific processing is:
  • the configuration file is configured with information about the first validator to be added, such as , the identifier information of the validator, the code identification information of the implementation function, etc.
  • the code identification information of the implementation function herein includes: a file path of the compiled executable program of C++, or a code class name in java, etc.; [139] by reading the The configuration file acquires information about the first validator to be added, thereby implementing the function of adding a validator.
  • the processing procedure of the modified verifier provided by the embodiment of the present invention is as shown in FIG. 8 , and is applied to the web framework, which is specifically processed by the verifier management module 34 in the web framework. It should be noted that: Other modules in the framework, the specific processing is:
  • Modifying the configuration information related to the second validator in the configuration file for example: modifying the code identification information of the implementation function of the verification device;
  • the function of modifying the verifier is realized by reading the configuration file to obtain information about the modified verifier.
  • the management module registers the information of the modified validator to implement dynamic modification.
  • FIG. 9 A schematic diagram of the processing procedure of the deletion verifier provided by the embodiment of the present invention is shown in FIG. 9 and is applied to the web framework, which is specifically processed by the verifier management module 34 in the web framework. It should be noted that: Other modules in the framework, the specific processing is:
  • the configuration file is a modified configuration file, for example: according to the needs of the actual application, deleting the configuration information related to the third authenticator in the configuration file;
  • the function of deleting the validator is realized by reading the configuration file to obtain information about the modified validator.
  • the script code outputted by the client is verified by the verifier, and in the prior art solution, after modifying, deleting, or adding a validator, the template file generated by the script code is required to be modified.
  • the problem and solves the problem in the prior art when modifying, deleting or adding a validator that must update the entire WEB framework's release file, causing the system to be restarted, causing interruption of business processing, thereby affecting the processing of normal services.
  • adding, deleting, and modifying the verifier only needs to operate the verifier management module, and does not need to modify other modules, and solves the prior art solution, modifying, deleting, or adding a verifier. After that, the script module needs to be modified, avoiding the modification, deletion or addition of a validator to other modules in the WEB framework.
  • the storage medium may be, for example, a ROM/RA M disk, an optical disk, or the like.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

L'invention concerne un procédé et un dispositif utilisés pour valider des données de formulaire Web. Le dispositif comprend : un module de gestion de validateurs utilisé pour gérer au moins un validateur et maintenir les informations liées à la relation de correspondance entre l’identifiant du validateur et le validateur ; un module de script utilisé pour recevoir une demande d’appel contenant des informations sur les champs du formulaire Web servant à générer le code de script et à obtenir le validateur associé en fonction des informations sur les champs du formulaire, à obtenir le code de script servant à valider les données côté client en appelant le validateur et à émettre le code de script utilisé pour valider les données du champ de formulaire côté client.
PCT/CN2009/070473 2008-04-29 2009-02-19 Procédé et dispositif pour valider des données de formulaire web WO2009132529A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200810105458.8 2008-04-29
CN 200810105458 CN101572696B (zh) 2008-04-29 2008-04-29 一种网页表单数据验证的方法和装置

Publications (1)

Publication Number Publication Date
WO2009132529A1 true WO2009132529A1 (fr) 2009-11-05

Family

ID=41231933

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2009/070473 WO2009132529A1 (fr) 2008-04-29 2009-02-19 Procédé et dispositif pour valider des données de formulaire web

Country Status (2)

Country Link
CN (1) CN101572696B (fr)
WO (1) WO2009132529A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102238150A (zh) * 2010-05-06 2011-11-09 阿里巴巴集团控股有限公司 表单注册方法及服务器

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102819766A (zh) * 2011-06-09 2012-12-12 金蝶软件(中国)有限公司 一种表单校验方法、装置及企业系统
CN102426549B (zh) * 2011-09-08 2013-06-26 新一站保险代理有限公司 一种Web的表单校验方法及其框架系统
CN103246574B (zh) * 2012-02-10 2015-11-11 阿里巴巴集团控股有限公司 数据准确性的校验方法及装置
CN103379127B (zh) * 2012-04-12 2016-08-17 阿里巴巴集团控股有限公司 服务器与客户端间的数据交互方法及装置
CN102932332B (zh) * 2012-09-28 2015-10-21 用友软件股份有限公司 数据校验系统和数据校验方法
CN104753880A (zh) * 2013-12-30 2015-07-01 上海格尔软件股份有限公司 一种主动防御的web防火墙实现方法
CN104753901A (zh) * 2013-12-31 2015-07-01 上海格尔软件股份有限公司 一种基于智能表单分析的web防火墙实现方法
CN104049972A (zh) * 2014-06-18 2014-09-17 北京京东尚科信息技术有限公司 一种数据验证方法及系统
CN104270395A (zh) * 2014-10-24 2015-01-07 中国建设银行股份有限公司 一种输入数据校验的方法、装置及系统
CN108509246A (zh) * 2018-04-08 2018-09-07 重庆满惠网络科技有限公司 一种网页表单自定义验证方法和系统
CN109542919A (zh) * 2018-10-30 2019-03-29 福建省华渔教育科技有限公司 一种统一数据验证的方法及系统
CN113761489B (zh) * 2020-06-02 2024-01-26 共道网络科技有限公司 验证方法、装置及设备、存储介质
CN112860698A (zh) * 2021-02-19 2021-05-28 北京金山云网络技术有限公司 表单的处理方法、装置、电子设备和计算机可读存储介质
CN113435171B (zh) * 2021-07-23 2022-03-01 深圳市数据动力科技有限公司 一种无代码的数据填报数据统计逻辑的解释执行系统

