WO2024046157A1 - Cloud desktop access method, electronic device, and computer readable medium - Google Patents

Cloud desktop access method, electronic device, and computer readable medium Download PDF

Info

Publication number
WO2024046157A1
WO2024046157A1 PCT/CN2023/114000 CN2023114000W WO2024046157A1 WO 2024046157 A1 WO2024046157 A1 WO 2024046157A1 CN 2023114000 W CN2023114000 W CN 2023114000W WO 2024046157 A1 WO2024046157 A1 WO 2024046157A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
wifi
code
information
control device
Prior art date
Application number
PCT/CN2023/114000
Other languages
French (fr)
Chinese (zh)
Inventor
艾超
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2024046157A1 publication Critical patent/WO2024046157A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/08Protocols specially adapted for terminal emulation, e.g. Telnet
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/141Setup of application sessions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/08Access restriction or access information delivery, e.g. discovery data delivery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/20Selecting an access point

Definitions

  • Embodiments of the present disclosure relate to, but are not limited to, the fields of Internet technology and virtual machine technology, and particularly relate to cloud desktop access methods, electronic devices, and computer-readable media.
  • the terminal connects to Wireless Fidelity (WIFI) and then scans the QR code to log in to the cloud desktop through another terminal.
  • WIFI Wireless Fidelity
  • This technology requires users to connect to WIFI with a password in advance, and then scan the code to complete unified authentication.
  • the operation is intermittent, not smooth, and the user experience is low.
  • Embodiments of the present disclosure provide a cloud desktop access method, electronic equipment, and computer-readable media.
  • embodiments of the present disclosure provide a cloud desktop access method, which is applied to a first terminal.
  • the method includes: detecting that there is no connection to the network, performing a wireless fidelity WIFI hotspot scan to obtain a WIFI list; displaying the QR code as Scannable state; based on the identity information and password information of the first terminal corresponding to the QR code, interact with the access control device to connect to the WIFI hotspot in the WIFI list; after connecting to the WIFI hotspot in the WIFI list , interact with the user account control device to obtain the user information corresponding to the second terminal that scans the QR code; based on the user information corresponding to the second terminal, interact with the auxiliary platform server to obtain the user information corresponding to the user information Connection parameters of the virtual desktop; based on the connection parameters of the virtual desktop, interact with the virtual machine corresponding to the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
  • embodiments of the present disclosure provide an electronic device, including: at least one processor; storage The memory stores at least one program. When the at least one program is executed by the at least one processor, any one of the above cloud desktop access methods is implemented.
  • embodiments of the present disclosure provide a computer-readable medium.
  • a computer program is stored on the computer-readable medium.
  • the computer program is executed by a processor, any one of the above cloud desktop access methods is implemented.
  • Figure 1 is a flow chart of a cloud desktop access method applied to a first terminal according to an embodiment of the present disclosure
  • Figure 2 is a flow chart of a cloud desktop access method applied to an access control device according to an embodiment of the present disclosure
  • Figure 3 is a flow chart of a cloud desktop access method applied to a user account control device according to an embodiment of the present disclosure
  • Figure 4 is an interactive schematic diagram of a cloud desktop access method according to an example of an embodiment of the present disclosure
  • Figure 5 is a block diagram of a cloud desktop access device according to an embodiment of the present disclosure.
  • Figure 6 is a block diagram of a cloud desktop access system according to an embodiment of the present disclosure.
  • Figure 1 is a flow chart of a cloud desktop access method applied to a first terminal according to an embodiment of the present disclosure.
  • an embodiment of the present disclosure provides a cloud desktop access method, which is applied to a first terminal.
  • the method includes:
  • Step 100 It is detected that there is no connection to the network, and a wireless fidelity (Wireless Fidelity) hotspot scan is performed to obtain the WIFI list.
  • a wireless fidelity (Wireless Fidelity) hotspot scan is performed to obtain the WIFI list.
  • the WIFI list includes at least one WIFI hotspot name.
  • the WIFI hotspot name in the WIFI list may be a common WIFI hotspot name, or may also be an enterprise WIFI hotspot name.
  • WIFI hotspot names there may be one, two or more common WIFI hotspot names included in the WIFI list.
  • WIFI hotspot scanning can be re-scanned at certain intervals to obtain a new WIFI list.
  • the method includes: step 101, displaying the QR code in a scannable state.
  • the QR code is displayed in a scannable state when there is no network connection, so that WIFI connection and cloud desktop access can be performed simultaneously when there is no network connection, achieving a scan-and-use effect.
  • the method includes: step 102, interacting with an Access Control (AC) device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list.
  • AC Access Control
  • the method further includes: if the WIFI list includes the WIFI hotspot of the target enterprise, continue to perform the step of displaying the QR code in a scannable state; Correspondingly, the WIFI hotspots in the WIFI list are the WIFI hotspots of the target enterprise in the WIFI list.
  • the identity information and password information of the first terminal corresponding to the QR code are a pair of key values, which are used to connect to the WIFI hotspot.
  • the identity information and password information of different terminals may be the same.
  • the identity information and password information of different terminals are different.
  • interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: based on the identity of the first terminal corresponding to the QR code information and password information to interact with the AC device to connect to the WIFI hotspot with the strongest signal in the WIFI list.
  • interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: based on the identity of the first terminal corresponding to the QR code information and password information to interact with the AC device to connect to the target enterprise WIFI hotspot in the WIFI list.
  • interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: based on the identity of the first terminal corresponding to the QR code information and password information, interact with the AC device to connect to the WIFI hotspot with the strongest signal among the target enterprise WIFI hotspots in the WIFI list.
  • interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: regularly based on the QR code within the validity period of the QR code
  • the corresponding identity information and password information of the first terminal interact with the AC device to connect to the WIFI hotspot in the WIFI list.
  • regularly interact with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot with the strongest signal in the WIFI list, or to connect to the WIFI hotspot in the WIFI list.
  • Target enterprise WIFI hotspot or connect to the WIFI hotspot with the strongest signal among the target enterprise WIFI hotspots in the WIFI list.
  • the validity period of the QR code can be set according to actual conditions, for example, it can be set to 60 seconds.
  • an attempt may be made to communicate with the AC device every 2 seconds within the validity period of the QR code. each other to connect to the WIFI hotspots in the WIFI list.
  • interacting with the AC device based on the identity information and password information corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: sending a first authentication request to the AC device; wherein, the first authentication request including the identity information and password information of the first terminal corresponding to the QR code; receiving the first authentication success message returned by the AC device; sending an association request to the AC device; and receiving the association success message returned by the AC device.
  • the association request includes the identity information and password information of the first terminal corresponding to the QR code.
  • the association request is used to request to associate the first terminal with a WIFI hotspot in the WIFI list.
  • the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal in the WIFI list.
  • the association request is used to request to associate the first terminal with the target enterprise WIFI hotspot in the WIFI list.
  • the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise in the WIFI list.
  • the first terminal after the first terminal receives the association success message returned by the access control device, it interacts with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI list.
  • the WIFI hotspot also includes: sending a second authentication request to the AC device; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code; receiving a second authentication success message returned by the AC device; wherein , the second authentication success message includes: the user information of the second terminal and the security token corresponding to the user information.
  • the second authentication may be Extensible Authentication Protocol (EAP, Extensible Authentication Protocol)_90 authentication.
  • EAP Extensible Authentication Protocol
  • the method also includes: step 103, after connecting to a WIFI hotspot in the WIFI list, interacting with a User Account Control (UAC) device to obtain user information corresponding to the second terminal that scans the QR code.
  • UAC User Account Control
  • the first terminal may be any terminal, for example, it may be a mobile terminal installed with the W100D or W600D application.
  • the second terminal may be any terminal, for example, it may be a mobile terminal installed with a predetermined application, and the predetermined application may be, for example, an ICenter application.
  • interacting with the UAC device to obtain user information corresponding to the second terminal that scans the QR code includes: sending a first acquisition request to the UAC device; wherein the first acquisition request packet Including: identity information and password information corresponding to the QR code; receiving user information corresponding to the second terminal returned by the UAC device.
  • the method further includes: receiving a security token corresponding to the user information returned by the UAC device.
  • the security token has a validity period. After the validity period expires, the first acquisition request can be re-sent to the UAC device to obtain a new security token.
  • the method also includes: step 104, interacting with the client and server assistant plant (CSAP) server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information.
  • CCP server assistant plant
  • interacting with the CSAP server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information includes: sending a second acquisition request to the CSAP server; wherein the second acquisition request includes : User information corresponding to the second terminal; receiving a virtual desktop list corresponding to the user information returned by the CSAP server; wherein the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop; displaying the virtual desktop list; receiving the user's selection instruction, Send a third acquisition request to the CSAP server corresponding to the virtual desktop information corresponding to the selection instruction; receive the connection parameters of the virtual desktop corresponding to the virtual desktop information corresponding to the selection instruction returned by the CSAP server.
  • the second acquisition request further includes: a security token corresponding to the user information.
  • the CASP server After receiving the second acquisition request, the CASP server authenticates the first terminal according to the security token, and after passing the authentication, returns a virtual desktop list corresponding to the user information to the first terminal.
  • a second acquisition request can be sent to all CSAP servers, the virtual desktop list corresponding to the user information returned by all CSAP servers is received, and all CASP servers are The virtual desktop lists returned by the server are merged, and the merged virtual desktop list is displayed.
  • the virtual desktop information includes, for example, the virtual desktop type, the name of the virtual desktop, the location of the server where the virtual desktop is located, the Internet Protocol (IP, Internet Protocol) address of the virtual desktop, etc.
  • IP Internet Protocol
  • sending the second acquisition request to the CSAP server includes: regularly sending the second acquisition request to the CSAP server within the validity period of the QR code.
  • the method also includes: step 105, interacting with the virtual machine corresponding to the virtual desktop based on the connection parameter of the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
  • the security token corresponding to the connection parameters of the virtual desktop and the user information interacts with the virtual machine corresponding to the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
  • interacting with the virtual machine corresponding to the virtual desktop based on the security token corresponding to the connection parameters of the virtual desktop and the user information to connect to the virtual machine corresponding to the virtual desktop includes: sending a request to the CASP server based on the connection parameters of the desktop. Send a connection request; where the connection request includes: a security token corresponding to the user information; receive a connection response sent by the CASP server.
  • the CASP server receives the connection request, authenticates the first terminal based on the security token, and returns a connection response to the first terminal after passing the authentication.
  • the cloud desktop access method provided by the embodiments of the present disclosure enables simultaneous connection to WIFI hotspots and access to virtual desktops by scanning QR codes without being connected to the network, achieving a "scan and go" effect and improving user experience.
  • Figure 2 is a flow chart of a cloud desktop access method applied to an access control device according to an embodiment of the present disclosure.
  • one embodiment of the present disclosure provides a cloud desktop access method, which is applied to AC equipment.
  • the method includes:
  • Step 200 Receive a first authentication request sent by the first terminal; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code.
  • the method also includes: step 201, performing first authentication on the first terminal according to the identity information and password information of the first terminal corresponding to the QR code.
  • the first authentication may be an 802.11 authentication.
  • the method also includes: step 202, if the first authentication of the first terminal is successful, returning a first authentication success message to the first terminal.
  • a first authentication failure message is returned to the first terminal.
  • the method also includes: step 203, receiving an association request sent by the first terminal, and associating the first terminal with the WIFI hotspot in the WIFI list.
  • the association request includes the identity information and password information of the first terminal corresponding to the QR code.
  • the association request is used to request that the first terminal and the WIFI list WIFI hotspot to associate.
  • the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal in the WIFI list.
  • the association request is used to request to associate the first terminal with the target enterprise WIFI hotspot in the WIFI list.
  • the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise in the WIFI list.
  • the association here may be an 802.11 association.
  • the method also includes: step 204, if the association is successful, returning an association success message to the first terminal.
  • an association failure message is returned to the first terminal.
  • the method further includes: receiving a second authentication request sent by the first terminal; wherein the second authentication request includes the first terminal corresponding to the QR code. identity information and password information; forward the second authentication request to the UAC device; receive the second authentication success message returned by the UAC device, and forward the second authentication success message to the first terminal; wherein, the second authentication success message Including: the user information of the second terminal and the security token corresponding to the user information.
  • the method further includes: forwarding the second authentication failure message to the first terminal.
  • Figure 3 is a flow chart of a cloud desktop access method applied to a user account control device according to an embodiment of the present disclosure.
  • one embodiment of the present disclosure provides a cloud desktop access method, which is applied to UAC devices.
  • the method includes:
  • Step 300 Receive the user information sent by the second terminal that scans the QR code after scanning the QR code, and the identity information and password information of the first terminal corresponding to the QR code.
  • the identity information and password information of the first terminal corresponding to the QR code is information obtained by the second terminal using a predetermined application to scan the QR code.
  • the user information is user information displayed in the predetermined application after the second terminal logs in to the predetermined application, such as user name, etc.
  • the predetermined application may be an ICenter application, for example.
  • the method also includes: step 301, receiving a second authentication request forwarded by the AC device; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code.
  • the method also includes: step 302, comparing the identity information sent by the second terminal with the identity information in the second authentication request, and comparing the password information sent by the second terminal with the password information in the second authentication request.
  • the method also includes: step 303, when the identity information sent by the second terminal is the same as the identity information in the second authentication request, and the password information sent by the second terminal is the same as the password information in the second authentication request, generate The security token corresponding to the user information returns a second authentication success message to the AC device; wherein the second authentication success message includes: the user information sent by the second terminal and the security token corresponding to the user information.
  • the identity information sent by the second terminal is different from the identity information in the second authentication request, or the password information sent by the second terminal is different from the password information in the second authentication request. , returning a second authentication failure message to the AC device.
  • generating a security token corresponding to user information includes: generating a security token based on identity information, password information, and user information. For example, combining identity information, password information, and user information to form a string.
  • the security token is a string.
  • the security token can also be generated based on the identity information, password information and dynamic password input by the user.
  • the identity information and password information of the first terminal corresponding to the QR code change dynamically, so that security tokens generated at different times are different, thereby improving security.
  • the security token has a validity period, and after the validity period expires, the security token can be regenerated.
  • the method further includes: receiving a first acquisition request sent by the first terminal; wherein the first acquisition request includes: the first acquisition request corresponding to the QR code.
  • the identity information and password information of a terminal generate a security token, and return the user information corresponding to the second terminal and the security token corresponding to the user information to the first terminal.
  • This example describes the cloud desktop access process.
  • this example describes the interaction process between the application module and the WIFI Network Security Access (WPA, WIFI Protected Access) module in the first terminal.
  • WPA WIFI Network Security Access
  • the cloud desktop access method includes the following operations:
  • Step 400 The application module of the first terminal detects whether there is a connection to the network. If there is no connection to the network, the application module calls the WIFI network security access (WPA, WIFI Protected Access) module of the first terminal to perform WIFI hotspot scanning to obtain the WIFI list. .
  • WPA WIFI Network security access
  • Step 401 The application module of the first terminal determines whether the WIFI list includes the WIFI hotspot of the target enterprise. If the WIFI list includes the WIFI hotspot of the target enterprise, the QR code is displayed in a scannable state.
  • Step 402 After the second terminal logs in to the ICenter application, it scans the QR code displayed on the first terminal to obtain the identity information and password information of the first terminal corresponding to the QR code, and adds the user information logged in to ICenter and the first terminal corresponding to the QR code. The terminal's identity information and password information are sent to the UAC device.
