[go: up one dir, main page]

CN103634399A - Method and device for realizing cross-domain data transmission - Google Patents

Method and device for realizing cross-domain data transmission Download PDF

Info

Publication number
CN103634399A
CN103634399A CN201310631383.8A CN201310631383A CN103634399A CN 103634399 A CN103634399 A CN 103634399A CN 201310631383 A CN201310631383 A CN 201310631383A CN 103634399 A CN103634399 A CN 103634399A
Authority
CN
China
Prior art keywords
user
login
browser server
key
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201310631383.8A
Other languages
Chinese (zh)
Other versions
CN103634399B (en
Inventor
唐永刚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Qihoo Technology Co Ltd
Original Assignee
Beijing Qihoo Technology Co Ltd
Qizhi Software Beijing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Qihoo Technology Co Ltd, Qizhi Software Beijing Co Ltd filed Critical Beijing Qihoo Technology Co Ltd
Priority to CN201310631383.8A priority Critical patent/CN103634399B/en
Publication of CN103634399A publication Critical patent/CN103634399A/en
Application granted granted Critical
Publication of CN103634399B publication Critical patent/CN103634399B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Information Transfer Between Computers (AREA)

Abstract

本发明公开了一种实现跨域数据传输的方法和装置,通过在不同域名的浏览器服务器间传输与用户SID对应的登录Cookie数据,并利用不同的加密和校验方式来保证用户登录身份的可靠性,从而能够实现用户在不同域名间的跨域登录,有效的提高了跨域名数据传输的效率。

Figure 201310631383

The present invention discloses a method and device for realizing cross-domain data transmission. The login cookie data corresponding to the user SID is transmitted between browser servers of different domain names, and different encryption and verification methods are used to ensure the authenticity of the user's login identity. Reliability, so that users can log in across domains between different domain names, effectively improving the efficiency of cross-domain data transmission.

Figure 201310631383

Description

一种实现跨域数据传输的方法和装置A method and device for realizing cross-domain data transmission

技术领域technical field

本发明涉及数据处理的技术领域,具体涉及一种实现跨域数据传输的方法和装置。The present invention relates to the technical field of data processing, in particular to a method and device for realizing cross-domain data transmission.

背景技术Background technique

随着互联网的飞速发展,互联网上的网站数量和类型也越来越多,而各网站的域名也不尽相同,并且多数网站往往都需要注册登录后才能使用。With the rapid development of the Internet, the number and types of websites on the Internet are also increasing, and the domain names of each website are also different, and most websites often need to be registered and logged in before they can be used.

同时,由于网站域名下的网页(Web page)是由统一资源定位符(URL,Universal Resource Locator)来识别与存取的,对于同一域名下的网页,只要用户在浏览器输入URL后,在网页上输入已注册的身份信息,即可在通过服务器验证后以登录身份浏览该网页;但是,如果用户从当前网页跳转到另一域名下的网页时,则需要重新输入已注册的身份信息,并在通过服务器验证后才能以登录身份浏览另一域名下的网页。At the same time, since the webpage (Web page) under the domain name of the website is identified and accessed by the Uniform Resource Locator (URL, Universal Resource Locator), for the webpage under the same domain name, as long as the user enters the URL in the browser, the webpage After entering the registered identity information on the website, you can browse the webpage as a login after passing the server verification; however, if the user jumps from the current webpage to a webpage under another domain name, you need to re-enter the registered identity information, And only after passing the server verification can you browse the webpage under another domain name with the login identity.

因此,为了解决该登录问题,现有技术中提出了采用可以保留用户登录状态的Cookie方式进行不同域名间的登录;然而,由于Cookie只能用于一个域名,不能够发给其它的域名,所以如果在浏览器中对一个域名设置了一个Cookie,该Cookie对于其它的域名将无效。因此,当站点或网络有多个域名时,如果用户想从一域名下的网页登录浏览另一域名的网页,由于Cookie对于其他域名的无效将导致用户登录不可实现,大大降低了跨域名数据传输的效率。Therefore, in order to solve this login problem, it is proposed in the prior art to use a cookie method that can retain the user's login status to log in between different domain names; however, since cookies can only be used for one domain name, they cannot be sent to other domain names, so If a cookie is set for one domain name in the browser, the cookie will be invalid for other domain names. Therefore, when a site or network has multiple domain names, if a user wants to log in and browse a web page of another domain name from a web page under one domain name, the invalidation of cookies for other domain names will make user login impossible, greatly reducing cross-domain data transmission s efficiency.

发明内容Contents of the invention

鉴于上述问题,提出了本发明以便提供一种克服上述问题或者至少部分地解决上述问题的一种实现跨域数据传输的方法和相应的一种实现跨域数据传输的装置。In view of the above problems, the present invention is proposed to provide a method for realizing cross-domain data transmission and a corresponding device for realizing cross-domain data transmission that overcome the above problems or at least partially solve the above problems.

依据本发明的一个方面,提供了一种实现跨域数据传输的方法,包括:According to one aspect of the present invention, a method for implementing cross-domain data transmission is provided, including:

接收用户登录请求;Receive user login request;

生成至少包含用户安全标识符SID和第一密钥的会话信息并跳转登录请求至第二浏览器服务器;Generate session information including at least the user security identifier SID and the first key and redirect the login request to the second browser server;

当接收到所述第二浏览器服务器根据所述用户SID发送的校验请求后,向所述第二浏览器服务器返回所述第一密钥;After receiving the verification request sent by the second browser server according to the user SID, returning the first key to the second browser server;

通过对接收到的所述第二浏览器服务器发送的加密数据进行解析得到登录Cookie数据,完成登录。The login Cookie data is obtained by analyzing the received encrypted data sent by the second browser server, and the login is completed.

可选的,该方法还包括:Optionally, the method also includes:

在生成所述会话信息时记录用户登录IP地址。Record the user's login IP address when generating the session information.

可选的,该方法还包括:Optionally, the method also includes:

当接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户登录IP地址;When receiving the verification request and returning the first key to the second browser server, sending the user login IP address to the second browser server;

从接收的加密数据中解析出用户登录IP地址;Analyze the user login IP address from the received encrypted data;

校验解析出的用户登录IP地址与已记录的用户登录IP地址是否一致;如果是,则利用解析出的登录Cookie数据完成登录。Check whether the parsed user login IP address is consistent with the recorded user login IP address; if yes, use the parsed login cookie data to complete the login.

可选的,该方法还包括:Optionally, the method also includes:

在生成所述会话消息时记录用户请求登录时间。When the session message is generated, record the user request login time.

可选的,该方法还包括:Optionally, the method also includes:

当接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户请求登录时间;When receiving the verification request and returning the first key to the second browser server, sending the user request login time to the second browser server;

从接收的加密数据中解析出用户请求登录时间;Parse the user request login time from the received encrypted data;

校验解析出的用户请求登录时间与已记录的用户请求登录时间是否一致;如果是,则利用解析出的登录Cookie数据完成登录。Check whether the parsed user request login time is consistent with the recorded user request login time; if yes, use the parsed login cookie data to complete the login.

依据本发明的另一个方面,提供了一种实现跨域数据传输的方法,包括:According to another aspect of the present invention, a method for realizing cross-domain data transmission is provided, including:

接收第一浏览器服务器跳转的用户登录请求;receiving a user login request redirected by the first browser server;

判断用户是否有登录权限;如果有,则生成登录Cookie数据,并获取所述第一浏览器服务器生成的用户安全标识符SID;Judging whether the user has login authority; if so, generating login Cookie data, and obtaining the user security identifier SID generated by the first browser server;

根据所述SID向所述第一浏览器服务器发送校验请求,并接收所述第一浏览器服务器返回的第一密钥;sending a verification request to the first browser server according to the SID, and receiving a first key returned by the first browser server;

利用所述第一密钥和本地第二密钥对所述登录Cookie数据进行加密后发送至所述第一浏览器服务器,以使所述第一浏览器服务器根据加密数据解析结果进行登录。The login cookie data is encrypted by using the first key and the local second key, and then sent to the first browser server, so that the first browser server can log in according to the encrypted data analysis result.

可选的,所述获取第一浏览器服务器生成的SID包括:Optionally, said obtaining the SID generated by the first browser server includes:

根据所述用户登录请求确定用户登录统一资源定位符URL;Determine the user login Uniform Resource Locator URL according to the user login request;

从所述用户登录URL中提取出所述用户SID。The user SID is extracted from the user login URL.

可选的,该方法还包括:Optionally, the method also includes:

在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户登录IP地址;After sending the verification request to the first browser server, receiving the user login IP address returned by the first browser server;

利用所述第一密钥、本地第二密钥和所述用户登录IP地址对所述登录Cookie数据进行加密处理,将加密数据发送至所述第一浏览器服务器。Encrypting the login Cookie data by using the first key, the local second key and the user login IP address, and sending the encrypted data to the first browser server.