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1350248A (zh) * 2001-12-03 2002-05-22 上海交通大学 基于网页的内容安全系统集中监管中的权限统一控制管理方法
CN1747387A (zh) * 2004-09-06 2006-03-15 佳能株式会社 信息处理装置及信息处理方法
CN1755624A (zh) * 2004-09-30 2006-04-05 微软公司 基于web的数据表单
US20060248166A1 (en) * 2005-04-29 2006-11-02 Jovan Milosevic System and method for client side rendering of a web page
CN101000545A (zh) * 2006-01-12 2007-07-18 国际商业机器公司 用于生成对象设置脚本的图形辅助的方法和系统
CN101035025A (zh) * 2007-03-30 2007-09-12 华为技术有限公司 一种网络设备管理的方法和系统

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1350248A (zh) * 2001-12-03 2002-05-22 上海交通大学 基于网页的内容安全系统集中监管中的权限统一控制管理方法
CN1747387A (zh) * 2004-09-06 2006-03-15 佳能株式会社 信息处理装置及信息处理方法
CN1755624A (zh) * 2004-09-30 2006-04-05 微软公司 基于web的数据表单
US20060248166A1 (en) * 2005-04-29 2006-11-02 Jovan Milosevic System and method for client side rendering of a web page
CN101000545A (zh) * 2006-01-12 2007-07-18 国际商业机器公司 用于生成对象设置脚本的图形辅助的方法和系统
CN101035025A (zh) * 2007-03-30 2007-09-12 华为技术有限公司 一种网络设备管理的方法和系统

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102238150A (zh) * 2010-05-06 2011-11-09 阿里巴巴集团控股有限公司 表单注册方法及服务器

Also Published As

Publication number Publication date
CN101572696A (zh) 2009-11-04
CN101572696B (zh) 2012-07-18

Similar Documents

Publication Publication Date Title
WO2009132529A1 (fr) Procédé et dispositif pour valider des données de formulaire web
CN110495132B (zh) 用于在分布式网络节点内生成、上传和执行代码区块的系统和方法
US8898764B2 (en) Authenticating user through web extension using token based authentication scheme
US9450954B2 (en) Form filling with digital identities, and automatic password generation
TWI449395B (zh) 安全數位簽章系統
US7979896B2 (en) Authorization for access to web service resources
US20050210263A1 (en) Electronic form routing and data capture system and method
US20150207870A1 (en) Detecting code injections through cryptographic methods
US20080196096A1 (en) Methods for Extending a Security Token Based Identity System
US8756664B2 (en) Management of user authentication
CN101438274B (zh) 信任关系的声明变换
US7559087B2 (en) Token generation method and apparatus
CN110808840B (zh) 业务处理方法及装置、电子设备、存储介质
WO2012095854A1 (fr) Système et procédé d'accès à des applications intégrées dans une solution d'entreprise adaptée à la signature unique
JP4960738B2 (ja) 認証システム、認証方法および認証プログラム
CN109861996B (zh) 基于区块链的关系证明方法、装置、设备及存储介质
US20090113534A1 (en) Generic interactive challenges in a distributed system
CN111835514A (zh) 一种前后端分离数据安全交互的实现方法及系统
US9355269B2 (en) Method and system for managing uniquely identifiable bookmarklets
US8522323B1 (en) System and method for obtaining identities
US20090077655A1 (en) Processing html extensions to enable support of information cards by a relying party
CN114422586B (zh) 事件通知方法、装置、计算机设备及存储介质
EP4203438A1 (fr) Procédé de poussée de message, dispositif électronique et support de stockage
CN111555887A (zh) 区块链证书兼容性处理方法、装置及计算机存储介质
US20230015246A1 (en) Method and system for facilitating identity and access management in a cloud environment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09737640

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 4101/KOLNP/2010

Country of ref document: IN

122 Ep: pct application non-entry in european phase

Ref document number: 09737640

Country of ref document: EP

Kind code of ref document: A1