  • Step 403 The application module of the first terminal regularly calls the interface of the WPA module of the first terminal within the validity period of the QR code to send the first authentication to the router corresponding to the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise included in the WIFI list. request; wherein, the first authentication request includes the identity information and password information corresponding to the QR code.
  • Step 404 The router forwards the first authentication request to the AC device.
  • Step 405 The AC device performs first authentication on the first terminal based on the identity information and password information corresponding to the QR code. If the first authentication on the first terminal is successful, the AC device returns a first authentication success message to the router.
  • Step 406 The router forwards the first authentication success message to the WPA module of the first terminal.
  • Step 407 The WPA module of the first terminal broadcasts the first authentication success message to the application module of the first terminal.
  • Step 408 The application module of the first terminal calls the interface of the WPA module of the first terminal to send an association request to the router.
  • Step 409 The router forwards the association request to the AC device.
  • Step 410 The AC device associates the first terminal with the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise included in the WIFI list, and if the association is successful, returns an association success message to the router.
  • Step 411 The router forwards the association success message to the WPA module of the first terminal.
  • Step 412 The WPA module of the first terminal broadcasts the association success message to the application module of the first terminal.
  • Step 413 The application module of the first terminal calls the interface of the WPA module of the first terminal to send a second authentication request to the router; where the second authentication request includes the identity information and password information corresponding to the QR code.
  • Step 414 The router forwards the second authentication request to the AC device.
  • Step 415 The AC device forwards the second authentication request to the UAC device.
  • Step 416 The UAC device compares the identity information sent by the second terminal with the identity information in the second authentication request, compares the password information sent by the second terminal with the password information in the second authentication request, and in the second When the identity information sent by the terminal is the same as the identity information in the second authentication request, and the password information sent by the second terminal is the same as the password information in the second authentication request, a security token corresponding to the user information is generated and sent to the AC device. Return a message that the second authentication is successful; wherein the message that the second authentication is successful includes: the user information sent by the second terminal and the security token corresponding to the user information.
  • Step 417 The AC device forwards the second authentication success message to the router.
  • Step 418 The router forwards the second authentication success message to the WPA module of the first terminal.
  • Step 419 The WPA module of the first terminal broadcasts the second authentication success message to the application module of the first terminal.
  • Step 420 The WPA module of the first terminal broadcasts a successful WIFI connection message to the application module of the first terminal.
  • Step 421 The application module of the first terminal periodically sends a first acquisition request to the UAC device within the validity period of the QR code; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code.
  • Step 422 The UAC device returns the user information of the second terminal to log in to the ICenter application and the security token corresponding to the user information to the application module of the first terminal.
  • Step 423 The application module of the first terminal sends a second acquisition request to the CSAP server; wherein the second acquisition request includes: user information corresponding to the second terminal.
  • Step 424 The CSAP server returns a virtual desktop list corresponding to the user information to the application module of the first terminal; wherein the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop.
  • Step 425 The application module of the first terminal displays the received virtual desktop list.
  • Step 426 The application module of the first terminal receives the user's selection instruction and sends it to the virtual object corresponding to the selection instruction.
  • the CSAP server corresponding to the virtual desktop information sends a third acquisition request.
  • Step 427 The CSAP server returns the connection parameters of the virtual desktop to the application module of the first terminal.
  • Step 428 The application module of the first terminal interacts with the virtual machine corresponding to the virtual desktop based on the connection parameters of the virtual desktop and the security token corresponding to the user information to connect to the virtual machine corresponding to the virtual desktop. Specifically, the application module of the first terminal sends a connection request to the virtual machine corresponding to the virtual machine based on the connection parameters of the virtual machine; wherein the connection request includes a security token corresponding to the user information.
  • an embodiment of the present disclosure provides an electronic device, including: at least one processor; and a memory. At least one program is stored on the memory. When at least one program is executed by at least one processor, any one of the above is implemented. Cloud desktop access method.
  • the processor is a device with data processing capabilities, including but not limited to a central processing unit (CPU), etc.
  • the memory is a device with data storage capabilities, including but not limited to random access memory (RAM, more specifically such as SDRAM). , DDR, etc.), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory (FLASH).
  • RAM random access memory
  • ROM read-only memory
  • EEPROM electrically erasable programmable read-only memory
  • FLASH flash memory
  • the processor and memory are connected to each other through a bus, and then to other components of the computing device.
  • an embodiment of the present disclosure provides a computer-readable medium.
  • a computer program is stored on the computer-readable medium.
  • the computer program is executed by a processor, any one of the above cloud desktop access methods is implemented.
  • Figure 5 is a block diagram of a cloud desktop access device according to an embodiment of the present disclosure.
  • an embodiment of the present disclosure provides a cloud desktop access device, including: a detection module 501 configured to detect that there is no connection to the network, perform wireless fidelity WIFI hotspot scanning to obtain a WIFI list, and convert the QR code to Displayed in a scannable state; the interaction module 502 is configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list and connect to After finding the WIFI hotspot in the WIFI list, interact with the user account control device to obtain the user information corresponding to the second terminal that scans the QR code, and interact with the auxiliary platform server based on the user information corresponding to the second terminal, To obtain the connection parameters of the virtual desktop corresponding to the user information, and interact with the virtual machine corresponding to the virtual desktop based on the connection parameters of the virtual desktop, so as to connect to the virtual machine corresponding to the virtual desktop.
  • a detection module 501 configured to detect that there is no connection to the network, perform
  • the detection module 501 is further configured to: if the WIFI list includes a WIFI hotspot of the target enterprise, continue to perform the step of displaying the QR code in a scannable state. Step; Correspondingly, the WIFI hotspot in the WIFI list is the target enterprise WIFI hotspot in the WIFI list.
  • the interaction module 502 is configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list.
  • WIFI hotspots in: regularly interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code within the validity period of the QR code to connect to the WIFI hotspots in the WIFI list.
  • the interaction module 502 is configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list.
  • WIFI hotspot in: Send a first authentication request to the access control device; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code; receive the access control A first authentication successful message returned by the device; sending an association request to the access control device; and receiving a successful association message returned by the access control device.
  • the interaction module 502 is further configured to: send a second authentication request to the access control device; wherein the second authentication request includes the identity of the first terminal corresponding to the QR code. information and password information; receiving a second authentication success message returned by the access control device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information.
  • the interaction module 502 is specifically configured to implement the interaction with the user account control device in the following manner to obtain user information corresponding to the second terminal that scans the QR code: to the user account
  • the control device sends a first acquisition request; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code; and receives the corresponding information of the second terminal returned by the user account control device. user information.
  • the interaction module 502 is specifically configured to implement the interaction with the auxiliary platform server based on the user information corresponding to the second terminal in the following manner to obtain the connection parameters of the virtual desktop corresponding to the user information.
  • Send a second acquisition request to the auxiliary platform server wherein the second acquisition request includes: user information corresponding to the second terminal; receiving a virtual desktop list corresponding to the user information returned by the auxiliary platform server ; wherein the virtual desktop list includes at least one virtual desktop information corresponding to the virtual desktop; displays the virtual desktop list; receives the user's selection instruction, and sends the first auxiliary platform server corresponding to the virtual desktop information corresponding to the selection instruction; 3. Get the request; receive the virtual desktop information corresponding to the selection instruction returned by the auxiliary platform server. Connection parameters for the virtual desktop.
  • the interaction module 502 is specifically configured to implement sending the second acquisition request to the auxiliary platform server in the following manner: regularly sending the second acquisition request to the auxiliary platform server within the validity period of the QR code. 2. Get request.
  • the specific implementation process of the above cloud desktop access device is the same as the specific implementation process of the cloud desktop access method in the previous embodiment, and will not be described again here.
  • Figure 6 is a block diagram of a cloud desktop access system according to an embodiment of the present disclosure.
  • an embodiment of the present disclosure provides a cloud desktop access system, including: a first terminal 601, an AC device 602, a UAC device 603, and a CSAP server 604.
  • the first terminal 601 is configured to detect that there is no connection to the network, perform WIFI hotspot scanning to obtain the WIFI list; display the QR code in a scannable state; and based on the identity information and password information of the first terminal corresponding to the QR code and
  • the access control device interacts to connect to the WIFI hotspot in the WIFI list; after connecting to the WIFI hotspot in the WIFI list, interacts with the user account control device to obtain the second terminal corresponding to the scanned QR code.
  • user information interact with the auxiliary platform server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information; and based on the connection parameters of the virtual desktop and the virtual desktop corresponding to the virtual desktop. Interact with the computer to connect to the virtual machine corresponding to the virtual desktop.
  • the AC device 602 is configured to interact with the first terminal to connect the first terminal to the WIFI hotspot in the WIFI list.
  • the UAC device 603 is configured to interact with the first terminal to send user information corresponding to the second terminal that scans the QR code to the first terminal.
  • the CSAP server 604 is configured to interact with the first terminal to send the connection parameters of the virtual desktop corresponding to the user information to the first terminal.
  • the first terminal 601 is further configured to: if the WIFI list includes the target enterprise WIFI hotspot, continue to perform the step of displaying the QR code in a scannable state; correspondingly , the WIFI hotspot in the WIFI list is the target enterprise WIFI hotspot in the WIFI list.
  • the first terminal 601 is specifically configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list.
  • WIFI hotspot within the validity period of the QR code, the timing is based on the corresponding QR code.
  • the identity information and password information of a terminal interact with the access control device to connect to the WIFI hotspot in the WIFI list.
  • the first terminal 601 is specifically configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list.
  • WIFI hotspot Send a first authentication request to the access control device; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code; receive the access control device Return a first authentication success message; send an association request to the access control device; receive an association success message returned by the access control device.
  • the AC device 602 is specifically configured to interact with the first terminal in the following manner to connect the first terminal to the WIFI hotspot in the WIFI list: receiving the first authentication request sent by the first terminal; according to the QR code corresponding Use the identity information and password information of the first terminal to perform first authentication on the first terminal; if the first authentication on the first terminal is successful, return a message indicating that the first authentication is successful to the first terminal; receive the message sent by the first terminal.
  • the association request is to associate the first terminal with the WIFI hotspot in the WIFI list; if the association is successful, an association success message is returned to the first terminal.
  • the first terminal 601 is further configured to: send a second authentication request to the access control device; wherein the second authentication request includes the first terminal corresponding to the QR code. Identity information and password information; receiving a second authentication success message returned by the access control device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information. .
  • the AC device 602 is also configured to: receive a second authentication request sent by the first terminal; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code; and forward the second authentication request to the UAC device. ; Receive a second authentication success message returned by the UAC device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information.
  • the UAC device 603 is also configured to: receive the user information sent by the second terminal that scans the QR code after scanning the QR code, and the identity information and password information of the first terminal corresponding to the QR code; receive the second terminal forwarded by the AC device. Authentication request; compare the identity information sent by the second terminal with the identity information in the second authentication request, compare the password information sent by the second terminal with the password information in the second authentication request; send at the second terminal When the identity information of the user is the same as the identity information in the second authentication request, and the password information sent by the second terminal is the same as the password information in the second authentication request, generate a security token corresponding to the user information, and return the second authentication token to the AC device.
  • a second authentication success message wherein the second authentication success message includes: user information sent by the second terminal and a security token corresponding to the user information.
  • the first terminal 601 is specifically configured to interact with the user account control device in the following manner to obtain user information corresponding to the second terminal that scans the QR code: to the user account control device.
  • the device sends a first acquisition request; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code; and receives the identity information and password information of the second terminal corresponding to the second terminal returned by the user account control device.
  • User Info includes: the identity information and password information of the first terminal corresponding to the QR code; and receives the identity information and password information of the second terminal corresponding to the second terminal returned by the user account control device.
  • the UAC device 603 is specifically configured to interact with the first terminal in the following manner to send the user information corresponding to the second terminal that scans the QR code to the first terminal: receiving the first acquisition request sent by the first terminal;
  • the first acquisition request includes: identity information and password information corresponding to the QR code; and user information corresponding to the second terminal is returned to the first terminal.
  • the first terminal 601 is specifically configured to interact with the auxiliary platform server based on the user information corresponding to the second terminal in the following manner to obtain the connection parameters of the virtual desktop corresponding to the user information: Send a second acquisition request to the auxiliary platform server; wherein the second acquisition request includes: user information corresponding to the second terminal; receiving a virtual desktop list corresponding to the user information returned by the auxiliary platform server; Wherein, the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop; displays the virtual desktop list; receives the user's selection instruction and sends a third party to the auxiliary platform server corresponding to the virtual desktop information corresponding to the selection instruction. Obtain the request; receive the connection parameters of the virtual desktop corresponding to the virtual desktop information corresponding to the selection instruction returned by the auxiliary platform server.
  • the CSAP server 604 is specifically configured to interact with the first terminal in the following manner to send the connection parameters of the virtual desktop corresponding to the user information to the first terminal: receive the second acquisition request sent by the first terminal; return to the first terminal The virtual desktop list corresponding to the user information; receiving the second acquisition request sent by the first terminal; returning the virtual desktop list to the first terminal; receiving the third acquisition request sent by the first terminal; and returning the connection parameters of the virtual desktop to the first terminal.
  • Such software may be distributed on computer-readable media, which may include computer storage media (or non-transitory media) and communication media (or transitory media).
  • computer storage media includes volatile and nonvolatile media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. removable, removable and non-removable media.
  • Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, Digital Versatile Disk (DVD) or other optical disk storage, magnetic cassettes, tapes, disk storage or other magnetic storage, or may be used Any other medium that stores the desired information and can be accessed by a computer.
  • communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism, and may include any information delivery media .
  • Example embodiments have been disclosed herein, and although specific terms are employed, they are used and should be interpreted in a general illustrative sense only and not for purpose of limitation. In some instances, it will be apparent to those skilled in the art that features, characteristics and/or elements described in connection with a particular embodiment may be used alone, or may be used in conjunction with other embodiments, unless expressly stated otherwise. Features and/or components used in combination. Accordingly, it will be understood by those skilled in the art that various changes in form and details may be made without departing from the scope of the present disclosure as set forth in the appended claims.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Provided in the present disclosure are a cloud desktop access method, an electronic device, and a computer readable medium. The cloud desktop access method comprises: upon detecting there is no connection to a network, performing wireless fidelity (WIFI) hotspot scanning to obtain a WIFI list; displaying a two-dimensional code as a scannable state; on the basis of identity information and cipher information of a first terminal corresponding to the two-dimensional code, interacting with an access control device, so as to be connected to a WIFI hotspot in the WIFI list; and after being connected to the WIFI hotspot in the WIFI list, interacting with a user account control device to acquire user information corresponding to a second terminal scanning the two-dimensional code; on the basis of the user information corresponding to the second terminal, interacting with an auxiliary platform server so as to obtain a connection parameter of a virtual desktop corresponding to the user information; and, on the basis of the connection parameter of the virtual desktop, interacting with a virtual machine corresponding to the virtual desktop so as to be connected to a virtual machine corresponding to the virtual desktop. FIG. 1