可选的,该方法还包括:Optionally, the method also includes:

在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户请求登录时间;After sending the verification request to the first browser server, receiving the user requested login time returned by the first browser server;

利用所述第一密钥、本地第二密钥和所述用户请求登录时间对所述登录Cookie数据进行加密处理,将加密数据发送至所述第一浏览器服务器。Encrypting the login cookie data by using the first key, the second local key and the login time requested by the user, and sending the encrypted data to the first browser server.

依据本发明的另一个方面,提供了一种实现跨域数据传输的装置,包括:According to another aspect of the present invention, a device for realizing cross-domain data transmission is provided, including:

第一接收单元,适于接收用户登录请求;a first receiving unit adapted to receive a user login request;

第一生成单元,适于生成至少包含用户安全标识符SID和第一密钥的会话信息并跳转登录请求至第二浏览器服务器;The first generation unit is adapted to generate session information including at least the user security identifier SID and the first key and redirect the login request to the second browser server;

第一反馈单元,适于当接收到所述第二浏览器服务器根据所述用户SID发送的校验请求后,向所述第二浏览器服务器返回所述第一密钥;The first feedback unit is adapted to return the first key to the second browser server after receiving the verification request sent by the second browser server according to the user SID;

第一解析单元,适于通过对接收到的所述第二浏览器服务器发送的加密数据进行解析得到登录Cookie数据,完成登录。The first parsing unit is adapted to obtain the login cookie data by parsing the received encrypted data sent by the second browser server, and complete the login.

可选的,所述第一生成单元包括:Optionally, the first generation unit includes:

第一记录模块,适于在生成所述会话信息时记录用户登录IP地址和/或用户请求登录时间。The first recording module is adapted to record the user login IP address and/or the user request login time when generating the session information.

可选的,所述第一反馈单元包括:Optionally, the first feedback unit includes:

第一发送模块,适于在接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户登录IP地址和/用户请求登录时间。The first sending module is adapted to send the user login IP address and/or to the second browser server when receiving the verification request and returning the first key to the second browser server User requests login time.

可选的,所述第一解析单元包括:Optionally, the first parsing unit includes:

第一解密模块,适于从接收到的加密数据中解析出用户登录IP地址和/或用户登录时间;The first decryption module is adapted to resolve the user login IP address and/or user login time from the received encrypted data;

第一校验模块,适于校验所述第一解密模块解析出的用户登录IP地址与已记录的用户登录IP地址是否一致,如果是,则利用解析出的登录Cookie数据完成登录;或者,适于校验所述第一解密模块解析出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果是,则利用解析出的登录Cookie数据完成登录;或者,适于校验所述第一解密模块解析出的用户登录IP地址与已记录的用户登录IP地址是否一致,并校验所述第一解密模块解析出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果都一致,则利用解析出的登录Cookie数据完成登录。The first verification module is adapted to verify whether the user login IP address parsed by the first decryption module is consistent with the recorded user login IP address, and if so, complete the login using the parsed login Cookie data; or, It is suitable for checking whether the user request login time parsed by the first decryption module is consistent with the recorded user request login time, and if so, complete the login by using the parsed login Cookie data; or, it is suitable for checking the Whether the user login IP address parsed by the first decryption module is consistent with the recorded user login IP address, and whether the user request login time parsed by the first decryption module is consistent with the recorded user request login time, if If they are all consistent, the login is completed using the parsed login cookie data.

依据本发明的另一个方面,提供了一种实现跨域数据传输的装置,包括:According to another aspect of the present invention, a device for realizing cross-domain data transmission is provided, including:

第二接收单元,适于接收第一浏览器服务器跳转的用户登录请求;The second receiving unit is adapted to receive a user login request redirected by the first browser server;

第二判断单元,适于判断用户是否有登录权限;如果有,则生成登录Cookie数据,并获取所述第一浏览器服务器生成的用户安全标识符SID;The second judging unit is adapted to judge whether the user has login authority; if yes, generate login Cookie data, and obtain the user security identifier SID generated by the first browser server;

第二发送单元,适于根据所述SID向所述第一浏览器服务器发送校验请求,并接收所述第一浏览器服务器返回的第一密钥;The second sending unit is adapted to send a verification request to the first browser server according to the SID, and receive the first key returned by the first browser server;

第二加密单元,适于利用所述第一密钥和本地第二密钥对所述登录Cookie数据进行加密后发送至所述第一浏览器服务器,以使所述第一浏览器服务器根据加密数据解析结果进行登录。The second encryption unit is adapted to use the first key and the local second key to encrypt the login Cookie data and send it to the first browser server, so that the first browser server can Log in the data analysis result.

可选的,所述第二判断单元包括:Optionally, the second judging unit includes:

第一处理模块,适于根据所述用户登录请求确定用户登录统一资源定位符URL;The first processing module is adapted to determine the user login Uniform Resource Locator URL according to the user login request;

第二处理模块,适于从所述第一处理模块确定的用户登录URL中提取出所述用户SID。The second processing module is adapted to extract the user SID from the user login URL determined by the first processing module.

可选的,所述第二发送单元包括:Optionally, the second sending unit includes:

第二获取模块,适于在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户登录IP地址和/或用户请求登录时间。The second obtaining module is adapted to receive the user login IP address and/or user request login time returned by the first browser server after sending the verification request to the first browser server.

可选的,所述第二加密单元包括:Optionally, the second encryption unit includes:

加密模块,适于利用所述第一密钥、本地第二密钥以及所述用户登录IP地址和/或用户请求登录时间对所述登录Cookie数据进行加密处理;An encryption module, adapted to use the first key, the local second key, and the user login IP address and/or user request login time to encrypt the login Cookie data;

发送模块,适于将所述加密模块加密的数据发送至所述第一浏览器服务器。A sending module, adapted to send the data encrypted by the encryption module to the first browser server.

本发明实施例通过在不同域名的浏览器服务器间传输与用户SID对应的登录Cookie数据,并利用不同的加密和校验方式来保证用户登录身份的可靠性,从而能够实现用户在不同域名间的跨域登录,有效的提高了跨域名数据传输的效率。In the embodiment of the present invention, the login Cookie data corresponding to the user SID is transmitted between browser servers of different domain names, and different encryption and verification methods are used to ensure the reliability of the user's login identity, thereby enabling the user to log in between different domain names. Cross-domain login effectively improves the efficiency of cross-domain data transmission.

上述说明仅是本发明技术方案的概述,为了能够更清楚了解本发明的技术手段,而可依照说明书的内容予以实施,并且为了让本发明的上述和其它目的、特征和优点能够更明显易懂,以下特举本发明的具体实施方式。The above description is only an overview of the technical solution of the present invention. In order to better understand the technical means of the present invention, it can be implemented according to the contents of the description, and in order to make the above and other purposes, features and advantages of the present invention more obvious and understandable , the specific embodiments of the present invention are enumerated below.

附图说明Description of drawings

通过阅读下文优选实施方式的详细描述,各种其他的优点和益处对于本领域普通技术人员将变得清楚明了。附图仅用于示出优选实施方式的目的,而并不认为是对本发明的限制。而且在整个附图中,用相同的参考符号表示相同的部件。在附图中:Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiment. The drawings are only for the purpose of illustrating a preferred embodiment and are not to be considered as limiting the invention. Also throughout the drawings, the same reference numerals are used to designate the same components. In the attached picture:

图1示出了根据本发明一个实施例1的实现跨域数据传输的方法步骤流程图;FIG. 1 shows a flow chart of the method steps for realizing cross-domain data transmission according to Embodiment 1 of the present invention;

图2示出了根据本发明一个实施例2的实现跨域数据传输的方法步骤流程图;FIG. 2 shows a flow chart of the method steps for realizing cross-domain data transmission according to Embodiment 2 of the present invention;

图3示出了根据本发明一个实施例3的实现跨域数据传输的方法步骤流程图;FIG. 3 shows a flow chart of the method steps for realizing cross-domain data transmission according to Embodiment 3 of the present invention;

图4示出了根据本发明一个实施例4的实现跨域数据传输的方法步骤流程图;FIG. 4 shows a flow chart of the method steps for realizing cross-domain data transmission according to Embodiment 4 of the present invention;

图5示出了根据本发明一个实施例5的实现跨域数据传输的方法步骤流程图;FIG. 5 shows a flow chart of the steps of a method for implementing cross-domain data transmission according to Embodiment 5 of the present invention;

图6示出了根据本发明一个实施例6的实现跨域数据传输的装置结构框图;以及FIG. 6 shows a structural block diagram of a device for implementing cross-domain data transmission according to Embodiment 6 of the present invention; and

图7示出了根据本发明一个实施例7的实现跨域数据传输的装置结构框图。Fig. 7 shows a structural block diagram of an apparatus for implementing cross-domain data transmission according to Embodiment 7 of the present invention.