Description

云桌面接入方法、电子设备、计算机可读介质Cloud desktop access method, electronic equipment, computer-readable media
相关公开的交叉引用Relevant public cross-references
本公开要求在2022年8月29日提交国家知识产权局、公开号为CN202211047336.4、发明名称为“云桌面接入方法、电子设备、计算机可读介质”的中国专利申请的优先权,该申请的全部内容通过引用结合在本公开中。This disclosure requires the priority of a Chinese patent application submitted to the State Intellectual Property Office on August 29, 2022, with the publication number CN202211047336.4 and the invention name "Cloud desktop access method, electronic device, computer readable medium". The entire contents of the application are incorporated by reference into this disclosure.
技术领域Technical field
本公开实施例涉及但不限于互联网技术领域和虚拟机技术领域,特别涉及云桌面接入方法、电子设备、计算机可读介质。Embodiments of the present disclosure relate to, but are not limited to, the fields of Internet technology and virtual machine technology, and particularly relate to cloud desktop access methods, electronic devices, and computer-readable media.
背景技术Background technique
终端通过连接无线保真(WIFI,Wireless Fidelity),再通过另一终端扫码登录使用云桌面。该技术需要用户事先通过密码连接WIFI,再扫码完成统一认证,操作是间断的、不流畅的,用户体验较低。The terminal connects to Wireless Fidelity (WIFI) and then scans the QR code to log in to the cloud desktop through another terminal. This technology requires users to connect to WIFI with a password in advance, and then scan the code to complete unified authentication. The operation is intermittent, not smooth, and the user experience is low.
发明内容Contents of the invention
本公开实施例提供一种云桌面接入方法、电子设备、计算机可读介质。Embodiments of the present disclosure provide a cloud desktop access method, electronic equipment, and computer-readable media.
第一方面,本公开实施例提供一种云桌面接入方法,应用于第一终端,该方法包括:检测到没有连接网络,进行无线保真WIFI热点扫描得到WIFI列表;将二维码显示为可扫描状态;基于二维码对应的第一终端的身份信息和密码信息,与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点;连接到所述WIFI列表中的WIFI热点后,与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息;基于所述第二终端对应的用户信息,与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数;基于所述虚拟桌面的连接参数,与所述虚拟桌面对应的虚拟机交互,以连接到所述虚拟桌面对应的虚拟机。In a first aspect, embodiments of the present disclosure provide a cloud desktop access method, which is applied to a first terminal. The method includes: detecting that there is no connection to the network, performing a wireless fidelity WIFI hotspot scan to obtain a WIFI list; displaying the QR code as Scannable state; based on the identity information and password information of the first terminal corresponding to the QR code, interact with the access control device to connect to the WIFI hotspot in the WIFI list; after connecting to the WIFI hotspot in the WIFI list , interact with the user account control device to obtain the user information corresponding to the second terminal that scans the QR code; based on the user information corresponding to the second terminal, interact with the auxiliary platform server to obtain the user information corresponding to the user information Connection parameters of the virtual desktop; based on the connection parameters of the virtual desktop, interact with the virtual machine corresponding to the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
第二方面,本公开实施例提供一种电子设备,包括:至少一个处理器;存储 器,存储器上存储有至少一个程序,当所述至少一个程序被所述至少一个处理器执行时,实现上述任意一种云桌面接入方法。In a second aspect, embodiments of the present disclosure provide an electronic device, including: at least one processor; storage The memory stores at least one program. When the at least one program is executed by the at least one processor, any one of the above cloud desktop access methods is implemented.
第三方面,本公开实施例提供一种计算机可读介质,计算机可读介质上存储有计算机程序,所述计算机程序被处理器执行时实现上述任意一种云桌面接入方法。In a third aspect, embodiments of the present disclosure provide a computer-readable medium. A computer program is stored on the computer-readable medium. When the computer program is executed by a processor, any one of the above cloud desktop access methods is implemented.
附图说明Description of drawings
图1为根据本公开一个实施例的应用于第一终端的云桌面接入方法的流程图;Figure 1 is a flow chart of a cloud desktop access method applied to a first terminal according to an embodiment of the present disclosure;
图2为根据本公开一个实施例的应用于接入控制设备的云桌面接入方法的流程图;Figure 2 is a flow chart of a cloud desktop access method applied to an access control device according to an embodiment of the present disclosure;
图3为根据本公开一个实施例的应用于用户账户控制设备的云桌面接入方法的流程图;Figure 3 is a flow chart of a cloud desktop access method applied to a user account control device according to an embodiment of the present disclosure;
图4为根据本公开实施例的示例的云桌面接入方法的交互示意图;Figure 4 is an interactive schematic diagram of a cloud desktop access method according to an example of an embodiment of the present disclosure;
图5为根据本公开一个实施例的云桌面接入装置的组成框图;Figure 5 is a block diagram of a cloud desktop access device according to an embodiment of the present disclosure;
图6为根据本公开一个实施例的云桌面接入系统的组成框图。Figure 6 is a block diagram of a cloud desktop access system according to an embodiment of the present disclosure.
具体实施方式Detailed ways
为使本领域的技术人员更好地理解本公开的技术方案,下面结合附图对本公开提供的云桌面接入方法、电子设备、计算机可读介质进行详细描述。In order to enable those skilled in the art to better understand the technical solutions of the present disclosure, the cloud desktop access method, electronic equipment, and computer-readable media provided by the present disclosure are described in detail below with reference to the accompanying drawings.
在下文中将参考附图更充分地描述示例实施例,但是所述示例实施例可以以不同形式来体现且不应当被解释为限于本文阐述的实施例。反之,提供这些实施例的目的在于使本公开透彻和完整,并将使本领域技术人员充分理解本公开的范围。Example embodiments will be described more fully below with reference to the accompanying drawings, which may, however, be embodied in different forms and should not be construed as limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully understand the scope of the disclosure to those skilled in the art.
在不冲突的情况下,本公开各实施例及实施例中的各特征可相互组合。The embodiments of the present disclosure and the features in the embodiments may be combined with each other without conflict.
如本文所使用的,术语“和/或”包括至少一个相关列举条目的任何和所有组合。As used herein, the term "and/or" includes any and all combinations of at least one associated listed item.
本文所使用的术语仅用于描述特定实施例,且不意欲限制本公开。如本文所使用的,单数形式“一个”和“该”也意欲包括复数形式,除非上下文另外清楚 指出。还将理解的是,当本说明书中使用术语“包括”和/或“由……制成”时,指定存在所述特征、整体、步骤、操作、元件和/或组件,但不排除存在或添加至少一个其它特征、整体、步骤、操作、元件、组件和/或其群组。The terminology used herein is used to describe particular embodiments only and is not intended to limit the disclosure. As used herein, the singular forms "a", "an" and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. pointed out. It will also be understood that when the terms "comprising" and/or "made of" are used in this specification, the presence of stated features, integers, steps, operations, elements and/or components is specified but does not exclude the presence or Add at least one other feature, integer, step, operation, element, component and/or group thereof.
除非另外限定,否则本文所用的所有术语(包括技术和科学术语)的含义与本领域普通技术人员通常理解的含义相同。还将理解,诸如那些在常用字典中限定的那些术语应当被解释为具有与其在相关技术以及本公开的背景下的含义一致的含义,且将不解释为具有理想化或过度形式上的含义,除非本文明确如此限定。Unless otherwise defined, all terms (including technical and scientific terms) used herein have the same meaning as commonly understood by one of ordinary skill in the art. It will also be understood that terms such as those defined in commonly used dictionaries should be construed to have meanings consistent with their meanings in the context of the relevant art and the present disclosure, and will not be construed as having idealized or excessive formal meanings, Unless expressly so limited herein.
图1为根据本公开一个实施例的应用于第一终端的云桌面接入方法的流程图。Figure 1 is a flow chart of a cloud desktop access method applied to a first terminal according to an embodiment of the present disclosure.
第一方面,参照图1,本公开一个实施例提供了一种云桌面接入方法,应用于第一终端,该方法包括:In the first aspect, referring to Figure 1, an embodiment of the present disclosure provides a cloud desktop access method, which is applied to a first terminal. The method includes:
步骤100,检测到没有连接网络,进行无线保真(WIFI,Wireless Fidelity)热点扫描得到WIFI列表。Step 100: It is detected that there is no connection to the network, and a wireless fidelity (Wireless Fidelity) hotspot scan is performed to obtain the WIFI list.
在一些示例性实施例中,WIFI列表包括至少一个WIFI热点名称。In some exemplary embodiments, the WIFI list includes at least one WIFI hotspot name.
在一些示例性实施例中,WIFI列表中的WIFI热点名称可以是普通WIFI热点名称,或者也可以是企业WIFI热点名称。In some exemplary embodiments, the WIFI hotspot name in the WIFI list may be a common WIFI hotspot name, or may also be an enterprise WIFI hotspot name.
在一些示例性实施例中,WIFI列表中包括的普通WIFI热点名称可以是一个,也可以是两个或两个以上。In some exemplary embodiments, there may be one, two or more common WIFI hotspot names included in the WIFI list.
在一些示例性实施例中,WIFI列表中包括的企业WIFI热点名称可以是一个,也可以是两个或两个以上。In some exemplary embodiments, there may be one, two or more enterprise WIFI hotspot names included in the WIFI list.
在一些示例性实施例中,可以每隔一定时间重新进行WIFI热点扫描得到新的WIFI列表。In some exemplary embodiments, WIFI hotspot scanning can be re-scanned at certain intervals to obtain a new WIFI list.
该方法包括:步骤101,将二维码显示为可扫描状态。The method includes: step 101, displaying the QR code in a scannable state.
本公开实施例在没有连接网络的情况下,将二维码显示为可扫描状态,使得在没有连接网络时可以同时进行WIFI连接以及云桌面的接入,实现了一扫即用的效果。In the embodiment of the present disclosure, the QR code is displayed in a scannable state when there is no network connection, so that WIFI connection and cloud desktop access can be performed simultaneously when there is no network connection, achieving a scan-and-use effect.
该方法包括:步骤102,基于二维码对应的第一终端的身份信息和密码信息,与接入控制(AC,Access Control)设备交互,以连接到WIFI列表中的WIFI热点。 The method includes: step 102, interacting with an Access Control (AC) device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list.
在一些示例性实施例中,在进行WIFI热点扫描得到WIFI列表后,该方法还包括:在WIFI列表中包括目标企业WIFI热点的情况下,继续执行将二维码显示为可扫描状态的步骤;相应的,WIFI列表中的WIFI热点为WIFI列表中的目标企业WIFI热点。In some exemplary embodiments, after performing WIFI hotspot scanning to obtain the WIFI list, the method further includes: if the WIFI list includes the WIFI hotspot of the target enterprise, continue to perform the step of displaying the QR code in a scannable state; Correspondingly, the WIFI hotspots in the WIFI list are the WIFI hotspots of the target enterprise in the WIFI list.
在一些示例性实施例中,二维码对应的第一终端的身份信息和密码信息是一对键值,是用来连接WIFI热点的。In some exemplary embodiments, the identity information and password information of the first terminal corresponding to the QR code are a pair of key values, which are used to connect to the WIFI hotspot.
在一些示例性实施例中,针对普通WIFI热点,不同终端的身份信息和密码信息可以是相同的。针对目标企业WIFI热点,不同终端的身份信息和密码信息是不相同的。In some exemplary embodiments, for ordinary WIFI hotspots, the identity information and password information of different terminals may be the same. For the target enterprise WIFI hotspot, the identity information and password information of different terminals are different.
在一些示例性实施例中,基于二维码对应的第一终端的身份信息和密码信息与AC设备交互,以连接到WIFI列表中的WIFI热点包括:基于二维码对应的第一终端的身份信息和密码信息,与AC设备交互,以连接到WIFI列表中信号最强的WIFI热点。In some exemplary embodiments, interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: based on the identity of the first terminal corresponding to the QR code information and password information to interact with the AC device to connect to the WIFI hotspot with the strongest signal in the WIFI list.
在一些示例性实施例中,基于二维码对应的第一终端的身份信息和密码信息与AC设备交互,以连接到WIFI列表中的WIFI热点包括:基于二维码对应的第一终端的身份信息和密码信息,与AC设备交互,以连接到WIFI列表中的目标企业WIFI热点。In some exemplary embodiments, interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: based on the identity of the first terminal corresponding to the QR code information and password information to interact with the AC device to connect to the target enterprise WIFI hotspot in the WIFI list.
在一些示例性实施例中,基于二维码对应的第一终端的身份信息和密码信息与AC设备交互,以连接到WIFI列表中的WIFI热点包括:基于二维码对应的第一终端的身份信息和密码信息,与AC设备交互,以连接到WIFI列表中的目标企业WIFI热点中信号最强的WIFI热点。In some exemplary embodiments, interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: based on the identity of the first terminal corresponding to the QR code information and password information, interact with the AC device to connect to the WIFI hotspot with the strongest signal among the target enterprise WIFI hotspots in the WIFI list.
在一些示例性实施例中,基于二维码对应的第一终端的身份信息和密码信息与AC设备交互,以连接到WIFI列表中的WIFI热点包括:在二维码有效期内定时基于二维码对应的第一终端的身份信息和密码信息,与AC设备交互,以连接到WIFI列表中的WIFI热点。例如,在二维码有效期内定时基于二维码对应的第一终端的身份信息和密码信息,与AC设备交互,以连接到WIFI列表中信号最强的WIFI热点,或连接到WIFI列表中的目标企业WIFI热点,或连接到WIFI列表中的目标企业WIFI热点中信号最强的WIFI热点。In some exemplary embodiments, interacting with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: regularly based on the QR code within the validity period of the QR code The corresponding identity information and password information of the first terminal interact with the AC device to connect to the WIFI hotspot in the WIFI list. For example, within the validity period of the QR code, regularly interact with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot with the strongest signal in the WIFI list, or to connect to the WIFI hotspot in the WIFI list. Target enterprise WIFI hotspot, or connect to the WIFI hotspot with the strongest signal among the target enterprise WIFI hotspots in the WIFI list.
在一些示例性实施例中,二维码有效期可以根据实际情况进行设定,例如可以设定为60秒。In some exemplary embodiments, the validity period of the QR code can be set according to actual conditions, for example, it can be set to 60 seconds.
在一些示例性实施例中,可以在二维码有效期内每2秒钟尝试与AC设备交 互,以连接到WIFI列表中的WIFI热点。In some exemplary embodiments, an attempt may be made to communicate with the AC device every 2 seconds within the validity period of the QR code. each other to connect to the WIFI hotspots in the WIFI list.
在一些示例性实施例中,基于二维码对应的身份信息和密码信息与AC设备交互,以连接到WIFI列表中的WIFI热点包括:向AC设备发送第一认证请求;其中,第一认证请求包括二维码对应的第一终端的身份信息和密码信息;接收AC设备返回的第一认证成功的消息;向AC设备发送关联请求;接收AC设备返回的关联成功的消息。In some exemplary embodiments, interacting with the AC device based on the identity information and password information corresponding to the QR code to connect to the WIFI hotspot in the WIFI list includes: sending a first authentication request to the AC device; wherein, the first authentication request including the identity information and password information of the first terminal corresponding to the QR code; receiving the first authentication success message returned by the AC device; sending an association request to the AC device; and receiving the association success message returned by the AC device.
在一些示例性实施例中,关联请求包括二维码对应的第一终端的身份信息和密码信息。In some exemplary embodiments, the association request includes the identity information and password information of the first terminal corresponding to the QR code.
在一些示例性实施例中,关联请求用于请求将第一终端和WIFI列表中的WIFI热点进行关联。例如,关联请求用于请求将第一终端和WIFI列表中信号最强的WIFI热点进行关联。或者,关联请求用于请求将第一终端和WIFI列表中的目标企业WIFI热点进行关联。或者,关联请求用于请求将第一终端和WIFI列表中的目标企业WIFI热点中信号最强的WIFI热点进行关联。In some exemplary embodiments, the association request is used to request to associate the first terminal with a WIFI hotspot in the WIFI list. For example, the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal in the WIFI list. Alternatively, the association request is used to request to associate the first terminal with the target enterprise WIFI hotspot in the WIFI list. Alternatively, the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise in the WIFI list.
在一些示例性实施例中,在第一终端接收接入控制设备返回的关联成功的消息后,基于二维码对应的第一终端身份信息和密码信息与AC设备交互,以连接到WIFI列表中的WIFI热点还包括:向AC设备发送第二认证请求;其中,第二认证请求包括二维码对应的第一终端的身份信息和密码信息;接收AC设备返回的第二认证成功的消息;其中,第二认证成功的消息包括:第二终端的用户信息和用户信息对应的安全令牌。In some exemplary embodiments, after the first terminal receives the association success message returned by the access control device, it interacts with the AC device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI list. The WIFI hotspot also includes: sending a second authentication request to the AC device; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code; receiving a second authentication success message returned by the AC device; wherein , the second authentication success message includes: the user information of the second terminal and the security token corresponding to the user information.
在一些示例性实施例中,第二认证可以是可扩展的身份验证协议(EAP,Extensible Authentication Protocol)_90认证。In some exemplary embodiments, the second authentication may be Extensible Authentication Protocol (EAP, Extensible Authentication Protocol)_90 authentication.