具体实施方式Detailed ways

下面将参照附图更详细地描述本公开的示例性实施例。虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

参照图1,示出了根据本发明一个实施例的一种实现跨域数据传输的方法实施例1的步骤流程图,具体可以包括如下步骤:Referring to FIG. 1 , it shows a flow chart of the steps of Embodiment 1 of a method for realizing cross-domain data transmission according to an embodiment of the present invention, which may specifically include the following steps:

步骤101:第一浏览器服务器接收浏览器客户端发送的用户登录请求;Step 101: the first browser server receives the user login request sent by the browser client;

步骤102:所述第一浏览器服务器生成本次登录的会话信息(session)并跳转登录请求值第二浏览器服务器;其中,所述会话信息至少包含用户安全标识符(SID,Security Identifiers)和第一密钥Key1;Step 102: The first browser server generates session information (session) for this login and jumps to the login request value to the second browser server; wherein, the session information includes at least user security identifiers (SID, Security Identifiers) and the first key Key1;

步骤103:所述第二浏览器服务器接收第一浏览器服务器跳转的用户登录请求后,判断用户是否有登录权限;如果用户有登录权限,则所述第二浏览器服务器生成登录Cookie数据,执行步骤104;Step 103: After receiving the user login request redirected by the first browser server, the second browser server determines whether the user has login authority; if the user has login authority, the second browser server generates login Cookie data, Execute step 104;

步骤104:所述第二浏览器服务器获取所述用户SID,并执行步骤105;Step 104: the second browser server obtains the user SID, and executes step 105;

具体的,本实施例提出可以通过以下方式获取所述用户SID,但并不局限于此:Specifically, this embodiment proposes that the user SID may be obtained in the following manner, but is not limited thereto:

S1041:所述第二浏览器服务器接收到所述第一浏览器服务器跳转的用户登录请求后,根据该用户登录请求确定用户登录URL;S1041: After receiving the user login request redirected by the first browser server, the second browser server determines the user login URL according to the user login request;

S1042:从所述确定的用户登录URL中提取出所述用户SID。S1042: Extract the user SID from the determined user login URL.

当然,本领域普通技术人员很容易了解,在所述第二浏览器服务器接收到所述第一浏览器服务器跳转的用户登录请求后,还可以通过多种方式获取所述第一浏览器服务器生成的SID,具体本实施例不再赘述。Of course, those of ordinary skill in the art can easily understand that after the second browser server receives the user login request redirected by the first browser server, it can also obtain the first browser server’s login request in various ways. The generated SID will not be described in detail in this embodiment.

步骤105:所述第二浏览器服务器根据获取到的所述SID向所述第一浏览器服务器发送校验请求,用以获取所述第一浏览器服务器生成的Key1;Step 105: The second browser server sends a verification request to the first browser server according to the obtained SID, so as to obtain the Key1 generated by the first browser server;

步骤106:所述第一浏览器服务器接收所述第二浏览器服务器的校验请求后,向所述第二浏览器服务器反馈所述Key1;Step 106: After receiving the verification request from the second browser server, the first browser server feeds back the Key1 to the second browser server;

步骤107:所述第二浏览器服务器接收到所述Key1后,利用所述Key1和本地存储的第二密钥Key2对所述登录Cookie数据进行加密处理;执行步骤109;Step 107: After the second browser server receives the Key1, use the Key1 and the locally stored second key Key2 to encrypt the login cookie data; execute step 109;

步骤108:所述第二浏览器服务器将加密后的登录Cookie数据发送至所述第一浏览器服务器;Step 108: the second browser server sends the encrypted login cookie data to the first browser server;

步骤109:所述第一浏览器服务器通过对接收到的加密数据进行解密处理获得所述登录Cookie数据,利用所述登录Cookie数据完成用户登录操作。Step 109: The first browser server obtains the login cookie data by decrypting the received encrypted data, and uses the login cookie data to complete the user login operation.

基于上述实施例1,本发明实施例2也提出了一种实现跨域数据传输的方法,如图2所示,该方法与实施例1的一种实现跨域数据传输的方法流程基本相同,不同之处在于,该方法还包括利用用户登录IP地址进行校验的过程,具体该方法包括:Based on the above-mentioned embodiment 1, embodiment 2 of the present invention also proposes a method for realizing cross-domain data transmission, as shown in FIG. The difference is that the method also includes the process of using the user login IP address for verification, specifically the method includes:

步骤101:第一浏览器服务器接收浏览器客户端发送的用户登录请求;Step 101: the first browser server receives the user login request sent by the browser client;

步骤202:所述第一浏览器服务器生成本次登录的会话信息,同时记录用户登录的IP地址并跳转登录请求值第二浏览器服务器;其中,所述会话信息至少包含用户安全标识符和第一密钥Key1;Step 202: The first browser server generates session information for this login, records the IP address of the user login and jumps to the second browser server for the login request value; wherein, the session information includes at least the user security identifier and The first key Key1;

步骤103:所述第二浏览器服务器接收第一浏览器服务器跳转的用户登录请求后,判断用户是否有登录权限;如果用户有登录权限,则所述第二浏览器服务器生成登录Cookie数据,执行步骤104;Step 103: After receiving the user login request redirected by the first browser server, the second browser server determines whether the user has login authority; if the user has login authority, the second browser server generates login Cookie data, Execute step 104;

步骤104:所述第二浏览器服务器获取所述用户SID,并执行步骤105;Step 104: the second browser server obtains the user SID, and executes step 105;

步骤105:所述第二浏览器服务器根据获取到的所述SID向所述第一浏览器服务器发送校验请求;Step 105: The second browser server sends a verification request to the first browser server according to the obtained SID;

步骤206:所述第一浏览器服务器接收所述第二浏览器服务器的校验请求后,向所述第二浏览器服务器反馈所述Key1和用户登录IP地址;Step 206: After receiving the verification request from the second browser server, the first browser server feeds back the Key1 and user login IP address to the second browser server;

步骤207:所述第二浏览器服务器接收到所述Key1和用户登录IP地址后,利用所述Key1、本地存储的第二密钥Key2以及所述第一浏览器服务器发送的用户登录IP地址对所述登录Cookie数据进行加密处理;执行步骤108;Step 207: After the second browser server receives the Key1 and the user login IP address, use the Key1, the locally stored second key Key2 and the user login IP address pair sent by the first browser server to The login Cookie data is encrypted; execute step 108;

步骤108:所述第二浏览器服务器将加密后的登录Cookie数据发送至所述第一浏览器服务器;Step 108: the second browser server sends the encrypted login cookie data to the first browser server;

步骤209:所述第一浏览器服务器通过对接收到的加密数据进行解密处理,并校验解密出的用户登录IP地址与已记录的用户登录IP地址是否一致,如果是,则确定解密得到为所述登录Cookie数据,再利用所述登录Cookie数据完成用户登录操作;否则,登录失败。Step 209: The first browser server decrypts the received encrypted data, and checks whether the decrypted user login IP address is consistent with the recorded user login IP address, and if so, determines that the decrypted result is The login Cookie data is used to complete the user login operation; otherwise, the login fails.

基于上述实施例1,本发明实施例3也提出了一种实现跨域数据传输的方法,如图3所示,该方法与实施例1的一种实现跨域数据传输的方法流程基本相同,不同之处在于,该方法还包括利用用户请求登录时间进行校验的过程,具体该方法包括:Based on the above-mentioned embodiment 1, embodiment 3 of the present invention also proposes a method for realizing cross-domain data transmission, as shown in FIG. The difference is that the method also includes a process of verifying the login time requested by the user. Specifically, the method includes:

步骤101:第一浏览器服务器接收浏览器客户端发送的用户登录请求;Step 101: the first browser server receives the user login request sent by the browser client;

步骤302:所述第一浏览器服务器生成本次登录的会话信息,同时记录用户请求登录时间并跳转登录请求值第二浏览器服务器;其中,所述会话信息至少包含用户安全标识符和第一密钥Key1;Step 302: The first browser server generates session information for this login, and at the same time records the login time requested by the user and jumps to the second browser server for the login request value; wherein, the session information includes at least the user security identifier and the second browser server. A key Key1;

步骤103:所述第二浏览器服务器接收第一浏览器服务器跳转的用户登录请求后,判断用户是否有登录权限;如果用户有登录权限,则所述第二浏览器服务器生成登录Cookie数据,执行步骤104;Step 103: After receiving the user login request redirected by the first browser server, the second browser server determines whether the user has login authority; if the user has login authority, the second browser server generates login Cookie data, Execute step 104;

步骤104:所述第二浏览器服务器获取所述用户SID,并执行步骤105;Step 104: the second browser server obtains the user SID, and executes step 105;

步骤105:所述第二浏览器服务器根据获取到的所述SID向所述第一浏览器服务器发送校验请求;Step 105: The second browser server sends a verification request to the first browser server according to the obtained SID;