该方法还包括:步骤103,连接到WIFI列表中的WIFI热点后,与用户账户控制(UAC,User Account Control)设备交互,以获取扫描二维码的第二终端对应的用户信息。The method also includes: step 103, after connecting to a WIFI hotspot in the WIFI list, interacting with a User Account Control (UAC) device to obtain user information corresponding to the second terminal that scans the QR code.
在一些示例性实施例中,第一终端可以是任意一个终端,例如可以是安装有W100D或W600D应用的移动终端。In some exemplary embodiments, the first terminal may be any terminal, for example, it may be a mobile terminal installed with the W100D or W600D application.
在一些示例性实施例中,第二终端可以是任意一个终端,例如可以是安装有预定应用的移动终端,预定应用例如可以是ICenter应用。In some exemplary embodiments, the second terminal may be any terminal, for example, it may be a mobile terminal installed with a predetermined application, and the predetermined application may be, for example, an ICenter application.
在一些示例性实施例中,与UAC设备交互,以获取扫描二维码的第二终端对应的用户信息包括:向UAC设备发送第一获取请求;其中,第一获取请求包 括:二维码对应的身份信息和密码信息;接收UAC设备返回的第二终端对应的用户信息。In some exemplary embodiments, interacting with the UAC device to obtain user information corresponding to the second terminal that scans the QR code includes: sending a first acquisition request to the UAC device; wherein the first acquisition request packet Including: identity information and password information corresponding to the QR code; receiving user information corresponding to the second terminal returned by the UAC device.
在一些示例性实施例中,向UAC设备发送第一获取请求后,该方法还包括:接收UAC设备返回的用户信息对应的安全令牌。In some exemplary embodiments, after sending the first acquisition request to the UAC device, the method further includes: receiving a security token corresponding to the user information returned by the UAC device.
在一些示例性实施例中,安全令牌具有有效期,有效期过期后,可以重新向UAC设备发送第一获取请求,以获取新的安全令牌。In some exemplary embodiments, the security token has a validity period. After the validity period expires, the first acquisition request can be re-sent to the UAC device to obtain a new security token.
该方法还包括:步骤104,基于第二终端对应的用户信息与辅助平台(CSAP,Client and Server Assistant Plantform)服务器交互,以获取用户信息对应的虚拟桌面的连接参数。The method also includes: step 104, interacting with the client and server assistant plant (CSAP) server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information.
在一些示例性实施例中,基于第二终端对应的用户信息与CSAP服务器交互,以获取用户信息对应的虚拟桌面的连接参数包括:向CSAP服务器发送第二获取请求;其中,第二获取请求包括:第二终端对应的用户信息;接收CSAP服务器返回的用户信息对应的虚拟桌面列表;其中,虚拟桌面列表中包括至少一个虚拟桌面对应的虚拟桌面信息;显示虚拟桌面列表;接收用户的选择指令,向选择指令对应的虚拟桌面信息对应的CSAP服务器发送第三获取请求;接收CSAP服务器返回的选择指令对应的虚拟桌面信息对应的虚拟桌面的连接参数。In some exemplary embodiments, interacting with the CSAP server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information includes: sending a second acquisition request to the CSAP server; wherein the second acquisition request includes : User information corresponding to the second terminal; receiving a virtual desktop list corresponding to the user information returned by the CSAP server; wherein the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop; displaying the virtual desktop list; receiving the user's selection instruction, Send a third acquisition request to the CSAP server corresponding to the virtual desktop information corresponding to the selection instruction; receive the connection parameters of the virtual desktop corresponding to the virtual desktop information corresponding to the selection instruction returned by the CSAP server.
在一些示例性实施例中,第二获取请求还包括:用户信息对应的安全令牌。In some exemplary embodiments, the second acquisition request further includes: a security token corresponding to the user information.
CASP服务器接收到第二获取请求后,根据安全令牌对第一终端进行鉴权,鉴权通过后,向第一终端返回用户信息对应的虚拟桌面列表。After receiving the second acquisition request, the CASP server authenticates the first terminal according to the security token, and after passing the authentication, returns a virtual desktop list corresponding to the user information to the first terminal.
在一些示例性实施例中,在CASP服务器存在两个或两个以上的情况下,可以向所有CSAP服务器发送第二获取请求,接收所有CSAP服务器返回的用户信息对应的虚拟桌面列表,将所有CASP服务器返回的虚拟桌面列表合并,显示合并后的虚拟桌面列表。In some exemplary embodiments, when there are two or more CASP servers, a second acquisition request can be sent to all CSAP servers, the virtual desktop list corresponding to the user information returned by all CSAP servers is received, and all CASP servers are The virtual desktop lists returned by the server are merged, and the merged virtual desktop list is displayed.
在一些示例性实施例中,虚拟桌面信息包括如虚拟桌面类型、虚拟桌面名称、虚拟桌面所在的服务器的归属地、虚拟桌面的互联网协议(IP,Internet Protocol)地址等。In some exemplary embodiments, the virtual desktop information includes, for example, the virtual desktop type, the name of the virtual desktop, the location of the server where the virtual desktop is located, the Internet Protocol (IP, Internet Protocol) address of the virtual desktop, etc.
在一些示例性实施例中,向CSAP服务器发送第二获取请求包括:在二维码有效期内定时向CSAP服务器发送第二获取请求。In some exemplary embodiments, sending the second acquisition request to the CSAP server includes: regularly sending the second acquisition request to the CSAP server within the validity period of the QR code.
该方法还包括:步骤105,基于虚拟桌面的连接参数与虚拟桌面对应的虚拟机交互,以连接到虚拟桌面对应的虚拟机。 The method also includes: step 105, interacting with the virtual machine corresponding to the virtual desktop based on the connection parameter of the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
在一些示例性实施例中,基于虚拟桌面的连接参数和用户信息对应的安全令牌与虚拟桌面对应的虚拟机交互,以连接到虚拟桌面对应的虚拟机。In some exemplary embodiments, the security token corresponding to the connection parameters of the virtual desktop and the user information interacts with the virtual machine corresponding to the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
在一些示例性实施例中,基于虚拟桌面的连接参数和用户信息对应的安全令牌与虚拟桌面对应的虚拟机交互,以连接到虚拟桌面对应的虚拟机包括:基于桌面的连接参数向CASP服务器发送连接请求;其中,连接请求包括:用户信息对应的安全令牌;接收CASP服务器发送的连接响应。In some exemplary embodiments, interacting with the virtual machine corresponding to the virtual desktop based on the security token corresponding to the connection parameters of the virtual desktop and the user information to connect to the virtual machine corresponding to the virtual desktop includes: sending a request to the CASP server based on the connection parameters of the desktop. Send a connection request; where the connection request includes: a security token corresponding to the user information; receive a connection response sent by the CASP server.
在一些示例性实施例中,CASP服务器接收到连接请求,根据安全令牌对第一终端进行鉴权,鉴权通过后,向第一终端返回连接响应。In some exemplary embodiments, the CASP server receives the connection request, authenticates the first terminal based on the security token, and returns a connection response to the first terminal after passing the authentication.
本公开实施例提供的云桌面接入方法,在没有连接网络的情况下,通过扫描二维码同时实现WIFI热点的连接,以及虚拟桌面的接入,达到“一扫即用”的效果,提升了用户体验。The cloud desktop access method provided by the embodiments of the present disclosure enables simultaneous connection to WIFI hotspots and access to virtual desktops by scanning QR codes without being connected to the network, achieving a "scan and go" effect and improving user experience.
图2为根据本公开一个实施例的应用于接入控制设备的云桌面接入方法的流程图。Figure 2 is a flow chart of a cloud desktop access method applied to an access control device according to an embodiment of the present disclosure.
第二方面,参照图2,本公开一个实施例提供了一种云桌面接入方法,应用于AC设备,该方法包括:In the second aspect, referring to Figure 2, one embodiment of the present disclosure provides a cloud desktop access method, which is applied to AC equipment. The method includes:
步骤200,接收第一终端发送的第一认证请求;其中,第一认证请求包括二维码对应的第一终端的身份信息和密码信息。Step 200: Receive a first authentication request sent by the first terminal; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code.
该方法还包括:步骤201,根据二维码对应的第一终端的身份信息和密码信息对第一终端进行第一认证。The method also includes: step 201, performing first authentication on the first terminal according to the identity information and password information of the first terminal corresponding to the QR code.
在一些示例性实施例中,第一认证可以是802.11认证。In some example embodiments, the first authentication may be an 802.11 authentication.
该方法还包括:步骤202,在对第一终端进行第一认证成功的情况下,向第一终端返回第一认证成功的消息。The method also includes: step 202, if the first authentication of the first terminal is successful, returning a first authentication success message to the first terminal.
在一些示例性实施例中,在对第一终端进行第一认证失败的情况下,向第一终端返回第一认证失败的消息。In some exemplary embodiments, if the first authentication fails on the first terminal, a first authentication failure message is returned to the first terminal.
该方法还包括:步骤203,接收第一终端发送的关联请求,将第一终端和WIFI列表中的WIFI热点进行关联。The method also includes: step 203, receiving an association request sent by the first terminal, and associating the first terminal with the WIFI hotspot in the WIFI list.
在一些示例性实施例中,关联请求包括二维码对应的第一终端的身份信息和密码信息。In some exemplary embodiments, the association request includes the identity information and password information of the first terminal corresponding to the QR code.
在一些示例性实施例中,关联请求用于请求将第一终端和WIFI列表中的 WIFI热点进行关联。例如,关联请求用于请求将第一终端和WIFI列表中信号最强的WIFI热点进行关联。或者,关联请求用于请求将第一终端和WIFI列表中的目标企业WIFI热点进行关联。或者,关联请求用于请求将第一终端和WIFI列表中的目标企业WIFI热点中信号最强的WIFI热点进行关联。In some exemplary embodiments, the association request is used to request that the first terminal and the WIFI list WIFI hotspot to associate. For example, the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal in the WIFI list. Alternatively, the association request is used to request to associate the first terminal with the target enterprise WIFI hotspot in the WIFI list. Alternatively, the association request is used to request that the first terminal be associated with the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise in the WIFI list.
在一些示例性实施例中,这里的关联可以是802.11关联。In some exemplary embodiments, the association here may be an 802.11 association.
该方法还包括:步骤204,在关联成功的情况下,向第一终端返回关联成功的消息。The method also includes: step 204, if the association is successful, returning an association success message to the first terminal.
在一些示例性实施例中,在关联失败的情况下,向第一终端返回关联失败的消息。In some exemplary embodiments, in the case of association failure, an association failure message is returned to the first terminal.
在一些示例性实施例中,向第一终端返回关联成功的消息后,该方法还包括:接收第一终端发送的第二认证请求;其中,第二认证请求包括二维码对应的第一终端的身份信息和密码信息;将第二认证请求转发给UAC设备;接收UAC设备返回的第二认证成功的消息,将第二认证成功的消息转发给第一终端;其中,第二认证成功的消息包括:第二终端的用户信息和用户信息对应的安全令牌。In some exemplary embodiments, after returning a successful association message to the first terminal, the method further includes: receiving a second authentication request sent by the first terminal; wherein the second authentication request includes the first terminal corresponding to the QR code. identity information and password information; forward the second authentication request to the UAC device; receive the second authentication success message returned by the UAC device, and forward the second authentication success message to the first terminal; wherein, the second authentication success message Including: the user information of the second terminal and the security token corresponding to the user information.
在一些示例性实施例中,在接收UAC设备返回的第二认证失败的消息的情况下,该方法还包括:将第二认证失败的消息转发给第一终端。In some exemplary embodiments, in the case of receiving a second authentication failure message returned by the UAC device, the method further includes: forwarding the second authentication failure message to the first terminal.
图3为根据本公开一个实施例的应用于用户账户控制设备的云桌面接入方法的流程图。Figure 3 is a flow chart of a cloud desktop access method applied to a user account control device according to an embodiment of the present disclosure.
第三方面,参照图3,本公开一个实施例提供了一种云桌面接入方法,应用于UAC设备,该方法包括:In the third aspect, referring to Figure 3, one embodiment of the present disclosure provides a cloud desktop access method, which is applied to UAC devices. The method includes:
步骤300,接收扫描二维码的第二终端在扫描二维码后发送的用户信息、二维码对应的第一终端的身份信息和密码信息。Step 300: Receive the user information sent by the second terminal that scans the QR code after scanning the QR code, and the identity information and password information of the first terminal corresponding to the QR code.
在一些示例性实施例中,二维码对应的第一终端的身份信息和密码信息是第二终端在使用预定应用扫描二维码得到的信息。In some exemplary embodiments, the identity information and password information of the first terminal corresponding to the QR code is information obtained by the second terminal using a predetermined application to scan the QR code.
在一些示例性实施例中,用户信息是第二终端登录预定应用后在预定应用中显示的用户信息,如用户名称等。In some exemplary embodiments, the user information is user information displayed in the predetermined application after the second terminal logs in to the predetermined application, such as user name, etc.
在一些示例性实施例中,预定应用例如可以是ICenter应用。In some exemplary embodiments, the predetermined application may be an ICenter application, for example.
该方法还包括:步骤301,接收AC设备转发的第二认证请求;其中,第二认证请求包括二维码对应的第一终端的身份信息和密码信息。 The method also includes: step 301, receiving a second authentication request forwarded by the AC device; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code.
该方法还包括:步骤302,将第二终端发送的身份信息与第二认证请求中的身份信息进行比对,将第二终端发送的密码信息和第二认证请求中的密码信息进行比对。The method also includes: step 302, comparing the identity information sent by the second terminal with the identity information in the second authentication request, and comparing the password information sent by the second terminal with the password information in the second authentication request.
该方法还包括:步骤303,在第二终端发送的身份信息与第二认证请求中的身份信息相同,且第二终端发送的密码信息和第二认证请求中的密码信息相同的情况下,生成用户信息对应的安全令牌,向AC设备返回第二认证成功的消息;其中,第二认证成功的消息包括:第二终端发送的用户信息和用户信息对应的安全令牌。The method also includes: step 303, when the identity information sent by the second terminal is the same as the identity information in the second authentication request, and the password information sent by the second terminal is the same as the password information in the second authentication request, generate The security token corresponding to the user information returns a second authentication success message to the AC device; wherein the second authentication success message includes: the user information sent by the second terminal and the security token corresponding to the user information.
在一些示例性实施例中,在第二终端发送的身份信息与第二认证请求中的身份信息不相同,或第二终端发送的密码信息和第二认证请求中的密码信息不相同的情况下,向AC设备返回第二认证失败的消息。In some exemplary embodiments, when the identity information sent by the second terminal is different from the identity information in the second authentication request, or the password information sent by the second terminal is different from the password information in the second authentication request. , returning a second authentication failure message to the AC device.
在一些示例性实施例中,生成用户信息对应的安全令牌包括:根据身份信息、密码信息和用户信息生成安全令牌。例如,将身份信息、密码信息和用户信息组合在一起形成一个字符串。In some exemplary embodiments, generating a security token corresponding to user information includes: generating a security token based on identity information, password information, and user information. For example, combining identity information, password information, and user information to form a string.
在一些示例性实施例中,安全令牌是一个字符串。In some exemplary embodiments, the security token is a string.
在一些示例性实施例中,安全令牌也可以根据用户输入的身份信息、密码信息和动态口令生成。In some exemplary embodiments, the security token can also be generated based on the identity information, password information and dynamic password input by the user.
在一些示例性实施例中,二维码对应的第一终端的身份信息和密码信息是动态变化的,使得不同时间生成的安全令牌是不相同的,从而提高了安全性。In some exemplary embodiments, the identity information and password information of the first terminal corresponding to the QR code change dynamically, so that security tokens generated at different times are different, thereby improving security.
在一些示例性实施例中,安全令牌具有有效期,有效期过期后,可以重新生成安全令牌。In some exemplary embodiments, the security token has a validity period, and after the validity period expires, the security token can be regenerated.
在一些示例性实施例中,向AC设备返回第二认证成功的消息后,该方法还包括:接收第一终端发送的第一获取请求;其中,第一获取请求包括:二维码对应的第一终端的身份信息和密码信息;生成安全令牌,向第一终端返回第二终端对应的用户信息和用户信息对应的安全令牌。In some exemplary embodiments, after returning the second authentication success message to the AC device, the method further includes: receiving a first acquisition request sent by the first terminal; wherein the first acquisition request includes: the first acquisition request corresponding to the QR code. The identity information and password information of a terminal; generate a security token, and return the user information corresponding to the second terminal and the security token corresponding to the user information to the first terminal.