步骤306:所述第一浏览器服务器接收所述第二浏览器服务器的校验请求后,向所述第二浏览器服务器反馈所述Key1和用户请求登录时间;Step 306: After receiving the verification request from the second browser server, the first browser server feeds back the Key1 and the login time requested by the user to the second browser server;

步骤307:所述第二浏览器服务器接收到所述Key1和用户请求登录时间后,利用所述Key1、本地存储的第二密钥Key2以及所述第一浏览器服务器发送的用户请求登录时间对所述登录Cookie数据进行加密处理;执行步骤108;Step 307: After the second browser server receives the Key1 and the user requested login time, use the Key1, the locally stored second key Key2 and the user requested login time sent by the first browser server to pair The login Cookie data is encrypted; execute step 108;

步骤108:所述第二浏览器服务器将加密后的登录Cookie数据发送至所述第一浏览器服务器;Step 108: the second browser server sends the encrypted login cookie data to the first browser server;

步骤309:所述第一浏览器服务器通过对接收到的加密数据进行解密处理,并校验解密出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果是,则确定解密得到为所述登录Cookie数据,再利用所述登录Cookie数据完成用户登录操作;否则,登录失败。Step 309: The first browser server decrypts the received encrypted data, and checks whether the decrypted user request login time is consistent with the recorded user request login time, and if so, determines that the decrypted result is The login Cookie data is used to complete the user login operation; otherwise, the login fails.

基于上述实施例1,本发明实施例4也提出了一种实现跨域数据传输的方法,如图4所示,该方法与实施例1的一种实现跨域数据传输的方法流程基本相同,不同之处在于,该方法还包括利用用户登录IP地址和用户请求登录时间进行校验的过程,具体该方法包括:Based on the above-mentioned embodiment 1, embodiment 4 of the present invention also proposes a method for realizing cross-domain data transmission, as shown in FIG. The difference is that the method also includes the process of verifying the user's login IP address and the user's requested login time. Specifically, the method includes:

步骤101:第一浏览器服务器接收浏览器客户端发送的用户登录请求;Step 101: the first browser server receives the user login request sent by the browser client;

步骤402:所述第一浏览器服务器生成本次登录的会话信息,同时记录用户请求登录时间和用户登录IP地址并跳转登录请求值第二浏览器服务器;其中,所述会话信息至少包含用户安全标识符和第一密钥Key1;Step 402: The first browser server generates session information for this login, records the user request login time and the user login IP address, and jumps to the login request value of the second browser server; wherein the session information includes at least the user Security identifier and first key Key1;

步骤103:所述第二浏览器服务器接收第一浏览器服务器跳转的用户登录请求后,判断用户是否有登录权限;如果用户有登录权限,则所述第二浏览器服务器生成登录Cookie数据,执行步骤104;Step 103: After receiving the user login request redirected by the first browser server, the second browser server determines whether the user has login authority; if the user has login authority, the second browser server generates login Cookie data, Execute step 104;

步骤104:所述第二浏览器服务器获取所述用户SID,并执行步骤105;Step 104: the second browser server obtains the user SID, and executes step 105;

步骤105:所述第二浏览器服务器根据获取到的所述SID向所述第一浏览器服务器发送校验请求;Step 105: The second browser server sends a verification request to the first browser server according to the obtained SID;

步骤406:所述第一浏览器服务器接收所述第二浏览器服务器的校验请求后,向所述第二浏览器服务器反馈所述Key1、用户请求登录时间和用户登录IP地址;Step 406: After receiving the verification request from the second browser server, the first browser server feeds back the Key1, user request login time and user login IP address to the second browser server;

步骤407:所述第二浏览器服务器接收到所述Key1、用户请求登录时间和用户登录IP地址后,利用所述Key1、本地存储的第二密钥Key2以及所述第一浏览器服务器发送的用户请求登录时间和用户登录IP地址对所述登录Cookie数据进行加密处理;执行步骤108;Step 407: After the second browser server receives the Key1, user request login time and user login IP address, use the Key1, the locally stored second key Key2 and the The user requests login time and the user login IP address to encrypt the login Cookie data; execute step 108;

步骤108:所述第二浏览器服务器将加密后的登录Cookie数据发送至所述第一浏览器服务器;Step 108: the second browser server sends the encrypted login cookie data to the first browser server;

步骤409:所述第一浏览器服务器通过对接收到的加密数据进行解密处理,并校验解密出的用户请求登录时间与已记录的用户请求登录时间是否一致、同时校验解密出的用户登录IP地址与已记录的用户登录IP地址是否一致,如果是,则确定解密得到为所述登录Cookie数据,再利用所述登录Cookie数据完成用户登录操作;否则,登录失败。Step 409: The first browser server decrypts the received encrypted data, and checks whether the decrypted user request login time is consistent with the recorded user request login time, and simultaneously checks the decrypted user login time. Whether the IP address is consistent with the recorded user login IP address, if yes, then determine that the decryption is obtained as the login Cookie data, and then utilize the login Cookie data to complete the user login operation; otherwise, the login fails.

基于上述各实施例的方法,本发明实施例提出通过以下的具体操作来对上述各实施例的方法进行详细描述,但并不局限于此;具体的,如本实施例5及附图5所示,该方法包括:Based on the methods of the above-mentioned embodiments, the embodiment of the present invention proposes to describe the methods of the above-mentioned embodiments in detail through the following specific operations, but is not limited thereto; specifically, as shown in Embodiment 5 and Figure 5 , the method includes:

S501:用户打开世界之窗浏览器页面login.theworld.cn,输入用户名和密码并点击登录后,所述世界之窗浏览器客户端将用户的登录请求发送至世界之窗浏览器服务器;S501: After the user opens the Window of the World browser page login.theworld.cn, enters the user name and password and clicks Login, the Window of the World browser client sends the user's login request to the Window of the World browser server;

S502:所述世界之窗浏览器服务器接收到所述客户端发送用户的登录请求后,生成此次登录的session,该session至少包含用户SID和第一密钥Kye1,同时记录用户登录的IP地址和用户请求登录时间TIME;然后跳转至360浏览器页面app.brower.360.cn?sid:001,该会跳地址中包含用户SID为001;S502: After receiving the user's login request from the client, the Window of the World browser server generates a session for this login, the session includes at least the user SID and the first key Kye1, and records the IP address of the user's login and the user request login time TIME; then jump to the 360 browser page app.brower.360.cn?sid:001, the jump address contains the user SID as 001;

S503:所述360浏览器页面打开后,360浏览器服务器负责处理用户登录请求,即首先判断用户是否有登录权限;如果有,则生成此次登录的Cookie数据,同时从跳转页面URL中提取出用户SID为001;S503: After the 360 browser page is opened, the 360 browser server is responsible for processing the user's login request, that is, it first judges whether the user has login authority; The outgoing user SID is 001;

S504:所述360浏览器服务器根据提取出的用户SID向所述世界之窗浏览器服务器发送校验请求,即通过SID向login.theworld.cn发送校验请求;S504: The 360 browser server sends a verification request to the Window of the World browser server according to the extracted user SID, that is, sends a verification request to login.theworld.cn through the SID;

S505:所述世界之窗浏览器服务器根据所述360浏览器服务器的校验请求向其反馈所述Kye1、以及记录的用户登录IP地址和TIME;S505: The Window of the World browser server feeds back the Kye1, and the recorded user login IP address and TIME according to the verification request of the 360 browser server;

S506:所述360浏览器服务器根据所述世界之窗浏览器服务器的反馈,利用所述Key1、本地存储的第二密钥Key2以及TIME和用户登录IP地址对所述登录Cookie数据进行加密处理,然后将加密后的数据以POST的方式提交给所述世界之窗浏览器服务器;S506: According to the feedback from the Window of the World browser server, the 360 browser server encrypts the login cookie data by using the Key1, the locally stored second key Key2, TIME and the user login IP address, Then submit the encrypted data to the Window of the World browser server in the form of POST;

S507:所述世界之窗浏览器服务器对接收到的加密数据进行解密处理,并判断解密出的用户登录IP地址与已记录的用户登录IP地址是否一致、同时判断解密出的TIME与已记录的TIME是否一致,如果二者都一致,则利用解密出的Cookie完成登录;否则,登录失败。S507: The Window of the World browser server decrypts the received encrypted data, and judges whether the decrypted user login IP address is consistent with the recorded user login IP address, and at the same time judges whether the decrypted TIME is consistent with the recorded user login IP address. Whether the TIME is consistent, if both are consistent, then use the decrypted Cookie to complete the login; otherwise, the login fails.

可以看出,采用本发明实施例的方法,通过在不同域名的浏览器服务器间传输与用户SID对应的登录Cookie数据,并利用不同的加密和校验方式来保证用户登录身份的可靠性,从而能够实现用户在不同域名间的跨域登录,有效的提高了跨域名数据传输的效率。It can be seen that by adopting the method of the embodiment of the present invention, the login Cookie data corresponding to the user SID is transmitted between browser servers of different domain names, and different encryption and verification methods are used to ensure the reliability of the user's login identity, thereby It can realize the cross-domain login of users between different domain names, effectively improving the efficiency of cross-domain data transmission.

当然,上述特种信息及其判断方式只是作为示例,在实施本发明实施例时,可以根据实际情况设置其他特种信息及其判断方式,本发明实施例对此不加以限制。另外,除了上述特种信息及其判断方式外,本领域技术人员还可以根据实际需要采用其他特种信息及其判断方式,本发明实施例对此也不加以限制。Of course, the above-mentioned special information and its judgment method are just examples. When implementing the embodiment of the present invention, other special information and its judgment method can be set according to the actual situation, which is not limited in the embodiment of the present invention. In addition, in addition to the above-mentioned special information and its judgment method, those skilled in the art may also use other special information and its judgment method according to actual needs, which is not limited in this embodiment of the present invention.

对于方法实施例,为了简单描述,故将其都表述为一系列的动作组合,但是本领域技术人员应该知悉,本发明实施例并不受所描述的动作顺序的限制,因为依据本发明实施例,某些步骤可以采用其他顺序或者同时进行。其次,本领域技术人员也应该知悉,说明书中所描述的实施例均属于优选实施例,所涉及的动作并不一定是本发明实施例所必须的。For the method embodiment, for the sake of simple description, it is expressed as a series of action combinations, but those skilled in the art should know that the embodiment of the present invention is not limited by the described action order, because according to the embodiment of the present invention , certain steps may be performed in other order or simultaneously. Secondly, those skilled in the art should also know that the embodiments described in the specification belong to preferred embodiments, and the actions involved are not necessarily required by the embodiments of the present invention.

参照图6,示出了根据本发明一个实施例的一种实现跨域数据传输的装置实施例的结构框图,具体可以包括如下模块:第一接收单元610,适于接收用户登录请求;第一生成单元620,适于生成至少包含用户安全标识符SID和第一密钥的会话信息并跳转登录请求至第二浏览器服务器;第一反馈单元630,适于当接收到所述第二浏览器服务器根据所述用户SID发送的校验请求后,向所述第二浏览器服务器返回所述第一密钥;第一解析单元640,适于通过对接收到的所述第二浏览器服务器发送的加密数据进行解析得到登录Cookie数据,完成登录。Referring to FIG. 6 , it shows a structural block diagram of an embodiment of a device for realizing cross-domain data transmission according to an embodiment of the present invention, which may specifically include the following modules: a first receiving unit 610 adapted to receive a user login request; a first The generation unit 620 is adapted to generate session information including at least the user security identifier SID and the first key and jumps the login request to the second browser server; the first feedback unit 630 is adapted to After the browser server returns the first key to the second browser server according to the verification request sent by the user SID; the first parsing unit 640 is adapted to pass the received second browser server The encrypted data sent is analyzed to obtain the login cookie data, and the login is completed.

其中,所述第一生成单元620还可包括(图中未示出):第一记录模块,适于在生成所述会话信息时记录用户登录IP地址和/或用户请求登录时间。Wherein, the first generating unit 620 may further include (not shown in the figure): a first recording module adapted to record the user login IP address and/or the user request login time when generating the session information.

此外,所述第一反馈单元630还可包括(图中未示出):第一发送模块,适于在接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户登录IP地址和/用户请求登录时间。In addition, the first feedback unit 630 may further include (not shown in the figure): a first sending module, adapted to return the first password to the second browser server after receiving the verification request; When using the key, send the user login IP address and/or user request login time to the second browser server.

在实际应用中,所述第一解析单元640还可包括(图中未示出):第一解密模块,适于从接收到的加密数据中解析出用户登录IP地址和/或用户登录时间;第一校验模块,适于校验所述第一解密模块解析出的用户登录IP地址与已记录的用户登录IP地址是否一致,如果是,则利用解析出的登录Cookie数据完成登录;或者,适于校验所述第一解密模块解析出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果是,则利用解析出的登录Cookie数据完成登录;或者,适于校验所述第一解密模块解析出的用户登录IP地址与已记录的用户登录IP地址是否一致,并校验所述第一解密模块解析出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果都一致,则利用解析出的登录Cookie数据完成登录。In practical applications, the first parsing unit 640 may further include (not shown in the figure): a first decryption module, adapted to parse out the user login IP address and/or user login time from the received encrypted data; The first verification module is adapted to verify whether the user login IP address parsed by the first decryption module is consistent with the recorded user login IP address, and if so, complete the login using the parsed login Cookie data; or, It is suitable for checking whether the user request login time parsed by the first decryption module is consistent with the recorded user request login time, and if so, complete the login by using the parsed login Cookie data; or, it is suitable for checking the Whether the user login IP address parsed by the first decryption module is consistent with the recorded user login IP address, and whether the user request login time parsed by the first decryption module is consistent with the recorded user request login time, if If they are all consistent, the login is completed using the parsed login cookie data.

参照图7,本发明还公开了一种实现跨域数据传输的装置,包括以下模块:第二接收单元710,适于接收第一浏览器服务器跳转的用户登录请求;第二判断单元720,适于判断用户是否有登录权限;如果有,则生成登录Cookie数据,并获取所述第一浏览器服务器生成的用户安全标识符SID;第二发送单元730,适于根据所述SID向所述第一浏览器服务器发送校验请求,并接收所述第一浏览器服务器返回的第一密钥;第二加密单元740,适于利用所述第一密钥和本地第二密钥对所述登录Cookie数据进行加密后发送至所述第一浏览器服务器,以使所述第一浏览器服务器根据加密数据解析结果进行登录。Referring to FIG. 7 , the present invention also discloses a device for realizing cross-domain data transmission, including the following modules: a second receiving unit 710, adapted to receive a user login request redirected by the first browser server; a second judging unit 720, It is suitable for judging whether the user has login authority; if yes, then generate login Cookie data, and obtain the user security identifier SID generated by the first browser server; the second sending unit 730 is adapted to send the The first browser server sends a verification request, and receives the first key returned by the first browser server; the second encryption unit 740 is adapted to use the first key and the local second key to pair the The login cookie data is encrypted and then sent to the first browser server, so that the first browser server can log in according to the analysis result of the encrypted data.

其中,所述第二判断单元720还可包括(图中未示出):第一处理模块,适于根据所述用户登录请求确定用户登录统一资源定位符URL;第二处理模块,适于从所述第一处理模块确定的用户登录URL中提取出所述用户SID。Wherein, the second judging unit 720 may further include (not shown in the figure): a first processing module, adapted to determine the user login uniform resource locator URL according to the user login request; a second processing module, adapted to obtain from The user SID is extracted from the user login URL determined by the first processing module.

此外,所述第二发送单元730还可包括(图中未示出):第二获取模块,适于在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户登录IP地址和/或用户请求登录时间。In addition, the second sending unit 730 may further include (not shown in the figure): a second obtaining module, adapted to receive the verification request from the first browser server after sending the verification request to the first browser server. The returned user login IP address and/or user request login time.

在实际应用过程中,所述第二加密单元740还可包括(图中未示出):加密模块,适于利用所述第一密钥、本地第二密钥以及所述用户登录IP地址和/或用户请求登录时间对所述登录Cookie数据进行加密处理;发送模块,适于将所述加密模块加密的数据发送至所述第一浏览器服务器。In practical applications, the second encryption unit 740 may further include (not shown in the figure): an encryption module adapted to use the first key, the local second key, and the user login IP address and /or the user requests login time to encrypt the login Cookie data; the sending module is adapted to send the data encrypted by the encryption module to the first browser server.

对于装置实施例而言,由于其与方法实施例基本相似,所以描述的比较简单,相关之处参见方法实施例的部分说明即可。As for the device embodiment, since it is basically similar to the method embodiment, the description is relatively simple, and for related parts, please refer to the part of the description of the method embodiment.

在此提供的算法和显示不与任何特定计算机、虚拟系统或者其它设备固有相关。各种通用系统也可以与基于在此的示教一起使用。根据上面的描述,构造这类系统所要求的结构是显而易见的。此外,本发明也不针对任何特定编程语言。应当明白,可以利用各种编程语言实现在此描述的本发明的内容,并且上面对特定语言所做的描述是为了披露本发明的最佳实施方式。The algorithms and displays presented herein are not inherently related to any particular computer, virtual system, or other device. Various generic systems can also be used with the teachings based on this. The structure required to construct such a system is apparent from the above description. Furthermore, the present invention is not specific to any particular programming language. It should be understood that various programming languages can be used to implement the content of the present invention described herein, and the above description of specific languages is for disclosing the best mode of the present invention.