为了更好的呈现本公开实施例的云桌面接入方法中不同设备之间的交互过程,下面列举一个示例详细说明不同设备之间的交互过程,所列举的示例不用于限定本公开实施例的保护范围。In order to better present the interaction process between different devices in the cloud desktop access method of the embodiment of the present disclosure, an example is listed below to describe the interaction process between different devices in detail. The example listed is not used to limit the scope of the embodiment of the present disclosure. protected range.
示例 Example
本示例描述云桌面接入过程,为了更好的体现信息的交互过程,本示例中描述了第一终端中采用应用模块和WIFI网络安全存取(WPA,WIFI Protected Access)模块之间的交互过程,如图4所示,云桌面接入方法包括以下操作:This example describes the cloud desktop access process. In order to better reflect the information interaction process, this example describes the interaction process between the application module and the WIFI Network Security Access (WPA, WIFI Protected Access) module in the first terminal. , as shown in Figure 4, the cloud desktop access method includes the following operations:
步骤400,第一终端的应用模块检测是否有连接网络,在没有连接网络的情况下,应用模块调用第一终端的WIFI网络安全存取(WPA,WIFI Protected Access)模块进行WIFI热点扫描得到WIFI列表。Step 400: The application module of the first terminal detects whether there is a connection to the network. If there is no connection to the network, the application module calls the WIFI network security access (WPA, WIFI Protected Access) module of the first terminal to perform WIFI hotspot scanning to obtain the WIFI list. .
步骤401,第一终端的应用模块判断WIFI列表中是否包括目标企业WIFI热点,在WIFI列表中包括目标企业WIFI热点的情况下,将二维码显示为可扫描状态。Step 401: The application module of the first terminal determines whether the WIFI list includes the WIFI hotspot of the target enterprise. If the WIFI list includes the WIFI hotspot of the target enterprise, the QR code is displayed in a scannable state.
步骤402,第二终端登录ICenter应用后,扫描第一终端显示的二维码得到二维码对应的第一终端的身份信息和密码信息,将登录ICenter的用户信息、二维码对应的第一终端的身份信息和密码信息发送给UAC设备。Step 402: After the second terminal logs in to the ICenter application, it scans the QR code displayed on the first terminal to obtain the identity information and password information of the first terminal corresponding to the QR code, and adds the user information logged in to ICenter and the first terminal corresponding to the QR code. The terminal's identity information and password information are sent to the UAC device.
步骤403,第一终端的应用模块在二维码的有效期内定时调用第一终端的WPA模块的接口向WIFI列表中包括的目标企业WIFI热点中信号最强的WIFI热点对应的路由器发送第一认证请求;其中,第一认证请求包括二维码对应的身份信息和密码信息。Step 403: The application module of the first terminal regularly calls the interface of the WPA module of the first terminal within the validity period of the QR code to send the first authentication to the router corresponding to the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise included in the WIFI list. request; wherein, the first authentication request includes the identity information and password information corresponding to the QR code.
步骤404,路由器将第一认证请求转发给AC设备。Step 404: The router forwards the first authentication request to the AC device.
步骤405,AC设备根据二维码对应的身份信息和密码信息对第一终端进行第一认证,在对第一终端进行第一认证成功的情况下,向路由器返回第一认证成功的消息。Step 405: The AC device performs first authentication on the first terminal based on the identity information and password information corresponding to the QR code. If the first authentication on the first terminal is successful, the AC device returns a first authentication success message to the router.
步骤406,路由器向第一终端的WPA模块转发第一认证成功的消息。Step 406: The router forwards the first authentication success message to the WPA module of the first terminal.
步骤407,第一终端的WPA模块向第一终端的应用模块广播第一认证成功的消息。Step 407: The WPA module of the first terminal broadcasts the first authentication success message to the application module of the first terminal.
步骤408,第一终端的应用模块调用第一终端的WPA模块的接口向路由器发送关联请求。Step 408: The application module of the first terminal calls the interface of the WPA module of the first terminal to send an association request to the router.
步骤409,路由器将关联请求转发给AC设备。Step 409: The router forwards the association request to the AC device.
步骤410,AC设备将第一终端和WIFI列表中包括的目标企业WIFI热点中,信号最强的WIFI热点进行关联,在关联成功的情况下,向路由器返回关联成功的消息。Step 410: The AC device associates the first terminal with the WIFI hotspot with the strongest signal among the WIFI hotspots of the target enterprise included in the WIFI list, and if the association is successful, returns an association success message to the router.
步骤411,路由器向第一终端的WPA模块转发关联成功的消息。 Step 411: The router forwards the association success message to the WPA module of the first terminal.
步骤412,第一终端的WPA模块向第一终端的应用模块广播关联成功的消息。Step 412: The WPA module of the first terminal broadcasts the association success message to the application module of the first terminal.
步骤413,第一终端的应用模块调用第一终端的WPA模块的接口向路由器发送第二认证请求;其中,第二认证请求包括二维码对应的身份信息和密码信息。Step 413: The application module of the first terminal calls the interface of the WPA module of the first terminal to send a second authentication request to the router; where the second authentication request includes the identity information and password information corresponding to the QR code.
步骤414,路由器向AC设备转发第二认证请求。Step 414: The router forwards the second authentication request to the AC device.
步骤415,AC设备向UAC设备转发第二认证请求。Step 415: The AC device forwards the second authentication request to the UAC device.
步骤416,UAC设备将第二终端发送的身份信息与第二认证请求中的身份信息进行比对,将第二终端发送的密码信息和第二认证请求中的密码信息进行比对,在第二终端发送的身份信息与第二认证请求中的身份信息相同,且第二终端发送的密码信息和第二认证请求中的密码信息相同的情况下,生成用户信息对应的安全令牌,向AC设备返回第二认证成功的消息;其中,第二认证成功的消息包括:第二终端发送的用户信息和用户信息对应的安全令牌。Step 416: The UAC device compares the identity information sent by the second terminal with the identity information in the second authentication request, compares the password information sent by the second terminal with the password information in the second authentication request, and in the second When the identity information sent by the terminal is the same as the identity information in the second authentication request, and the password information sent by the second terminal is the same as the password information in the second authentication request, a security token corresponding to the user information is generated and sent to the AC device. Return a message that the second authentication is successful; wherein the message that the second authentication is successful includes: the user information sent by the second terminal and the security token corresponding to the user information.
步骤417,AC设备向路由器转发第二认证成功的消息。Step 417: The AC device forwards the second authentication success message to the router.
步骤418,路由器向第一终端的WPA模块转发第二认证成功的消息。Step 418: The router forwards the second authentication success message to the WPA module of the first terminal.
步骤419,第一终端的WPA模块向第一终端的应用模块广播第二认证成功的消息。Step 419: The WPA module of the first terminal broadcasts the second authentication success message to the application module of the first terminal.
步骤420,第一终端的WPA模块向第一终端的应用模块广播WIFI连接成功的消息。Step 420: The WPA module of the first terminal broadcasts a successful WIFI connection message to the application module of the first terminal.
步骤421,第一终端的应用模块在二维码的有效期内定时向UAC设备发送第一获取请求;其中,第一获取请求包括:二维码对应的第一终端的身份信息和密码信息。Step 421: The application module of the first terminal periodically sends a first acquisition request to the UAC device within the validity period of the QR code; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code.
步骤422,UAC设备向第一终端的应用模块返回第二终端登录ICenter应用的用户信息和用户信息对应的安全令牌。Step 422: The UAC device returns the user information of the second terminal to log in to the ICenter application and the security token corresponding to the user information to the application module of the first terminal.
步骤423,第一终端的应用模块向CSAP服务器发送第二获取请求;其中,第二获取请求包括:第二终端对应的用户信息。Step 423: The application module of the first terminal sends a second acquisition request to the CSAP server; wherein the second acquisition request includes: user information corresponding to the second terminal.
步骤424,CSAP服务器向第一终端的应用模块返回用户信息对应的虚拟桌面列表;其中,虚拟桌面列表中包括至少一个虚拟桌面对应的虚拟桌面信息。Step 424: The CSAP server returns a virtual desktop list corresponding to the user information to the application module of the first terminal; wherein the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop.
步骤425,第一终端的应用模块显示接收到的虚拟桌面列表。Step 425: The application module of the first terminal displays the received virtual desktop list.
步骤426,第一终端的应用模块接收用户的选择指令,向选择指令对应的虚 拟桌面信息对应的CSAP服务器发送第三获取请求。Step 426: The application module of the first terminal receives the user's selection instruction and sends it to the virtual object corresponding to the selection instruction. The CSAP server corresponding to the virtual desktop information sends a third acquisition request.
步骤427,CSAP服务器向第一终端的应用模块返回虚拟桌面的连接参数。Step 427: The CSAP server returns the connection parameters of the virtual desktop to the application module of the first terminal.
步骤428,第一终端的应用模块基于虚拟桌面的连接参数和用户信息对应的安全令牌与虚拟桌面对应的虚拟机交互,以连接到虚拟桌面对应的虚拟机。具体的,第一终端的应用模块基于虚拟琢磨的连接参数向虚拟琢磨对应的虚拟机发送连接请求;其中,连接请求包括用户信息对应的安全令牌。Step 428: The application module of the first terminal interacts with the virtual machine corresponding to the virtual desktop based on the connection parameters of the virtual desktop and the security token corresponding to the user information to connect to the virtual machine corresponding to the virtual desktop. Specifically, the application module of the first terminal sends a connection request to the virtual machine corresponding to the virtual machine based on the connection parameters of the virtual machine; wherein the connection request includes a security token corresponding to the user information.
第四方面,本公开一个实施例提供了一种电子设备,包括:至少一个处理器;存储器,存储器上存储有至少一个程序,当至少一个程序被至少一个处理器执行时,实现上述任意一种云桌面接入方法。In a fourth aspect, an embodiment of the present disclosure provides an electronic device, including: at least one processor; and a memory. At least one program is stored on the memory. When at least one program is executed by at least one processor, any one of the above is implemented. Cloud desktop access method.
其中,处理器为具有数据处理能力的器件,其包括但不限于中央处理器(CPU)等;存储器为具有数据存储能力的器件,其包括但不限于随机存取存储器(RAM,更具体如SDRAM、DDR等)、只读存储器(ROM)、带电可擦可编程只读存储器(EEPROM)、闪存(FLASH)。Among them, the processor is a device with data processing capabilities, including but not limited to a central processing unit (CPU), etc.; the memory is a device with data storage capabilities, including but not limited to random access memory (RAM, more specifically such as SDRAM). , DDR, etc.), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory (FLASH).
在一些实施例中,处理器、存储器通过总线相互连接,进而与计算设备的其它组件连接。In some embodiments, the processor and memory are connected to each other through a bus, and then to other components of the computing device.
第五方面,本公开一个实施例提供了一种计算机可读介质,计算机可读介质上存储有计算机程序,计算机程序被处理器执行时实现上述任意一种云桌面接入方法。In the fifth aspect, an embodiment of the present disclosure provides a computer-readable medium. A computer program is stored on the computer-readable medium. When the computer program is executed by a processor, any one of the above cloud desktop access methods is implemented.
图5为根据本公开一个实施例的云桌面接入装置的组成框图。Figure 5 is a block diagram of a cloud desktop access device according to an embodiment of the present disclosure.
第六方面,本公开一个实施例提供了一种云桌面接入装置,包括:检测模块501,被配置成检测到没有连接网络,进行无线保真WIFI热点扫描得到WIFI列表,并且将二维码显示为可扫描状态;交互模块502,被配置成基于二维码对应的第一终端的身份信息和密码信息,与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点,连接到所述WIFI列表中的WIFI热点后,与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息,基于所述第二终端对应的用户信息与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数,并且基于所述虚拟桌面的连接参数与所述虚拟桌面对应的虚拟机交互,以连接到所述虚拟桌面对应的虚拟机。In the sixth aspect, an embodiment of the present disclosure provides a cloud desktop access device, including: a detection module 501 configured to detect that there is no connection to the network, perform wireless fidelity WIFI hotspot scanning to obtain a WIFI list, and convert the QR code to Displayed in a scannable state; the interaction module 502 is configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list and connect to After finding the WIFI hotspot in the WIFI list, interact with the user account control device to obtain the user information corresponding to the second terminal that scans the QR code, and interact with the auxiliary platform server based on the user information corresponding to the second terminal, To obtain the connection parameters of the virtual desktop corresponding to the user information, and interact with the virtual machine corresponding to the virtual desktop based on the connection parameters of the virtual desktop, so as to connect to the virtual machine corresponding to the virtual desktop.
在一些示例性实施例中,检测模块501还被配置成:在所述WIFI列表中包括目标企业WIFI热点的情况下,继续执行所述将二维码显示为可扫描状态的步 骤;相应的,所述WIFI列表中的WIFI热点为所述WIFI列表中的目标企业WIFI热点。In some exemplary embodiments, the detection module 501 is further configured to: if the WIFI list includes a WIFI hotspot of the target enterprise, continue to perform the step of displaying the QR code in a scannable state. Step; Correspondingly, the WIFI hotspot in the WIFI list is the target enterprise WIFI hotspot in the WIFI list.
在一些示例性实施例中,交互模块502具体被配置成采用以下方式实现所述基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点:在所述二维码有效期内定时基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点。In some exemplary embodiments, the interaction module 502 is configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list. WIFI hotspots in: regularly interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code within the validity period of the QR code to connect to the WIFI hotspots in the WIFI list.
在一些示例性实施例中,交互模块502具体被配置成采用以下方式实现所述基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点:向所述接入控制设备发送第一认证请求;其中,所述第一认证请求包括所述二维码对应的第一终端的身份信息和密码信息;接收所述接入控制设备返回的第一认证成功的消息;向所述接入控制设备发送关联请求;接收所述接入控制设备返回的关联成功的消息。In some exemplary embodiments, the interaction module 502 is configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list. WIFI hotspot in: Send a first authentication request to the access control device; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code; receive the access control A first authentication successful message returned by the device; sending an association request to the access control device; and receiving a successful association message returned by the access control device.
在一些示例性实施例中,交互模块502还被配置成:向所述接入控制设备发送第二认证请求;其中,所述第二认证请求包括所述二维码对应的第一终端的身份信息和密码信息;接收所述接入控制设备返回的第二认证成功的消息;其中,所述第二认证成功的消息包括:所述第二终端的用户信息和用户信息对应的安全令牌。In some exemplary embodiments, the interaction module 502 is further configured to: send a second authentication request to the access control device; wherein the second authentication request includes the identity of the first terminal corresponding to the QR code. information and password information; receiving a second authentication success message returned by the access control device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information.
在一些示例性实施例中,交互模块502具体被配置成采用以下方式实现所述与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息:向所述用户账户控制设备发送第一获取请求;其中,所述第一获取请求包括:所述二维码对应的第一终端的身份信息和密码信息;接收所述用户账户控制设备返回的所述第二终端对应的用户信息。In some exemplary embodiments, the interaction module 502 is specifically configured to implement the interaction with the user account control device in the following manner to obtain user information corresponding to the second terminal that scans the QR code: to the user account The control device sends a first acquisition request; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code; and receives the corresponding information of the second terminal returned by the user account control device. user information.
在一些示例性实施例中,交互模块502具体被配置成采用以下方式实现所述基于所述第二终端对应的用户信息与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数:向所述辅助平台服务器发送第二获取请求;其中,所述第二获取请求包括:所述第二终端对应的用户信息;接收所述辅助平台服务器返回的所述用户信息对应的虚拟桌面列表;其中,所述虚拟桌面列表中包括至少一个虚拟桌面对应的虚拟桌面信息;显示所述虚拟桌面列表;接收用户的选择指令,向所述选择指令对应的虚拟桌面信息对应的辅助平台服务器发送第三获取请求;接收所述辅助平台服务器返回的所述选择指令对应的虚拟桌面信息对应的 虚拟桌面的连接参数。In some exemplary embodiments, the interaction module 502 is specifically configured to implement the interaction with the auxiliary platform server based on the user information corresponding to the second terminal in the following manner to obtain the connection parameters of the virtual desktop corresponding to the user information. : Send a second acquisition request to the auxiliary platform server; wherein the second acquisition request includes: user information corresponding to the second terminal; receiving a virtual desktop list corresponding to the user information returned by the auxiliary platform server ; wherein the virtual desktop list includes at least one virtual desktop information corresponding to the virtual desktop; displays the virtual desktop list; receives the user's selection instruction, and sends the first auxiliary platform server corresponding to the virtual desktop information corresponding to the selection instruction; 3. Get the request; receive the virtual desktop information corresponding to the selection instruction returned by the auxiliary platform server. Connection parameters for the virtual desktop.