在此处所提供的说明书中,说明了大量具体细节。然而,能够理解,本发明的实施例可以在没有这些具体细节的情况下实践。在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。In the description provided herein, numerous specific details are set forth. However, it is understood that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure the understanding of this description.

类似地,应当理解,为了精简本公开并帮助理解各个发明方面中的一个或多个,在上面对本发明的示例性实施例的描述中,本发明的各个特征有时被一起分组到单个实施例、图、或者对其的描述中。然而,并不应将该公开的方法解释成反映如下意图:即所要求保护的本发明要求比在每个权利要求中所明确记载的特征更多的特征。更确切地说,如下面的权利要求书所反映的那样,发明方面在于少于前面公开的单个实施例的所有特征。因此,遵循具体实施方式的权利要求书由此明确地并入该具体实施方式,其中每个权利要求本身都作为本发明的单独实施例。Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, in order to streamline this disclosure and to facilitate an understanding of one or more of the various inventive aspects, various features of the invention are sometimes grouped together in a single embodiment, figure, or its description. This method of disclosure, however, is not to be interpreted as reflecting an intention that the claimed invention requires more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. Thus, the claims following the Detailed Description are hereby expressly incorporated into this Detailed Description, with each claim standing on its own as a separate embodiment of this invention.

本领域那些技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and arranged in one or more devices different from the embodiment. Modules or units or components in the embodiments may be combined into one module or unit or component, and furthermore may be divided into a plurality of sub-modules or sub-units or sub-assemblies. All features disclosed in this specification (including accompanying claims, abstract and drawings), as well as any method or method so disclosed, may be used in any combination, except that at least some of such features and/or processes or units are mutually exclusive. All processes or units of equipment are combined. Each feature disclosed in this specification (including accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.

此外,本领域的技术人员能够理解,尽管在此所述的一些实施例包括其它实施例中所包括的某些特征而不是其它特征,但是不同实施例的特征的组合意味着处于本发明的范围之内并且形成不同的实施例。例如,在下面的权利要求书中,所要求保护的实施例的任意之一都可以以任意的组合方式来使用。Furthermore, those skilled in the art will understand that although some embodiments described herein include some features included in other embodiments but not others, combinations of features from different embodiments are meant to be within the scope of the invention. and form different embodiments. For example, in the following claims, any of the claimed embodiments may be used in any combination.

本发明的各个部件实施例可以以硬件实现,或者以在一个或者多个处理器上运行的软件模块实现,或者以它们的组合实现。本领域的技术人员应当理解,可以在实践中使用微处理器或者数字信号处理器(DSP)来实现本发明实施例所实现的跨域数据传输的装置中的一些或者全部的部件、功能。本发明还可以实现为用于执行这里所描述的方法的一部分或者全部的设备或者装置程序(例如,计算机程序和计算机程序产品)。这样的实现本发明的程序可以存储在计算机可读介质上,或者可以具有一个或者多个信号的形式。这样的信号可以从因特网网站上下载得到,或者在载体信号上提供,或者以任何其他形式提供。The various component embodiments of the present invention may be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art should understand that a microprocessor or a digital signal processor (DSP) may be used in practice to implement some or all of the components and functions of the device for cross-domain data transmission implemented in the embodiments of the present invention. The present invention can also be implemented as an apparatus or an apparatus program (for example, a computer program and a computer program product) for performing a part or all of the methods described herein. Such a program for realizing the present invention may be stored on a computer-readable medium, or may be in the form of one or more signals. Such a signal may be downloaded from an Internet site, or provided on a carrier signal, or provided in any other form.

应该注意的是上述实施例对本发明进行说明而不是对本发明进行限制,并且本领域技术人员在不脱离所附权利要求的范围的情况下可设计出替换实施例。在权利要求中,不应将位于括号之间的任何参考符号构造成对权利要求的限制。单词“包含”不排除存在未列在权利要求中的元件或步骤。位于元件之前的单词“一”或“一个”不排除存在多个这样的元件。本发明可以借助于包括有若干不同元件的硬件以及借助于适当编程的计算机来实现。在列举了若干装置的单元权利要求中,这些装置中的若干个可以是通过同一个硬件项来具体体现。单词第一、第二、以及第三等的使用不表示任何顺序。可将这些单词解释为名称。It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention can be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In a unit claim enumerating several means, several of these means can be embodied by one and the same item of hardware. The use of the words first, second, and third, etc. does not indicate any order. These words can be interpreted as names.

本发明实施例还揭示了A1、一种实现跨域数据传输的方法,包括:The embodiment of the present invention also discloses A1, a method for realizing cross-domain data transmission, including:

接收用户登录请求;Receive user login request;

生成至少包含用户安全标识符SID和第一密钥的会话信息并跳转登录请求至第二浏览器服务器;Generate session information including at least the user security identifier SID and the first key and redirect the login request to the second browser server;

当接收到所述第二浏览器服务器根据所述用户SID发送的校验请求后,向所述第二浏览器服务器返回所述第一密钥;After receiving the verification request sent by the second browser server according to the user SID, returning the first key to the second browser server;

通过对接收到的所述第二浏览器服务器发送的加密数据进行解析得到登录Cookie数据,完成登录。The login Cookie data is obtained by analyzing the received encrypted data sent by the second browser server, and the login is completed.

A2、如A1所述的方法,其特征在于,还包括:A2, the method as described in A1, is characterized in that, also comprises:

在生成所述会话信息时记录用户登录IP地址。Record the user's login IP address when generating the session information.

A3、如A2所述的方法,其特征在于,还包括:A3, the method as described in A2, is characterized in that, also comprises:

当接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户登录IP地址;When receiving the verification request and returning the first key to the second browser server, sending the user login IP address to the second browser server;

从接收的加密数据中解析出用户登录IP地址;Analyze the user login IP address from the received encrypted data;

校验解析出的用户登录IP地址与已记录的用户登录IP地址是否一致;如果是,则利用解析出的登录Cookie数据完成登录。Check whether the parsed user login IP address is consistent with the recorded user login IP address; if yes, use the parsed login cookie data to complete the login.

A4、如A1所述的方法,其特征在于,还包括:A4, the method as described in A1, is characterized in that, also comprises:

在生成所述会话消息时记录用户请求登录时间。When the session message is generated, record the user request login time.

A5、如A4所述的方法,其特征在于,还包括:A5, the method as described in A4, is characterized in that, also comprises:

当接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户请求登录时间;When receiving the verification request and returning the first key to the second browser server, sending the user request login time to the second browser server;

从接收的加密数据中解析出用户请求登录时间;Parse the user request login time from the received encrypted data;

校验解析出的用户请求登录时间与已记录的用户请求登录时间是否一致;如果是,则利用解析出的登录Cookie数据完成登录。Check whether the parsed user request login time is consistent with the recorded user request login time; if yes, use the parsed login cookie data to complete the login.

本发明实施例还公开了B6、一种实现跨域数据传输的方法,包括:The embodiment of the present invention also discloses B6, a method for realizing cross-domain data transmission, including:

接收第一浏览器服务器跳转的用户登录请求;receiving a user login request redirected by the first browser server;

判断用户是否有登录权限;如果有,则生成登录Cookie数据,并获取所述第一浏览器服务器生成的用户安全标识符SID;Judging whether the user has login authority; if so, generating login Cookie data, and obtaining the user security identifier SID generated by the first browser server;

根据所述SID向所述第一浏览器服务器发送校验请求,并接收所述第一浏览器服务器返回的第一密钥;sending a verification request to the first browser server according to the SID, and receiving a first key returned by the first browser server;

利用所述第一密钥和本地第二密钥对所述登录Cookie数据进行加密后发送至所述第一浏览器服务器,以使所述第一浏览器服务器根据加密数据解析结果进行登录。The login cookie data is encrypted by using the first key and the local second key, and then sent to the first browser server, so that the first browser server can log in according to the encrypted data analysis result.

B7、如B6所述的方法,其特征在于,所述获取第一浏览器服务器生成的SID包括:B7, the method as described in B6, it is characterized in that, described obtaining the SID that the first browser server generates comprises:

根据所述用户登录请求确定用户登录统一资源定位符URL;Determine the user login Uniform Resource Locator URL according to the user login request;

从所述用户登录URL中提取出所述用户SID。The user SID is extracted from the user login URL.

B8、如B6所述的方法,其特征在于,还包括:B8, the method as described in B6, is characterized in that, also comprises:

在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户登录IP地址;After sending the verification request to the first browser server, receiving the user login IP address returned by the first browser server;

利用所述第一密钥、本地第二密钥和所述用户登录IP地址对所述登录Cookie数据进行加密处理,将加密数据发送至所述第一浏览器服务器。Encrypting the login Cookie data by using the first key, the local second key and the user login IP address, and sending the encrypted data to the first browser server.