在一些示例性实施例中,交互模块502具体被配置成采用以下方式实现所述向所述辅助平台服务器发送第二获取请求:在所述二维码有效期内定时向所述辅助平台服务器发送第二获取请求。In some exemplary embodiments, the interaction module 502 is specifically configured to implement sending the second acquisition request to the auxiliary platform server in the following manner: regularly sending the second acquisition request to the auxiliary platform server within the validity period of the QR code. 2. Get request.
上述云桌面接入装置的具体实现过程与前述实施例的云桌面接入方法的具体实现过程相同,这里不再赘述。The specific implementation process of the above cloud desktop access device is the same as the specific implementation process of the cloud desktop access method in the previous embodiment, and will not be described again here.
图6为根据本公开一个实施例的云桌面接入系统的组成框图。Figure 6 is a block diagram of a cloud desktop access system according to an embodiment of the present disclosure.
第七方面,本公开一个实施例提供了一种云桌面接入系统,包括:第一终端601,AC设备602,UAC设备603,CSAP服务器604。In the seventh aspect, an embodiment of the present disclosure provides a cloud desktop access system, including: a first terminal 601, an AC device 602, a UAC device 603, and a CSAP server 604.
其中,第一终端601,被配置成检测到没有连接网络,进行WIFI热点扫描得到WIFI列表;将二维码显示为可扫描状态;基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点;连接到所述WIFI列表中的WIFI热点后,与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息;基于所述第二终端对应的用户信息与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数;基于所述虚拟桌面的连接参数与所述虚拟桌面对应的虚拟机交互,以连接到所述虚拟桌面对应的虚拟机。Among them, the first terminal 601 is configured to detect that there is no connection to the network, perform WIFI hotspot scanning to obtain the WIFI list; display the QR code in a scannable state; and based on the identity information and password information of the first terminal corresponding to the QR code and The access control device interacts to connect to the WIFI hotspot in the WIFI list; after connecting to the WIFI hotspot in the WIFI list, interacts with the user account control device to obtain the second terminal corresponding to the scanned QR code. user information; interact with the auxiliary platform server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information; and based on the connection parameters of the virtual desktop and the virtual desktop corresponding to the virtual desktop. Interact with the computer to connect to the virtual machine corresponding to the virtual desktop.
其中,AC设备602,被配置成与第一终端交互,以将第一终端连接到所述WIFI列表中的WIFI热点。Wherein, the AC device 602 is configured to interact with the first terminal to connect the first terminal to the WIFI hotspot in the WIFI list.
其中,UAC设备603,被配置成与第一终端交互,以将扫描所述二维码的第二终端对应的用户信息发送给第一终端。The UAC device 603 is configured to interact with the first terminal to send user information corresponding to the second terminal that scans the QR code to the first terminal.
其中,CSAP服务器604,被配置成与第一终端交互,以将用户信息对应的虚拟桌面的连接参数发送给第一终端。The CSAP server 604 is configured to interact with the first terminal to send the connection parameters of the virtual desktop corresponding to the user information to the first terminal.
在一些示例性实施例中,第一终端601还被配置成:在所述WIFI列表中包括目标企业WIFI热点的情况下,继续执行所述将二维码显示为可扫描状态的步骤;相应的,所述WIFI列表中的WIFI热点为所述WIFI列表中的目标企业WIFI热点。In some exemplary embodiments, the first terminal 601 is further configured to: if the WIFI list includes the target enterprise WIFI hotspot, continue to perform the step of displaying the QR code in a scannable state; correspondingly , the WIFI hotspot in the WIFI list is the target enterprise WIFI hotspot in the WIFI list.
在一些示例性实施例中,第一终端601具体被配置成采用以下方式实现基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点:在所述二维码有效期内定时基于二维码对应的第 一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点。In some exemplary embodiments, the first terminal 601 is specifically configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list. WIFI hotspot: within the validity period of the QR code, the timing is based on the corresponding QR code. The identity information and password information of a terminal interact with the access control device to connect to the WIFI hotspot in the WIFI list.
在一些示例性实施例中,第一终端601具体被配置成采用以下方式实现基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点:向所述接入控制设备发送第一认证请求;其中,所述第一认证请求包括所述二维码对应的第一终端的身份信息和密码信息;接收所述接入控制设备返回的第一认证成功的消息;向所述接入控制设备发送关联请求;接收所述接入控制设备返回的关联成功的消息。In some exemplary embodiments, the first terminal 601 is specifically configured to interact with the access control device based on the identity information and password information of the first terminal corresponding to the QR code in the following manner to connect to the WIFI list. WIFI hotspot: Send a first authentication request to the access control device; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code; receive the access control device Return a first authentication success message; send an association request to the access control device; receive an association success message returned by the access control device.
AC设备602具体被配置成采用以下方式实现与第一终端交互,以将第一终端连接到所述WIFI列表中的WIFI热点:接收第一终端发送的第一认证请求;根据二维码对应的第一终端的身份信息和密码信息对第一终端进行第一认证;在对第一终端进行第一认证成功的情况下,向第一终端返回第一认证成功的消息;接收第一终端发送的关联请求,将第一终端和WIFI列表中的WIFI热点进行关联;在关联成功的情况下,向第一终端返回关联成功的消息。The AC device 602 is specifically configured to interact with the first terminal in the following manner to connect the first terminal to the WIFI hotspot in the WIFI list: receiving the first authentication request sent by the first terminal; according to the QR code corresponding Use the identity information and password information of the first terminal to perform first authentication on the first terminal; if the first authentication on the first terminal is successful, return a message indicating that the first authentication is successful to the first terminal; receive the message sent by the first terminal. The association request is to associate the first terminal with the WIFI hotspot in the WIFI list; if the association is successful, an association success message is returned to the first terminal.
在一些示例性实施例中,第一终端601还被配置成:向所述接入控制设备发送第二认证请求;其中,所述第二认证请求包括所述二维码对应的第一终端的身份信息和密码信息;接收所述接入控制设备返回的第二认证成功的消息;其中,所述第二认证成功的消息包括:所述第二终端的用户信息和用户信息对应的安全令牌。In some exemplary embodiments, the first terminal 601 is further configured to: send a second authentication request to the access control device; wherein the second authentication request includes the first terminal corresponding to the QR code. Identity information and password information; receiving a second authentication success message returned by the access control device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information. .
AC设备602还被配置成:接收第一终端发送的第二认证请求;其中,第二认证请求包括二维码对应的第一终端的身份信息和密码信息;将第二认证请求转发给UAC设备;接收UAC设备返回的第二认证成功的消息;其中,第二认证成功的消息包括:第二终端的用户信息和用户信息对应的安全令牌。The AC device 602 is also configured to: receive a second authentication request sent by the first terminal; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code; and forward the second authentication request to the UAC device. ; Receive a second authentication success message returned by the UAC device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information.
UAC设备603还被配置成:接收扫描二维码的第二终端在扫描二维码后发送的用户信息、二维码对应的第一终端的身份信息和密码信息;接收AC设备转发的第二认证请求;将第二终端发送的身份信息与第二认证请求中的身份信息进行比对,将第二终端发送的密码信息和第二认证请求中的密码信息进行比对;在第二终端发送的身份信息与第二认证请求中的身份信息相同,且第二终端发送的密码信息和第二认证请求中的密码信息相同的情况下,生成用户信息对应的安全令牌,向AC设备返回第二认证成功的消息;其中,第二认证成功的消息包括:第二终端发送的用户信息和用户信息对应的安全令牌。 The UAC device 603 is also configured to: receive the user information sent by the second terminal that scans the QR code after scanning the QR code, and the identity information and password information of the first terminal corresponding to the QR code; receive the second terminal forwarded by the AC device. Authentication request; compare the identity information sent by the second terminal with the identity information in the second authentication request, compare the password information sent by the second terminal with the password information in the second authentication request; send at the second terminal When the identity information of the user is the same as the identity information in the second authentication request, and the password information sent by the second terminal is the same as the password information in the second authentication request, generate a security token corresponding to the user information, and return the second authentication token to the AC device. A second authentication success message; wherein the second authentication success message includes: user information sent by the second terminal and a security token corresponding to the user information.
在一些示例性实施例中,第一终端601具体被配置成采用以下方式实现与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息:向所述用户账户控制设备发送第一获取请求;其中,所述第一获取请求包括:所述二维码对应的第一终端的身份信息和密码信息;接收所述用户账户控制设备返回的所述第二终端对应的用户信息。In some exemplary embodiments, the first terminal 601 is specifically configured to interact with the user account control device in the following manner to obtain user information corresponding to the second terminal that scans the QR code: to the user account control device. The device sends a first acquisition request; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code; and receives the identity information and password information of the second terminal corresponding to the second terminal returned by the user account control device. User Info.
UAC设备603具体被配置成采用以下方式实现与第一终端交互,以将扫描所述二维码的第二终端对应的用户信息发送给第一终端:接收第一终端发送的第一获取请求;其中,第一获取请求包括:二维码对应的身份信息和密码信息;向第一终端返回第二终端对应的用户信息。The UAC device 603 is specifically configured to interact with the first terminal in the following manner to send the user information corresponding to the second terminal that scans the QR code to the first terminal: receiving the first acquisition request sent by the first terminal; The first acquisition request includes: identity information and password information corresponding to the QR code; and user information corresponding to the second terminal is returned to the first terminal.
在一些示例性实施例中,第一终端601具体被配置成采用以下方式实现基于所述第二终端对应的用户信息与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数:向所述辅助平台服务器发送第二获取请求;其中,所述第二获取请求包括:所述第二终端对应的用户信息;接收所述辅助平台服务器返回的所述用户信息对应的虚拟桌面列表;其中,所述虚拟桌面列表中包括至少一个虚拟桌面对应的虚拟桌面信息;显示所述虚拟桌面列表;接收用户的选择指令,向所述选择指令对应的虚拟桌面信息对应的辅助平台服务器发送第三获取请求;接收所述辅助平台服务器返回的所述选择指令对应的虚拟桌面信息对应的虚拟桌面的连接参数。In some exemplary embodiments, the first terminal 601 is specifically configured to interact with the auxiliary platform server based on the user information corresponding to the second terminal in the following manner to obtain the connection parameters of the virtual desktop corresponding to the user information: Send a second acquisition request to the auxiliary platform server; wherein the second acquisition request includes: user information corresponding to the second terminal; receiving a virtual desktop list corresponding to the user information returned by the auxiliary platform server; Wherein, the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop; displays the virtual desktop list; receives the user's selection instruction and sends a third party to the auxiliary platform server corresponding to the virtual desktop information corresponding to the selection instruction. Obtain the request; receive the connection parameters of the virtual desktop corresponding to the virtual desktop information corresponding to the selection instruction returned by the auxiliary platform server.
CSAP服务器604具体被配置成采用以下方式实现与第一终端交互,以将用户信息对应的虚拟桌面的连接参数发送给第一终端:接收第一终端发送的第二获取请求;向第一终端返回用户信息对应的虚拟桌面列表;接收第一终端发送的第二获取请求;向第一终端返回虚拟桌面列表;接收第一终端发送的第三获取请求;向第一终端返回虚拟桌面的连接参数。The CSAP server 604 is specifically configured to interact with the first terminal in the following manner to send the connection parameters of the virtual desktop corresponding to the user information to the first terminal: receive the second acquisition request sent by the first terminal; return to the first terminal The virtual desktop list corresponding to the user information; receiving the second acquisition request sent by the first terminal; returning the virtual desktop list to the first terminal; receiving the third acquisition request sent by the first terminal; and returning the connection parameters of the virtual desktop to the first terminal.
上述云桌面接入系统的具体实现过程与前述实施例的云桌面接入方法的具体实现过程相同,这里不再赘述。The specific implementation process of the above cloud desktop access system is the same as the specific implementation process of the cloud desktop access method in the previous embodiment, and will not be described again here.
本领域普通技术人员可以理解,上文中所公开方法中的全部或某些步骤、系统、装置中的功能模块/单元可以被实施为软件、固件、硬件及其适当的组合。在硬件实施方式中,在以上描述中提及的功能模块/单元之间的划分不一定对应于物理组件的划分;例如,一个物理组件可以具有多个功能,或者一个功能或步骤可以由若干物理组件合作执行。某些物理组件或所有物理组件可以被实施为由处理器,如中央处理器、数字信号处理器或微处理器执行的软件,或者被实施为 硬件,或者被实施为集成电路,如专用集成电路。这样的软件可以分布在计算机可读介质上,计算机可读介质可以包括计算机存储介质(或非暂时性介质)和通信介质(或暂时性介质)。如本领域普通技术人员公知的,术语计算机存储介质包括在用于存储信息(诸如计算机可读指令、数据结构、程序模块或其它数据)的任何方法或技术中实施的易失性和非易失性、可移除和不可移除介质。计算机存储介质包括但不限于RAM、ROM、EEPROM、闪存或其它存储器技术、CD-ROM、数字多功能盘(DVD)或其它光盘存储、磁盒、磁带、磁盘存储或其它磁存储器、或者可以用于存储期望的信息并且可以被计算机访问的任何其它的介质。此外,本领域普通技术人员公知的是,通信介质通常包含计算机可读指令、数据结构、程序模块或者诸如载波或其它传输机制之类的调制数据信号中的其它数据,并且可包括任何信息递送介质。Those of ordinary skill in the art can understand that all or some steps, systems, and functional modules/units in the devices disclosed above can be implemented as software, firmware, hardware, and appropriate combinations thereof. In hardware implementations, the division between functional modules/units mentioned in the above description does not necessarily correspond to the division of physical components; for example, one physical component may have multiple functions, or one function or step may consist of several physical components. Components execute cooperatively. Some or all of the physical components may be implemented as software executed by a processor, such as a central processing unit, digital signal processor, or microprocessor, or may be implemented as Hardware, or implemented as an integrated circuit, such as an application specific integrated circuit. Such software may be distributed on computer-readable media, which may include computer storage media (or non-transitory media) and communication media (or transitory media). As is known to those of ordinary skill in the art, the term computer storage media includes volatile and nonvolatile media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. removable, removable and non-removable media. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, Digital Versatile Disk (DVD) or other optical disk storage, magnetic cassettes, tapes, disk storage or other magnetic storage, or may be used Any other medium that stores the desired information and can be accessed by a computer. Additionally, it is known to those of ordinary skill in the art that communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism, and may include any information delivery media .
本文已经公开了示例实施例,并且虽然采用了具体术语,但它们仅用于并仅应当被解释为一般说明性含义,并且不用于限制的目的。在一些实例中,对本领域技术人员显而易见的是,除非另外明确指出,否则可单独使用与特定实施例相结合描述的特征、特性和/或元素,或可与其它实施例相结合描述的特征、特性和/或元件组合使用。因此,本领域技术人员将理解,在不脱离由所附的权利要求阐明的本公开的范围的情况下,可进行各种形式和细节上的改变。 Example embodiments have been disclosed herein, and although specific terms are employed, they are used and should be interpreted in a general illustrative sense only and not for purpose of limitation. In some instances, it will be apparent to those skilled in the art that features, characteristics and/or elements described in connection with a particular embodiment may be used alone, or may be used in conjunction with other embodiments, unless expressly stated otherwise. Features and/or components used in combination. Accordingly, it will be understood by those skilled in the art that various changes in form and details may be made without departing from the scope of the present disclosure as set forth in the appended claims.