B9、如B6所述的方法,其特征在于,还包括:B9, the method as described in B6, is characterized in that, also comprises:

在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户请求登录时间;After sending the verification request to the first browser server, receiving the user requested login time returned by the first browser server;

利用所述第一密钥、本地第二密钥和所述用户请求登录时间对所述登录Cookie数据进行加密处理,将加密数据发送至所述第一浏览器服务器。Encrypting the login cookie data by using the first key, the second local key and the login time requested by the user, and sending the encrypted data to the first browser server.

本发明实施例还公开了C10、一种实现跨域数据传输的装置,包括:The embodiment of the present invention also discloses C10, a device for realizing cross-domain data transmission, including:

第一接收单元,适于接收用户登录请求;a first receiving unit adapted to receive a user login request;

第一生成单元,适于生成至少包含用户安全标识符SID和第一密钥的会话信息并跳转登录请求至第二浏览器服务器;The first generation unit is adapted to generate session information including at least the user security identifier SID and the first key and redirect the login request to the second browser server;

第一反馈单元,适于当接收到所述第二浏览器服务器根据所述用户SID发送的校验请求后,向所述第二浏览器服务器返回所述第一密钥;The first feedback unit is adapted to return the first key to the second browser server after receiving the verification request sent by the second browser server according to the user SID;

第一解析单元,适于通过对接收到的所述第二浏览器服务器发送的加密数据进行解析得到登录Cookie数据,完成登录。The first parsing unit is adapted to obtain login cookie data by parsing the received encrypted data sent by the second browser server, and complete the login.

C11、如C10所述的装置,其特征在于,所述第一生成单元包括:C11, the device as described in C10, is characterized in that, described first generation unit comprises:

第一记录模块,适于在生成所述会话信息时记录用户登录IP地址和/或用户请求登录时间。The first recording module is adapted to record the user login IP address and/or the user request login time when generating the session information.

C12、如C11所述的装置,其特征在于,所述第一反馈单元包括:C12. The device as described in C11, wherein the first feedback unit includes:

第一发送模块,适于在接收到所述校验请求并向所述第二浏览器服务器返回所述第一密钥时,向所述第二浏览器服务器发送所述用户登录IP地址和/用户请求登录时间。The first sending module is adapted to send the user login IP address and/or to the second browser server when receiving the verification request and returning the first key to the second browser server User requests login time.

C13、如C10所述的装置,其特征在于,所述第一解析单元包括:C13, the device as described in C10, is characterized in that, described first parsing unit comprises:

第一解密模块,适于从接收到的加密数据中解析出用户登录IP地址和/或用户登录时间;The first decryption module is adapted to resolve the user login IP address and/or user login time from the received encrypted data;

第一校验模块,适于校验所述第一解密模块解析出的用户登录IP地址与已记录的用户登录IP地址是否一致,如果是,则利用解析出的登录Cookie数据完成登录;或者,适于校验所述第一解密模块解析出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果是,则利用解析出的登录Cookie数据完成登录;或者,适于校验所述第一解密模块解析出的用户登录IP地址与已记录的用户登录IP地址是否一致,并校验所述第一解密模块解析出的用户请求登录时间与已记录的用户请求登录时间是否一致,如果都一致,则利用解析出的登录Cookie数据完成登录。The first verification module is adapted to verify whether the user login IP address parsed by the first decryption module is consistent with the recorded user login IP address, and if so, complete the login using the parsed login Cookie data; or, It is suitable for checking whether the user request login time parsed by the first decryption module is consistent with the recorded user request login time, and if so, complete the login by using the parsed login Cookie data; or, it is suitable for checking the Whether the user login IP address parsed by the first decryption module is consistent with the recorded user login IP address, and whether the user request login time parsed by the first decryption module is consistent with the recorded user request login time, if If they are all consistent, the login is completed using the parsed login cookie data.

本发明实施例还公开了D14、一种实现跨域数据传输的装置,包括:The embodiment of the present invention also discloses D14, a device for realizing cross-domain data transmission, including:

第二接收单元,适于接收第一浏览器服务器跳转的用户登录请求;The second receiving unit is adapted to receive a user login request redirected by the first browser server;

第二判断单元,适于判断用户是否有登录权限;如果有,则生成登录Cookie数据,并获取所述第一浏览器服务器生成的用户安全标识符SID;The second judging unit is adapted to judge whether the user has login authority; if yes, generate login Cookie data, and obtain the user security identifier SID generated by the first browser server;

第二发送单元,适于根据所述SID向所述第一浏览器服务器发送校验请求,并接收所述第一浏览器服务器返回的第一密钥;The second sending unit is adapted to send a verification request to the first browser server according to the SID, and receive the first key returned by the first browser server;

第二加密单元,适于利用所述第一密钥和本地第二密钥对所述登录Cookie数据进行加密后发送至所述第一浏览器服务器,以使所述第一浏览器服务器根据加密数据解析结果进行登录。The second encryption unit is adapted to use the first key and the local second key to encrypt the login Cookie data and send it to the first browser server, so that the first browser server can Log in the data analysis result.

D15、如D14所述的装置,其特征在于,所述第二判断单元包括:D15. The device as described in D14, wherein the second judging unit includes:

第一处理模块,适于根据所述用户登录请求确定用户登录统一资源定位符URL;The first processing module is adapted to determine the user login Uniform Resource Locator URL according to the user login request;

第二处理模块,适于从所述第一处理模块确定的用户登录URL中提取出所述用户SID。The second processing module is adapted to extract the user SID from the user login URL determined by the first processing module.

D16、如D14所述的装置,其特征在于,所述第二发送单元包括:D16. The device as described in D14, wherein the second sending unit includes:

第二获取模块,适于在向所述第一浏览器服务器发送校验请求后,接收所述第一浏览器服务器返回的用户登录IP地址和/或用户请求登录时间。The second obtaining module is adapted to receive the user login IP address and/or user request login time returned by the first browser server after sending the verification request to the first browser server.

D17、如D16所述的装置,其特征在于,所述第二加密单元包括:D17. The device as described in D16, wherein the second encryption unit includes:

加密模块,适于利用所述第一密钥、本地第二密钥以及所述用户登录IP地址和/或用户请求登录时间对所述登录Cookie数据进行加密处理;An encryption module, adapted to use the first key, the local second key, and the user login IP address and/or user request login time to encrypt the login Cookie data;

发送模块,适于将所述加密模块加密的数据发送至所述第一浏览器服务器。A sending module, adapted to send the data encrypted by the encryption module to the first browser server.

Claims (10)

1. a method that realizes cross-domain data transmission, comprising:
Receive user's logging request;
Generate the session information redirect logging request to the second browser server that at least comprise user security identifiers SID and the first key;
When receiving described the second browser server according to after the check request of described user SID transmission, to described the second browser server, return to described the first key;
By the enciphered data that described the second browser server receiving is sent, resolve and obtain logining Cookie data, complete login.
2. the method for claim 1, is characterized in that, also comprises:
Recording user login IP address when generating described session information.
3. method as claimed in claim 2, is characterized in that, also comprises:
When receiving described check request and return to described the first key to described the second browser server, to described the second browser server, send described user and login IP address;
From the enciphered data receiving, parse user and login IP address;
Whether the user that verification parses to login IP address consistent if logining IP address and the user who has recorded; If so, utilize the login Cookie data that parse to complete login.
4. a method that realizes cross-domain data transmission, comprising:
Receive user's logging request of the first browser server redirect;
Judge whether user has logon rights; If had, generate login Cookie data, and obtain the user security identifiers SID that described the first browser server generates;
According to described SID, to described the first browser server, send check request, and receive the first key that described the first browser server returns;
After utilizing described the first key and local the second key to be encrypted described login Cookie data, be sent to described the first browser server, so that described the first browser server is logined according to enciphered data analysis result.
5. method as claimed in claim 4, is characterized in that, described in obtain the SID that the first browser server generates and comprise:
According to described user's logging request, determine that user logins uniform resource position mark URL;
From described user, login and URL, extract described user SID.
6. method as claimed in claim 4, is characterized in that, also comprises:
To described the first browser server, sending after check request, receiving the user that described the first browser server returns and login IP address;
Utilize described the first key, local the second key and described user to login IP address described login Cookie data are encrypted, enciphered data is sent to described the first browser server.
7. a device of realizing cross-domain data transmission, comprising:
The first receiving element, is suitable for receiving user's logging request;
The first generation unit, is suitable for generating session information redirect logging request to the second browser server that at least comprises user security identifiers SID and the first key;
The first feedback unit, is suitable for, when receiving described the second browser server according to after the check request of described user SID transmission, to described the second browser server, returning to described the first key;
The first resolution unit, is suitable for, by the enciphered data of described the second browser server transmission receiving is resolved and obtained logining Cookie data, completing login.
8. device as claimed in claim 7, is characterized in that, described the first generation unit comprises:
The first logging modle, is suitable for when generating described session information recording user login IP address and/or user and asks login time.
9. a device of realizing cross-domain data transmission, comprising:
The second receiving element, is suitable for receiving user's logging request of the first browser server redirect;
The second judging unit, is suitable for judging whether user has logon rights; If had, generate login Cookie data, and obtain the user security identifiers SID that described the first browser server generates;
The second transmitting element, is suitable for to described the first browser server, sending check request according to described SID, and receives the first key that described the first browser server returns;
The second ciphering unit, is sent to described the first browser server after being suitable for utilizing described the first key and local the second key to be encrypted described login Cookie data, so that described the first browser server is logined according to enciphered data analysis result.
10. device as claimed in claim 9, is characterized in that, described the second judging unit comprises:
The first processing module, is suitable for determining that according to described user's logging request user logins uniform resource position mark URL;
The second processing module, is suitable for logining and URL, extracting described user SID from the definite user of described the first processing module.
CN201310631383.8A 2013-11-29 2013-11-29 Method and device for realizing cross-domain data transmission Active CN103634399B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310631383.8A CN103634399B (en) 2013-11-29 2013-11-29 Method and device for realizing cross-domain data transmission