Claims (10)

  1. 一种云桌面接入方法,应用于第一终端,该方法包括:A cloud desktop access method, applied to the first terminal, the method includes:
    检测到没有连接网络,进行无线保真WIFI热点扫描得到WIFI列表;It is detected that there is no connection to the network, and the wireless fidelity WIFI hotspot scan is performed to obtain the WIFI list;
    将二维码显示为可扫描状态;Display the QR code as scannable;
    基于二维码对应的第一终端的身份信息和密码信息,与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点;Based on the identity information and password information of the first terminal corresponding to the QR code, interact with the access control device to connect to the WIFI hotspot in the WIFI list;
    连接到所述WIFI列表中的WIFI热点后,与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息;After connecting to the WIFI hotspot in the WIFI list, interact with the user account control device to obtain user information corresponding to the second terminal that scans the QR code;
    基于所述第二终端对应的用户信息,与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数;Based on the user information corresponding to the second terminal, interact with the auxiliary platform server to obtain the connection parameters of the virtual desktop corresponding to the user information;
    基于所述虚拟桌面的连接参数,与所述虚拟桌面对应的虚拟机交互,以连接到所述虚拟桌面对应的虚拟机。Based on the connection parameters of the virtual desktop, interact with the virtual machine corresponding to the virtual desktop to connect to the virtual machine corresponding to the virtual desktop.
  2. 根据权利要求1所述的云桌面接入方法,其中,在所述进行无线保真WIFI热点扫描得到WIFI列表后,所述方法还包括:The cloud desktop access method according to claim 1, wherein after the wireless fidelity WIFI hotspot scanning is performed to obtain the WIFI list, the method further includes:
    在所述WIFI列表中包括目标企业WIFI热点的情况下,继续执行所述将二维码显示为可扫描状态的步骤,其中When the WIFI list includes the WIFI hotspot of the target enterprise, continue to perform the step of displaying the QR code in a scannable state, wherein
    所述WIFI列表中的WIFI热点为所述WIFI列表中的目标企业WIFI热点。The WIFI hotspots in the WIFI list are the target enterprise WIFI hotspots in the WIFI list.
  3. 根据权利要求1所述的云桌面接入方法,其中,所述基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点包括:The cloud desktop access method according to claim 1, wherein the identity information and password information of the first terminal based on the QR code interacts with the access control device to connect to the WIFI hotspot in the WIFI list. include:
    在所述二维码有效期内定时基于二维码对应的第一终端的身份信息和密码信息,与接入控制设备交互,以连接到所述WIFI列表中的WIFI热点。During the validity period of the QR code, the system interacts with the access control device regularly based on the identity information and password information of the first terminal corresponding to the QR code to connect to the WIFI hotspot in the WIFI list.
  4. 根据权利要求1所述的云桌面接入方法,其中,所述基于二维码对应的第一终端的身份信息和密码信息与接入控制设备交互,以连接到所述WIFI列表 中的WIFI热点包括:The cloud desktop access method according to claim 1, wherein the identity information and password information of the first terminal based on the QR code interacts with the access control device to connect to the WIFI list WIFI hotspots include:
    向所述接入控制设备发送第一认证请求;其中,所述第一认证请求包括所述二维码对应的第一终端的身份信息和密码信息;Send a first authentication request to the access control device; wherein the first authentication request includes the identity information and password information of the first terminal corresponding to the QR code;
    接收所述接入控制设备返回的第一认证成功的消息;Receive a first authentication success message returned by the access control device;
    向所述接入控制设备发送关联请求;Send an association request to the access control device;
    接收所述接入控制设备返回的关联成功的消息。Receive an association success message returned by the access control device.
  5. 根据权利要求4所述的云桌面接入方法,其中,在所述接收所述接入控制设备返回的关联成功的消息后,所述方法还包括:The cloud desktop access method according to claim 4, wherein after receiving the association success message returned by the access control device, the method further includes:
    向所述接入控制设备发送第二认证请求;其中,所述第二认证请求包括所述二维码对应的第一终端的身份信息和密码信息;Send a second authentication request to the access control device; wherein the second authentication request includes the identity information and password information of the first terminal corresponding to the QR code;
    接收所述接入控制设备返回的第二认证成功的消息;其中,所述第二认证成功的消息包括:所述第二终端的用户信息和用户信息对应的安全令牌。Receive a second authentication success message returned by the access control device; wherein the second authentication success message includes: user information of the second terminal and a security token corresponding to the user information.
  6. 根据权利要求1所述的云桌面接入方法,其中,所述与用户账户控制设备交互,以获取扫描所述二维码的第二终端对应的用户信息包括:The cloud desktop access method according to claim 1, wherein the interaction with the user account control device to obtain user information corresponding to the second terminal that scans the QR code includes:
    向所述用户账户控制设备发送第一获取请求;其中,所述第一获取请求包括:所述二维码对应的第一终端的身份信息和密码信息;Send a first acquisition request to the user account control device; wherein the first acquisition request includes: the identity information and password information of the first terminal corresponding to the QR code;
    接收所述用户账户控制设备返回的所述第二终端对应的用户信息。Receive user information corresponding to the second terminal returned by the user account control device.
  7. 根据权利要求1所述的云桌面接入方法,其中,所述基于所述第二终端对应的用户信息与辅助平台服务器交互,以获取所述用户信息对应的虚拟桌面的连接参数包括:The cloud desktop access method according to claim 1, wherein the interaction with the auxiliary platform server based on the user information corresponding to the second terminal to obtain the connection parameters of the virtual desktop corresponding to the user information includes:
    向所述辅助平台服务器发送第二获取请求;其中,所述第二获取请求包括:所述第二终端对应的用户信息;Send a second acquisition request to the auxiliary platform server; wherein the second acquisition request includes: user information corresponding to the second terminal;
    接收所述辅助平台服务器返回的所述用户信息对应的虚拟桌面列表;其中,所述虚拟桌面列表中包括至少一个虚拟桌面对应的虚拟桌面信息;Receive a virtual desktop list corresponding to the user information returned by the auxiliary platform server; wherein the virtual desktop list includes virtual desktop information corresponding to at least one virtual desktop;
    显示所述虚拟桌面列表; Display the virtual desktop list;
    接收用户的选择指令,向所述选择指令对应的虚拟桌面信息对应的辅助平台服务器发送第三获取请求;Receive the user's selection instruction and send a third acquisition request to the auxiliary platform server corresponding to the virtual desktop information corresponding to the selection instruction;
    接收所述辅助平台服务器返回的所述选择指令对应的虚拟桌面信息对应的虚拟桌面的连接参数。Receive the connection parameters of the virtual desktop corresponding to the virtual desktop information corresponding to the selection instruction returned by the auxiliary platform server.
  8. 根据权利要求7所述的云桌面接入方法,其中,所述向所述辅助平台服务器发送第二获取请求包括:The cloud desktop access method according to claim 7, wherein sending the second acquisition request to the auxiliary platform server includes:
    在所述二维码有效期内定时向所述辅助平台服务器发送第二获取请求。A second acquisition request is regularly sent to the auxiliary platform server within the validity period of the QR code.
  9. 一种电子设备,包括:An electronic device including:
    至少一个处理器;at least one processor;
    存储器,所述存储器上存储有至少一个程序,当所述至少一个程序被所述至少一个处理器执行时,实现权利要求1-8任意一项所述的云桌面接入方法。A memory, at least one program is stored on the memory, and when the at least one program is executed by the at least one processor, the cloud desktop access method described in any one of claims 1-8 is implemented.
  10. 一种计算机可读介质,所述计算机可读介质上存储有计算机程序,所述计算机程序被处理器执行时实现权利要求1-8任意一项所述的云桌面接入方法。 A computer-readable medium. A computer program is stored on the computer-readable medium. When the computer program is executed by a processor, the cloud desktop access method described in any one of claims 1-8 is implemented.
PCT/CN2023/114000 2022-08-29 2023-08-21 Cloud desktop access method, electronic device, and computer readable medium WO2024046157A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202211047336.4A CN117676772A (en) 2022-08-29 2022-08-29 Cloud desktop access method, electronic equipment and computer readable medium
CN202211047336.4 2022-08-29