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310631383.8A CN103634399B (en) 2013-11-29 2013-11-29 Method and device for realizing cross-domain data transmission

Publications (2)

Publication Number Publication Date
CN103634399A true CN103634399A (en) 2014-03-12
CN103634399B CN103634399B (en) 2017-02-08

Family

ID=50215015

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310631383.8A Active CN103634399B (en) 2013-11-29 2013-11-29 Method and device for realizing cross-domain data transmission

Country Status (1)

Country Link
CN (1) CN103634399B (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104219251A (en) * 2014-09-26 2014-12-17 北京国双科技有限公司 Website data obtaining method and device
CN104243488A (en) * 2014-09-29 2014-12-24 成都西山居互动娱乐科技有限公司 Login authentication method of cross-website server
CN104391974A (en) * 2014-12-05 2015-03-04 北京奇虎科技有限公司 Browser and browser bookmark data processing method
CN105337990A (en) * 2015-11-20 2016-02-17 北京奇虎科技有限公司 User identity verification method and device
CN105472052A (en) * 2014-09-03 2016-04-06 阿里巴巴集团控股有限公司 Login method and system of cross-domain server
CN105610855A (en) * 2016-01-21 2016-05-25 北京京东尚科信息技术有限公司 Method and device for login verification of cross-domain system
CN105897746A (en) * 2016-05-26 2016-08-24 深圳市金立通信设备有限公司 Cross-website login method, terminal and website server
CN106850517A (en) * 2015-12-04 2017-06-13 北京京东尚科信息技术有限公司 A kind of method, apparatus and system for solving intranet and extranet repeat logon
CN108011859A (en) * 2016-10-27 2018-05-08 珠海金山办公软件有限公司 A kind of method and apparatus for logging in different level-one applications

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108040065B (en) * 2017-12-22 2021-02-19 平安养老保险股份有限公司 Login-free method and device after webpage skipping, computer equipment and storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1855814A (en) * 2005-04-29 2006-11-01 中国科学院计算机网络信息中心 Safety uniform certificate verification design
CN101478396A (en) * 2008-12-04 2009-07-08 黄希 Uni-directional cross-domain identity verification based on low correlation of private cipher key and application thereof
US7908649B1 (en) * 2005-09-20 2011-03-15 Netapp, Inc. Method and apparatus for providing efficient authorization services in a web cache
CN102299802A (en) * 2011-09-02 2011-12-28 深圳中兴网信科技有限公司 Cross-domain single sign-on realization method
CN102682009A (en) * 2011-03-11 2012-09-19 腾讯科技(北京)有限公司 Method and system for logging in webpage
CN102868704A (en) * 2012-10-11 2013-01-09 北京新媒传信科技有限公司 Method and system for single sign on
CN103179134A (en) * 2013-04-19 2013-06-26 中国建设银行股份有限公司 Single sign on method and system based on Cookie and application server thereof

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1855814A (en) * 2005-04-29 2006-11-01 中国科学院计算机网络信息中心 Safety uniform certificate verification design
US7908649B1 (en) * 2005-09-20 2011-03-15 Netapp, Inc. Method and apparatus for providing efficient authorization services in a web cache
CN101478396A (en) * 2008-12-04 2009-07-08 黄希 Uni-directional cross-domain identity verification based on low correlation of private cipher key and application thereof
CN102682009A (en) * 2011-03-11 2012-09-19 腾讯科技(北京)有限公司 Method and system for logging in webpage
CN102299802A (en) * 2011-09-02 2011-12-28 深圳中兴网信科技有限公司 Cross-domain single sign-on realization method
CN102868704A (en) * 2012-10-11 2013-01-09 北京新媒传信科技有限公司 Method and system for single sign on
CN103179134A (en) * 2013-04-19 2013-06-26 中国建设银行股份有限公司 Single sign on method and system based on Cookie and application server thereof

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105472052A (en) * 2014-09-03 2016-04-06 阿里巴巴集团控股有限公司 Login method and system of cross-domain server
CN105472052B (en) * 2014-09-03 2019-12-31 阿里巴巴集团控股有限公司 Cross-domain server login method and system
CN104219251A (en) * 2014-09-26 2014-12-17 北京国双科技有限公司 Website data obtaining method and device
CN104243488B (en) * 2014-09-29 2017-10-27 成都西山居互动娱乐科技有限公司 A kind of login authentication method of inter-network site server
CN104243488A (en) * 2014-09-29 2014-12-24 成都西山居互动娱乐科技有限公司 Login authentication method of cross-website server
CN104391974A (en) * 2014-12-05 2015-03-04 北京奇虎科技有限公司 Browser and browser bookmark data processing method
CN104391974B (en) * 2014-12-05 2018-04-17 北京奇虎科技有限公司 The processing method of browser and its favorites data
CN105337990A (en) * 2015-11-20 2016-02-17 北京奇虎科技有限公司 User identity verification method and device
CN105337990B (en) * 2015-11-20 2019-06-21 北京奇虎科技有限公司 User identity verification method and device
CN106850517A (en) * 2015-12-04 2017-06-13 北京京东尚科信息技术有限公司 A kind of method, apparatus and system for solving intranet and extranet repeat logon
WO2017124922A1 (en) * 2016-01-21 2017-07-27 北京京东尚科信息技术有限公司 Method and device for cross-domain system login verification
CN105610855A (en) * 2016-01-21 2016-05-25 北京京东尚科信息技术有限公司 Method and device for login verification of cross-domain system
CN105897746A (en) * 2016-05-26 2016-08-24 深圳市金立通信设备有限公司 Cross-website login method, terminal and website server
CN108011859A (en) * 2016-10-27 2018-05-08 珠海金山办公软件有限公司 A kind of method and apparatus for logging in different level-one applications

Also Published As

Publication number Publication date
CN103634399B (en) 2017-02-08

Similar Documents

Publication Publication Date Title
CN103634399B (en) Method and device for realizing cross-domain data transmission
Sun et al. The devil is in the (implementation) details: an empirical analysis of OAuth SSO systems
CN107209830B (en) Method for identifying and resisting network attack
CN103944900B (en) It is a kind of that attack prevention method and its device are asked across station based on encryption
US10574686B2 (en) Security verification by message interception and modification
CN104253812B (en) Entrust the certification for WEB service
CN104735066B (en) A kind of single-point logging method of object web page application, device and system
JP2020184800A (en) Resource locator with key
WO2017028804A1 (en) Web real-time communication platform authentication and access method and device
US10257171B2 (en) Server public key pinning by URL
US10148660B2 (en) Delivering author specific content
CN106559405B (en) Portal authentication method and equipment
CN102685081A (en) Webpage request safe processing method and system
CN105556891A (en) Sending session tokens through passive clients
CN108040065A (en) Webpage redirect after exempt from login method, device, computer equipment and storage medium
CN106357601A (en) Method for data access, device and system thereof
CN103647652B (en) A kind of method for realizing data transfer, device and server
CN102946396B (en) User agent's device, host web server and user authen method
CN107026828B (en) Anti-stealing-link method based on Internet cache and Internet cache
CN106169990A (en) A kind of encrypt data on flows monitoring method, Apparatus and system
CN105119916B (en) A kind of authentication method and system based on http
CN106470186B (en) A method of accessing third party's resource in a manner of jumping
CN102946397B (en) User authen method and system
CN107294920B (en) Reverse trust login method and device
WO2016205238A1 (en) Handshake offload

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20220805

Address after: Room 801, 8th floor, No. 104, floors 1-19, building 2, yard 6, Jiuxianqiao Road, Chaoyang District, Beijing 100015

Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd.

Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park)

Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd.

Patentee before: Qizhi software (Beijing) Co.,Ltd.

TR01 Transfer of patent right