Publications (1)

Publication Number Publication Date
WO2024046157A1 true WO2024046157A1 (en) 2024-03-07

Family

ID=90071925

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2023/114000 WO2024046157A1 (en) 2022-08-29 2023-08-21 Cloud desktop access method, electronic device, and computer readable medium

Country Status (2)

Country Link
CN (1) CN117676772A (en)
WO (1) WO2024046157A1 (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103067371A (en) * 2012-12-24 2013-04-24 广州杰赛科技股份有限公司 Cloud terminal identity authentication method and system
US20130347071A1 (en) * 2011-03-10 2013-12-26 Orange Method and system for granting access to a secured website
CN105162775A (en) * 2015-08-05 2015-12-16 深圳市方迪科技股份有限公司 Logging method and device of virtual machine
CN107241431A (en) * 2017-07-04 2017-10-10 深圳市青葡萄科技有限公司 The method and system of virtual desktop are logged in based on the barcode scanning that Quick Response Code is realized
CN107332808A (en) * 2016-04-29 2017-11-07 中兴通讯股份有限公司 A kind of method, server and the terminal of the certification of cloud desktop
CN112261011A (en) * 2020-09-30 2021-01-22 北京联众国际通信有限公司 Cloud desktop authentication method based on two-dimensional code recognition

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130347071A1 (en) * 2011-03-10 2013-12-26 Orange Method and system for granting access to a secured website
CN103067371A (en) * 2012-12-24 2013-04-24 广州杰赛科技股份有限公司 Cloud terminal identity authentication method and system
CN105162775A (en) * 2015-08-05 2015-12-16 深圳市方迪科技股份有限公司 Logging method and device of virtual machine
CN107332808A (en) * 2016-04-29 2017-11-07 中兴通讯股份有限公司 A kind of method, server and the terminal of the certification of cloud desktop
CN107241431A (en) * 2017-07-04 2017-10-10 深圳市青葡萄科技有限公司 The method and system of virtual desktop are logged in based on the barcode scanning that Quick Response Code is realized
CN112261011A (en) * 2020-09-30 2021-01-22 北京联众国际通信有限公司 Cloud desktop authentication method based on two-dimensional code recognition

Also Published As

Publication number Publication date
CN117676772A (en) 2024-03-08

Similar Documents

Publication Publication Date Title
US11201778B2 (en) Authorization processing method, device, and system
US9602502B2 (en) User login methods, devices, and systems
US10021098B2 (en) Account login method, device, and system
US20170195314A1 (en) Provisioning account credentials via a trusted channel
US20130318581A1 (en) Multi-factor authentication using a unique identification header (uidh)
US8474014B2 (en) Methods for the secure use of one-time passwords
CN106375270B (en) Token generation and authentication method and authentication server
US11172520B2 (en) Connection method and device
US11765164B2 (en) Server-based setup for connecting a device to a local area network
US20080184354A1 (en) Single sign-on system, information terminal device, single sign-on server, single sign-on utilization method, storage medium, and data signal
US20160381001A1 (en) Method and apparatus for identity authentication between systems
CN107241336B (en) Identity verification method and device
US20170012976A1 (en) Authentication method, apparatus, and system
CN107508822B (en) Access control method and device
CN107567017B (en) Wireless connection system, device and method
US20150143475A1 (en) Operation Processing Method and Device
CN110401951B (en) Method, device and system for authenticating terminal in wireless local area network
CN106254319B (en) Light application login control method and device
US20220200999A1 (en) Authentication Using Device and User Identity
US10341338B1 (en) Smart card redirection
US20210044975A1 (en) Authentication via ussd
CN110781481A (en) Single sign-on method, client, server, and storage medium
WO2024046157A1 (en) Cloud desktop access method, electronic device, and computer readable medium
CN115664761A (en) Single sign-on method and device, electronic equipment and readable storage medium
US9143510B2 (en) Secure identification of intranet network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 23859191

Country of ref document: EP

Kind code of ref document: A1